This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.mft File: IHRtqWxsk0jpS7t03MtZAcbst7M.mft (raw, json) Hash identifier: 3306lQBCUMyoFv1muOllF0BwzPfNrDwedM540/T9R2M= Subject key identifier: 1F:3C:46:7C:7A:25:85:AA:76:A1:C8:F8:90:7A:55:99:65:15:E8:B9 Authority key identifier: 20:74:6D:A9:6C:6C:93:48:E9:4B:BB:74:DC:CB:59:01:C6:EC:B7:B3 Certificate issuer: /CN=A918BD1A/serialNumber=20746DA96C6C9348E94BBB74DCCB5901C6ECB7B3 Certificate serial: 042A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHRtqWxsk0jpS7t03MtZAcbst7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.mft Manifest number: 0422 Signing time: Sat 24 Jan 2026 23:34:03 +0000 Manifest this update: Sat 24 Jan 2026 23:34:03 +0000 Manifest next update: Sat 31 Jan 2026 23:34:03 +0000 Files and hashes: 1: IHRtqWxsk0jpS7t03MtZAcbst7M.crl (hash: BCiLlO92gDcHgQL3GpVv7wb0XnFIqXbPh4/8kC4EreY=) 2: FC11F400240611EFA8F45A54C4F9AE02.roa (hash: hgdL5UTkf8oZABpJrnOGmK5k+01vc9XVo1jTsrlgdWk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.crl rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHRtqWxsk0jpS7t03MtZAcbst7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 23:34:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1066 (0x42a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BD1A, serialNumber=20746DA96C6C9348E94BBB74DCCB5901C6ECB7B3 Validity Not Before: Jan 24 23:34:03 2026 GMT Not After : Jan 31 23:34:03 2026 GMT Subject: CN=697556eb-4c18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:fa:de:05:84:b9:c9:82:7d:08:0a:5b:4d:57: ef:69:55:1d:0c:45:bf:d9:a1:f2:de:dc:f4:d5:a2: b1:4d:f1:52:18:83:12:3e:5c:72:5b:ea:c0:50:8c: 8b:bf:f7:37:06:e4:f5:5c:f8:ae:a0:c1:2a:93:5a: ce:9b:68:06:bc:ca:b8:f8:b8:b5:c3:a3:af:d2:ac: 68:f5:9e:59:89:2f:95:23:92:20:a5:7f:5a:5e:ec: f8:a0:4f:ce:f5:67:6f:36:54:6d:74:e3:4a:2b:7e: 98:62:a2:d7:81:a8:00:a1:5b:36:e6:24:a3:37:0a: d6:4a:fe:ed:d2:90:b5:13:9f:5e:d4:ab:ab:bb:08: d3:31:f9:a8:28:c6:fa:4f:6d:b7:6c:85:1b:32:ca: 27:54:a6:2b:01:28:65:8f:e4:cc:ae:b6:48:e5:60: 8f:e9:15:ab:9f:ac:a4:f0:1a:31:80:b5:8f:0a:4f: e2:92:c7:79:e5:26:d5:c0:63:cd:ab:de:ee:cc:bb: 22:0d:74:67:8a:52:80:25:90:11:4e:fc:b4:19:d6: 72:b2:21:ec:81:49:e5:66:7d:67:38:e4:61:89:a4: 57:6f:0d:2c:ab:d6:4c:1a:da:0e:95:b6:48:7b:f6: 37:66:af:99:d6:96:20:85:82:64:73:4c:b6:b5:f4: 63:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:3C:46:7C:7A:25:85:AA:76:A1:C8:F8:90:7A:55:99:65:15:E8:B9 X509v3 Authority Key Identifier: keyid:20:74:6D:A9:6C:6C:93:48:E9:4B:BB:74:DC:CB:59:01:C6:EC:B7:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHRtqWxsk0jpS7t03MtZAcbst7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:c5:6c:12:19:24:74:6c:ae:76:74:13:d8:27:0b:9d:27:8a: 07:fa:c2:e6:ec:2f:50:96:c6:26:30:a7:4b:29:41:fe:09:00: 2e:d5:3f:24:89:60:64:04:09:67:35:0a:c7:9c:49:f6:3c:77: dc:94:21:f8:88:c2:01:a6:24:92:c7:10:e6:6c:af:3d:34:0a: 5b:17:36:55:93:cb:67:31:48:f4:2d:61:3c:72:6f:dd:e7:17: e3:a4:ea:dc:6f:69:00:9d:46:66:86:44:95:9b:a1:07:51:bb: d1:08:15:97:fc:c2:14:8b:92:0a:7a:ab:9a:38:57:1b:de:c1: 35:9f:8d:2a:e3:ba:50:af:0f:8a:66:5d:08:2c:71:e4:47:74: 68:4e:d4:6c:eb:81:e1:73:5a:d4:9b:60:fe:e9:75:98:b4:f5: bc:e2:ef:81:9b:02:2a:d3:96:05:2f:e5:5d:47:83:69:79:e8: 86:90:f2:fc:df:06:ce:22:80:04:a5:95:c1:1a:5b:0e:b4:48: c5:8e:3c:47:16:26:31:f1:58:ba:89:bc:2a:29:13:92:34:41: c5:42:be:47:66:39:b6:a7:6f:18:e4:e3:6b:ea:b8:5d:02:00: de:1f:5a:b5:de:ab:9e:f4:fc:d9:bc:84:6c:3a:2d:d6:ec:06: af:5e:d4:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJEMUExMTAvBgNVBAUTKDIwNzQ2REE5NkM2QzkzNDhFOTRCQkI3NERDQ0I1OTAx QzZFQ0I3QjMwHhcNMjYwMTI0MjMzNDAzWhcNMjYwMTMxMjMzNDAzWjAYMRYwFAYD VQQDDA02OTc1NTZlYi00YzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPreBYS5yYJ9CApbTVfvaVUdDEW/2aHy3tz01aKxTfFSGIMSPlxyW+rAUIyL v/c3BuT1XPiuoMEqk1rOm2gGvMq4+Li1w6Ov0qxo9Z5ZiS+VI5IgpX9aXuz4oE/O 9WdvNlRtdONKK36YYqLXgagAoVs25iSjNwrWSv7t0pC1E59e1KuruwjTMfmoKMb6 T223bIUbMsonVKYrAShlj+TMrrZI5WCP6RWrn6yk8BoxgLWPCk/iksd55SbVwGPN q97uzLsiDXRnilKAJZARTvy0GdZysiHsgUnlZn1nOORhiaRXbw0sq9ZMGtoOlbZI e/Y3Zq+Z1pYghYJkc0y2tfRjZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB88Rnx6 JYWqdqHI+JB6VZllFei5MB8GA1UdIwQYMBaAFCB0balsbJNI6Uu7dNzLWQHG7Lez MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkQxQS80QzZFQUJFODk5 RDgxMUVDQjlFMzU3NkZDNEY5QUUwMi9JSFJ0cVd4c2swanBTN3QwM010WkFjYnN0 N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIUnRxV3hzazBqcFM3dDAzTXRaQWNic3Q3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkQxQS80QzZFQUJFODk5RDgxMUVDQjlFMzU3NkZDNEY5QUUwMi9JSFJ0cVd4c2sw anBTN3QwM010WkFjYnN0N00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnxWwSGSR0bK52dBPYJwudJ4oH+sLm7C9QlsYmMKdLKUH+CQAu1T8k iWBkBAlnNQrHnEn2PHfclCH4iMIBpiSSxxDmbK89NApbFzZVk8tnMUj0LWE8cm/d 5xfjpOrcb2kAnUZmhkSVm6EHUbvRCBWX/MIUi5IKequaOFcb3sE1n40q47pQrw+K Zl0ILHHkR3RoTtRs64Hhc1rUm2D+6XWYtPW84u+BmwIq05YFL+VdR4NpeeiGkPL8 3wbOIoAEpZXBGlsOtEjFjjxHFiYx8Vi6ibwqKROSNEHFQr5HZjm2p28Y5ONr6rhd AgDeH1q13que9PzZvIRsOi3W7AavXtSY -----END CERTIFICATE-----Generated at Sun Jan 25 06:21:06 2026 by rpki-client