This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.mft File: vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.mft (raw, json) Hash identifier: mWGDdENDyAuPUKUr1HPsrNcG0up23sV4N3OjngHOREk= Subject key identifier: F8:1D:D1:A0:8B:A1:EE:55:A2:BF:30:59:D0:BB:B8:71:00:50:29:85 Authority key identifier: BD:89:78:16:56:D9:D1:58:34:7B:7B:14:C0:4A:D9:EA:44:1C:C9:97 Certificate issuer: /CN=A918E1C4/serialNumber=BD89781656D9D158347B7B14C04AD9EA441CC997 Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.mft Manifest number: 20 Signing time: Sun 25 Jan 2026 06:54:11 +0000 Manifest this update: Sun 25 Jan 2026 06:54:11 +0000 Manifest next update: Sun 01 Feb 2026 06:54:11 +0000 Files and hashes: 1: vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.crl (hash: sWirPOtE6TtaMCu/mCbV+DEBbMC0VBmdItjeRwPN16g=) 2: 722C58FACE9311F0A2C11D25C4F9AE02.roa (hash: vbYGiXj/8596Y2OVsZjQ4JT9FfRktn7XEyP5V/XXG/g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.crl rsync://rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 06:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E1C4, serialNumber=BD89781656D9D158347B7B14C04AD9EA441CC997 Validity Not Before: Jan 25 06:54:11 2026 GMT Not After : Feb 1 06:54:11 2026 GMT Subject: CN=6975be13-46e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:38:d5:ef:a6:25:f7:d5:ff:c7:65:5e:8a:68: ad:bb:f8:d6:29:47:98:a5:2b:b4:1e:07:2e:a3:8d: 22:a5:c4:82:4e:72:82:ee:73:e2:1e:2a:88:1d:67: 54:95:24:d5:44:2d:97:00:7a:03:9c:a9:44:33:e2: 1d:81:ec:48:4c:3d:94:70:4b:bb:ea:32:8b:ec:73: c8:ea:41:05:b0:0f:03:af:7b:8b:dd:68:fc:6c:8c: b2:57:73:0b:9a:7b:ad:db:8c:9d:52:fa:11:44:2f: d7:b9:d9:27:50:b1:17:62:54:00:e6:81:ab:8b:42: 28:dc:d7:d0:2e:8d:64:b7:2a:64:31:6f:7d:02:2e: 8c:68:c2:6a:d1:f8:7f:6a:29:5e:7f:b5:68:52:00: 46:38:7a:c7:c6:1b:55:f7:04:5b:64:c3:9b:df:63: 5b:98:7e:66:eb:c9:9a:f2:91:db:32:ed:2b:57:ba: b6:99:3f:6e:72:be:7a:8b:18:1a:7b:b3:c0:f7:b3: 1f:a7:97:15:76:ad:b4:98:d1:9f:f6:19:8e:5b:c0: 62:6c:0b:55:1b:08:a7:64:54:89:24:0a:34:dc:6a: f8:98:48:12:1e:c5:17:b0:fc:e6:58:03:01:60:7d: f6:45:1f:57:eb:a1:80:ab:3d:f4:de:bc:af:84:21: c9:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:1D:D1:A0:8B:A1:EE:55:A2:BF:30:59:D0:BB:B8:71:00:50:29:85 X509v3 Authority Key Identifier: keyid:BD:89:78:16:56:D9:D1:58:34:7B:7B:14:C0:4A:D9:EA:44:1C:C9:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E1C4/0C71E7FACE9311F088AB1524C4F9AE02/vYl4FlbZ0Vg0e3sUwErZ6kQcyZc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:ff:cd:4c:50:6e:e9:81:87:e6:c3:e6:ed:c6:e4:0e:5e:87: 3b:16:6b:50:4f:3e:3b:55:38:bc:7a:2d:f6:a6:e9:7b:81:3f: 98:78:8e:b1:24:57:85:7c:92:51:70:9c:6e:6c:5e:5e:6a:89: 66:f1:a4:b7:18:21:aa:98:48:1e:aa:33:12:7f:11:0e:fc:6d: 28:7b:d3:0b:e5:e8:0b:f4:d0:fd:97:fe:eb:46:d0:30:ea:2c: 7f:9a:6d:27:db:4a:41:f2:d6:74:cc:af:a2:50:38:df:6d:cb: 99:99:f3:b7:f2:a3:9b:83:3c:6a:c2:7b:4d:93:79:21:08:e8: 4a:4e:62:d0:95:86:95:ac:8e:0b:18:e4:7c:58:df:20:b4:fc: a2:d7:21:dd:97:43:68:59:41:f3:b3:e4:52:07:dc:e7:7c:a9: b6:77:b9:98:1f:99:40:c6:d1:9f:51:42:fa:96:19:d0:75:ed: f6:47:d5:ac:45:0a:01:69:51:f2:64:1e:39:0c:8f:aa:dd:b7: ea:04:e4:b6:9b:23:62:b0:03:ad:71:48:a1:96:49:e4:6f:42: d0:80:6d:e4:75:f5:be:2f:7d:2c:53:98:a4:a9:70:13:d2:e2: 72:23:5a:89:2d:37:b5:fb:89:cd:c3:fa:c9:59:54:3d:ae:71: e3:b1:fb:20 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTFDNDExMC8GA1UEBRMoQkQ4OTc4MTY1NkQ5RDE1ODM0N0I3QjE0QzA0QUQ5RUE0 NDFDQzk5NzAeFw0yNjAxMjUwNjU0MTFaFw0yNjAyMDEwNjU0MTFaMBgxFjAUBgNV BAMMDTY5NzViZTEzLTQ2ZTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvONXvpiX31f/HZV6KaK27+NYpR5ilK7QeBy6jjSKlxIJOcoLuc+IeKogdZ1SV JNVELZcAegOcqUQz4h2B7EhMPZRwS7vqMovsc8jqQQWwDwOve4vdaPxsjLJXcwua e63bjJ1S+hFEL9e52SdQsRdiVADmgauLQijc19AujWS3KmQxb30CLoxowmrR+H9q KV5/tWhSAEY4esfGG1X3BFtkw5vfY1uYfmbryZrykdsy7StXuraZP25yvnqLGBp7 s8D3sx+nlxV2rbSY0Z/2GY5bwGJsC1UbCKdkVIkkCjTcaviYSBIexRew/OZYAwFg ffZFH1froYCrPfTevK+EIcltAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+B3RoIuh 7lWivzBZ0Lu4cQBQKYUwHwYDVR0jBBgwFoAUvYl4FlbZ0Vg0e3sUwErZ6kQcyZcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFMUM0LzBDNzFFN0ZBQ0U5 MzExRjA4OEFCMTUyNEM0RjlBRTAyL3ZZbDRGbGJaMFZnMGUzc1V3RXJaNmtRY3la Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdllsNEZsYlowVmcwZTNzVXdFclo2a1FjeVpjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF MUM0LzBDNzFFN0ZBQ0U5MzExRjA4OEFCMTUyNEM0RjlBRTAyL3ZZbDRGbGJaMFZn MGUzc1V3RXJaNmtRY3laYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH//zUxQbumBh+bD5u3G5A5ehzsWa1BPPjtVOLx6Lfam6XuBP5h4jrEk V4V8klFwnG5sXl5qiWbxpLcYIaqYSB6qMxJ/EQ78bSh70wvl6Av00P2X/utG0DDq LH+abSfbSkHy1nTMr6JQON9ty5mZ87fyo5uDPGrCe02TeSEI6EpOYtCVhpWsjgsY 5HxY3yC0/KLXId2XQ2hZQfOz5FIH3Od8qbZ3uZgfmUDG0Z9RQvqWGdB17fZH1axF CgFpUfJkHjkMj6rdt+oE5LabI2KwA61xSKGWSeRvQtCAbeR19b4vfSxTmKSpcBPS 4nIjWoktN7X7ic3D+slZVD2uceOx+yA= -----END CERTIFICATE-----Generated at Sun Jan 25 22:02:12 2026 by rpki-client