This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft File: Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft (raw, json) Hash identifier: DxQqTLs6z8NwKU77RpZbD+EyHyB5cUtu3Llo7f7stNs= Subject key identifier: 32:52:92:22:D6:E6:A8:2E:F4:09:57:1C:AE:7D:C5:41:D7:B4:C2:C3 Authority key identifier: 43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 Certificate issuer: /CN=A911647C/serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Certificate serial: 0B47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft Manifest number: 0A97 Signing time: Sun 18 Jan 2026 19:13:43 +0000 Manifest this update: Sun 18 Jan 2026 19:13:42 +0000 Manifest next update: Sun 25 Jan 2026 19:13:42 +0000 Files and hashes: 1: Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl (hash: pHNjbKR6+PMrnNCdqCtTdpn5ENux0ym9cHR4n2+AM54=) 2: 8626FFC65AE511EBA452D33EC4F9AE02.roa (hash: 9X7I+brkK/zM7IstcmQqkt3f3WU83UlUm6djQdlHWFo=) 3: 0EA44D4E5ADD11EBB9CEE568C4F9AE02.roa (hash: L+W6w2B2/2JqZHEEy+XRZ0tQqm2y+76IdcVbyBsuS1w=) 4: 84023C06D24611EABDDF5344C4F9AE02.roa (hash: ejIz9Yuuvy/Lj5GU8AUntC0tFJ+QHqAuBe5ozlZ4Gxw=) 5: DCF88EAE5ED811EBAB677671C4F9AE02.roa (hash: HSmuGZlq2yjbC7oby/mLDwMQgWOMUuKo8bggRUwHe8s=) 6: 0DE32D9C2B1E11F0AFEB852DC4F9AE02.roa (hash: UfxAxapspNfCULgapde2dhkYeQjgb9Bzqtz/tQtQdPw=) 7: 61EFB2ACAC3611EDA5995F3FC4F9AE02.roa (hash: dOCznw/J4c94cUvosSW/kOC2oIL6jbmFAL2+O7rkhag=) 8: 553170245AC511EBA052F663C4F9AE02.roa (hash: 1WjAWoIgFya9zcz3aaAfAZPj3TaOx48UOEMbOt7aBvY=) 9: C3E2252E205F11EE8117111CC4F9AE02.roa (hash: 5nE372F+0IwqYdLJZogWsDWbHc80At5gKYtw/eBlXZE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 19:13:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2887 (0xb47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C, serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Validity Not Before: Jan 18 19:13:42 2026 GMT Not After : Jan 25 19:13:42 2026 GMT Subject: CN=696d30e7-3294 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c5:8a:33:96:c1:e8:24:28:a9:80:29:22:9b: da:cc:13:66:21:66:88:c4:09:e9:db:92:a5:76:96: a9:ad:c0:8f:4a:77:0e:bb:83:16:e5:eb:3f:20:60: e4:c3:9e:1b:01:ca:aa:4b:aa:7e:df:5f:d8:65:90: 98:d7:7a:70:07:ad:94:f4:13:c3:fd:38:30:af:af: b7:79:db:7b:47:71:86:c4:64:cb:28:c4:48:bd:b6: a2:c9:b3:13:0b:32:12:83:e3:30:29:49:a0:ea:cd: 92:c9:17:de:df:19:ca:c9:22:0f:6c:92:c0:8a:91: 23:8d:65:4e:2f:ab:f9:8b:c3:d2:58:73:ad:f5:71: 61:43:db:84:7c:4a:a1:1e:bc:d1:a7:56:ed:cf:dd: 01:29:da:28:6c:0a:e9:c8:9d:3f:30:89:7c:7b:ae: f4:dc:8f:1e:15:6f:5c:83:f8:de:77:5c:dd:a6:2c: 0b:1f:6e:e5:38:1b:1d:47:f6:7a:d3:38:a3:3b:00: 3a:35:3d:af:1e:46:b5:3e:78:f7:e0:97:1b:09:c7: 47:25:74:63:a3:be:8e:42:2b:18:9f:f3:5a:a8:ab: c2:f9:a1:d8:14:8f:b9:45:5e:05:ee:02:af:54:54: 49:bc:d3:64:24:56:02:3b:6f:68:10:8c:c8:3b:d3: 9c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:52:92:22:D6:E6:A8:2E:F4:09:57:1C:AE:7D:C5:41:D7:B4:C2:C3 X509v3 Authority Key Identifier: keyid:43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:2c:28:40:da:15:22:f6:dc:80:9b:19:0f:70:bf:7f:2f:f3: d5:69:8b:05:d1:40:6f:c8:d2:6e:41:b7:dc:fa:51:f5:b0:b1: 8b:26:de:f3:a1:f4:53:8c:dc:03:21:e9:34:b5:86:69:18:b5: 00:05:e7:6f:ed:fe:15:3a:62:90:61:82:8a:17:ae:22:91:0c: ac:25:85:87:f9:c1:7a:4a:b2:07:fd:8f:b2:71:a6:a7:ec:43: f6:68:2a:53:10:8a:a1:c6:7f:12:7e:16:4f:fe:59:4d:2d:ac: 8a:3f:70:74:e2:0b:03:1c:d5:bc:0e:49:0d:8c:34:85:9f:d3: 5f:64:d9:57:93:35:63:80:c6:4f:38:27:59:01:83:bc:87:37: a9:8b:83:e5:de:04:c3:c4:af:eb:92:92:eb:c2:c7:4a:d9:75: 7c:e2:40:b2:47:b3:26:a1:db:29:63:57:14:c3:02:57:79:8c: 48:d3:78:7d:91:e2:58:f8:0f:23:c5:d4:fa:b7:a0:ab:a9:b9: 26:aa:84:9a:4f:d5:fa:28:5f:b6:9f:e2:a0:ab:0b:9d:9d:62: e3:18:64:45:1a:83:72:66:d1:21:22:9d:43:31:7e:54:a3:6b: 1d:c8:e8:74:cc:6f:e0:91:45:f3:60:c1:3d:29:02:20:9c:ec: 27:f2:50:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDQzNkIyQzVGMDNGOTFDQTc0MUM2QTI0OURDMDE1QTZE NTQ0QTYyQTYwHhcNMjYwMTE4MTkxMzQyWhcNMjYwMTI1MTkxMzQyWjAYMRYwFAYD VQQDDA02OTZkMzBlNy0zMjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8WKM5bB6CQoqYApIpvazBNmIWaIxAnp25KldpaprcCPSncOu4MW5es/IGDk w54bAcqqS6p+31/YZZCY13pwB62U9BPD/Tgwr6+3edt7R3GGxGTLKMRIvbaiybMT CzISg+MwKUmg6s2SyRfe3xnKySIPbJLAipEjjWVOL6v5i8PSWHOt9XFhQ9uEfEqh HrzRp1btz90BKdoobArpyJ0/MIl8e6703I8eFW9cg/jed1zdpiwLH27lOBsdR/Z6 0zijOwA6NT2vHka1Pnj34JcbCcdHJXRjo76OQisYn/NaqKvC+aHYFI+5RV4F7gKv VFRJvNNkJFYCO29oEIzIO9OcMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDJSkiLW 5qgu9AlXHK59xUHXtMLDMB8GA1UdIwQYMBaAFENrLF8D+RynQcaiSdwBWm1USmKm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy80MzdDQzQwNjg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhLZEJ4cUpKM0FGYWJWUktZ cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Eyc3NYd1A1SEtkQnhxSkozQUZhYlZSS1lxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjQ3Qy80MzdDQzQwNjg1MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhL ZEJ4cUpKM0FGYWJWUktZcVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8LChA2hUi9tyAmxkPcL9/L/PVaYsF0UBvyNJuQbfc+lH1sLGLJt7z ofRTjNwDIek0tYZpGLUABedv7f4VOmKQYYKKF64ikQysJYWH+cF6SrIH/Y+ycaan 7EP2aCpTEIqhxn8SfhZP/llNLayKP3B04gsDHNW8DkkNjDSFn9NfZNlXkzVjgMZP OCdZAYO8hzepi4Pl3gTDxK/rkpLrwsdK2XV84kCyR7MmodspY1cUwwJXeYxI03h9 keJY+A8jxdT6t6CrqbkmqoSaT9X6KF+2n+KgqwudnWLjGGRFGoNyZtEhIp1DMX5U o2sdyOh0zG/gkUXzYME9KQIgnOwn8lDn -----END CERTIFICATE-----Generated at Tue Jan 20 03:00:46 2026 by rpki-client