This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCD0C/819A023432CB11EF9EA0C96AC4F9AE02/NSwvQv_2bLhqacZ-5hurbhEVTss.mft File: NSwvQv_2bLhqacZ-5hurbhEVTss.mft (raw, json) Hash identifier: jp22I4hL1YFyQtbhDLR5OAPL0OxmsvNo0gKfW2rAGqQ= Subject key identifier: 41:1C:65:A6:08:DA:CD:68:A5:62:2B:45:47:A6:96:A4:96:8E:69:1A Authority key identifier: 35:2C:2F:42:FF:F6:6C:B8:6A:69:C6:7E:E6:1B:AB:6E:11:15:4E:CB Certificate issuer: /CN=A91CCD0C/serialNumber=352C2F42FFF66CB86A69C67EE61BAB6E11154ECB Certificate serial: 012B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSwvQv_2bLhqacZ-5hurbhEVTss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCD0C/819A023432CB11EF9EA0C96AC4F9AE02/NSwvQv_2bLhqacZ-5hurbhEVTss.mft Manifest number: 0129 Signing time: Sun 25 Jan 2026 03:51:47 +0000 Manifest this update: Sun 25 Jan 2026 03:51:46 +0000 Manifest next update: Sun 01 Feb 2026 03:51:46 +0000 Files and hashes: 1: NSwvQv_2bLhqacZ-5hurbhEVTss.crl (hash: kkWu33xntk/ue0QRTWOlzCFzdRoq5Iu9awOffhhETE8=) 2: E5BB4DB260E411EF83727F5CC4F9AE02.roa (hash: sjsLTuWeFwgevoPUUjQqWdyEX8OASo8b7yHbpb8l0pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCD0C/819A023432CB11EF9EA0C96AC4F9AE02/NSwvQv_2bLhqacZ-5hurbhEVTss.crl rsync://rpki.apnic.net/member_repository/A91CCD0C/819A023432CB11EF9EA0C96AC4F9AE02/NSwvQv_2bLhqacZ-5hurbhEVTss.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSwvQv_2bLhqacZ-5hurbhEVTss.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 299 (0x12b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCD0C, serialNumber=352C2F42FFF66CB86A69C67EE61BAB6E11154ECB Validity Not Before: Jan 25 03:51:46 2026 GMT Not After : Feb 1 03:51:46 2026 GMT Subject: CN=69759353-39d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e3:0f:e4:7a:62:41:fe:9f:04:76:e4:2a:9a: 3a:65:c9:2d:ac:77:87:46:f0:27:b7:97:26:d1:45: e5:b1:40:be:36:62:1f:b3:88:29:a1:5e:9f:d2:6d: e5:77:9d:24:52:38:4f:2b:66:9e:28:5d:6d:0b:84: 99:52:ac:b4:35:40:ca:e6:09:c3:50:6c:1e:b3:f1: 26:ee:b0:65:c7:78:c0:d9:b9:ba:b2:af:a8:ce:42: ae:88:0a:34:7d:f4:1d:66:c5:a7:06:b3:26:73:39: 5c:c2:77:20:ba:d4:70:5b:38:5c:c8:f4:a7:0e:2f: a0:a7:5a:d7:7f:eb:50:fd:62:b4:75:e4:41:56:f4: bc:62:45:78:66:a5:f1:d8:e5:79:fb:a3:51:25:4f: bf:bc:d9:3b:96:1a:2c:22:a9:e6:90:97:17:6e:3f: f9:a0:3c:32:d3:86:04:25:c7:a1:09:3c:46:c8:f8: 7f:5e:8d:bd:13:6a:63:cc:8b:8f:de:a6:d2:be:07: c8:20:e5:52:09:f2:2a:b6:3d:f0:24:22:2c:9e:83: 0d:4a:6f:68:a3:ac:58:8d:4c:54:9e:dd:c8:5d:5f: d8:59:75:4c:05:55:dd:b8:1c:5c:e0:09:26:5f:75: ee:b3:54:9e:8a:d0:54:4b:b2:c5:c9:66:e8:d2:12: cd:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:1C:65:A6:08:DA:CD:68:A5:62:2B:45:47:A6:96:A4:96:8E:69:1A X509v3 Authority Key Identifier: keyid:35:2C:2F:42:FF:F6:6C:B8:6A:69:C6:7E:E6:1B:AB:6E:11:15:4E:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCD0C/819A023432CB11EF9EA0C96AC4F9AE02/NSwvQv_2bLhqacZ-5hurbhEVTss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSwvQv_2bLhqacZ-5hurbhEVTss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCD0C/819A023432CB11EF9EA0C96AC4F9AE02/NSwvQv_2bLhqacZ-5hurbhEVTss.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:bf:32:eb:fa:d3:45:62:4a:11:77:22:e8:e6:f6:aa:0d:9d: b0:db:c3:7e:19:d2:5c:68:6e:2f:fa:0f:72:a2:11:3c:8c:26: cb:c7:26:5d:57:74:ef:92:7b:2d:e4:1c:9a:bc:ae:d8:53:f1: c0:71:88:56:f9:2a:a1:eb:e3:d8:26:63:8e:fe:f9:37:6e:dc: 7f:01:30:76:a8:54:c5:c3:db:44:ee:af:ac:5f:64:b3:e8:f3: e9:c5:33:54:e5:cc:3f:43:44:64:73:7a:bf:d5:db:d7:22:cf: 86:d0:25:0f:97:49:a9:49:20:e1:36:8e:da:64:41:08:91:1a: b0:98:7f:b5:63:5f:6d:1a:77:9f:a2:ec:58:30:6c:58:84:1f: d4:4d:c1:23:97:03:55:bf:d0:63:fe:f9:9a:f9:86:79:e3:91: ce:3c:22:f7:1e:f9:db:02:2b:f3:d5:7e:a1:81:1e:6c:e8:07: 90:48:42:38:d2:73:5e:e5:20:f0:6b:c2:4a:71:60:4a:87:bd: 14:eb:50:42:d9:7b:81:53:46:36:ca:be:2b:f7:24:b5:a5:d6: 9c:27:3d:2c:a3:1a:66:71:78:bc:dc:93:ea:cd:87:8a:d5:85: e5:5e:39:c9:ea:10:a6:36:60:53:34:2d:25:98:9e:44:82:47: 67:f9:e5:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NEMEMxMTAvBgNVBAUTKDM1MkMyRjQyRkZGNjZDQjg2QTY5QzY3RUU2MUJBQjZF MTExNTRFQ0IwHhcNMjYwMTI1MDM1MTQ2WhcNMjYwMjAxMDM1MTQ2WjAYMRYwFAYD VQQDDA02OTc1OTM1My0zOWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyeMP5HpiQf6fBHbkKpo6ZcktrHeHRvAnt5cm0UXlsUC+NmIfs4gpoV6f0m3l d50kUjhPK2aeKF1tC4SZUqy0NUDK5gnDUGwes/Em7rBlx3jA2bm6sq+ozkKuiAo0 ffQdZsWnBrMmczlcwncgutRwWzhcyPSnDi+gp1rXf+tQ/WK0deRBVvS8YkV4ZqXx 2OV5+6NRJU+/vNk7lhosIqnmkJcXbj/5oDwy04YEJcehCTxGyPh/Xo29E2pjzIuP 3qbSvgfIIOVSCfIqtj3wJCIsnoMNSm9oo6xYjUxUnt3IXV/YWXVMBVXduBxc4Akm X3Xus1SeitBUS7LFyWbo0hLNKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEEcZaYI 2s1opWIrRUemlqSWjmkaMB8GA1UdIwQYMBaAFDUsL0L/9my4amnGfuYbq24RFU7L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0QwQy84MTlBMDIzNDMy Q0IxMUVGOUVBMEM5NkFDNEY5QUUwMi9OU3d2UXZfMmJMaHFhY1otNWh1cmJoRVZU c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Td3ZRdl8yYkxocWFjWi01aHVyYmhFVlRzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0QwQy84MTlBMDIzNDMyQ0IxMUVGOUVBMEM5NkFDNEY5QUUwMi9OU3d2UXZfMmJM aHFhY1otNWh1cmJoRVZUc3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0vzLr+tNFYkoRdyLo5vaqDZ2w28N+GdJcaG4v+g9yohE8jCbLxyZd V3Tvknst5ByavK7YU/HAcYhW+Sqh6+PYJmOO/vk3btx/ATB2qFTFw9tE7q+sX2Sz 6PPpxTNU5cw/Q0Rkc3q/1dvXIs+G0CUPl0mpSSDhNo7aZEEIkRqwmH+1Y19tGnef ouxYMGxYhB/UTcEjlwNVv9Bj/vma+YZ545HOPCL3HvnbAivz1X6hgR5s6AeQSEI4 0nNe5SDwa8JKcWBKh70U61BC2XuBU0Y2yr4r9yS1pdacJz0soxpmcXi83JPqzYeK 1YXlXjnJ6hCmNmBTNC0lmJ5Egkdn+eUm -----END CERTIFICATE-----Generated at Sun Jan 25 14:14:34 2026 by rpki-client