This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft File: twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft (raw, json) Hash identifier: sN3wHcBXwCJI81r+X4ROUsRyktW6T4Xz97J1NF4NzGM= Subject key identifier: C0:13:E7:46:2D:1F:36:23:3B:B3:38:FC:DD:41:69:AB:BD:4A:10:82 Authority key identifier: B7:03:18:D7:1A:A0:E8:04:32:4E:01:3C:30:97:FD:BC:D6:01:34:D4 Certificate issuer: /CN=A917576D/serialNumber=B70318D71AA0E804324E013C3097FDBCD60134D4 Certificate serial: 0A7F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft Manifest number: 0A50 Signing time: Sat 24 Jan 2026 19:10:33 +0000 Manifest this update: Sat 24 Jan 2026 19:10:32 +0000 Manifest next update: Sat 31 Jan 2026 19:10:32 +0000 Files and hashes: 1: twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl (hash: Y/PxK+mqvrXPStJdV0LhUcEQ9mxJ7oHzeU5b16tvkOw=) 2: C9E62876DD0A11EA97BF0347C4F9AE02.roa (hash: ySqzG3zuhFyXYAB2Xvo/Kh6V5F+Kgf+Nm0xewmIwrC0=) 3: 4D3CA5D082D211EAB2F4F66AC4F9AE02.roa (hash: +4sh+kkJlvofIvhDoAc4FYEyHszuJnLGQWpeb3RoKWE=) 4: 7DE09496DDD911EA90D9B84CC4F9AE02.roa (hash: 2q8AYDfxOWLoT2+AfymL8bwLlmcQOfxdk8eBjQ1Y2sU=) 5: F8C86248AAF711EAB266AB46C4F9AE02.roa (hash: oieioWnzirmBWxUqlI6Ul54vXPOVVivDpWtM1tLxmFQ=) 6: EA7554AC82D011EA8BCCCA64C4F9AE02.roa (hash: s2nUxCRuLuGEazR6JBSUwlKRD9YIJ5lbB/8C9TPhUEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:10:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2687 (0xa7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917576D, serialNumber=B70318D71AA0E804324E013C3097FDBCD60134D4 Validity Not Before: Jan 24 19:10:32 2026 GMT Not After : Jan 31 19:10:32 2026 GMT Subject: CN=69751928-6e45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:08:85:01:fd:15:b9:72:04:2b:f3:70:14:d9: a9:51:74:bc:d7:f3:19:c7:47:5e:15:1b:4f:39:1b: 80:13:18:bf:fc:bf:c2:71:ed:40:5b:e5:21:44:d4: 49:66:e9:01:35:17:1f:2e:18:d0:c1:9d:04:ec:d1: 3e:33:60:c8:8a:22:99:8e:7b:24:64:1b:01:98:cf: a9:a4:c9:41:59:16:19:19:43:78:d9:62:6d:0c:04: 49:38:28:04:22:c1:06:e5:0a:59:33:f8:0d:ff:20: de:7c:f2:bf:c5:58:cf:ce:bd:5d:db:a9:0d:d3:01: 6a:e1:8b:ad:64:8a:e0:bd:c2:96:ab:8b:d3:bc:4b: 71:c2:23:35:58:5b:8a:df:32:fc:12:d8:b6:d9:4d: bd:5d:61:4c:31:9e:04:46:67:af:74:b4:d0:b7:32: ca:e8:a6:20:2d:df:d8:c9:b2:59:9a:00:65:e4:32: 0c:a2:80:fb:cc:51:14:0d:ce:a0:8b:d6:99:a0:d2: 15:df:ac:ad:9d:b4:38:ba:35:89:ab:7a:a1:f5:71: ef:ec:8f:69:72:4f:5d:7d:8e:77:f3:f3:a6:bf:be: 88:7e:29:f8:4a:fe:4b:4a:e9:36:01:6d:1a:72:8f: 4e:13:92:77:69:59:fc:82:4c:cd:83:bf:7c:aa:fe: e2:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:13:E7:46:2D:1F:36:23:3B:B3:38:FC:DD:41:69:AB:BD:4A:10:82 X509v3 Authority Key Identifier: keyid:B7:03:18:D7:1A:A0:E8:04:32:4E:01:3C:30:97:FD:BC:D6:01:34:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:b5:9c:16:69:76:63:2b:6f:89:80:0b:15:e3:05:07:07:d8: be:9b:06:37:29:5a:86:87:c4:76:43:f0:3d:48:bf:33:3c:1d: 92:90:6d:8f:da:de:9c:19:69:ad:2c:6f:ff:c2:e6:8d:2b:ff: 16:72:76:ba:f8:83:fc:1a:71:de:3e:48:66:5c:12:52:db:4d: 43:0c:7d:cd:18:6c:26:5f:ec:49:a7:f0:4c:8c:30:21:e9:b1: 87:46:f6:c8:02:8f:99:1e:f7:a5:c5:9e:08:61:81:5c:57:78: 45:52:4a:f7:90:8e:39:04:8d:0b:8f:58:47:2d:38:e3:76:52: eb:21:c4:cf:18:8b:fa:1d:32:f4:fa:4d:3e:5e:29:fe:59:65: ee:3a:cf:a4:d9:d0:6a:cc:54:ee:44:db:44:ab:98:20:ce:8e: fc:af:fe:31:3d:71:75:d8:76:b9:98:ed:03:55:34:2b:66:a3: 77:29:1b:d2:7a:61:9f:87:7b:4a:ab:9d:e9:b9:df:11:61:c7: 2e:76:78:89:0c:b2:69:cb:8e:5a:03:1a:0b:2a:bb:de:c0:33: 5d:ba:fe:6c:2d:56:c7:ae:37:12:f7:89:6f:d4:02:df:84:cd: c2:a9:c7:36:59:37:07:59:a8:72:53:50:1f:ee:14:71:7a:44: b4:ed:f1:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU3NkQxMTAvBgNVBAUTKEI3MDMxOEQ3MUFBMEU4MDQzMjRFMDEzQzMwOTdGREJD RDYwMTM0RDQwHhcNMjYwMTI0MTkxMDMyWhcNMjYwMTMxMTkxMDMyWjAYMRYwFAYD VQQDDA02OTc1MTkyOC02ZTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoQiFAf0VuXIEK/NwFNmpUXS81/MZx0deFRtPORuAExi//L/Cce1AW+UhRNRJ ZukBNRcfLhjQwZ0E7NE+M2DIiiKZjnskZBsBmM+ppMlBWRYZGUN42WJtDARJOCgE IsEG5QpZM/gN/yDefPK/xVjPzr1d26kN0wFq4YutZIrgvcKWq4vTvEtxwiM1WFuK 3zL8Eti22U29XWFMMZ4ERmevdLTQtzLK6KYgLd/YybJZmgBl5DIMooD7zFEUDc6g i9aZoNIV36ytnbQ4ujWJq3qh9XHv7I9pck9dfY538/Omv76Ifin4Sv5LSuk2AW0a co9OE5J3aVn8gkzNg798qv7i7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMAT50Yt HzYjO7M4/N1Baau9ShCCMB8GA1UdIwQYMBaAFLcDGNcaoOgEMk4BPDCX/bzWATTU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTc2RC8yRTc2N0UzMjgy Q0QxMUVBODk1QzdCNUNDNEY5QUUwMi90d01ZMXhxZzZBUXlUZ0U4TUpmOXZOWUJO TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3R3TVkxeHFnNkFReVRnRThNSmY5dk5ZQk5OUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTc2RC8yRTc2N0UzMjgyQ0QxMUVBODk1QzdCNUNDNEY5QUUwMi90d01ZMXhxZzZB UXlUZ0U4TUpmOXZOWUJOTlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjtZwWaXZjK2+JgAsV4wUHB9i+mwY3KVqGh8R2Q/A9SL8zPB2SkG2P 2t6cGWmtLG//wuaNK/8Wcna6+IP8GnHePkhmXBJS201DDH3NGGwmX+xJp/BMjDAh 6bGHRvbIAo+ZHvelxZ4IYYFcV3hFUkr3kI45BI0Lj1hHLTjjdlLrIcTPGIv6HTL0 +k0+Xin+WWXuOs+k2dBqzFTuRNtEq5ggzo78r/4xPXF12Ha5mO0DVTQrZqN3KRvS emGfh3tKq53pud8RYccudniJDLJpy45aAxoLKrvewDNduv5sLVbHrjcS94lv1ALf hM3Cqcc2WTcHWahyU1Af7hRxekS07fEt -----END CERTIFICATE-----Generated at Sun Jan 25 18:36:34 2026 by rpki-client