This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft File: leqvwkta9LFytYuwGnAc_hltoZk.mft (raw, json) Hash identifier: oT75LLgiiVZRnUlrkkDekxWwnVMETuBuJVCHFEofFzE= Subject key identifier: D4:F2:2D:24:F8:2A:D9:E1:17:24:CB:1D:3F:AC:FD:94:42:9B:61:20 Authority key identifier: 95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 Certificate issuer: /CN=A91972B6/serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Certificate serial: 1191 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft Manifest number: 1187 Signing time: Sat 24 Jan 2026 16:55:40 +0000 Manifest this update: Sat 24 Jan 2026 16:55:39 +0000 Manifest next update: Sat 31 Jan 2026 16:55:39 +0000 Files and hashes: 1: leqvwkta9LFytYuwGnAc_hltoZk.crl (hash: 4tE+Gd04G/+EllqdU/8tnr7mBfooGBK+vV1RGMRFJB8=) 2: 2837843AA3E811EAB397F675C4F9AE02.roa (hash: y9Ue7Mqnzr2Y9oHbpxdCKjDeFirsk0PRqFHYUCwvvtk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 16:55:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4497 (0x1191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972B6, serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Validity Not Before: Jan 24 16:55:39 2026 GMT Not After : Jan 31 16:55:39 2026 GMT Subject: CN=6974f98c-e379 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:52:67:bd:03:c1:79:63:e9:1d:6c:2d:d2:f2: 29:d2:20:f0:6c:57:82:f4:20:8e:d3:26:c6:fc:95: 26:0d:da:45:17:cc:6c:5c:fe:bf:d2:d6:48:d6:f1: 5e:72:80:28:3a:de:dd:12:60:64:30:57:6c:93:75: 10:b2:7a:a7:31:11:65:f8:83:80:14:ff:bd:38:3f: 1b:c4:b7:0f:75:01:55:61:55:3e:22:b1:61:96:91: ef:c4:bd:ad:82:df:e0:1e:b6:04:91:7c:c0:74:0b: a8:b1:a3:c2:b7:44:87:b0:24:e7:24:ce:70:68:37: 28:50:da:c8:c5:a3:62:12:75:47:4b:29:3d:dd:ce: 7b:4f:0e:6f:bd:bc:28:d9:a6:86:ae:21:3e:b1:aa: ec:fd:17:2c:97:a7:c3:b9:e5:4c:aa:64:cd:fd:ee: 99:e4:98:54:f4:c6:d6:bc:96:bd:a4:59:bb:14:34: a0:e1:e1:88:a9:24:44:e8:b2:f1:9f:9b:30:26:63: b7:6b:f1:4e:b8:2e:c5:50:1c:02:08:ed:34:36:e6: ae:6e:4c:40:10:8f:6c:47:e6:fe:1f:ae:98:af:8c: 91:a0:1b:d3:14:03:5b:75:fa:63:6d:16:46:c6:96: 01:80:6f:34:f4:d4:be:c2:4a:35:57:6b:84:a0:13: 0e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:F2:2D:24:F8:2A:D9:E1:17:24:CB:1D:3F:AC:FD:94:42:9B:61:20 X509v3 Authority Key Identifier: keyid:95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:cb:1b:21:02:9f:d2:54:b9:d2:65:f7:c6:3c:0f:38:2a:57: 8e:cf:e4:3e:7a:08:50:f1:e2:f6:0d:6a:bf:bb:38:f1:f5:da: 8a:c1:17:f5:ee:4c:74:bc:4a:b4:07:7a:83:c9:0f:0b:48:f4: 8c:df:34:db:e2:1c:e1:97:aa:d5:66:dd:c4:c3:30:78:24:c6: 9f:1f:bd:9e:0b:d7:b7:43:24:72:6c:37:fb:7f:66:c6:47:1e: bb:40:52:84:e4:ca:ea:c6:40:c5:8b:17:d5:c0:19:03:89:ca: 57:a6:38:a7:04:8f:23:f7:66:d2:f6:e9:dc:fd:14:24:b7:34: e7:f3:59:a9:79:4d:ea:4c:cc:70:f2:82:1f:f8:0a:22:2a:0e: 26:99:ce:dc:5a:ee:d6:74:d1:5f:41:9a:f9:67:6e:fe:e2:73: 52:79:a1:8a:5d:cd:00:a3:c1:c3:fd:05:cd:e1:d3:08:68:0d: 6a:73:5a:ea:eb:06:6e:2e:9b:1b:ef:78:cb:45:75:97:81:b9: 3a:74:f5:a4:22:04:d3:b9:17:35:97:75:69:74:19:25:59:29: 54:2c:65:98:63:7f:86:e0:69:49:c5:55:a2:00:dc:c6:7c:d4: 83:39:32:3c:46:d7:dd:14:16:de:dd:fb:fb:b7:0f:15:e8:fa: 72:3c:bf:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyQjYxMTAvBgNVBAUTKDk1RUFBRkMyNEI1QUY0QjE3MkI1OEJCMDFBNzAxQ0ZF MTk2REExOTkwHhcNMjYwMTI0MTY1NTM5WhcNMjYwMTMxMTY1NTM5WjAYMRYwFAYD VQQDDA02OTc0Zjk4Yy1lMzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFJnvQPBeWPpHWwt0vIp0iDwbFeC9CCO0ybG/JUmDdpFF8xsXP6/0tZI1vFe coAoOt7dEmBkMFdsk3UQsnqnMRFl+IOAFP+9OD8bxLcPdQFVYVU+IrFhlpHvxL2t gt/gHrYEkXzAdAuosaPCt0SHsCTnJM5waDcoUNrIxaNiEnVHSyk93c57Tw5vvbwo 2aaGriE+sars/Rcsl6fDueVMqmTN/e6Z5JhU9MbWvJa9pFm7FDSg4eGIqSRE6LLx n5swJmO3a/FOuC7FUBwCCO00NuaubkxAEI9sR+b+H66Yr4yRoBvTFANbdfpjbRZG xpYBgG809NS+wko1V2uEoBMOJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNTyLST4 KtnhFyTLHT+s/ZRCm2EgMB8GA1UdIwQYMBaAFJXqr8JLWvSxcrWLsBpwHP4ZbaGZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJCNi8wODI0M0M4QzEz MkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlMRnl0WXV3R25BY19obHRv WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xlcXZ3a3RhOUxGeXRZdXdHbkFjX2hsdG9aay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJCNi8wODI0M0M4QzEzMkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlM Rnl0WXV3R25BY19obHRvWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4yxshAp/SVLnSZffGPA84KleOz+Q+eghQ8eL2DWq/uzjx9dqKwRf1 7kx0vEq0B3qDyQ8LSPSM3zTb4hzhl6rVZt3EwzB4JMafH72eC9e3QyRybDf7f2bG Rx67QFKE5MrqxkDFixfVwBkDicpXpjinBI8j92bS9unc/RQktzTn81mpeU3qTMxw 8oIf+AoiKg4mmc7cWu7WdNFfQZr5Z27+4nNSeaGKXc0Ao8HD/QXN4dMIaA1qc1rq 6wZuLpsb73jLRXWXgbk6dPWkIgTTuRc1l3VpdBklWSlULGWYY3+G4GlJxVWiANzG fNSDOTI8RtfdFBbe3fv7tw8V6PpyPL+u -----END CERTIFICATE-----Generated at Sun Jan 25 15:50:30 2026 by rpki-client