This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft File: Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft (raw, json) Hash identifier: ZTlmlgaNlSu+cf3cBvGLu2F7OXOG1rF3U8q4RV87uE4= Subject key identifier: 4C:CB:E8:16:8E:E9:70:4F:AB:C4:82:2E:99:A7:CF:46:4D:EB:75:DE Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Certificate serial: 11C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft Manifest number: 1051 Signing time: Sat 24 Jan 2026 17:16:35 +0000 Manifest this update: Sat 24 Jan 2026 17:16:34 +0000 Manifest next update: Sat 31 Jan 2026 17:16:34 +0000 Files and hashes: 1: Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl (hash: ntYmN4yoU/sKP3jAjbQb17ZzDNxDn+ZRXcyGdNtDCAs=) 2: C4A85FD48FE811E98B967A66C4F9AE02.roa (hash: r1Xk8MicSL+bI7AGfAkoa/toS5kHIpFMuCE8DDnU/Kg=) 3: 8224E55C345F11F0BD514C6CC4F9AE02.roa (hash: 5yssRnHiNxYbvC97ouK3PFQvut2qP5qu+yNWhWZqjDg=) 4: F3011EAAB88311EBB2078C50C4F9AE02.roa (hash: NyB93qfmsbAZRAkPJESEcMdym4VpvubYepXKCtssfXQ=) 5: B969078EB94B11EB8CFABC23C4F9AE02.roa (hash: wbAxf5dVXXEiIwKKpLqE+cuBbqEoiTYyCWdfX3OjWk8=) 6: 49F4FFBA0A1C11EEA415BE0CC4F9AE02.roa (hash: ytr2HpN06eiSGj2rNCJTUUsU785h9iKeb98Ln4JH8Nk=) 7: C3BEAC38CF7C11F0B0EB4644C4F9AE02.roa (hash: e5x/yFpQ2lnc1Sq7uNqIiSYBP55fGfEsS4tL2Gu1MUE=) 8: 50D040327CFD11F0B32D4522C4F9AE02.roa (hash: jfSwj9kU8P/T4IfAw9qOukQY5qFKJhuEAFm89XgMLjg=) 9: C2356A948FE811E98B967A66C4F9AE02.roa (hash: k3PLqMJ24hbj9LTYOeTg1vBguIXi9N/SryWCjUrQYCY=) 10: 2A4EE13E7CFD11F08A91EE21C4F9AE02.roa (hash: p6on445lkdVNXMMWjoYeri4k3QXBG09nZNuaYw4s6Gc=) 11: FD5158C044C511F0ABA4E977C4F9AE02.roa (hash: sBv0Q+ONp8Ppr2WKLMiy/5JZXTR72rxYXPkX8rrfyFE=) 12: 71043990C4D811EA88E6B21FC4F9AE02.roa (hash: rou/LDou6+V/KVPUUd+xyuvJOo9d0Agu7Kr+809dbVM=) 13: 9394D360345F11F0AB96776CC4F9AE02.roa (hash: W4PkU+QwD/8bYuNMSrKUoTp+GmPZQH8HiHMStgOCIWE=) 14: 5C4E5A6EB9E511EB9717B256C4F9AE02.roa (hash: aRsEa/XlADK8Ys2zNZV3ljXviF6zdG4+twO2EcsTz6U=) 15: C435900ACF7C11F0AAC14644C4F9AE02.roa (hash: 8rPBOsaa7rJzdB0g/EXgDCRIVsB3I1n1M1fgVfp0lqU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:16:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4550 (0x11c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91803DB, serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Validity Not Before: Jan 24 17:16:34 2026 GMT Not After : Jan 31 17:16:34 2026 GMT Subject: CN=6974fe73-56fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:95:1b:5d:24:27:cd:26:ee:be:98:8a:1f:68: d2:5e:17:71:5e:41:3f:4a:31:38:cf:6f:a9:2c:d9: be:25:f8:26:d8:49:04:d3:e3:d3:d4:e6:94:e4:3f: d8:70:36:0d:dc:6a:d7:be:ec:23:51:8b:79:4e:ec: f1:9e:9d:34:27:50:94:1e:9e:88:ef:f5:c9:72:23: c0:99:a2:b1:06:a9:c5:d0:29:55:19:4b:38:27:3f: 9c:0f:d5:f3:58:24:28:07:ef:01:38:37:c4:05:56: b9:c4:78:3a:b9:32:43:3d:e4:7c:0b:2f:ad:f9:54: 22:1e:c5:04:9d:90:38:d6:44:f6:35:8d:ef:4b:d4: a0:c9:d4:8f:e0:8a:a8:68:10:3c:4f:1e:85:3f:a4: 5f:50:89:2e:1d:06:f1:9e:16:b8:d9:f8:39:51:12: 27:7a:bc:32:3e:f5:55:bf:1b:69:1a:80:72:cb:2c: d6:81:fd:fc:0d:15:e5:d2:e5:37:74:d3:d4:54:a2: ee:af:47:33:f9:1d:92:f7:b3:3f:12:73:d7:16:be: 7c:e7:a3:f2:24:fc:8a:10:b9:8e:00:1e:42:49:19: d6:61:8e:99:04:59:74:6e:e6:4e:7b:08:10:b8:7c: e3:66:b5:87:27:ee:14:2b:3a:c2:d3:74:3e:ab:41: ed:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:CB:E8:16:8E:E9:70:4F:AB:C4:82:2E:99:A7:CF:46:4D:EB:75:DE X509v3 Authority Key Identifier: keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:4d:4f:e1:76:3c:ba:dc:3c:0e:06:18:9e:2a:7f:4b:77:6f: 75:fb:10:ad:96:69:5c:85:d2:5b:78:ad:77:d2:d2:96:64:9a: e3:cd:81:b4:e4:b4:47:67:ab:86:a4:3a:9a:c0:f4:bd:64:fb: e1:03:82:dd:33:80:91:54:a7:f3:59:fa:7f:5f:4f:40:ad:ea: a8:0f:3f:4c:16:a6:36:03:7f:5e:15:d9:7c:2f:f9:1f:1f:49: c7:c5:2a:68:66:d4:b1:0d:16:c4:53:45:a8:92:4a:5d:41:1d: 5c:ac:fc:b2:fe:67:f9:10:69:75:78:e2:cf:2d:7c:0d:5c:cd: 75:63:73:3f:78:f3:ab:fc:28:bf:b1:ee:99:b7:2c:e2:aa:1d: 3f:4b:12:9b:d1:8d:72:25:16:74:3b:e5:59:83:fd:ad:c3:fc: e2:41:d4:cc:6d:92:e9:59:22:c1:a7:a7:c5:62:d8:81:c7:52: 94:60:8c:1f:72:f5:de:69:88:7a:e6:d0:e2:01:7a:ec:42:3b: c4:77:ee:68:22:d4:92:66:57:bd:af:61:60:19:20:eb:95:26: fa:24:6e:1e:1a:ae:ba:f6:9f:03:5f:8e:29:97:b3:7d:cb:97: 85:43:34:22:fe:92:8d:69:ec:95:96:79:c5:ae:31:97:82:74: 0a:5f:69:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzREIxMTAvBgNVBAUTKDM2RUQ4QjY3NUVBNzIzODA4NUFGQTA2QzA5M0U1NEE5 RDNGRDdCNjAwHhcNMjYwMTI0MTcxNjM0WhcNMjYwMTMxMTcxNjM0WjAYMRYwFAYD VQQDDA02OTc0ZmU3My01NmZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArZUbXSQnzSbuvpiKH2jSXhdxXkE/SjE4z2+pLNm+Jfgm2EkE0+PT1OaU5D/Y cDYN3GrXvuwjUYt5Tuzxnp00J1CUHp6I7/XJciPAmaKxBqnF0ClVGUs4Jz+cD9Xz WCQoB+8BODfEBVa5xHg6uTJDPeR8Cy+t+VQiHsUEnZA41kT2NY3vS9SgydSP4Iqo aBA8Tx6FP6RfUIkuHQbxnha42fg5URInerwyPvVVvxtpGoByyyzWgf38DRXl0uU3 dNPUVKLur0cz+R2S97M/EnPXFr5856PyJPyKELmOAB5CSRnWYY6ZBFl0buZOewgQ uHzjZrWHJ+4UKzrC03Q+q0HtsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEzL6BaO 6XBPq8SCLpmnz0ZN63XeMB8GA1UdIwQYMBaAFDbti2depyOAha+gbAk+VKnT/Xtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDNEQi8wREMzNUQzRThE RDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0Q0ZyNkJzQ1Q1VXFkUDll MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051MkxaMTZuSTRDRnI2QnNDVDVVcWRQOWUyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDNEQi8wREMzNUQzRThERDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0 Q0ZyNkJzQ1Q1VXFkUDllMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+TU/hdjy63DwOBhieKn9Ld291+xCtlmlchdJbeK130tKWZJrjzYG0 5LRHZ6uGpDqawPS9ZPvhA4LdM4CRVKfzWfp/X09AreqoDz9MFqY2A39eFdl8L/kf H0nHxSpoZtSxDRbEU0WokkpdQR1crPyy/mf5EGl1eOLPLXwNXM11Y3M/ePOr/Ci/ se6Ztyziqh0/SxKb0Y1yJRZ0O+VZg/2tw/ziQdTMbZLpWSLBp6fFYtiBx1KUYIwf cvXeaYh65tDiAXrsQjvEd+5oItSSZle9r2FgGSDrlSb6JG4eGq669p8DX44pl7N9 y5eFQzQi/pKNaeyVlnnFrjGXgnQKX2mm -----END CERTIFICATE-----Generated at Sun Jan 25 07:46:41 2026 by rpki-client