This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft File: es5to1-2pKn2-ZcMGLyvWydIEZ8.mft (raw, json) Hash identifier: Fzno84kidu4rv4dWMoC2xGPBHWWNgjgNRiXifBNHJks= Subject key identifier: 32:7B:56:15:4A:AA:57:E1:6A:E6:64:3F:FA:B2:D6:B0:F6:12:80:8C Authority key identifier: 7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F Certificate issuer: /CN=A917E0A8/serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Certificate serial: 0B21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft Manifest number: 0AF8 Signing time: Sat 24 Jan 2026 18:55:14 +0000 Manifest this update: Sat 24 Jan 2026 18:55:13 +0000 Manifest next update: Sat 31 Jan 2026 18:55:13 +0000 Files and hashes: 1: es5to1-2pKn2-ZcMGLyvWydIEZ8.crl (hash: 2Y9+WT06+eK/eKfZKpvmCsKQNgd7ilaTrDSW6Ppzbrs=) 2: F90F9A403ACB11EC9FEBB367C4F9AE02.roa (hash: uKI22TwxIQY9iFbcuULN7d8S3JosFyv3WIhvtX7yzyk=) 3: 46F5BC3206A211EEBDA4D34BC4F9AE02.roa (hash: hhE8XmYwxey9Fv68RhRQXSH/5MjemozAt+vDJtNoqQU=) 4: 495324CA39CB11EBB2F08020C4F9AE02.roa (hash: HTyyzc4XtgSz/IIMfSzZJ+tCNDi1E/skEpatmhSWJ4M=) 5: B24920940C6911EC90B57338C4F9AE02.roa (hash: 46zzXAJsoYLrd8w4NMQBrt4B+bpK+w9wRKgXWSkwTsI=) 6: D4EFA44673CD11EA8BE69127C4F9AE02.roa (hash: pnzNagfBV7JflMfDBvAJDWyy7ts19fn5YwbkxkgayA8=) 7: 7E12F8DC4C0A11ECACB7F96AC4F9AE02.roa (hash: 6TG7RmsvnGNbTnnGm7wGd69mXpkPkix9Q5ZbBmiNmUE=) 8: C782AE14615911F08635B771C4F9AE02.roa (hash: MaO7vUeiFdOZPyehARwka9eV8U3aNvjxrHmSWVwidY8=) 9: D94C07CAF5B211EFBD3CA23FC4F9AE02.roa (hash: nQp6CVVIzkkqk2XECRH9BEijjawtFfwARhBhch9mLWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 18:55:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2849 (0xb21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Validity Not Before: Jan 24 18:55:13 2026 GMT Not After : Jan 31 18:55:13 2026 GMT Subject: CN=69751592-d74a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:28:a1:81:20:ba:fa:a8:43:37:6b:93:bf:a9: b8:f3:8d:ea:2a:42:fb:b8:a4:33:ad:b5:4a:bf:13: 93:59:4b:c5:47:f5:02:16:fe:cd:fb:56:0c:6f:47: 4f:92:63:9c:90:2d:22:17:92:9b:58:cd:e0:3a:0f: cd:f0:79:b1:48:a6:cf:ac:8b:b1:4f:fd:76:0c:31: f2:fb:47:5b:15:d1:62:9c:9f:a0:ef:e7:73:f9:2c: 2d:99:78:95:be:81:8a:dd:36:bc:96:65:b9:7f:a7: cf:77:7b:eb:71:a7:33:0c:b3:e0:bb:c9:84:8c:c0: 57:bb:5d:a5:bb:b2:8b:e4:93:02:79:1f:8f:a6:49: 2a:9c:d9:f6:94:75:44:25:45:45:53:6c:b2:85:96: ec:d9:7b:8b:44:82:53:00:e7:14:62:a4:69:41:e5: db:c6:22:e2:2f:6f:a6:a9:04:23:7e:a5:b3:9b:06: c6:15:5f:2d:77:20:71:d5:32:d7:0d:18:8d:dc:9d: 3b:9a:36:5f:c9:81:8e:7a:fa:14:9c:c0:a1:c2:8a: 3a:af:0d:72:ef:84:66:f4:95:34:8b:00:55:70:ad: 73:d4:29:fc:2b:4c:81:c8:5f:94:2f:c6:8b:e0:95: 02:4b:3d:bc:ef:f0:71:0b:3b:3b:7d:58:0a:69:a6: 4b:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:7B:56:15:4A:AA:57:E1:6A:E6:64:3F:FA:B2:D6:B0:F6:12:80:8C X509v3 Authority Key Identifier: keyid:7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:4f:2e:75:a4:c8:44:de:3c:d9:aa:d9:37:58:9a:7f:f0:b7: e0:c1:f3:ee:e2:62:d1:cb:e5:ed:de:d2:65:09:f6:bd:40:79: 58:24:fc:1d:18:ec:e3:4f:66:ba:86:45:5a:3e:7e:1d:3b:e8: 62:e9:26:60:de:c9:f4:7b:4a:0d:96:01:05:fa:14:99:fe:b8: 9a:2a:41:57:8e:36:da:ae:d6:c4:8b:af:91:18:f5:40:f9:a7: 39:9f:7c:d5:d5:30:8a:99:f1:55:aa:1e:e7:6c:87:4f:23:5e: 4b:e5:07:9a:8e:55:32:ca:02:3e:95:b8:b4:67:ec:9c:28:45: 33:d8:da:f5:9c:a5:ab:76:64:e6:d0:34:ef:92:ed:7d:63:64: 5c:e3:cb:bd:5e:3b:1d:6e:08:23:f0:13:e7:91:6f:a2:c4:b3: 14:02:89:71:8b:ba:57:94:b4:53:aa:37:3c:7e:89:76:fb:11: 1d:80:1b:dd:2b:22:7c:e5:31:e8:65:fa:be:ac:79:73:c3:fa: 81:52:e0:5c:ad:53:58:a1:70:05:8b:e9:fc:59:9b:46:45:7f: 8a:af:2a:77:ea:9c:fa:1f:8e:c5:b6:c4:4b:53:72:e0:04:30: 3f:96:48:7c:64:e1:bb:75:b8:43:1c:b0:34:77:58:7c:df:5b: cf:bd:6b:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDdBQ0U2REEzNUZCNkE0QTlGNkY5OTcwQzE4QkNBRjVC Mjc0ODExOUYwHhcNMjYwMTI0MTg1NTEzWhcNMjYwMTMxMTg1NTEzWjAYMRYwFAYD VQQDDA02OTc1MTU5Mi1kNzRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApyihgSC6+qhDN2uTv6m4843qKkL7uKQzrbVKvxOTWUvFR/UCFv7N+1YMb0dP kmOckC0iF5KbWM3gOg/N8HmxSKbPrIuxT/12DDHy+0dbFdFinJ+g7+dz+SwtmXiV voGK3Ta8lmW5f6fPd3vrcaczDLPgu8mEjMBXu12lu7KL5JMCeR+PpkkqnNn2lHVE JUVFU2yyhZbs2XuLRIJTAOcUYqRpQeXbxiLiL2+mqQQjfqWzmwbGFV8tdyBx1TLX DRiN3J07mjZfyYGOevoUnMChwoo6rw1y74Rm9JU0iwBVcK1z1Cn8K0yByF+UL8aL 4JUCSz287/BxCzs7fVgKaaZLzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDJ7VhVK qlfhauZkP/qy1rD2EoCMMB8GA1UdIwQYMBaAFHrObaNftqSp9vmXDBi8r1snSBGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC9BMDU5QUY4QTY0 MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBLbjItWmNNR0x5dld5ZElF WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzNXRvMS0ycEtuMi1aY01HTHl2V3lkSUVaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTBBOC9BMDU5QUY4QTY0MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBL bjItWmNNR0x5dld5ZElFWjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAETy51pMhE3jzZqtk3WJp/8LfgwfPu4mLRy+Xt3tJlCfa9QHlYJPwd GOzjT2a6hkVaPn4dO+hi6SZg3sn0e0oNlgEF+hSZ/riaKkFXjjbartbEi6+RGPVA +ac5n3zV1TCKmfFVqh7nbIdPI15L5QeajlUyygI+lbi0Z+ycKEUz2Nr1nKWrdmTm 0DTvku19Y2Rc48u9Xjsdbggj8BPnkW+ixLMUAolxi7pXlLRTqjc8fol2+xEdgBvd KyJ85THoZfq+rHlzw/qBUuBcrVNYoXAFi+n8WZtGRX+Kryp36pz6H47FtsRLU3Lg BDA/lkh8ZOG7dbhDHLA0d1h831vPvWs/ -----END CERTIFICATE-----Generated at Sun Jan 25 09:42:16 2026 by rpki-client