This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.mft File: NM2mWwLxdr_CSHhNqprIp74WU9s.mft (raw, json) Hash identifier: I4kspQdFEmKrJ1GCRvc2LaS/MqDlc/LORWfCroLQ5E0= Subject key identifier: 0B:7B:65:71:2E:82:42:D7:E9:D1:5F:4A:5A:4C:F6:AE:58:DC:21:4A Authority key identifier: 34:CD:A6:5B:02:F1:76:BF:C2:48:78:4D:AA:9A:C8:A7:BE:16:53:DB Certificate issuer: /CN=A91E3DDB/serialNumber=34CDA65B02F176BFC248784DAA9AC8A7BE1653DB Certificate serial: 7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NM2mWwLxdr_CSHhNqprIp74WU9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.mft Manifest number: 7A Signing time: Fri 23 Jan 2026 05:54:35 +0000 Manifest this update: Fri 23 Jan 2026 05:54:35 +0000 Manifest next update: Fri 30 Jan 2026 05:54:35 +0000 Files and hashes: 1: NM2mWwLxdr_CSHhNqprIp74WU9s.crl (hash: WrHDSNrqqCQdj6yrUTWdEqeNVunituMoh6L8jvxCvyk=) 2: B24F568A4C7A11F09CF1A77BC4F9AE02.roa (hash: iZRDXQppbsQwPvsyTvXzZpqvjaraKsPpnctxXUoNoxk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.crl rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NM2mWwLxdr_CSHhNqprIp74WU9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 05:54:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3DDB, serialNumber=34CDA65B02F176BFC248784DAA9AC8A7BE1653DB Validity Not Before: Jan 23 05:54:35 2026 GMT Not After : Jan 30 05:54:35 2026 GMT Subject: CN=69730d1b-b601 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:54:1b:0e:87:53:b3:e8:db:a4:2f:5e:5c:6b: 49:58:ce:a0:1a:0b:2a:70:10:90:af:4b:f1:7a:51: 77:b1:eb:2b:64:bd:ae:41:6a:f8:3e:f7:9e:ba:cc: 54:e3:44:44:77:d7:1d:c1:11:6e:c2:1b:74:05:d2: 65:a4:6c:32:a5:5f:2d:6f:0a:98:9b:e8:56:02:fb: a8:de:22:33:77:2e:01:b8:52:e8:5d:0f:de:37:07: 14:d1:35:93:17:37:28:5f:30:12:10:02:a9:c9:c1: e9:4c:b3:ad:21:45:4c:0c:72:b9:9d:94:26:ca:11: ff:0e:04:57:f8:b4:fc:26:13:10:63:9f:7c:09:50: c5:d2:47:a9:fe:ba:cf:b8:5e:d5:7b:6e:2e:8a:66: e9:de:6a:1c:9c:b0:da:17:59:08:30:a6:0e:c4:66: 81:b6:53:2d:5c:6f:d8:ae:45:3b:ff:77:32:1a:fe: 22:68:12:6f:a9:43:3b:12:a7:c8:f4:e8:0a:50:51: 8c:9d:c1:10:87:63:cf:95:98:23:ec:ab:03:dc:22: 6d:4e:0b:fc:78:09:85:a7:ab:e1:6d:9a:40:b4:6d: 1f:e8:52:1f:92:c7:12:27:a0:04:2c:45:b2:5b:a7: d7:47:08:b1:c3:f8:45:2e:ec:e3:17:ae:f0:0d:30: b9:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:7B:65:71:2E:82:42:D7:E9:D1:5F:4A:5A:4C:F6:AE:58:DC:21:4A X509v3 Authority Key Identifier: keyid:34:CD:A6:5B:02:F1:76:BF:C2:48:78:4D:AA:9A:C8:A7:BE:16:53:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NM2mWwLxdr_CSHhNqprIp74WU9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3DDB/0E3BDAEC472411F095F91B23C4F9AE02/NM2mWwLxdr_CSHhNqprIp74WU9s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:32:82:cb:1b:5c:e1:a2:24:c2:3a:b4:63:6c:8f:c6:69:27: a2:04:00:e5:fe:d8:33:76:b0:28:05:9e:ff:10:15:dd:e4:55: 78:bb:81:f2:19:87:ef:55:a2:43:ef:36:f2:e4:58:5b:eb:f2: 6d:38:89:01:97:30:43:d5:6d:95:ad:67:71:11:a5:56:fb:8a: 08:ad:34:a5:92:0b:d4:71:ed:94:9a:78:40:fd:a9:ca:21:a2: 47:3f:87:6b:6c:8b:98:b4:ac:aa:d6:02:10:e4:3b:29:41:65: 4f:bb:67:0b:0e:c5:9f:ed:13:55:c2:bf:c1:06:ed:02:00:38: bf:dc:2e:d2:55:0d:aa:8b:9b:b2:3d:c6:3b:a9:86:f6:d0:99: b0:53:7f:88:fc:71:c0:bc:1f:67:90:b8:bd:38:23:0f:4f:6e: 90:5b:5d:a5:b5:5d:26:ca:e8:48:5a:96:8e:1e:48:d7:9a:1b: 12:63:cf:ec:74:0b:ed:2e:cf:dc:64:f4:fc:a3:49:23:70:1e: e5:aa:9a:52:76:ec:a6:04:c0:da:26:34:97:dc:97:25:8b:b2: 62:a4:a1:8d:d8:8b:da:b4:c6:7d:77:b8:7a:48:02:41:89:f1: 5e:71:21:a8:89:53:e1:19:56:71:20:c7:4f:84:21:a7:9c:c5: 13:31:58:8b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF M0REQjExMC8GA1UEBRMoMzRDREE2NUIwMkYxNzZCRkMyNDg3ODREQUE5QUM4QTdC RTE2NTNEQjAeFw0yNjAxMjMwNTU0MzVaFw0yNjAxMzAwNTU0MzVaMBgxFjAUBgNV BAMMDTY5NzMwZDFiLWI2MDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSVBsOh1Oz6NukL15ca0lYzqAaCypwEJCvS/F6UXex6ytkva5Bavg+9566zFTj RER31x3BEW7CG3QF0mWkbDKlXy1vCpib6FYC+6jeIjN3LgG4UuhdD943BxTRNZMX NyhfMBIQAqnJwelMs60hRUwMcrmdlCbKEf8OBFf4tPwmExBjn3wJUMXSR6n+us+4 XtV7bi6KZuneahycsNoXWQgwpg7EZoG2Uy1cb9iuRTv/dzIa/iJoEm+pQzsSp8j0 6ApQUYydwRCHY8+VmCPsqwPcIm1OC/x4CYWnq+FtmkC0bR/oUh+SxxInoAQsRbJb p9dHCLHD+EUu7OMXrvANMLnJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUC3tlcS6C Qtfp0V9KWkz2rljcIUowHwYDVR0jBBgwFoAUNM2mWwLxdr/CSHhNqprIp74WU9sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzRERCLzBFM0JEQUVDNDcy NDExRjA5NUY5MUIyM0M0RjlBRTAyL05NMm1Xd0x4ZHJfQ1NIaE5xcHJJcDc0V1U5 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTk0ybVd3THhkcl9DU0hoTnFwcklwNzRXVTlzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUz RERCLzBFM0JEQUVDNDcyNDExRjA5NUY5MUIyM0M0RjlBRTAyL05NMm1Xd0x4ZHJf Q1NIaE5xcHJJcDc0V1U5cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAM4ygssbXOGiJMI6tGNsj8ZpJ6IEAOX+2DN2sCgFnv8QFd3kVXi7gfIZ h+9VokPvNvLkWFvr8m04iQGXMEPVbZWtZ3ERpVb7igitNKWSC9Rx7ZSaeED9qcoh okc/h2tsi5i0rKrWAhDkOylBZU+7ZwsOxZ/tE1XCv8EG7QIAOL/cLtJVDaqLm7I9 xjuphvbQmbBTf4j8ccC8H2eQuL04Iw9PbpBbXaW1XSbK6Ehalo4eSNeaGxJjz+x0 C+0uz9xk9PyjSSNwHuWqmlJ27KYEwNomNJfclyWLsmKkoY3Yi9q0xn13uHpIAkGJ 8V5xIaiJU+EZVnEgx0+EIaecxRMxWIs= -----END CERTIFICATE-----Generated at Sun Jan 25 02:48:58 2026 by rpki-client