This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft File: XctT6r5qkI7KhlLekkgHxQnFLTA.mft (raw, json) Hash identifier: e8MkFEkdfN1JJ+2IeI8tzjKVu0zuMF4VDaEPSz3Bbvo= Subject key identifier: 56:E7:DF:DD:AB:B2:E6:CF:64:34:FD:86:90:0E:EB:19:3A:31:2F:CC Authority key identifier: 5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 Certificate issuer: /CN=A918560D/serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Certificate serial: 0D68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft Manifest number: 0D5E Signing time: Sat 24 Jan 2026 17:38:38 +0000 Manifest this update: Sat 24 Jan 2026 17:38:38 +0000 Manifest next update: Sat 31 Jan 2026 17:38:38 +0000 Files and hashes: 1: XctT6r5qkI7KhlLekkgHxQnFLTA.crl (hash: L9BHjST9is8E21aXPKLdJS/WHeyM3lTakXNDwyKWIMk=) 2: 41A8E738045111EA9C7DF516C4F9AE02.roa (hash: t9j99ouqyAO1DSlTWOraKVE9DSXzBdaScfcUdlzhboc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:38:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3432 (0xd68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918560D, serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Validity Not Before: Jan 24 17:38:38 2026 GMT Not After : Jan 31 17:38:38 2026 GMT Subject: CN=6975039e-55c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:2f:b6:35:ae:e8:d1:fa:c2:d4:f0:a1:16:90: 43:d6:d2:d9:9c:ee:63:44:e4:e0:d1:21:62:08:ba: 37:66:17:f3:83:37:cc:c4:3d:a9:11:cd:9b:d3:37: 8f:ff:83:cd:0f:85:78:a6:6c:cb:fe:20:3d:1a:82: 53:a7:4b:47:25:67:e2:b2:38:22:95:e9:4d:55:8f: 9d:1e:57:2e:5b:33:3c:44:02:4c:8d:7f:bf:23:75: 9d:9b:68:d2:3b:c9:8b:3c:4e:fb:8e:0a:e9:ca:af: 3f:af:ee:ee:c4:95:42:d4:1e:52:04:da:0e:0d:c7: e6:00:6b:2c:4c:5a:15:d4:c3:31:95:c4:65:82:4f: 76:20:bd:90:9b:ca:1d:8b:b1:ba:8b:04:09:f7:3c: 62:85:82:dc:89:a7:eb:04:7d:e7:49:11:39:b1:3d: b1:93:e2:fe:ae:1c:08:a1:a5:40:bf:8c:ac:14:45: fe:2c:7b:e4:f9:7a:f4:6e:33:f4:c2:67:bf:84:0c: 13:66:10:ab:d7:98:ed:c2:02:0f:8e:89:a0:9a:54: a8:9d:b2:4b:7f:14:21:b5:8b:98:bc:b2:e1:1a:62: 1f:17:83:46:53:d4:1b:45:45:78:97:d7:0d:f7:71: 6e:99:67:71:60:f4:25:79:24:88:80:e7:1e:97:b0: 4d:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:E7:DF:DD:AB:B2:E6:CF:64:34:FD:86:90:0E:EB:19:3A:31:2F:CC X509v3 Authority Key Identifier: keyid:5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:01:0e:2d:f5:10:59:5a:ed:3c:fb:2e:e9:81:8f:22:4d:25: d4:a9:25:79:b7:fc:94:44:23:d2:0e:22:e6:5f:d5:40:43:0a: d4:13:de:f5:38:b9:65:58:7a:e7:b7:2e:23:4e:6a:b2:6b:74: 47:b7:63:7e:6f:11:96:cb:53:27:e2:e8:19:00:eb:8d:96:5e: 86:ab:50:53:e1:db:7e:ee:b9:63:c9:f2:3f:e1:8b:d9:8a:fc: 53:c0:78:d3:01:b6:c0:7c:4c:3a:04:15:22:5a:67:ba:bb:24: f0:0a:a0:c2:75:52:cf:bd:a0:ca:f1:c3:f1:c9:49:d8:73:90: 31:e2:0b:45:1e:17:13:61:8e:a1:80:6e:61:f0:f4:41:ca:7f: c4:c6:86:79:09:58:9a:18:63:f4:14:69:11:79:47:98:ca:27: 40:16:1a:a3:6e:70:cb:ab:59:6a:90:49:94:34:18:a1:13:98: 33:45:73:54:09:f3:43:5b:cc:76:5c:2c:12:5d:b5:f5:4e:a5: e4:01:ce:37:67:70:07:55:fc:da:2b:8e:21:32:a3:c9:12:18: f3:1d:32:23:5f:2a:6f:6f:ab:b8:c0:f6:f8:f6:ef:26:ff:49: 8a:35:12:42:7d:e1:97:02:47:ee:5c:1e:8e:ee:28:ca:dd:0b: bd:9a:2c:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU2MEQxMTAvBgNVBAUTKDVEQ0I1M0VBQkU2QTkwOEVDQTg2NTJERTkyNDgwN0M1 MDlDNTJEMzAwHhcNMjYwMTI0MTczODM4WhcNMjYwMTMxMTczODM4WjAYMRYwFAYD VQQDDA02OTc1MDM5ZS01NWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvS+2Na7o0frC1PChFpBD1tLZnO5jROTg0SFiCLo3ZhfzgzfMxD2pEc2b0zeP /4PND4V4pmzL/iA9GoJTp0tHJWfisjgilelNVY+dHlcuWzM8RAJMjX+/I3Wdm2jS O8mLPE77jgrpyq8/r+7uxJVC1B5SBNoODcfmAGssTFoV1MMxlcRlgk92IL2Qm8od i7G6iwQJ9zxihYLciafrBH3nSRE5sT2xk+L+rhwIoaVAv4ysFEX+LHvk+Xr0bjP0 wme/hAwTZhCr15jtwgIPjomgmlSonbJLfxQhtYuYvLLhGmIfF4NGU9QbRUV4l9cN 93FumWdxYPQleSSIgOcel7BNmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFbn392r subPZDT9hpAO6xk6MS/MMB8GA1UdIwQYMBaAFF3LU+q+apCOyoZS3pJIB8UJxS0w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTYwRC9GNURDQTZENEU1 QjgxMUU5OEE3NjEyMEVDNEY5QUUwMi9YY3RUNnI1cWtJN0tobExla2tnSHhRbkZM VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjdFQ2cjVxa0k3S2hsTGVra2dIeFFuRkxUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTYwRC9GNURDQTZENEU1QjgxMUU5OEE3NjEyMEVDNEY5QUUwMi9YY3RUNnI1cWtJ N0tobExla2tnSHhRbkZMVEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJAQ4t9RBZWu08+y7pgY8iTSXUqSV5t/yURCPSDiLmX9VAQwrUE971 OLllWHrnty4jTmqya3RHt2N+bxGWy1Mn4ugZAOuNll6Gq1BT4dt+7rljyfI/4YvZ ivxTwHjTAbbAfEw6BBUiWme6uyTwCqDCdVLPvaDK8cPxyUnYc5Ax4gtFHhcTYY6h gG5h8PRByn/ExoZ5CViaGGP0FGkReUeYyidAFhqjbnDLq1lqkEmUNBihE5gzRXNU CfNDW8x2XCwSXbX1TqXkAc43Z3AHVfzaK44hMqPJEhjzHTIjXypvb6u4wPb49u8m /0mKNRJCfeGXAkfuXB6O7ijK3Qu9miw4 -----END CERTIFICATE-----Generated at Sun Jan 25 03:03:40 2026 by rpki-client