This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft File: iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft (raw, json) Hash identifier: 0tGMZ9g9fQbqNukQapbCkOfcZuV+5/Ha7oIrWhYEV1k= Subject key identifier: 87:44:25:A6:23:E6:7D:36:D2:9C:97:65:87:10:12:90:6F:EF:8A:E1 Authority key identifier: 88:28:59:D5:23:01:F0:15:71:D9:D4:CF:95:3F:45:E0:75:E0:9A:98 Certificate issuer: /CN=A919D588/serialNumber=882859D52301F01571D9D4CF953F45E075E09A98 Certificate serial: 5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iChZ1SMB8BVx2dTPlT9F4HXgmpg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft Manifest number: 55 Signing time: Sun 25 Jan 2026 06:16:48 +0000 Manifest this update: Sun 25 Jan 2026 06:16:48 +0000 Manifest next update: Sun 01 Feb 2026 06:16:48 +0000 Files and hashes: 1: iChZ1SMB8BVx2dTPlT9F4HXgmpg.crl (hash: Bx1PO1hEhvN2blxo26y78sHe9WUqhu8YmHl63ZWIXmM=) 2: 8AF73C7E7BF511F0BEBF8326C4F9AE02.roa (hash: ccXunp3OE2ONSoYTGcr2m1hcygin6LHeeNQEO7if+44=) 3: 8938B9DA7BF511F0BEBF8326C4F9AE02.roa (hash: vQ9ge67AKzH4HNbVsuxX3Mwi95vAo6POwUTMCo0fB8I=) 4: 5C7DE69E7EFD11F0827C5F1DC4F9AE02.roa (hash: LhJsIUDxJjf34uwAXx8g7B6lkG4erRS20bGVNhkO1Ek=) 5: 8B58F72A7BF511F0BEBF8326C4F9AE02.roa (hash: DPudtrZt3zDLn6cOKt8G2uNXGPQUskKpTDxbAvt9zzA=) 6: 8A65797E7BF511F0BEBF8326C4F9AE02.roa (hash: 8VEPDf924YuQ0JrYCDPzrjF2qm9rSo7AZ2xnXGQmqpY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.crl rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iChZ1SMB8BVx2dTPlT9F4HXgmpg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 06:16:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D588, serialNumber=882859D52301F01571D9D4CF953F45E075E09A98 Validity Not Before: Jan 25 06:16:48 2026 GMT Not After : Feb 1 06:16:48 2026 GMT Subject: CN=6975b550-3892 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:25:0b:dd:7e:76:c5:d8:ca:65:41:8d:44:97: 86:2a:6b:2e:b8:c9:d0:d3:90:3e:ea:8f:61:4e:40: 3a:e5:3b:6f:55:5f:00:f4:b3:4d:53:2c:53:9f:cb: f0:c7:e7:2d:ee:ff:a4:18:1e:54:14:59:97:07:a0: b6:b6:b2:ff:61:ce:fc:78:82:b1:7d:c4:fb:20:00: 53:ea:a1:b8:98:67:98:05:74:85:76:97:da:73:e5: 66:52:ef:51:4e:ca:bc:c1:39:3b:97:5d:17:71:00: f0:0e:f8:26:c5:bd:9f:74:a0:65:c9:6d:1b:51:c6: 68:e4:a1:70:f9:3f:45:c6:e1:9b:83:60:3e:83:43: 08:0b:c2:51:d1:a4:3d:f5:48:31:b3:77:00:14:18: 45:fc:ed:66:12:93:f0:a7:82:50:68:66:f8:4e:20: fb:05:6d:2b:85:4d:62:82:4d:79:6f:16:6f:a8:a9: ec:6d:a2:a8:9e:82:b6:ef:dc:1e:8b:25:c7:a8:19: 0b:33:71:2f:bb:21:90:ef:aa:00:a0:78:2b:45:0d: a1:13:e5:3d:bb:0e:2e:92:9b:3e:53:b7:9e:5d:1b: c3:68:48:80:0d:a7:ec:a4:f5:6c:03:cc:1c:90:4e: 18:92:20:c1:a0:b4:6f:3b:dd:0a:f7:3f:f3:2f:a8: 17:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:44:25:A6:23:E6:7D:36:D2:9C:97:65:87:10:12:90:6F:EF:8A:E1 X509v3 Authority Key Identifier: keyid:88:28:59:D5:23:01:F0:15:71:D9:D4:CF:95:3F:45:E0:75:E0:9A:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iChZ1SMB8BVx2dTPlT9F4HXgmpg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:8f:5d:d4:16:ac:31:b6:a2:b3:f9:1b:4e:0c:9f:b8:54:90: 83:0d:f2:25:b9:a9:37:6f:8d:88:80:0c:45:c5:e0:80:f3:06: aa:b1:c5:f9:dd:80:3c:20:72:64:5d:34:e6:e4:30:de:06:f1: e8:d9:d5:fe:ab:fc:28:16:62:5a:96:49:39:5c:8d:dd:05:c0: 69:ba:be:81:90:8b:39:3c:cd:71:77:18:7e:88:93:74:c3:6d: f1:08:20:dc:b9:ff:45:52:bc:46:ad:f6:fe:bd:36:e4:d1:77: e2:6e:a2:b9:d3:c4:54:71:df:a7:bd:81:60:44:32:f5:1f:c1: 18:23:8b:12:45:93:45:ca:83:15:61:a3:46:30:bd:91:09:cf: 2e:24:0b:30:81:7b:a1:3d:d6:c9:d8:0b:d7:2a:07:ae:fa:fe: dc:9e:ed:e8:67:da:95:4d:90:3c:1e:e8:a4:4f:17:10:2c:bb: 43:be:73:71:9e:cd:ea:8b:67:0b:ab:03:3b:a4:5c:72:36:31: 1f:3f:82:31:dc:03:b6:71:c2:ab:d0:21:05:32:27:72:51:64: 81:46:1d:60:57:ba:a8:69:5e:c1:29:07:6c:03:a2:de:ab:70: af:28:a2:73:a5:80:69:38:7a:9c:55:93:bc:16:7b:af:4d:86: 03:64:5b:33 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RDU4ODExMC8GA1UEBRMoODgyODU5RDUyMzAxRjAxNTcxRDlENENGOTUzRjQ1RTA3 NUUwOUE5ODAeFw0yNjAxMjUwNjE2NDhaFw0yNjAyMDEwNjE2NDhaMBgxFjAUBgNV BAMMDTY5NzViNTUwLTM4OTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCJJQvdfnbF2MplQY1El4Yqay64ydDTkD7qj2FOQDrlO29VXwD0s01TLFOfy/DH 5y3u/6QYHlQUWZcHoLa2sv9hzvx4grF9xPsgAFPqobiYZ5gFdIV2l9pz5WZS71FO yrzBOTuXXRdxAPAO+CbFvZ90oGXJbRtRxmjkoXD5P0XG4ZuDYD6DQwgLwlHRpD31 SDGzdwAUGEX87WYSk/CnglBoZvhOIPsFbSuFTWKCTXlvFm+oqextoqiegrbv3B6L JceoGQszcS+7IZDvqgCgeCtFDaET5T27Di6Smz5Tt55dG8NoSIANp+yk9WwDzByQ ThiSIMGgtG873Qr3P/MvqBc3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUh0QlpiPm fTbSnJdlhxASkG/viuEwHwYDVR0jBBgwFoAUiChZ1SMB8BVx2dTPlT9F4HXgmpgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlENTg4L0JGN0Q1RTc2N0JG MzExRjBBMDVGQUQ4MkM0RjlBRTAyL2lDaFoxU01COEJWeDJkVFBsVDlGNEhYZ21w Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaUNoWjFTTUI4QlZ4MmRUUGxUOUY0SFhnbXBnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlE NTg4L0JGN0Q1RTc2N0JGMzExRjBBMDVGQUQ4MkM0RjlBRTAyL2lDaFoxU01COEJW eDJkVFBsVDlGNEhYZ21wZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJaPXdQWrDG2orP5G04Mn7hUkIMN8iW5qTdvjYiADEXF4IDzBqqxxfnd gDwgcmRdNObkMN4G8ejZ1f6r/CgWYlqWSTlcjd0FwGm6voGQizk8zXF3GH6Ik3TD bfEIINy5/0VSvEat9v69NuTRd+JuornTxFRx36e9gWBEMvUfwRgjixJFk0XKgxVh o0YwvZEJzy4kCzCBe6E91snYC9cqB676/tye7ehn2pVNkDwe6KRPFxAsu0O+c3Ge zeqLZwurAzukXHI2MR8/gjHcA7ZxwqvQIQUyJ3JRZIFGHWBXuqhpXsEpB2wDot6r cK8oonOlgGk4epxVk7wWe69NhgNkWzM= -----END CERTIFICATE-----Generated at Sun Jan 25 15:46:10 2026 by rpki-client