This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft File: -NaTomlkzTxaGZ0sJu0iZHog534.mft (raw, json) Hash identifier: nW1kutFl1+kHgzjESi6UkAluZhpFfUfZGN9IInlTHvQ= Subject key identifier: 12:47:41:03:40:CA:9A:F1:8F:66:4B:23:2C:83:01:82:A1:E2:E1:F8 Authority key identifier: F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E Certificate issuer: /CN=A919EF67/serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Certificate serial: 0293 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft Manifest number: 0281 Signing time: Sun 25 Jan 2026 00:49:08 +0000 Manifest this update: Sun 25 Jan 2026 00:49:07 +0000 Manifest next update: Sun 01 Feb 2026 00:49:07 +0000 Files and hashes: 1: -NaTomlkzTxaGZ0sJu0iZHog534.crl (hash: jAEWOwzvZd55qbN0Z6aIxjvFYOT1ZFsIGEiVb4OAh5Y=) 2: 256273EE355011EEBCB7D945C4F9AE02.roa (hash: 04Cy+y4IVlv3nSRQiE3T4udS3Y09bNADoSP454aG6f4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 00:12:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 659 (0x293) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF67, serialNumber=F8D693A26964CD3C5A199D2C26ED22647A20E77E Validity Not Before: Jan 25 00:49:07 2026 GMT Not After : Feb 1 00:49:07 2026 GMT Subject: CN=69756884-725d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:fb:d9:f6:ab:08:14:07:17:cd:75:f8:63:2b: e5:94:81:03:06:98:7f:1b:be:55:2a:d6:2e:43:99: af:4e:2e:57:5f:f0:68:0d:44:3d:95:f4:0d:97:6b: 5c:f1:0c:de:f3:c9:7d:db:5d:26:34:6e:34:9a:3c: 0b:ce:97:cd:7a:4f:10:5e:c4:2f:04:5d:73:11:0e: 75:54:fb:c1:f0:80:77:19:2d:7e:5a:3a:de:68:29: 99:ef:fc:e8:4c:61:c5:10:76:a2:20:a0:c2:e0:c7: 3f:9d:51:48:ba:42:99:b4:74:bf:6c:9d:51:4c:f3: d4:f3:85:e0:d1:9d:28:8c:95:46:3e:e0:63:d0:12: 5a:1d:da:be:00:6a:b5:04:71:f5:d5:72:f5:63:6b: 3a:e2:2d:03:bd:4f:7b:a7:0c:a8:c9:ef:c8:a0:86: 34:e8:74:1b:fd:9b:ea:a5:e4:8c:88:07:4f:56:b4: 89:d7:2d:18:92:b5:39:f4:60:1c:d1:3f:9b:f8:a5: c6:72:ff:5d:44:32:be:7c:cb:39:94:b0:25:79:a5: 45:2f:c3:9f:52:6a:3b:4f:e8:23:c6:1f:ef:19:9b: 6a:45:68:c9:fd:ed:79:fb:fd:be:46:a2:4c:10:51: ae:f4:f8:bf:8f:d3:b4:39:ed:80:22:d0:89:84:b0: 21:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:47:41:03:40:CA:9A:F1:8F:66:4B:23:2C:83:01:82:A1:E2:E1:F8 X509v3 Authority Key Identifier: keyid:F8:D6:93:A2:69:64:CD:3C:5A:19:9D:2C:26:ED:22:64:7A:20:E7:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NaTomlkzTxaGZ0sJu0iZHog534.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF67/12CE58C04BCB11EDBBE5925EC4F9AE02/-NaTomlkzTxaGZ0sJu0iZHog534.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:86:b4:f1:b8:9f:7f:9d:3b:41:94:4f:b6:ef:49:7b:f8:9f: 49:b4:b1:2d:e3:77:ef:68:ce:f5:38:15:90:c8:78:fb:b3:31: 00:0d:7a:92:f3:e1:1e:b3:91:67:5f:83:ef:7e:da:74:f9:5b: c4:6a:e4:ed:43:a8:2e:52:61:d3:62:56:a9:7f:3e:b7:02:69: d3:02:d0:c4:b7:82:ae:d1:ac:02:14:86:2a:10:f5:f0:46:5d: 18:d5:91:9a:29:b0:83:31:06:27:d9:0b:03:7e:ce:4f:ac:eb: f8:ec:78:1a:85:63:9e:c7:5e:6c:00:3e:0f:2c:ec:56:d7:7c: ce:a8:33:a8:61:e2:64:0a:66:f0:88:16:05:ed:45:8c:32:3f: e8:bc:b2:fd:87:87:93:d9:4b:9a:92:41:35:93:42:db:63:c8: 7d:37:17:a1:cf:cb:2e:43:92:6b:c7:28:dd:5f:f3:8d:71:57: db:e1:7c:01:ca:db:46:1b:1f:48:86:e2:c9:4f:c0:b1:77:17: b0:4b:00:c3:14:83:2a:8d:ce:89:de:1b:04:51:19:5d:6f:81: 73:04:b8:0f:fb:87:29:5a:e3:ca:1f:38:c7:e6:d3:bd:4a:e9: 0d:ab:7b:37:6f:e1:50:e7:34:a9:02:d5:28:84:8a:92:2c:f0: e4:0e:fd:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGNjcxMTAvBgNVBAUTKEY4RDY5M0EyNjk2NENEM0M1QTE5OUQyQzI2RUQyMjY0 N0EyMEU3N0UwHhcNMjYwMTI1MDA0OTA3WhcNMjYwMjAxMDA0OTA3WjAYMRYwFAYD VQQDDA02OTc1Njg4NC03MjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm/vZ9qsIFAcXzXX4YyvllIEDBph/G75VKtYuQ5mvTi5XX/BoDUQ9lfQNl2tc 8Qze88l9210mNG40mjwLzpfNek8QXsQvBF1zEQ51VPvB8IB3GS1+WjreaCmZ7/zo TGHFEHaiIKDC4Mc/nVFIukKZtHS/bJ1RTPPU84Xg0Z0ojJVGPuBj0BJaHdq+AGq1 BHH11XL1Y2s64i0DvU97pwyoye/IoIY06HQb/ZvqpeSMiAdPVrSJ1y0YkrU59GAc 0T+b+KXGcv9dRDK+fMs5lLAleaVFL8OfUmo7T+gjxh/vGZtqRWjJ/e15+/2+RqJM EFGu9Pi/j9O0Oe2AItCJhLAhdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBJHQQNA yprxj2ZLIyyDAYKh4uH4MB8GA1UdIwQYMBaAFPjWk6JpZM08WhmdLCbtImR6IOd+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUY2Ny8xMkNFNThDMDRC Q0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pUeGFHWjBzSnUwaVpIb2c1 MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OYVRvbWxrelR4YUdaMHNKdTBpWkhvZzUzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUY2Ny8xMkNFNThDMDRCQ0IxMUVEQkJFNTkyNUVDNEY5QUUwMi8tTmFUb21sa3pU eGFHWjBzSnUwaVpIb2c1MzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClhrTxuJ9/nTtBlE+270l7+J9JtLEt43fvaM71OBWQyHj7szEADXqS 8+Ees5FnX4Pvftp0+VvEauTtQ6guUmHTYlapfz63AmnTAtDEt4Ku0awCFIYqEPXw Rl0Y1ZGaKbCDMQYn2QsDfs5PrOv47HgahWOex15sAD4PLOxW13zOqDOoYeJkCmbw iBYF7UWMMj/ovLL9h4eT2UuakkE1k0LbY8h9Nxehz8suQ5JrxyjdX/ONcVfb4XwB yttGGx9IhuLJT8CxdxewSwDDFIMqjc6J3hsEURldb4FzBLgP+4cpWuPKHzjH5tO9 SukNq3s3b+FQ5zSpAtUohIqSLPDkDv0e -----END CERTIFICATE-----Generated at Sun Jan 25 02:57:37 2026 by rpki-client