This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft File: 03F5y7l9aA5qgNwS7kIv6LbjY_U.mft (raw, json) Hash identifier: iQUJBp0LxOX7ibtQAb6ARBq/4S5aQPgqW2ge5Tbx+hs= Subject key identifier: 0B:04:4F:CE:9F:15:C0:B7:6B:5D:53:33:AE:AB:3C:98:89:BA:22:7B Authority key identifier: D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 Certificate issuer: /CN=A911DF1F/serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Certificate serial: 07CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft Manifest number: 0760 Signing time: Tue 20 Jan 2026 21:06:47 +0000 Manifest this update: Tue 20 Jan 2026 21:06:47 +0000 Manifest next update: Tue 27 Jan 2026 21:06:47 +0000 Files and hashes: 1: 03F5y7l9aA5qgNwS7kIv6LbjY_U.crl (hash: GR7XaCGDEwuHIeqSKZo9nGsyoAzFU8V5o6nWUn1X9f0=) 2: 35BE363E668F11EBA738AF61C4F9AE02.roa (hash: GcUaymkPtkuB9knKnQU1h04sFVKLXXAddmnuYc97Q5c=) 3: B57F14B86A8D11EB82AF1144C4F9AE02.roa (hash: 16YSTY2fnFs4eLLfhffiWxoVMVf5CI9XbA8xhp2Kh5I=) 4: B46F239C6A8D11EB82AF1144C4F9AE02.roa (hash: UrcHb9Zyjjqupasl1c8DJT8gL2zSGyTRtXJj/YwkNr0=) 5: 4CBC0878AA5111ECBEC4A312C4F9AE02.roa (hash: nwY3XOAdSWHWQClj8gA6vZzRQBvYNcJIrQ5O7yr8CLI=) 6: B24078AA6A8D11EB82AF1144C4F9AE02.roa (hash: uYKsV4sv50u9alr+4EgeUv5NJJKiEhEbHCBbGXsadQo=) 7: B34D07906A8D11EB82AF1144C4F9AE02.roa (hash: QXMJ/jQUAiv47lj1Bpig1n8sU68IQku+vQs4DkbFezU=) 8: E9ECC32008C611EDBC862E48C4F9AE02.roa (hash: 8R/rZ/mbFR6fAD2MephrS/g3rxSP0cp2rY+Gklzx/Zc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 21:06:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1996 (0x7cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF1F, serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Validity Not Before: Jan 20 21:06:47 2026 GMT Not After : Jan 27 21:06:47 2026 GMT Subject: CN=696fee67-a470 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:34:95:87:90:42:24:52:fa:30:8a:13:54:52: 05:5d:f5:d4:73:69:3a:0c:c5:37:56:62:55:23:ef: f0:7f:24:60:08:35:d0:9a:21:3c:01:55:6e:fe:2b: 0d:2f:e2:22:d0:8a:59:b8:4a:b5:89:f2:e6:65:ee: 79:ff:b6:7d:a2:42:55:e1:bb:61:8f:57:96:f6:89: 4f:f9:56:04:3a:30:21:8e:0c:3b:42:2f:59:51:7b: e3:92:46:73:6a:f5:26:02:b6:a5:76:98:17:bb:6b: 1a:73:53:c8:95:2b:2c:e0:b5:3d:0a:73:28:3e:02: 74:9b:65:14:a2:c6:75:ea:67:7a:7d:fc:a8:87:47: 72:5a:e6:d2:fc:b6:ae:c3:7b:f2:b8:ae:45:2f:bb: b8:c2:a1:2e:2b:fd:b9:37:6b:54:ec:11:30:18:58: b5:2a:65:3b:5e:39:a2:12:77:0e:d3:13:f6:5e:2b: 9e:76:9d:7a:e9:51:41:51:3e:81:aa:36:de:ff:79: f8:4d:ba:7d:27:df:55:18:7e:4a:93:77:5d:8e:e6: 0c:c5:f9:4e:02:a8:b0:ff:ef:09:da:f9:9e:01:de: 9f:1c:d9:06:23:84:1c:f0:50:88:f7:cf:b2:46:00: 22:50:50:2b:7f:7d:40:78:3d:61:4e:bb:e5:92:be: b1:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:04:4F:CE:9F:15:C0:B7:6B:5D:53:33:AE:AB:3C:98:89:BA:22:7B X509v3 Authority Key Identifier: keyid:D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:3a:ae:d1:d9:21:64:ca:b7:3e:21:fb:53:c8:72:44:6f:4b: 9e:10:3d:bb:21:63:45:52:4e:2d:ab:8f:2b:4b:91:e5:13:cd: 3b:23:a3:40:91:dd:13:f4:35:7d:e4:ce:cd:09:f6:18:f5:f8: b2:d0:50:41:7b:7b:f0:4f:02:f5:de:3b:ba:9e:db:4e:1e:95: 7d:ff:e2:7a:3e:79:1e:06:6b:80:6e:53:89:93:5f:68:30:e6: d9:3b:32:e6:73:98:14:01:23:8d:83:ff:02:15:1c:58:f0:57: 55:84:53:f8:38:c8:23:b0:aa:f3:59:27:17:fe:15:dd:e1:ac: cb:29:2e:1a:91:d4:52:bf:e0:19:9a:77:02:95:d0:69:f6:f8: 8e:75:41:fd:f0:e6:4c:5d:9a:da:63:1c:0f:98:e9:cb:bb:e2: 53:83:6e:e9:06:ca:91:df:e1:7e:9e:1e:a5:36:32:a9:6b:f6: e8:52:01:9e:e0:43:68:1c:38:bd:fc:d2:f8:e6:66:b2:7c:d4: 4f:e6:89:f0:05:81:8f:98:25:8e:4c:00:24:6f:5a:9f:45:0c: ad:28:3d:20:86:cf:fb:54:63:97:0f:7e:3d:82:eb:c9:5a:ea: 37:f0:e8:cb:62:3e:73:fa:34:14:20:27:c4:e3:7b:db:a5:3f: 20:0d:a1:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGMUYxMTAvBgNVBAUTKEQzNzE3OUNCQjk3RDY4MEU2QTgwREMxMkVFNDIyRkU4 QjZFMzYzRjUwHhcNMjYwMTIwMjEwNjQ3WhcNMjYwMTI3MjEwNjQ3WjAYMRYwFAYD VQQDDA02OTZmZWU2Ny1hNDcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1DSVh5BCJFL6MIoTVFIFXfXUc2k6DMU3VmJVI+/wfyRgCDXQmiE8AVVu/isN L+Ii0IpZuEq1ifLmZe55/7Z9okJV4bthj1eW9olP+VYEOjAhjgw7Qi9ZUXvjkkZz avUmAraldpgXu2sac1PIlSss4LU9CnMoPgJ0m2UUosZ16md6ffyoh0dyWubS/Lau w3vyuK5FL7u4wqEuK/25N2tU7BEwGFi1KmU7XjmiEncO0xP2Xiuedp166VFBUT6B qjbe/3n4Tbp9J99VGH5Kk3ddjuYMxflOAqiw/+8J2vmeAd6fHNkGI4Qc8FCI98+y RgAiUFArf31AeD1hTrvlkr6x/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAsET86f FcC3a11TM66rPJiJuiJ7MB8GA1UdIwQYMBaAFNNxecu5fWgOaoDcEu5CL+i242P1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREYxRi9GNUNCNkU2QTVD NTMxMUVCQjY2Mjc4NTNDNEY5QUUwMi8wM0Y1eTdsOWFBNXFnTndTN2tJdjZMYmpZ X1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzAzRjV5N2w5YUE1cWdOd1M3a0l2NkxiallfVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REYxRi9GNUNCNkU2QTVDNTMxMUVCQjY2Mjc4NTNDNEY5QUUwMi8wM0Y1eTdsOWFB NXFnTndTN2tJdjZMYmpZX1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnOq7R2SFkyrc+IftTyHJEb0ueED27IWNFUk4tq48rS5HlE807I6NA kd0T9DV95M7NCfYY9fiy0FBBe3vwTwL13ju6nttOHpV9/+J6PnkeBmuAblOJk19o MObZOzLmc5gUASONg/8CFRxY8FdVhFP4OMgjsKrzWScX/hXd4azLKS4akdRSv+AZ mncCldBp9viOdUH98OZMXZraYxwPmOnLu+JTg27pBsqR3+F+nh6lNjKpa/boUgGe 4ENoHDi9/NL45mayfNRP5onwBYGPmCWOTAAkb1qfRQytKD0ghs/7VGOXD349guvJ Wuo38OjLYj5z+jQUICfE43vbpT8gDaFq -----END CERTIFICATE-----Generated at Thu Jan 22 08:06:27 2026 by rpki-client