This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft File: 40tPgNnj9wC8rExSxasj61t-37s.mft (raw, json) Hash identifier: NXD+Qk/S27Sn4dHchex24iNV96pW6liI0AwwKlJeHng= Subject key identifier: C3:7A:91:F5:B9:CF:C9:B4:18:6D:1F:79:2C:8C:69:BE:5F:02:50:95 Authority key identifier: E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB Certificate issuer: /CN=A918E4B7/serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Certificate serial: 01B4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft Manifest number: 01AE Signing time: Sat 24 Jan 2026 22:38:25 +0000 Manifest this update: Sat 24 Jan 2026 22:38:25 +0000 Manifest next update: Sat 31 Jan 2026 22:38:25 +0000 Files and hashes: 1: 40tPgNnj9wC8rExSxasj61t-37s.crl (hash: OiZVt88PHNTSAD44fd28rXZFDxvwrBs1Ln8PbGErCss=) 2: 1E4ABC8C50C111EFA64C2437C4F9AE02.roa (hash: DiLiUTq4svYLUGh7Zlk/IkFGkuorqIquvoUuPTfglVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:38:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 436 (0x1b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7, serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Validity Not Before: Jan 24 22:38:25 2026 GMT Not After : Jan 31 22:38:25 2026 GMT Subject: CN=697549e1-f747 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3c:ff:06:29:ef:86:25:4e:b7:bb:b0:b9:4a: 6b:d1:1f:5d:98:f7:c3:4f:2d:cc:1b:cb:8f:02:79: 02:87:54:b2:e1:be:97:e7:7e:c1:5b:e0:43:2f:d1: 63:d6:0f:e7:e6:f7:67:b3:23:1b:f3:56:31:11:70: 31:34:5f:be:35:8d:3b:c8:4f:5f:89:1a:6a:f8:47: 99:11:a3:68:e0:08:cb:be:18:29:f6:84:f3:85:17: 1a:8c:37:e7:f7:80:f2:d3:9f:b2:e2:7a:8f:3e:a1: 5f:68:80:a1:1b:6f:85:b9:5f:03:77:d7:9a:0e:5b: 04:ca:88:a4:57:4e:f9:ac:88:04:9b:c1:0c:19:7c: 2e:14:0e:5d:4f:e1:a3:d1:df:8d:c1:a4:7d:1d:2f: 9d:47:07:79:db:47:b5:25:f5:f6:c5:d0:05:37:92: 2c:e5:50:b9:9f:f3:10:24:61:c5:3e:78:d7:ca:d1: 0e:33:89:25:7d:af:bd:c5:e4:f8:20:ba:46:dc:40: e6:c9:b8:88:1c:35:a9:c9:51:3c:fe:b1:c0:ca:c4: 0f:81:b1:8b:34:38:a9:cf:7b:69:2e:11:a0:fc:27: e5:a5:39:d0:1e:dd:77:41:59:2b:49:2e:b8:9e:90: 27:63:65:a2:b4:52:20:b2:06:bf:6e:84:d9:8f:4c: 07:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:7A:91:F5:B9:CF:C9:B4:18:6D:1F:79:2C:8C:69:BE:5F:02:50:95 X509v3 Authority Key Identifier: keyid:E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:22:d7:3a:a5:54:f7:f5:5f:9e:02:54:12:4e:c3:47:41:6b: 14:f7:06:46:85:9c:c8:cc:2c:c0:8d:4e:ed:9b:5a:87:a1:86: 7a:c4:11:2b:2f:bd:f4:b4:c8:9d:03:d2:35:8a:44:da:0e:27: c7:b6:b1:f3:eb:0f:19:da:9a:ff:13:38:6e:0d:35:c0:a1:81: 3d:02:d2:06:78:05:f9:e0:2e:05:2f:b1:69:1f:6c:22:ee:49: a8:d7:d7:cc:43:d6:b2:26:ca:27:9f:0d:96:67:17:e3:f3:e0: 2c:e3:63:9d:bb:29:d6:25:85:65:3c:7d:74:37:84:26:f4:93: 62:79:51:27:06:8b:6d:eb:12:69:53:9f:cd:14:9c:b8:f3:49: f0:cb:20:6d:a8:ff:93:56:36:a3:6c:61:37:f8:2a:47:e0:07: 27:7e:ca:c7:be:86:30:f3:75:a1:bb:2b:f3:27:25:c4:15:9d: f6:a3:14:a2:4a:dd:74:85:c1:1a:02:94:da:36:4d:2c:e6:91: de:8e:74:6b:a3:cf:07:1f:e7:95:3f:2e:42:dc:65:49:aa:06: b9:bb:e1:39:73:33:1f:6d:e6:9d:b5:46:e0:29:11:6b:13:a9: c4:93:bc:be:e4:c9:f0:b0:b5:5d:b4:48:a1:0b:46:59:9e:19: 4f:24:76:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKEUzNEI0RjgwRDlFM0Y3MDBCQ0FDNEM1MkM1QUIyM0VC NUI3RURGQkIwHhcNMjYwMTI0MjIzODI1WhcNMjYwMTMxMjIzODI1WjAYMRYwFAYD VQQDDA02OTc1NDllMS1mNzQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjz/BinvhiVOt7uwuUpr0R9dmPfDTy3MG8uPAnkCh1Sy4b6X537BW+BDL9Fj 1g/n5vdnsyMb81YxEXAxNF++NY07yE9fiRpq+EeZEaNo4AjLvhgp9oTzhRcajDfn 94Dy05+y4nqPPqFfaIChG2+FuV8Dd9eaDlsEyoikV075rIgEm8EMGXwuFA5dT+Gj 0d+NwaR9HS+dRwd520e1JfX2xdAFN5Is5VC5n/MQJGHFPnjXytEOM4klfa+9xeT4 ILpG3EDmybiIHDWpyVE8/rHAysQPgbGLNDipz3tpLhGg/CflpTnQHt13QVkrSS64 npAnY2WitFIgsga/boTZj0wHZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMN6kfW5 z8m0GG0feSyMab5fAlCVMB8GA1UdIwQYMBaAFONLT4DZ4/cAvKxMUsWrI+tbft+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy85NkU2Njc1QTc4 NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3QzhyRXhTeGFzajYxdC0z N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzQwdFBnTm5qOXdDOHJFeFN4YXNqNjF0LTM3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTRCNy85NkU2Njc1QTc4NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3 QzhyRXhTeGFzajYxdC0zN3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYItc6pVT39V+eAlQSTsNHQWsU9wZGhZzIzCzAjU7tm1qHoYZ6xBEr L730tMidA9I1ikTaDifHtrHz6w8Z2pr/EzhuDTXAoYE9AtIGeAX54C4FL7FpH2wi 7kmo19fMQ9ayJsonnw2WZxfj8+As42OduynWJYVlPH10N4Qm9JNieVEnBott6xJp U5/NFJy480nwyyBtqP+TVjajbGE3+CpH4AcnfsrHvoYw83WhuyvzJyXEFZ32oxSi St10hcEaApTaNk0s5pHejnRro88HH+eVPy5C3GVJqga5u+E5czMfbeadtUbgKRFr E6nEk7y+5MnwsLVdtEihC0ZZnhlPJHYK -----END CERTIFICATE-----Generated at Sun Jan 25 12:38:19 2026 by rpki-client