This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft File: 2H4ClpVGrcVaesygjK2yh5vGmck.mft (raw, json) Hash identifier: qg8qbXXy80teDkJGA1DVLVlsgWSFE7+24ptwYotN2r4= Subject key identifier: 07:0A:34:46:3A:12:3D:77:E5:36:B8:38:4A:38:AA:91:EC:C1:28:CE Authority key identifier: D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 Certificate issuer: /CN=A9185B5F/serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Certificate serial: 0200 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft Manifest number: 01FC Signing time: Sun 25 Jan 2026 01:45:49 +0000 Manifest this update: Sun 25 Jan 2026 01:45:49 +0000 Manifest next update: Sun 01 Feb 2026 01:45:49 +0000 Files and hashes: 1: 2H4ClpVGrcVaesygjK2yh5vGmck.crl (hash: tb2zHJ16G5fq0Vfa3cZNh/8EFzQjQs1DSGKSBoAC//U=) 2: A4B0D326F0A311ED99A1471CC4F9AE02.roa (hash: 0/Ic5iho+pqF4si9nqRdEW+r600hwTvuyP9trzSoxtE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 01:45:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 512 (0x200) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B5F, serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Validity Not Before: Jan 25 01:45:49 2026 GMT Not After : Feb 1 01:45:49 2026 GMT Subject: CN=697575cd-63d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:37:b7:cc:99:2e:1f:f6:9c:c9:85:b4:02:59: 12:8b:02:1f:9e:7c:49:2a:1d:d2:1b:33:b2:b4:dc: ad:bb:ac:bd:d4:65:6f:24:f1:f0:98:15:a4:09:3f: 54:80:c9:47:48:54:4a:0b:e2:65:a8:f6:9e:13:db: de:98:b8:b2:f1:c7:77:ca:f8:50:90:12:72:13:8d: 82:31:31:8b:b0:93:9b:05:61:3d:97:74:d7:23:98: 4c:e7:a8:4d:d5:ee:ef:22:e0:dc:e6:4b:8f:45:b2: 9a:d1:c4:e7:0a:cc:e6:e8:1b:ff:0f:cd:28:68:23: 64:89:5c:1e:19:98:5b:96:43:90:dc:66:5b:12:3e: 1d:29:9f:22:34:8f:c9:b3:0f:3d:7c:4f:2e:4c:6a: b7:07:88:e7:52:39:32:5f:15:54:ac:03:9f:69:d3: b4:c1:4e:70:79:2a:25:d0:e6:bc:e6:00:8a:73:60: 6b:9a:87:0a:e8:db:97:f1:c3:71:f8:a2:f2:59:cf: b9:9d:90:90:5c:e9:e8:4f:16:9f:5e:9a:d1:1b:d0: fe:88:10:5a:d8:0d:e6:83:3b:ec:0e:26:07:ce:2b: 4d:0c:69:03:50:0a:de:5d:89:46:7a:80:02:ca:15: d6:2e:9a:54:c0:4d:f3:f7:45:40:a3:18:6b:75:85: 5b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:0A:34:46:3A:12:3D:77:E5:36:B8:38:4A:38:AA:91:EC:C1:28:CE X509v3 Authority Key Identifier: keyid:D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:95:da:47:7a:97:f4:01:7b:74:f3:3a:ce:b1:9c:95:b9:8b: a0:da:1b:b8:64:76:f3:7c:2a:5a:a5:19:eb:d9:96:55:ef:b5: 7f:fe:9b:03:06:a0:e8:47:95:92:63:67:cf:71:ce:15:ac:23: e8:cd:72:0c:31:e9:df:3a:29:95:80:97:79:b1:d1:10:57:f0: fa:ec:86:b9:a0:35:df:04:9f:bf:5f:66:c8:69:e1:b6:83:83: ce:a7:9f:5f:e4:38:e2:49:2d:91:7f:b8:ba:d9:3b:07:46:95: b5:b8:3e:90:d8:88:8b:da:4d:62:50:ab:01:57:d7:d7:1c:d1: fa:fe:06:1e:07:5d:90:48:74:13:22:40:a4:24:53:78:cd:fa: f5:6e:18:fc:fe:d5:9d:23:c9:ba:30:55:46:d5:4f:50:13:80: 22:1d:f3:ed:cc:b2:84:f2:17:94:83:28:fb:98:00:d0:04:b0: 3c:9d:db:38:4e:e6:2f:eb:d7:0f:c3:f7:b0:ac:09:60:1b:90: 67:0c:55:aa:ef:77:de:92:ca:50:8d:61:28:68:19:cb:51:d7: 17:01:fb:e3:54:72:c7:d8:9a:93:f6:0b:ca:51:b3:5b:56:ec: 4c:5c:fd:f5:83:64:60:29:06:88:17:74:5d:0e:75:11:96:ac: 50:9f:e4:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNUYxMTAvBgNVBAUTKEQ4N0UwMjk2OTU0NkFEQzU1QTdBQ0NBMDhDQURCMjg3 OUJDNjk5QzkwHhcNMjYwMTI1MDE0NTQ5WhcNMjYwMjAxMDE0NTQ5WjAYMRYwFAYD VQQDDA02OTc1NzVjZC02M2QyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsje3zJkuH/acyYW0AlkSiwIfnnxJKh3SGzOytNytu6y91GVvJPHwmBWkCT9U gMlHSFRKC+JlqPaeE9vemLiy8cd3yvhQkBJyE42CMTGLsJObBWE9l3TXI5hM56hN 1e7vIuDc5kuPRbKa0cTnCszm6Bv/D80oaCNkiVweGZhblkOQ3GZbEj4dKZ8iNI/J sw89fE8uTGq3B4jnUjkyXxVUrAOfadO0wU5weSol0Oa85gCKc2BrmocK6NuX8cNx +KLyWc+5nZCQXOnoTxafXprRG9D+iBBa2A3mgzvsDiYHzitNDGkDUAreXYlGeoAC yhXWLppUwE3z90VAoxhrdYVbCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAcKNEY6 Ej135Ta4OEo4qpHswSjOMB8GA1UdIwQYMBaAFNh+ApaVRq3FWnrMoIytsoebxpnJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI1Ri84RTQxODAyMEYw OUIxMUVEQTYwNkJENjJDNEY5QUUwMi8ySDRDbHBWR3JjVmFlc3lnaksyeWg1dkdt Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJINENscFZHcmNWYWVzeWdqSzJ5aDV2R21jay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUI1Ri84RTQxODAyMEYwOUIxMUVEQTYwNkJENjJDNEY5QUUwMi8ySDRDbHBWR3Jj VmFlc3lnaksyeWg1dkdtY2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPldpHepf0AXt08zrOsZyVuYug2hu4ZHbzfCpapRnr2ZZV77V//psD BqDoR5WSY2fPcc4VrCPozXIMMenfOimVgJd5sdEQV/D67Ia5oDXfBJ+/X2bIaeG2 g4POp59f5DjiSS2Rf7i62TsHRpW1uD6Q2IiL2k1iUKsBV9fXHNH6/gYeB12QSHQT IkCkJFN4zfr1bhj8/tWdI8m6MFVG1U9QE4AiHfPtzLKE8heUgyj7mADQBLA8nds4 TuYv69cPw/ewrAlgG5BnDFWq73fekspQjWEoaBnLUdcXAfvjVHLH2JqT9gvKUbNb VuxMXP31g2RgKQaIF3RdDnURlqxQn+R/ -----END CERTIFICATE-----Generated at Sun Jan 25 08:05:27 2026 by rpki-client