This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.mft File: 2DPFFS4_LSebiQT4PQDdkKymK9U.mft (raw, json) Hash identifier: KLbivLT1e22BllKZIphnO29MmW6bfOmsC82whZnxM1k= Subject key identifier: 90:36:05:63:0F:63:74:16:CC:95:F6:EC:B9:AE:B7:4E:B6:A6:07:53 Authority key identifier: D8:33:C5:15:2E:3F:2D:27:9B:89:04:F8:3D:00:DD:90:AC:A6:2B:D5 Certificate issuer: /CN=A9186D9F/serialNumber=D833C5152E3F2D279B8904F83D00DD90ACA62BD5 Certificate serial: 012A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DPFFS4_LSebiQT4PQDdkKymK9U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.mft Manifest number: 012A Signing time: Sun 25 Jan 2026 03:49:07 +0000 Manifest this update: Sun 25 Jan 2026 03:49:06 +0000 Manifest next update: Sun 01 Feb 2026 03:49:06 +0000 Files and hashes: 1: 2DPFFS4_LSebiQT4PQDdkKymK9U.crl (hash: DX8twZ5iQYDaC7Qp/dObvmhdKDLVCzCmZs/oS3TbwBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.crl rsync://rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DPFFS4_LSebiQT4PQDdkKymK9U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186D9F, serialNumber=D833C5152E3F2D279B8904F83D00DD90ACA62BD5 Validity Not Before: Jan 25 03:49:06 2026 GMT Not After : Feb 1 03:49:06 2026 GMT Subject: CN=697592b3-2b4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:b4:0b:9b:34:c8:d7:ae:f4:5f:ef:d2:d3:68: 63:ce:fa:df:42:fe:ee:08:99:ed:78:41:e4:fa:bb: e0:b2:be:a3:d8:9e:2d:45:9f:8a:b1:09:ef:f1:db: 0f:64:f5:af:2a:76:97:fd:3f:72:b0:3d:47:63:1e: 14:27:03:5c:07:c0:44:94:f8:d3:96:5c:ad:d0:71: 75:bb:45:b7:b8:2f:e9:46:9b:2b:dc:53:43:02:a7: ff:19:ed:9a:0c:13:a2:de:e7:bb:44:f2:36:25:87: 41:f3:66:cd:e3:82:6c:8a:d8:86:5b:39:66:e4:1e: 34:57:28:b6:be:4e:97:1c:e9:54:e2:91:f1:bf:15: df:ae:cf:64:fe:09:f7:a7:14:dc:ad:1e:f9:cf:e4: c9:3d:8a:fc:69:96:b1:b9:08:66:ff:b5:bb:55:95: d9:8e:2c:76:2c:cf:dc:c6:41:a9:1a:e2:a0:69:3b: 5b:e5:1e:7c:17:fc:36:0d:65:63:77:2b:c0:9f:91: 6b:9e:52:0b:d8:4b:a3:4c:ea:d3:16:c2:d0:6b:c0: 41:f9:8d:aa:9a:08:13:ff:ad:59:07:ed:e2:95:c3: de:6a:63:7e:0c:d4:d5:fb:cc:9a:ad:d5:bb:73:38: 0f:45:ff:7b:fa:1b:c6:d5:69:cf:d1:52:89:1b:df: e7:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:36:05:63:0F:63:74:16:CC:95:F6:EC:B9:AE:B7:4E:B6:A6:07:53 X509v3 Authority Key Identifier: keyid:D8:33:C5:15:2E:3F:2D:27:9B:89:04:F8:3D:00:DD:90:AC:A6:2B:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DPFFS4_LSebiQT4PQDdkKymK9U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:48:8e:87:3c:82:6b:d1:5e:b3:1e:1a:0f:f1:cd:f2:ed:c2: 85:c7:9c:8b:37:60:2f:70:0a:d9:40:83:fe:40:ec:58:6b:2d: ae:9d:ed:b0:be:99:19:ef:8d:f0:c0:6c:be:1c:0a:77:77:6e: d7:ea:4d:50:df:8f:45:70:a9:1f:10:df:05:bc:85:e9:7b:ad: 4c:36:a9:ad:a6:91:20:7c:9c:a6:f2:4f:7f:14:7a:34:55:f9: c7:51:36:85:5f:11:72:b4:80:db:b3:b2:72:29:bc:57:e5:d0: f9:c2:d5:9e:f9:51:26:e9:80:f4:ae:b5:e5:1b:03:2b:20:a7: aa:cf:84:d8:1d:a7:34:64:a2:16:fa:11:dd:5c:b1:c4:bd:1a: af:88:aa:7a:e2:5b:ec:28:12:72:db:e9:23:dd:6c:4c:3f:32: ae:81:b3:6a:b3:99:19:9d:58:34:62:d2:f9:8b:da:f5:33:d3: e3:b7:11:ff:a8:82:9f:85:e2:e9:bf:22:d1:22:10:f3:be:20: 0f:43:19:ef:05:c0:6e:44:63:6d:a6:5c:09:a1:db:2e:05:0e: a1:14:df:84:2f:20:42:76:3f:94:82:01:20:34:24:df:44:36: 5f:93:65:10:35:75:f8:c4:ac:5b:cc:36:53:a3:64:df:a7:0a: aa:aa:ac:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZEOUYxMTAvBgNVBAUTKEQ4MzNDNTE1MkUzRjJEMjc5Qjg5MDRGODNEMDBERDkw QUNBNjJCRDUwHhcNMjYwMTI1MDM0OTA2WhcNMjYwMjAxMDM0OTA2WjAYMRYwFAYD VQQDDA02OTc1OTJiMy0yYjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5rQLmzTI1670X+/S02hjzvrfQv7uCJnteEHk+rvgsr6j2J4tRZ+KsQnv8dsP ZPWvKnaX/T9ysD1HYx4UJwNcB8BElPjTllyt0HF1u0W3uC/pRpsr3FNDAqf/Ge2a DBOi3ue7RPI2JYdB82bN44JsitiGWzlm5B40Vyi2vk6XHOlU4pHxvxXfrs9k/gn3 pxTcrR75z+TJPYr8aZaxuQhm/7W7VZXZjix2LM/cxkGpGuKgaTtb5R58F/w2DWVj dyvAn5FrnlIL2EujTOrTFsLQa8BB+Y2qmggT/61ZB+3ilcPeamN+DNTV+8yardW7 czgPRf97+hvG1WnP0VKJG9/nWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJA2BWMP Y3QWzJX27Lmut062pgdTMB8GA1UdIwQYMBaAFNgzxRUuPy0nm4kE+D0A3ZCspivV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkQ5Ri9CMjkwQTM0NjJF MDQxMUVGODZGMjlENzlDNEY5QUUwMi8yRFBGRlM0X0xTZWJpUVQ0UFFEZGtLeW1L OVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJEUEZGUzRfTFNlYmlRVDRQUURka0t5bUs5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NkQ5Ri9CMjkwQTM0NjJFMDQxMUVGODZGMjlENzlDNEY5QUUwMi8yRFBGRlM0X0xT ZWJpUVQ0UFFEZGtLeW1LOVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNSI6HPIJr0V6zHhoP8c3y7cKFx5yLN2AvcArZQIP+QOxYay2une2w vpkZ743wwGy+HAp3d27X6k1Q349FcKkfEN8FvIXpe61MNqmtppEgfJym8k9/FHo0 VfnHUTaFXxFytIDbs7JyKbxX5dD5wtWe+VEm6YD0rrXlGwMrIKeqz4TYHac0ZKIW +hHdXLHEvRqviKp64lvsKBJy2+kj3WxMPzKugbNqs5kZnVg0YtL5i9r1M9PjtxH/ qIKfheLpvyLRIhDzviAPQxnvBcBuRGNtplwJodsuBQ6hFN+ELyBCdj+UggEgNCTf RDZfk2UQNXX4xKxbzDZTo2TfpwqqqqyD -----END CERTIFICATE-----Generated at Sun Jan 25 06:02:04 2026 by rpki-client