This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft File: lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft (raw, json) Hash identifier: R65/1Vd7fa7OFsAw0hAk+rZr44U4USC/QLW0bK7T0IQ= Subject key identifier: B5:A1:1A:93:DC:B9:BB:7A:6B:B7:57:C9:BF:94:BE:57:18:43:D1:E1 Authority key identifier: 95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E Certificate issuer: /CN=A9185D6E/serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Certificate serial: 0609 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft Manifest number: 05F6 Signing time: Sat 24 Jan 2026 22:13:31 +0000 Manifest this update: Sat 24 Jan 2026 22:13:30 +0000 Manifest next update: Sat 31 Jan 2026 22:13:30 +0000 Files and hashes: 1: lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl (hash: DjkefXYbKCMH+eor4x8X1uiNO0Cr7nat5vPx+gMs08w=) 2: 53BCB840EA4211EB846B8757C4F9AE02.roa (hash: lxZNfyimV3NQpo4JPb58fRVzNwdRpPB3SMYQ8hq+yFg=) 3: 368F5308A27311EFA8731822C4F9AE02.roa (hash: Hs0kfftH2V+1dVTeEFiwGCNE8QZlZWgBetHvEQLVaTU=) 4: 229CD24AF9FB11EB8CFF5E7DC4F9AE02.roa (hash: n04Y3sGneIDc0gFY4gtPPq0L4eOtSWnQu7Ei64M+chk=) 5: 37F43E66A27311EFA8731822C4F9AE02.roa (hash: vy2TZeybvxjXMBwVfAEFXRXQN3w7mLcQMjLoNDfW68Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1545 (0x609) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D6E, serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Validity Not Before: Jan 24 22:13:30 2026 GMT Not After : Jan 31 22:13:30 2026 GMT Subject: CN=6975440a-5251 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:73:42:95:84:0d:eb:51:7f:a4:25:68:34:d1: 29:19:20:46:91:64:c6:4f:c3:85:20:83:a9:45:cf: f8:7f:9b:8d:6e:06:5c:a4:7f:25:8d:1c:6d:6e:0e: 96:46:82:33:23:57:9a:99:76:e9:af:16:ef:09:a7: e6:d2:4c:f3:33:47:0f:f6:90:b5:f4:b2:9b:1d:67: 08:f8:7c:c4:85:44:85:51:e7:73:b0:22:25:d9:1e: d6:a2:fc:0d:a2:83:f3:fb:1d:94:90:4b:08:e0:94: 0f:ae:99:0e:97:60:2b:15:22:3e:67:9e:e6:42:10: fc:5b:a4:05:96:14:7b:d8:18:0d:45:39:67:0c:55: ac:f9:42:4e:94:80:6e:36:f0:f4:6d:6f:aa:28:53: 9b:1b:d8:45:f7:9c:43:b8:27:16:dd:2b:8f:a9:ee: 3f:04:04:51:7c:dd:0e:ae:38:93:90:a3:06:64:35: 33:33:b9:68:67:44:48:7b:36:10:e7:60:d8:86:84: db:94:7e:11:31:e7:53:d5:d8:75:c8:4a:81:21:3b: 80:37:35:49:c9:32:b5:91:e1:87:b9:5a:ba:34:c9: 79:19:33:63:da:cb:1d:39:ea:6c:0c:f4:87:76:8c: 49:2d:ea:43:ef:a1:ee:f7:ee:39:11:b6:aa:43:91: 12:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:A1:1A:93:DC:B9:BB:7A:6B:B7:57:C9:BF:94:BE:57:18:43:D1:E1 X509v3 Authority Key Identifier: keyid:95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:a8:30:99:1a:e5:92:0a:20:73:33:f5:ab:c0:3c:44:3e:41: 38:ee:22:64:df:8d:8b:65:bb:3b:01:2e:13:7d:d1:f9:a2:bd: c2:84:ce:6d:98:5a:ff:91:25:bb:96:7b:3a:a8:11:e5:48:59: 51:cc:29:ea:d8:18:ef:17:f0:67:51:8a:e1:63:31:7b:06:03: fb:24:ff:1b:f5:17:19:22:32:2c:39:a6:79:16:fa:6c:0e:04: 10:30:a6:8c:b3:5f:05:6a:a0:03:0f:1a:b4:fb:59:11:04:c2: da:7d:24:6c:35:45:4a:a5:ab:20:63:d3:8c:86:2a:ac:d3:5e: 83:e5:97:41:79:50:c4:c5:d9:e1:ca:54:46:11:15:2e:01:a6: ad:f0:32:6c:69:59:cc:15:4d:85:cc:2a:d2:d1:63:73:a2:66: 24:6b:3a:ad:6f:6e:94:36:41:c7:75:9d:6c:e6:0d:dc:15:53: 0f:c2:85:fe:35:af:ae:cb:3b:49:ea:35:9c:90:ea:5b:5f:73: dd:9e:ae:34:23:36:e9:5d:1f:d7:0a:da:63:bd:58:10:06:df: c0:ad:1c:14:95:ed:7f:94:48:ec:6a:28:1a:58:fe:2e:7a:fd: 26:bc:21:e9:6f:a7:ca:29:bc:34:42:d1:9c:5b:75:69:ba:0c: 41:d6:74:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVENkUxMTAvBgNVBAUTKDk1MjRFQTlCODIzQzIwRkE3ODkyM0JFNjY2N0UxNEY2 QzRDM0I0N0UwHhcNMjYwMTI0MjIxMzMwWhcNMjYwMTMxMjIxMzMwWjAYMRYwFAYD VQQDDA02OTc1NDQwYS01MjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAynNClYQN61F/pCVoNNEpGSBGkWTGT8OFIIOpRc/4f5uNbgZcpH8ljRxtbg6W RoIzI1eamXbprxbvCafm0kzzM0cP9pC19LKbHWcI+HzEhUSFUedzsCIl2R7WovwN ooPz+x2UkEsI4JQPrpkOl2ArFSI+Z57mQhD8W6QFlhR72BgNRTlnDFWs+UJOlIBu NvD0bW+qKFObG9hF95xDuCcW3SuPqe4/BARRfN0OrjiTkKMGZDUzM7loZ0RIezYQ 52DYhoTblH4RMedT1dh1yEqBITuANzVJyTK1keGHuVq6NMl5GTNj2ssdOepsDPSH doxJLepD76Hu9+45EbaqQ5ES6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLWhGpPc ubt6a7dXyb+UvlcYQ9HhMB8GA1UdIwQYMBaAFJUk6puCPCD6eJI75mZ+FPbEw7R+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQ2RS80Q0JGRjRBRURG RjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQcDRranZtWm40VTlzVER0 SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xTVHFtNEk4SVBwNGtqdm1abjRVOXNURHRINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUQ2RS80Q0JGRjRBRURGRjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQ cDRranZtWm40VTlzVER0SDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByqDCZGuWSCiBzM/WrwDxEPkE47iJk342LZbs7AS4TfdH5or3ChM5t mFr/kSW7lns6qBHlSFlRzCnq2BjvF/BnUYrhYzF7BgP7JP8b9RcZIjIsOaZ5Fvps DgQQMKaMs18FaqADDxq0+1kRBMLafSRsNUVKpasgY9OMhiqs016D5ZdBeVDExdnh ylRGERUuAaat8DJsaVnMFU2FzCrS0WNzomYkazqtb26UNkHHdZ1s5g3cFVMPwoX+ Na+uyztJ6jWckOpbX3Pdnq40IzbpXR/XCtpjvVgQBt/ArRwUle1/lEjsaigaWP4u ev0mvCHpb6fKKbw0QtGcW3VpugxB1nS6 -----END CERTIFICATE-----Generated at Sun Jan 25 05:40:45 2026 by rpki-client