This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft File: nT4CCLhd8EngI7NH2psYP8Vrqx4.mft (raw, json) Hash identifier: WN2zPSnDLSfEPVyiUjl/MF9bDgmgwPhY3cHMrPzL5U8= Subject key identifier: 18:5A:43:25:3D:35:EE:5A:44:E3:42:09:A5:02:C1:F2:A6:03:C6:F0 Authority key identifier: 9D:3E:02:08:B8:5D:F0:49:E0:23:B3:47:DA:9B:18:3F:C5:6B:AB:1E Certificate issuer: /CN=A919D6D8/serialNumber=9D3E0208B85DF049E023B347DA9B183FC56BAB1E Certificate serial: 0B2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft Manifest number: 140B Signing time: Sat 24 Jan 2026 18:46:51 +0000 Manifest this update: Sat 24 Jan 2026 18:46:51 +0000 Manifest next update: Sat 31 Jan 2026 18:46:51 +0000 Files and hashes: 1: nT4CCLhd8EngI7NH2psYP8Vrqx4.crl (hash: c2dVDCMx0dWV2Jd4Z099CMAyMbuJDhLsDdz6Uj8BdDE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.crl rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 18:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2859 (0xb2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D6D8, serialNumber=9D3E0208B85DF049E023B347DA9B183FC56BAB1E Validity Not Before: Jan 24 18:46:51 2026 GMT Not After : Jan 31 18:46:51 2026 GMT Subject: CN=6975139b-146a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:21:af:cb:a9:85:26:3c:81:28:35:70:0a:66: dc:32:af:64:06:fa:f2:86:14:2a:a9:34:2c:e2:2f: e3:cc:29:ee:f6:60:2d:76:0e:fb:81:e3:d7:43:dc: c8:e3:00:9b:d4:b7:ca:66:29:01:36:9a:f4:51:5c: 2e:90:35:b6:55:27:52:4a:b1:13:b1:64:c8:64:b9: e8:49:dc:9a:1f:53:0a:a0:e0:cf:c6:7b:58:d6:1a: 41:19:e6:42:67:d8:d9:36:5b:d6:4c:98:ca:b4:14: fd:34:6a:b8:5e:1e:ee:8a:19:ba:c5:b5:f3:e9:45: 67:c1:0e:97:d2:0c:bf:6a:dd:5b:d6:05:69:9b:6f: 36:a5:0f:b0:ee:24:dd:e0:f7:0a:71:53:6b:1b:1d: b0:82:0b:c3:99:a4:aa:13:15:5f:3e:af:a8:97:dc: c9:a3:11:e4:eb:7d:0f:ee:9d:4c:cb:61:cd:bd:b1: eb:2b:2e:1a:ff:e3:84:90:08:d4:1a:88:cb:71:a3: 8b:b5:16:5e:35:b3:b9:5c:0c:67:50:ba:a2:1d:a7: b5:a7:13:bd:83:1d:7d:51:cf:68:71:c3:b1:c2:8c: 30:60:e7:22:d7:49:28:df:e0:36:e2:90:78:b6:45: a9:47:25:2b:a8:6d:cf:02:ff:8d:9c:b9:6f:d7:c6: 69:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:5A:43:25:3D:35:EE:5A:44:E3:42:09:A5:02:C1:F2:A6:03:C6:F0 X509v3 Authority Key Identifier: keyid:9D:3E:02:08:B8:5D:F0:49:E0:23:B3:47:DA:9B:18:3F:C5:6B:AB:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:ac:72:a5:ab:ce:d3:fa:f8:01:ba:ce:24:7f:71:4a:a2:8a: b1:5a:f4:c5:41:21:55:f8:95:87:1f:f8:ea:15:83:0c:5c:31: c0:95:38:1a:1c:40:96:10:05:0d:46:52:c2:94:ce:9c:8f:56: 52:c9:d0:42:47:32:89:89:e0:6d:70:7f:88:7d:a5:bc:69:6a: df:10:7f:dc:91:f0:41:b2:24:96:c6:9d:ad:30:1d:0a:d9:b8: cb:6c:38:73:0e:49:1b:fd:8c:63:ba:c0:66:7f:2e:3f:79:8f: 01:c8:65:93:c3:01:a9:9c:b2:e7:6f:49:d2:9c:19:3a:55:e1: ac:cf:1e:cb:3f:6b:86:63:83:b0:0f:76:28:94:16:7f:0d:2a: 8e:79:fa:34:1f:c0:82:0d:3c:f7:2f:af:1e:04:a7:a4:af:ee: fa:ae:ad:69:85:57:ff:fa:5f:56:03:85:91:b0:2a:8b:24:f0: 1c:46:52:17:b3:e0:61:17:5d:53:a7:a0:03:30:82:2f:8e:6d: 9d:4b:18:40:b1:b7:79:a5:7a:0c:de:d5:0d:99:80:4f:8e:a8: 0b:da:55:52:27:c7:ca:a3:11:44:67:77:b3:06:84:05:89:97: e5:c0:2b:a8:fd:77:1a:85:5e:ab:2f:55:f3:c9:00:4b:01:e8: 99:fc:bb:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2RDgxMTAvBgNVBAUTKDlEM0UwMjA4Qjg1REYwNDlFMDIzQjM0N0RBOUIxODNG QzU2QkFCMUUwHhcNMjYwMTI0MTg0NjUxWhcNMjYwMTMxMTg0NjUxWjAYMRYwFAYD VQQDDA02OTc1MTM5Yi0xNDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsyGvy6mFJjyBKDVwCmbcMq9kBvryhhQqqTQs4i/jzCnu9mAtdg77gePXQ9zI 4wCb1LfKZikBNpr0UVwukDW2VSdSSrETsWTIZLnoSdyaH1MKoODPxntY1hpBGeZC Z9jZNlvWTJjKtBT9NGq4Xh7uihm6xbXz6UVnwQ6X0gy/at1b1gVpm282pQ+w7iTd 4PcKcVNrGx2wggvDmaSqExVfPq+ol9zJoxHk630P7p1My2HNvbHrKy4a/+OEkAjU GojLcaOLtRZeNbO5XAxnULqiHae1pxO9gx19Uc9occOxwowwYOci10ko3+A24pB4 tkWpRyUrqG3PAv+NnLlv18ZphQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBhaQyU9 Ne5aRONCCaUCwfKmA8bwMB8GA1UdIwQYMBaAFJ0+Agi4XfBJ4COzR9qbGD/Fa6se MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDZEOC9BMDM3OTZERTUx QzAxMUVBQjI2NUU4ODBDNEY5QUUwMi9uVDRDQ0xoZDhFbmdJN05IMnBzWVA4VnJx eDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25UNENDTGhkOEVuZ0k3TkgycHNZUDhWcnF4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDZEOC9BMDM3OTZERTUxQzAxMUVBQjI2NUU4ODBDNEY5QUUwMi9uVDRDQ0xoZDhF bmdJN05IMnBzWVA4VnJxeDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNrHKlq87T+vgBus4kf3FKooqxWvTFQSFV+JWHH/jqFYMMXDHAlTga HECWEAUNRlLClM6cj1ZSydBCRzKJieBtcH+IfaW8aWrfEH/ckfBBsiSWxp2tMB0K 2bjLbDhzDkkb/YxjusBmfy4/eY8ByGWTwwGpnLLnb0nSnBk6VeGszx7LP2uGY4Ow D3YolBZ/DSqOefo0H8CCDTz3L68eBKekr+76rq1phVf/+l9WA4WRsCqLJPAcRlIX s+BhF11Tp6ADMIIvjm2dSxhAsbd5pXoM3tUNmYBPjqgL2lVSJ8fKoxFEZ3ezBoQF iZflwCuo/XcahV6rL1XzyQBLAeiZ/Lvf -----END CERTIFICATE-----Generated at Sun Jan 25 07:53:08 2026 by rpki-client