This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft File: n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft (raw, json) Hash identifier: bt7EPUm7qbkta4GFBa+xp20kya8wUbBfCC02mmJo7PY= Subject key identifier: BA:57:5A:14:58:5D:53:6C:CD:13:2E:1F:8D:09:7E:D3:DC:B5:D6:94 Authority key identifier: 9F:49:06:C0:D4:CC:96:45:D9:BF:D9:33:64:A2:3A:5A:33:EF:58:DB Certificate issuer: /CN=A917D958/serialNumber=9F4906C0D4CC9645D9BFD93364A23A5A33EF58DB Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n0kGwNTMlkXZv9kzZKI6WjPvWNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft Manifest number: D7 Signing time: Sun 25 Jan 2026 04:53:46 +0000 Manifest this update: Sun 25 Jan 2026 04:53:45 +0000 Manifest next update: Sun 01 Feb 2026 04:53:45 +0000 Files and hashes: 1: n0kGwNTMlkXZv9kzZKI6WjPvWNs.crl (hash: VtA15v89tH8Kui89ZribKL3Kh1WoNtCho3bq4GRHpqs=) 2: 0A581522B5E211EFBEF4BC5AC4F9AE02.roa (hash: PxzOBVWe5yWGLa4iNAyNqYyPaQ/eMXGqSREN7aFVLso=) 3: 0AC8BB74B5E211EFBEF4BC5AC4F9AE02.roa (hash: oV9dv3enUEk5QI7ZEWYNcHlwdjoeFV6bdPfVFfihoSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.crl rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n0kGwNTMlkXZv9kzZKI6WjPvWNs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:53:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D958, serialNumber=9F4906C0D4CC9645D9BFD93364A23A5A33EF58DB Validity Not Before: Jan 25 04:53:45 2026 GMT Not After : Feb 1 04:53:45 2026 GMT Subject: CN=6975a1da-b20a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2d:30:a8:8c:c1:6a:a6:a5:f3:56:4b:93:f7: 69:17:64:66:e7:58:41:63:c4:13:4b:b9:e1:59:b5: df:bb:b5:dd:8e:74:52:bd:80:23:50:32:88:63:eb: fd:42:2a:70:92:e8:79:07:8b:29:6d:a4:b4:2d:0a: 82:b8:13:f3:89:1b:42:a5:41:c4:fe:6a:98:eb:fb: 19:d2:1b:2a:d8:71:31:aa:ed:ab:dd:17:ac:e3:0a: 8a:66:df:24:a3:79:cc:34:b4:55:d7:6e:4e:7a:b3: 2b:94:b9:ab:6a:db:8f:cb:a8:2e:93:17:b6:85:c6: 0b:d3:ed:0c:b1:40:f2:36:57:7d:d0:f8:4f:83:83: 01:22:bc:ba:65:04:ec:73:cc:76:a6:ae:a6:2a:c7: f6:8f:a7:12:6d:db:23:ee:04:63:fc:da:f4:f8:a1: 7d:aa:2c:9d:56:e9:b1:c2:72:02:8a:64:8a:cb:3d: 93:33:a5:31:29:c8:c5:43:bd:41:95:52:06:76:38: 41:0a:a2:a2:03:93:fe:72:09:09:30:04:3d:b6:d3: ac:29:4c:e6:b1:9d:35:8b:f3:d3:b7:2a:81:11:e9: 96:79:81:ee:b4:e4:01:14:2f:dd:3f:02:da:21:70: 0a:41:92:d7:c3:78:0f:49:2b:98:aa:59:0d:58:c8: 20:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:57:5A:14:58:5D:53:6C:CD:13:2E:1F:8D:09:7E:D3:DC:B5:D6:94 X509v3 Authority Key Identifier: keyid:9F:49:06:C0:D4:CC:96:45:D9:BF:D9:33:64:A2:3A:5A:33:EF:58:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n0kGwNTMlkXZv9kzZKI6WjPvWNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:c4:7c:b8:23:53:39:ab:9c:86:45:80:de:4c:37:e5:b6:0d: 59:76:e4:d1:ec:86:82:b6:70:ad:fc:96:03:d4:8a:ec:c2:07: 1f:e8:dc:c8:d9:1b:2c:38:b7:86:a9:a2:a2:b3:74:a0:39:b4: 1c:c1:bf:a6:00:37:b4:2f:8f:9b:b8:1e:bb:48:e5:e4:9c:2f: 8f:a0:d2:9c:0f:f8:79:96:7c:cd:cc:c7:ad:66:8a:50:c3:85: fb:9c:c2:bf:b2:68:10:d3:fd:a7:ca:8f:b5:55:f1:f8:d0:77: 0e:1c:3e:59:fb:6d:4f:9e:eb:c5:c1:69:b4:f7:ca:01:11:62: ef:df:25:81:fe:91:22:b4:1a:7e:7b:5b:76:2d:1a:e7:d7:b2: 67:fa:19:0f:1c:cf:94:53:42:c2:ee:47:c0:39:bd:64:8f:41: 18:87:1e:6a:7e:80:e8:ff:6a:46:a0:ca:69:86:ee:0e:83:d0: 09:2e:e6:a1:e8:18:08:33:ce:ef:5a:a6:fd:3f:bd:17:25:6b: d1:91:fd:43:2c:9b:67:eb:a0:f6:45:0c:c9:6c:70:44:ce:02: 64:ac:cb:ec:fb:c3:60:ac:08:db:91:8a:f6:b3:e9:c2:9b:4c: 38:db:ab:06:bb:58:06:55:e1:1e:5e:45:6b:8d:ed:9b:28:46: 1a:86:36:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5NTgxMTAvBgNVBAUTKDlGNDkwNkMwRDRDQzk2NDVEOUJGRDkzMzY0QTIzQTVB MzNFRjU4REIwHhcNMjYwMTI1MDQ1MzQ1WhcNMjYwMjAxMDQ1MzQ1WjAYMRYwFAYD VQQDDA02OTc1YTFkYS1iMjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwi0wqIzBaqal81ZLk/dpF2Rm51hBY8QTS7nhWbXfu7XdjnRSvYAjUDKIY+v9 Qipwkuh5B4spbaS0LQqCuBPziRtCpUHE/mqY6/sZ0hsq2HExqu2r3Res4wqKZt8k o3nMNLRV125OerMrlLmratuPy6gukxe2hcYL0+0MsUDyNld90PhPg4MBIry6ZQTs c8x2pq6mKsf2j6cSbdsj7gRj/Nr0+KF9qiydVumxwnICimSKyz2TM6UxKcjFQ71B lVIGdjhBCqKiA5P+cgkJMAQ9ttOsKUzmsZ01i/PTtyqBEemWeYHutOQBFC/dPwLa IXAKQZLXw3gPSSuYqlkNWMggXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLpXWhRY XVNszRMuH40JftPctdaUMB8GA1UdIwQYMBaAFJ9JBsDUzJZF2b/ZM2SiOloz71jb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDk1OC82NzJEQjA0OEIz OUIxMUVGODBGNjQzNUVDNEY5QUUwMi9uMGtHd05UTWxrWFp2OWt6WktJNldqUHZX TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL24wa0d3TlRNbGtYWnY5a3paS0k2V2pQdldOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDk1OC82NzJEQjA0OEIzOUIxMUVGODBGNjQzNUVDNEY5QUUwMi9uMGtHd05UTWxr WFp2OWt6WktJNldqUHZXTnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtxHy4I1M5q5yGRYDeTDfltg1ZduTR7IaCtnCt/JYD1Irswgcf6NzI 2RssOLeGqaKis3SgObQcwb+mADe0L4+buB67SOXknC+PoNKcD/h5lnzNzMetZopQ w4X7nMK/smgQ0/2nyo+1VfH40HcOHD5Z+21PnuvFwWm098oBEWLv3yWB/pEitBp+ e1t2LRrn17Jn+hkPHM+UU0LC7kfAOb1kj0EYhx5qfoDo/2pGoMpphu4Og9AJLuah 6BgIM87vWqb9P70XJWvRkf1DLJtn66D2RQzJbHBEzgJkrMvs+8NgrAjbkYr2s+nC m0w426sGu1gGVeEeXkVrje2bKEYahjZJ -----END CERTIFICATE-----Generated at Sun Jan 25 10:37:15 2026 by rpki-client