This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.mft File: FION2NTh_gMXFCZnF24W4KW2hlE.mft (raw, json) Hash identifier: zn1LsEU9/bmGsmFLlj/ugQONe3RtPhBUmiWQDvYaxFw= Subject key identifier: 8F:34:FF:76:FF:37:1B:7B:96:1B:82:1F:7A:BA:1B:FB:A3:3A:21:66 Authority key identifier: 14:83:8D:D8:D4:E1:FE:03:17:14:26:67:17:6E:16:E0:A5:B6:86:51 Certificate issuer: /CN=A91991D9/serialNumber=14838DD8D4E1FE0317142667176E16E0A5B68651 Certificate serial: 0E62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FION2NTh_gMXFCZnF24W4KW2hlE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.mft Manifest number: 0E5A Signing time: Sat 24 Jan 2026 17:26:54 +0000 Manifest this update: Sat 24 Jan 2026 17:26:53 +0000 Manifest next update: Sat 31 Jan 2026 17:26:53 +0000 Files and hashes: 1: FION2NTh_gMXFCZnF24W4KW2hlE.crl (hash: yIorUWaFuNFfmPnfg4ANNxZEw08efALCtV1Dvcbv4LU=) 2: 14E68648B42D11E9A44FF25BC4F9AE02.roa (hash: aOcvKXW2OwUSyFzRq5Kiuga5ndEep1PmMp0UDb+8XIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.crl rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FION2NTh_gMXFCZnF24W4KW2hlE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:26:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3682 (0xe62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D9, serialNumber=14838DD8D4E1FE0317142667176E16E0A5B68651 Validity Not Before: Jan 24 17:26:53 2026 GMT Not After : Jan 31 17:26:53 2026 GMT Subject: CN=697500dd-05f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:dd:28:8d:b1:1b:25:62:4b:c1:69:c0:6c:34: ea:24:59:aa:4d:34:78:04:65:27:e4:10:a2:df:36: 4a:30:69:30:4d:c8:35:c0:8f:d0:3c:e0:1b:4a:c8: db:fb:aa:d9:d9:31:68:f4:b0:59:f7:58:fa:ce:49: 2e:aa:ec:98:00:2a:b0:8f:50:e2:e8:f4:25:ec:19: 68:d6:de:05:d0:13:90:87:8c:81:d0:90:7b:a6:81: 75:ad:f3:3a:87:14:56:00:05:07:22:61:4f:7a:2f: 99:ad:af:52:57:fc:31:1b:b2:5a:40:68:6e:85:2c: b0:94:d7:88:c6:72:af:07:e4:ca:66:83:23:b1:cb: 86:f5:3c:fd:51:ce:ae:ee:b7:48:27:58:ad:48:2d: 2b:fc:8d:da:fd:35:5c:6b:7b:2a:9f:28:4f:90:05: ef:25:8b:61:8c:06:09:a1:1d:56:2f:26:10:55:3f: d9:75:61:d2:49:5c:e3:ff:94:fe:ce:b3:2b:20:94: b4:0e:2a:d6:43:90:27:06:7e:1f:f0:17:2a:ee:44: 4a:b9:0e:03:0d:33:d9:d3:2e:49:ac:29:ba:7d:58: 89:62:9c:53:28:e2:2c:61:31:48:31:79:30:6b:81: ef:49:cf:62:56:61:d4:1e:6a:e9:63:34:ab:75:70: 28:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:34:FF:76:FF:37:1B:7B:96:1B:82:1F:7A:BA:1B:FB:A3:3A:21:66 X509v3 Authority Key Identifier: keyid:14:83:8D:D8:D4:E1:FE:03:17:14:26:67:17:6E:16:E0:A5:B6:86:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FION2NTh_gMXFCZnF24W4KW2hlE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:51:14:49:10:16:c5:38:48:f5:1e:34:ef:4d:cc:ff:9c:04: 22:aa:6f:db:02:06:9d:24:e7:eb:a1:7f:5d:7d:ff:6f:60:e2: 31:11:39:58:b0:02:66:ea:cd:06:b4:7f:c4:3f:e3:c8:3f:63: 48:46:80:2f:2c:df:6f:9a:e0:ac:ff:71:c5:55:33:00:1d:65: 49:d6:58:c2:d5:ec:8f:1b:6f:e7:65:86:8b:a3:7a:8e:92:0f: 08:3f:70:fb:f9:69:f7:a1:4b:13:fa:67:c3:43:fc:65:86:c1: 74:15:87:f8:09:e3:54:b5:14:8c:bf:d2:be:23:e0:e1:dd:16: bd:73:97:b1:ec:f6:53:21:94:29:b1:88:40:47:72:41:80:bd: 92:b1:08:e1:8b:62:07:29:f0:ec:97:d1:8f:6e:f0:8f:c0:4f: ec:9f:b3:4b:bb:53:8a:af:27:07:e9:2a:81:fb:62:e1:88:64: 88:6c:ab:c9:6a:70:59:4b:4b:ec:fc:6f:41:1c:b0:a8:2e:77: 92:03:13:7c:db:a4:16:37:70:19:ba:c6:d6:2a:89:35:44:c3: f0:9c:8c:74:0c:ba:10:fb:78:05:00:a2:c9:22:97:4f:c5:08: 2a:08:1c:87:26:05:c7:ae:ac:1b:10:b1:50:6b:40:4e:f9:b2: 1c:f7:ff:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDkxMTAvBgNVBAUTKDE0ODM4REQ4RDRFMUZFMDMxNzE0MjY2NzE3NkUxNkUw QTVCNjg2NTEwHhcNMjYwMTI0MTcyNjUzWhcNMjYwMTMxMTcyNjUzWjAYMRYwFAYD VQQDDA02OTc1MDBkZC0wNWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArt0ojbEbJWJLwWnAbDTqJFmqTTR4BGUn5BCi3zZKMGkwTcg1wI/QPOAbSsjb +6rZ2TFo9LBZ91j6zkkuquyYACqwj1Di6PQl7Blo1t4F0BOQh4yB0JB7poF1rfM6 hxRWAAUHImFPei+Zra9SV/wxG7JaQGhuhSywlNeIxnKvB+TKZoMjscuG9Tz9Uc6u 7rdIJ1itSC0r/I3a/TVca3sqnyhPkAXvJYthjAYJoR1WLyYQVT/ZdWHSSVzj/5T+ zrMrIJS0DirWQ5AnBn4f8Bcq7kRKuQ4DDTPZ0y5JrCm6fViJYpxTKOIsYTFIMXkw a4HvSc9iVmHUHmrpYzSrdXAoFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI80/3b/ Nxt7lhuCH3q6G/ujOiFmMB8GA1UdIwQYMBaAFBSDjdjU4f4DFxQmZxduFuCltoZR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEOS8xQzNERDk2NkI0 MjYxMUU5OERFMDg4NEFDNEY5QUUwMi9GSU9OMk5UaF9nTVhGQ1puRjI0VzRLVzJo bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZJT04yTlRoX2dNWEZDWm5GMjRXNEtXMmhsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTFEOS8xQzNERDk2NkI0MjYxMUU5OERFMDg4NEFDNEY5QUUwMi9GSU9OMk5UaF9n TVhGQ1puRjI0VzRLVzJobEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfURRJEBbFOEj1HjTvTcz/nAQiqm/bAgadJOfroX9dff9vYOIxETlY sAJm6s0GtH/EP+PIP2NIRoAvLN9vmuCs/3HFVTMAHWVJ1ljC1eyPG2/nZYaLo3qO kg8IP3D7+Wn3oUsT+mfDQ/xlhsF0FYf4CeNUtRSMv9K+I+Dh3Ra9c5ex7PZTIZQp sYhAR3JBgL2SsQjhi2IHKfDsl9GPbvCPwE/sn7NLu1OKrycH6SqB+2LhiGSIbKvJ anBZS0vs/G9BHLCoLneSAxN826QWN3AZusbWKok1RMPwnIx0DLoQ+3gFAKLJIpdP xQgqCByHJgXHrqwbELFQa0BO+bIc9//6 -----END CERTIFICATE-----Generated at Sun Jan 25 06:12:13 2026 by rpki-client