This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft File: XLKYvBpwUBeAXFYfCQoNR5UOar0.mft (raw, json) Hash identifier: WpVfdBlcbLQAQWZZTVZzycfed2plmyKT/pQ99eeSBVA= Subject key identifier: AD:02:7A:85:6C:34:E3:D3:FF:DD:ED:45:C3:54:EF:F4:9D:09:48:88 Authority key identifier: 5C:B2:98:BC:1A:70:50:17:80:5C:56:1F:09:0A:0D:47:95:0E:6A:BD Certificate issuer: /CN=A912BFC5/serialNumber=5CB298BC1A705017805C561F090A0D47950E6ABD Certificate serial: 2579 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft Manifest number: 2579 Signing time: Fri 16 Jan 2026 14:16:24 +0000 Manifest this update: Fri 16 Jan 2026 14:16:23 +0000 Manifest next update: Fri 23 Jan 2026 14:16:23 +0000 Files and hashes: 1: XLKYvBpwUBeAXFYfCQoNR5UOar0.crl (hash: mGU/Vb1kvzMRSRZtg0PWvBnWCvPOEJrOrm8mW/eTex8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.crl rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 Jan 2026 14:16:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9593 (0x2579) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BFC5, serialNumber=5CB298BC1A705017805C561F090A0D47950E6ABD Validity Not Before: Jan 16 14:16:23 2026 GMT Not After : Jan 23 14:16:23 2026 GMT Subject: CN=696a4838-a84a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e1:ce:ca:ca:63:a6:32:bb:bb:3a:22:a3:ea: 3e:53:64:2b:de:15:7c:05:5e:b7:37:d6:0e:dd:c7: 8d:48:99:eb:83:28:fc:3b:d4:a9:ba:2f:80:b7:8d: 24:d0:51:27:54:fb:be:a3:b2:54:e4:0b:a8:a3:d9: 8e:2e:a5:19:57:c3:c4:26:f2:39:ac:9e:b9:76:ab: 5c:7a:27:8f:d1:d4:a2:4a:51:8d:22:71:33:15:5a: 39:f2:2f:8f:0b:cd:6e:d3:28:e4:28:ee:7b:82:6a: a8:65:d4:6c:d2:5d:c4:20:ee:f7:dd:e3:c1:5f:d8: a3:fe:74:d3:59:07:c8:58:87:dc:08:44:ff:11:01: 70:6d:65:66:bc:4c:71:52:7f:be:28:8a:70:3d:9c: 41:a5:1a:c4:d5:e0:14:de:50:4b:b7:69:a8:0f:67: 8d:42:c1:7d:4c:df:36:b7:22:de:0c:5b:d7:3b:03: 70:ca:fc:bf:6e:a0:64:3f:52:42:b7:b8:49:8c:5e: 28:a6:68:38:3e:53:d4:03:45:e2:07:f5:fe:c8:7e: 26:2d:be:ec:d1:7a:0d:9d:a0:22:fd:cd:fc:bb:36: d5:6c:f3:ad:01:df:54:07:ae:44:fc:de:79:c5:57: 1d:91:70:41:a4:c6:b5:d7:6c:01:44:49:0c:29:37: cb:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:02:7A:85:6C:34:E3:D3:FF:DD:ED:45:C3:54:EF:F4:9D:09:48:88 X509v3 Authority Key Identifier: keyid:5C:B2:98:BC:1A:70:50:17:80:5C:56:1F:09:0A:0D:47:95:0E:6A:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:a0:3f:b8:cc:0a:b8:44:46:17:62:2a:60:4b:58:c7:41:c2: 1d:4a:c1:11:81:61:4f:3a:65:20:1e:ab:a0:ae:36:f4:f6:43: af:d2:b7:71:8e:41:8e:9f:d1:92:09:f3:2a:0f:e6:65:09:c5: 7b:ca:a4:dd:87:78:98:51:0b:27:7d:63:91:2f:f3:83:6f:1b: 61:da:5f:ca:14:fd:ae:9c:84:13:02:84:e2:12:1a:8a:ab:3d: b2:09:1e:96:3b:58:e4:5b:ef:63:7e:8f:a4:80:67:a7:1a:e3: 05:8d:2c:27:5d:91:61:2e:be:db:b0:24:e1:93:94:11:ea:1e: d8:58:97:60:35:db:8a:88:46:07:c6:de:1e:34:33:f9:ef:c3: ad:bd:e2:d8:62:b7:e9:b2:4e:e1:4b:cd:34:96:28:2e:3a:f7: eb:45:8c:5b:a3:c0:bb:11:d0:1f:4c:54:5a:f8:f9:40:ae:19: bf:b3:3c:ad:17:8d:bb:28:1e:d5:34:8e:f3:65:c1:66:9f:c9: 46:b0:98:ac:43:bb:69:8a:73:9a:81:b0:27:4f:22:64:46:65: a3:27:c7:80:d2:e5:d2:37:6f:cb:1b:da:40:8b:cb:c6:47:17: 12:9c:03:c9:7d:3f:d3:03:e8:89:b6:97:e8:5c:2b:54:7b:6c: 32:e2:d4:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJGQzUxMTAvBgNVBAUTKDVDQjI5OEJDMUE3MDUwMTc4MDVDNTYxRjA5MEEwRDQ3 OTUwRTZBQkQwHhcNMjYwMTE2MTQxNjIzWhcNMjYwMTIzMTQxNjIzWjAYMRYwFAYD VQQDDA02OTZhNDgzOC1hODRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3uHOyspjpjK7uzoio+o+U2Qr3hV8BV63N9YO3ceNSJnrgyj8O9Spui+At40k 0FEnVPu+o7JU5Auoo9mOLqUZV8PEJvI5rJ65dqtceieP0dSiSlGNInEzFVo58i+P C81u0yjkKO57gmqoZdRs0l3EIO733ePBX9ij/nTTWQfIWIfcCET/EQFwbWVmvExx Un++KIpwPZxBpRrE1eAU3lBLt2moD2eNQsF9TN82tyLeDFvXOwNwyvy/bqBkP1JC t7hJjF4opmg4PlPUA0XiB/X+yH4mLb7s0XoNnaAi/c38uzbVbPOtAd9UB65E/N55 xVcdkXBBpMa112wBREkMKTfLzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK0CeoVs NOPT/93tRcNU7/SdCUiIMB8GA1UdIwQYMBaAFFyymLwacFAXgFxWHwkKDUeVDmq9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkZDNS8zRjM0MjAzRTI5 MDUxMUU1OTNCRkM2MjZDNEY5QUUwMi9YTEtZdkJwd1VCZUFYRllmQ1FvTlI1VU9h cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hMS1l2QnB3VUJlQVhGWWZDUW9OUjVVT2FyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkZDNS8zRjM0MjAzRTI5MDUxMUU1OTNCRkM2MjZDNEY5QUUwMi9YTEtZdkJwd1VC ZUFYRllmQ1FvTlI1VU9hcjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBboD+4zAq4REYXYipgS1jHQcIdSsERgWFPOmUgHqugrjb09kOv0rdx jkGOn9GSCfMqD+ZlCcV7yqTdh3iYUQsnfWORL/ODbxth2l/KFP2unIQTAoTiEhqK qz2yCR6WO1jkW+9jfo+kgGenGuMFjSwnXZFhLr7bsCThk5QR6h7YWJdgNduKiEYH xt4eNDP578OtveLYYrfpsk7hS800liguOvfrRYxbo8C7EdAfTFRa+PlArhm/szyt F427KB7VNI7zZcFmn8lGsJisQ7tpinOagbAnTyJkRmWjJ8eA0uXSN2/LG9pAi8vG RxcSnAPJfT/TA+iJtpfoXCtUe2wy4tTC -----END CERTIFICATE-----Generated at Sun Jan 18 03:16:37 2026 by rpki-client