This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft File: XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft (raw, json) Hash identifier: lFVD4xcFy7BP4QxolGFgTcfeVYetjEe8ig17AcU2tO8= Subject key identifier: 1B:7E:88:99:03:A0:22:D2:2C:1B:5D:BE:E5:40:BC:92:F0:31:21:A7 Authority key identifier: 5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 Certificate issuer: /CN=A918B0B9/serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Certificate serial: 0A1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft Manifest number: 0A07 Signing time: Sat 24 Jan 2026 19:19:24 +0000 Manifest this update: Sat 24 Jan 2026 19:19:23 +0000 Manifest next update: Sat 31 Jan 2026 19:19:23 +0000 Files and hashes: 1: XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl (hash: 1kBzSFmeQ447XzE/b7p7EwiuB0AirgAsg54WGvrvgjk=) 2: 52F955A89B1511EA9BEFA53BC4F9AE02.roa (hash: ULVz6gtv7Lj17GsbY0DraIvlqeAo9m+ryNVdzpRY8/w=) 3: BED54F1A9B1611EA939F5A3FC4F9AE02.roa (hash: vTD8xn0iYmYF0FCpYg76YMcwnWDZovAXcFL69UbAO9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:19:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2591 (0xa1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B0B9, serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Validity Not Before: Jan 24 19:19:23 2026 GMT Not After : Jan 31 19:19:23 2026 GMT Subject: CN=69751b3c-69f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:41:40:94:b0:7a:26:9b:69:92:14:4f:c4:f4: dd:71:9c:65:90:f1:51:27:2d:e9:07:4c:84:19:11: c1:be:8c:8b:06:81:6f:d8:eb:50:46:65:76:4b:b8: 3d:a1:3b:88:e8:45:b6:09:8c:1d:18:3b:8f:4c:e1: 8c:98:74:30:18:3d:74:78:a5:1c:26:87:de:f7:14: 2c:ad:54:c4:cf:8d:29:c0:68:88:ce:98:31:46:a6: 65:d7:59:3b:79:df:c1:ab:f0:1e:c5:93:e8:aa:58: 1d:df:30:89:c1:04:f0:e2:55:ad:01:e3:34:d2:f5: 29:1c:01:1c:aa:db:4b:62:5c:39:9b:89:e4:84:d2: 0a:2e:f5:43:02:54:36:8c:b2:b2:8e:4e:4b:08:da: 39:4d:3a:b9:bb:40:f1:6a:d2:ef:8d:e2:5a:c9:6d: 0b:19:22:3f:2f:1d:11:a3:b7:bd:c3:80:e5:a6:4b: 3d:16:ed:06:df:99:c5:72:3e:b6:fb:a9:d4:63:7c: c2:4a:2b:21:76:af:a0:b7:e8:4d:c2:03:ea:fa:6a: 33:3c:ce:9f:a9:ed:af:b4:ab:c2:b7:58:76:41:09: 4a:9c:ef:8e:7c:48:82:61:61:59:a6:46:94:47:a4: 9e:42:9e:9f:6b:db:77:90:01:27:24:06:17:c1:fb: a8:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:7E:88:99:03:A0:22:D2:2C:1B:5D:BE:E5:40:BC:92:F0:31:21:A7 X509v3 Authority Key Identifier: keyid:5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:be:b2:91:f6:ff:db:5f:9d:9b:e4:99:63:24:76:c8:dc:fe: ec:85:60:5a:71:bb:b6:04:a3:9a:59:b6:e4:46:b7:90:6a:79: 99:d3:c0:83:b4:f1:15:d4:80:90:ca:8f:7a:cd:d4:f3:8d:da: c9:45:f0:5c:d9:8c:70:39:8d:4e:1d:51:b3:90:00:25:a8:ed: 0c:c0:d8:9a:d0:62:5b:d0:1a:8b:60:c8:64:a3:8d:5d:0d:b0: 26:c0:fb:8c:a3:a5:99:00:98:db:4a:33:43:16:a4:2f:e8:1f: 41:29:70:c3:1b:de:a2:02:e1:40:a5:a7:1d:bf:c5:74:2a:8c: 23:69:ee:ca:09:b6:a2:dc:c3:ff:ab:32:f3:d3:9b:bc:15:5f: 96:26:4a:2a:eb:38:e7:57:d0:48:f2:cb:25:84:53:6c:02:60: 7b:c4:5d:94:e6:82:5b:5a:e5:64:2c:14:50:d1:c0:1c:16:8f: ef:fc:62:ee:c2:51:0c:69:f6:4d:d6:97:ae:a7:22:aa:76:c2: 50:49:6b:d4:45:ae:61:1c:34:0f:10:68:88:80:fe:dd:67:90: b5:65:16:80:ea:af:ba:be:e2:eb:62:8d:db:48:f6:93:bd:57: 6f:a0:02:78:32:06:99:00:11:7d:dd:24:44:30:8b:56:fd:e2: c6:c1:d5:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEIwQjkxMTAvBgNVBAUTKDVDNUE0RkFFNEFGMDFGRkRDOTI3NTM1NUNDQkFCOEM4 MTAxODlGNTQwHhcNMjYwMTI0MTkxOTIzWhcNMjYwMTMxMTkxOTIzWjAYMRYwFAYD VQQDDA02OTc1MWIzYy02OWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1kFAlLB6JptpkhRPxPTdcZxlkPFRJy3pB0yEGRHBvoyLBoFv2OtQRmV2S7g9 oTuI6EW2CYwdGDuPTOGMmHQwGD10eKUcJofe9xQsrVTEz40pwGiIzpgxRqZl11k7 ed/Bq/AexZPoqlgd3zCJwQTw4lWtAeM00vUpHAEcqttLYlw5m4nkhNIKLvVDAlQ2 jLKyjk5LCNo5TTq5u0DxatLvjeJayW0LGSI/Lx0Ro7e9w4Dlpks9Fu0G35nFcj62 +6nUY3zCSishdq+gt+hNwgPq+mozPM6fqe2vtKvCt1h2QQlKnO+OfEiCYWFZpkaU R6SeQp6fa9t3kAEnJAYXwfuo2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBt+iJkD oCLSLBtdvuVAvJLwMSGnMB8GA1UdIwQYMBaAFFxaT65K8B/9ySdTVcy6uMgQGJ9U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjBCOS85Q0JGM0Q5MDhG QTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hfM0pKMU5WekxxNHlCQVlu MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hGcFBya3J3SF8zSkoxTlZ6THE0eUJBWW4xUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjBCOS85Q0JGM0Q5MDhGQTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hf M0pKMU5WekxxNHlCQVluMVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARvrKR9v/bX52b5JljJHbI3P7shWBacbu2BKOaWbbkRreQanmZ08CD tPEV1ICQyo96zdTzjdrJRfBc2YxwOY1OHVGzkAAlqO0MwNia0GJb0BqLYMhko41d DbAmwPuMo6WZAJjbSjNDFqQv6B9BKXDDG96iAuFApacdv8V0Kowjae7KCbai3MP/ qzLz05u8FV+WJkoq6zjnV9BI8sslhFNsAmB7xF2U5oJbWuVkLBRQ0cAcFo/v/GLu wlEMafZN1peupyKqdsJQSWvURa5hHDQPEGiIgP7dZ5C1ZRaA6q+6vuLrYo3bSPaT vVdvoAJ4MgaZABF93SREMItW/eLGwdWA -----END CERTIFICATE-----Generated at Sun Jan 25 02:54:12 2026 by rpki-client