This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.mft File: 2szbgPh19VKJMaiCXRqvoYCpsXk.mft (raw, json) Hash identifier: PLloTNLcwrlI4aEri+ycfdEiVE4UxIU90UZ9IMAdQ+c= Subject key identifier: 4F:48:FD:A7:9E:06:6E:92:E2:AD:3B:E1:03:F9:7D:45:CE:B3:DF:4C Authority key identifier: DA:CC:DB:80:F8:75:F5:52:89:31:A8:82:5D:1A:AF:A1:80:A9:B1:79 Certificate issuer: /CN=A918D701/serialNumber=DACCDB80F875F5528931A8825D1AAFA180A9B179 Certificate serial: 021E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2szbgPh19VKJMaiCXRqvoYCpsXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.mft Manifest number: 0218 Signing time: Sun 25 Jan 2026 01:32:08 +0000 Manifest this update: Sun 25 Jan 2026 01:32:07 +0000 Manifest next update: Sun 01 Feb 2026 01:32:07 +0000 Files and hashes: 1: 2szbgPh19VKJMaiCXRqvoYCpsXk.crl (hash: tlzdh6+ozATUcUc1NoXxy1XzScmo5iPe1SdQsBphS50=) 2: 98D5AE30C88C11ED907C1C0EC4F9AE02.roa (hash: YcDeh2t6Hw3AD0IzEUacGsgBDExXh3a14o3dMVwYFKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.crl rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2szbgPh19VKJMaiCXRqvoYCpsXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 01:32:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 542 (0x21e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D701, serialNumber=DACCDB80F875F5528931A8825D1AAFA180A9B179 Validity Not Before: Jan 25 01:32:07 2026 GMT Not After : Feb 1 01:32:07 2026 GMT Subject: CN=69757297-3e7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:45:f2:22:cb:dd:80:ba:5f:a4:9f:f8:d0:36: 9b:77:7b:da:36:49:a1:12:dc:76:d9:2d:ae:1d:36: 10:4f:dd:5e:dd:5f:23:c7:35:93:2d:b5:6f:11:82: 38:da:ea:1d:16:ea:dc:20:e2:ce:86:f3:1f:68:ae: 3b:87:c8:06:84:19:aa:ae:2a:ef:61:20:e2:e8:92: 8d:58:56:4d:1e:09:71:a4:8e:95:c3:e5:66:d0:da: fb:0d:89:c1:3f:50:ff:5d:bb:6f:79:0e:4a:c9:c5: e5:30:84:6e:c6:f6:83:89:3c:7d:8d:db:bc:d8:7f: 63:44:0d:d8:ce:37:d8:79:4f:69:80:91:6f:6a:9d: 5e:28:e9:c2:c3:dc:7b:2e:2d:d9:70:df:5f:bc:af: 11:11:5e:6c:b1:e9:f9:ef:53:6f:cd:47:28:cb:f4: 1d:16:31:9a:d1:4b:8b:ea:62:34:1a:1f:01:dd:bb: 36:ed:ad:f4:ba:36:78:39:57:58:be:20:41:85:19: 2d:bc:66:d2:13:da:f8:30:69:5c:b0:43:b3:86:79: 06:e5:17:d3:5b:b1:7e:57:51:5a:49:63:c1:d5:21: 92:8f:bb:73:6d:8b:0d:86:13:0b:10:97:bc:a2:82: bc:da:8d:e1:ae:53:11:1d:f1:bf:32:63:1c:9b:92: 2b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:48:FD:A7:9E:06:6E:92:E2:AD:3B:E1:03:F9:7D:45:CE:B3:DF:4C X509v3 Authority Key Identifier: keyid:DA:CC:DB:80:F8:75:F5:52:89:31:A8:82:5D:1A:AF:A1:80:A9:B1:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2szbgPh19VKJMaiCXRqvoYCpsXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:70:b7:e5:64:a4:cd:f4:91:a5:2c:32:bb:c5:c9:b6:44:ae: c9:a7:9d:6f:11:82:0e:36:11:ad:b0:27:ca:7e:7a:ae:41:1b: 50:84:ae:14:30:7b:7e:7b:68:ed:70:a4:ee:91:96:1b:6b:d8: cd:1f:17:43:b3:7e:c7:21:7b:3d:ac:2f:6c:d0:a9:01:75:45: ed:9f:19:51:31:a2:f4:7b:78:b6:4d:ca:de:ef:3e:e3:17:d5: f5:51:48:af:50:63:24:ae:f6:33:c8:71:65:9f:d8:f2:ef:fb: b4:9c:6a:5b:3e:99:2b:ae:47:19:4d:2f:5a:bf:b8:b3:6d:59: f0:76:29:ed:1c:83:fc:be:09:67:bc:af:74:1e:d4:9f:0f:2c: 24:ad:34:32:e7:a5:f9:74:90:4c:b2:c9:48:5f:ff:57:31:81: e7:80:2b:9b:33:0b:a1:25:70:d9:ed:82:66:e9:b0:26:e7:ba: 4c:17:c6:95:58:dc:03:7e:1e:c0:97:ef:95:70:b3:71:87:4a: 46:1c:e4:0f:ed:6e:87:a3:66:07:0e:05:8f:cb:a1:0a:45:b6: f2:33:2b:05:31:58:d4:cf:26:86:37:94:d4:3e:30:b4:e9:9a: 2e:37:a6:f7:6c:a6:33:5e:60:ab:e5:41:ad:42:d3:da:10:1f: d8:3e:35:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ3MDExMTAvBgNVBAUTKERBQ0NEQjgwRjg3NUY1NTI4OTMxQTg4MjVEMUFBRkEx ODBBOUIxNzkwHhcNMjYwMTI1MDEzMjA3WhcNMjYwMjAxMDEzMjA3WjAYMRYwFAYD VQQDDA02OTc1NzI5Ny0zZTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkkXyIsvdgLpfpJ/40Dabd3vaNkmhEtx22S2uHTYQT91e3V8jxzWTLbVvEYI4 2uodFurcIOLOhvMfaK47h8gGhBmqrirvYSDi6JKNWFZNHglxpI6Vw+Vm0Nr7DYnB P1D/XbtveQ5KycXlMIRuxvaDiTx9jdu82H9jRA3YzjfYeU9pgJFvap1eKOnCw9x7 Li3ZcN9fvK8REV5ssen571NvzUcoy/QdFjGa0UuL6mI0Gh8B3bs27a30ujZ4OVdY viBBhRktvGbSE9r4MGlcsEOzhnkG5RfTW7F+V1FaSWPB1SGSj7tzbYsNhhMLEJe8 ooK82o3hrlMRHfG/MmMcm5IrzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE9I/aee Bm6S4q074QP5fUXOs99MMB8GA1UdIwQYMBaAFNrM24D4dfVSiTGogl0ar6GAqbF5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDcwMS9EMTg3OEVGNkM4 ODcxMUVEQkJFNkEzMkJDNEY5QUUwMi8yc3piZ1BoMTlWS0pNYWlDWFJxdm9ZQ3Bz WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJzemJnUGgxOVZLSk1haUNYUnF2b1lDcHNYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDcwMS9EMTg3OEVGNkM4ODcxMUVEQkJFNkEzMkJDNEY5QUUwMi8yc3piZ1BoMTlW S0pNYWlDWFJxdm9ZQ3BzWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAacLflZKTN9JGlLDK7xcm2RK7Jp51vEYIONhGtsCfKfnquQRtQhK4U MHt+e2jtcKTukZYba9jNHxdDs37HIXs9rC9s0KkBdUXtnxlRMaL0e3i2Tcre7z7j F9X1UUivUGMkrvYzyHFln9jy7/u0nGpbPpkrrkcZTS9av7izbVnwdintHIP8vgln vK90HtSfDywkrTQy56X5dJBMsslIX/9XMYHngCubMwuhJXDZ7YJm6bAm57pMF8aV WNwDfh7Al++VcLNxh0pGHOQP7W6Ho2YHDgWPy6EKRbbyMysFMVjUzyaGN5TUPjC0 6ZouN6b3bKYzXmCr5UGtQtPaEB/YPjVy -----END CERTIFICATE-----Generated at Sun Jan 25 23:39:43 2026 by rpki-client