This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft File: MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft (raw, json) Hash identifier: gTCMKjmxSi65/qO0XCNgYC+UdqMxssIqcyT5MdUWL4k= Subject key identifier: 4B:B1:C9:E1:F9:0E:62:FE:35:6F:49:95:56:DD:23:AA:16:86:31:42 Authority key identifier: 30:6E:34:FA:84:DA:09:0C:60:01:B3:54:64:BB:8C:42:63:57:D9:28 Certificate issuer: /CN=A91B9EC7/serialNumber=306E34FA84DA090C6001B35464BB8C426357D928 Certificate serial: 019E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft Manifest number: 019B Signing time: Fri 23 Jan 2026 02:36:18 +0000 Manifest this update: Fri 23 Jan 2026 02:36:17 +0000 Manifest next update: Fri 30 Jan 2026 02:36:17 +0000 Files and hashes: 1: MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl (hash: 56ucj38vcUVgWv5TqgS11smIdysqut+mgRF6y0vIU78=) 2: 02FC3E3C82A511EEA1F2710DC4F9AE02.roa (hash: etATH7cpBctXxSFj9qh8jaunQqoMoUcK6DY8J7yW9Mc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 02:36:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 414 (0x19e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9EC7, serialNumber=306E34FA84DA090C6001B35464BB8C426357D928 Validity Not Before: Jan 23 02:36:17 2026 GMT Not After : Jan 30 02:36:17 2026 GMT Subject: CN=6972dea1-61da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:df:fe:8e:0d:69:4b:46:af:e1:b7:fc:37:c3: 52:59:9b:41:f8:7c:39:53:83:7b:56:50:46:d1:2d: 38:06:b1:9a:cc:ce:1d:29:cf:84:e7:0d:7c:5d:54: 53:eb:98:eb:3c:32:17:24:87:a2:dd:9e:9d:89:a7: fe:6f:8e:62:fd:82:c6:78:cb:90:c1:8a:a8:f4:1c: c0:cd:1d:61:ce:70:8f:13:12:2f:e2:cd:c8:67:11: 6c:cf:f3:ca:d5:30:0c:50:f0:4a:15:45:67:28:c6: 29:6b:ba:5d:92:a4:03:1b:2a:8a:63:a6:23:1f:b4: 29:99:41:dd:cb:ab:18:f0:c2:49:cd:96:20:ab:63: 28:ef:67:b8:d6:17:21:64:8a:07:d0:cc:93:81:26: 32:45:9d:a1:ed:37:32:19:a1:b2:92:1a:4e:e5:9e: 54:a1:42:47:c0:e8:0e:60:63:0a:a7:4b:1f:6c:cc: 96:c9:30:42:4f:66:1d:c6:88:2f:40:66:f1:ba:a9: 9e:74:92:8f:bb:0d:e6:01:55:27:fc:ba:61:b3:4d: 7e:0e:0d:a2:f4:b3:68:e8:84:c6:54:f3:70:e6:f8: a5:ea:ce:f9:b1:e6:81:7f:63:92:79:56:09:af:81: d5:a6:ed:3d:b1:1c:58:26:5e:9d:3e:78:db:70:f3: 74:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:B1:C9:E1:F9:0E:62:FE:35:6F:49:95:56:DD:23:AA:16:86:31:42 X509v3 Authority Key Identifier: keyid:30:6E:34:FA:84:DA:09:0C:60:01:B3:54:64:BB:8C:42:63:57:D9:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:65:32:2a:7d:65:1b:10:dd:96:64:05:82:6e:ea:04:fa:f8: fb:21:a6:1d:f2:8d:4a:3e:30:cf:a9:80:6d:71:cd:68:03:c7: 9d:33:ec:cd:10:0b:71:fe:9b:3e:96:c0:d7:9b:bc:70:ce:79: 64:ac:36:2b:c1:5a:ff:f4:0a:ad:1e:08:40:05:98:78:1e:71: 0c:6e:59:54:b0:07:83:e9:25:80:8f:0a:0e:42:89:81:2f:cc: ea:b8:77:86:24:dc:8e:f1:97:33:73:2c:25:31:de:11:7f:f4: b7:6d:32:24:7d:6d:25:30:fa:44:7c:4b:78:a7:d7:c6:76:51: ca:e9:a3:25:a7:8c:d7:d4:1f:8b:f4:03:1d:7b:04:79:c8:0a: f4:7c:3e:f2:63:06:0e:f4:d4:de:f7:0e:7e:3d:a5:17:ab:55: 85:ad:9c:12:b8:31:84:63:cf:0a:8a:0d:53:d4:ed:f7:c4:c0: 30:20:0f:07:47:18:53:12:12:b1:fc:2f:67:c5:9e:3d:55:9e: e2:f3:a1:fb:1c:bc:55:3b:d1:24:18:e5:79:c6:66:bb:58:4b: 56:d4:e5:0a:a3:2b:d1:b2:07:94:d2:ad:cd:97:85:a8:9b:a2: 8e:0c:85:f2:5c:ba:21:28:37:d5:a0:6f:c4:7c:0b:b5:c9:f5: 61:83:3a:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlFQzcxMTAvBgNVBAUTKDMwNkUzNEZBODREQTA5MEM2MDAxQjM1NDY0QkI4QzQy NjM1N0Q5MjgwHhcNMjYwMTIzMDIzNjE3WhcNMjYwMTMwMDIzNjE3WjAYMRYwFAYD VQQDDA02OTcyZGVhMS02MWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApN/+jg1pS0av4bf8N8NSWZtB+Hw5U4N7VlBG0S04BrGazM4dKc+E5w18XVRT 65jrPDIXJIei3Z6diaf+b45i/YLGeMuQwYqo9BzAzR1hznCPExIv4s3IZxFsz/PK 1TAMUPBKFUVnKMYpa7pdkqQDGyqKY6YjH7QpmUHdy6sY8MJJzZYgq2Mo72e41hch ZIoH0MyTgSYyRZ2h7TcyGaGykhpO5Z5UoUJHwOgOYGMKp0sfbMyWyTBCT2Ydxogv QGbxuqmedJKPuw3mAVUn/Lphs01+Dg2i9LNo6ITGVPNw5vil6s75seaBf2OSeVYJ r4HVpu09sRxYJl6dPnjbcPN0TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEuxyeH5 DmL+NW9JlVbdI6oWhjFCMB8GA1UdIwQYMBaAFDBuNPqE2gkMYAGzVGS7jEJjV9ko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUVDNy9FNjNGMkY4QTgy QTMxMUVFOUIxMTczNTdDNEY5QUUwMi9NRzQwLW9UYUNReGdBYk5VWkx1TVFtTlgy U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01HNDAtb1RhQ1F4Z0FiTlVaTHVNUW1OWDJTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUVDNy9FNjNGMkY4QTgyQTMxMUVFOUIxMTczNTdDNEY5QUUwMi9NRzQwLW9UYUNR eGdBYk5VWkx1TVFtTlgyU2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsZTIqfWUbEN2WZAWCbuoE+vj7IaYd8o1KPjDPqYBtcc1oA8edM+zN EAtx/ps+lsDXm7xwznlkrDYrwVr/9AqtHghABZh4HnEMbllUsAeD6SWAjwoOQomB L8zquHeGJNyO8ZczcywlMd4Rf/S3bTIkfW0lMPpEfEt4p9fGdlHK6aMlp4zX1B+L 9AMdewR5yAr0fD7yYwYO9NTe9w5+PaUXq1WFrZwSuDGEY88Kig1T1O33xMAwIA8H RxhTEhKx/C9nxZ49VZ7i86H7HLxVO9EkGOV5xma7WEtW1OUKoyvRsgeU0q3Nl4Wo m6KODIXyXLohKDfVoG/EfAu1yfVhgzr1 -----END CERTIFICATE-----Generated at Sun Jan 25 04:34:25 2026 by rpki-client