This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft File: lSpNx8TWEJWYvu5awKIG0nuFxWo.mft (raw, json) Hash identifier: 6NHKzt++mDAAECNLjf+4m8XoMzU5+0gofOw9SWzGEe4= Subject key identifier: 10:F9:44:9E:E6:E9:1F:92:A6:88:4F:CB:94:29:2F:C8:83:81:45:DA Authority key identifier: 95:2A:4D:C7:C4:D6:10:95:98:BE:EE:5A:C0:A2:06:D2:7B:85:C5:6A Certificate issuer: /CN=A912D71D/serialNumber=952A4DC7C4D6109598BEEE5AC0A206D27B85C56A Certificate serial: 7E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSpNx8TWEJWYvu5awKIG0nuFxWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft Manifest number: 7C Signing time: Sat 17 Jan 2026 05:49:16 +0000 Manifest this update: Sat 17 Jan 2026 05:49:15 +0000 Manifest next update: Sat 24 Jan 2026 05:49:15 +0000 Files and hashes: 1: lSpNx8TWEJWYvu5awKIG0nuFxWo.crl (hash: Tkiy//nFlDKChLxURRzQsdIFNlAwh5Jua50dcmUTVbQ=) 2: 4002AE6236CF11F0AA705D26C4F9AE02.roa (hash: BjUqiPeyqOJL7zi1VC/yuEDToWrbr9Hg82ANTKNIKSc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.crl rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSpNx8TWEJWYvu5awKIG0nuFxWo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 05:49:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D71D, serialNumber=952A4DC7C4D6109598BEEE5AC0A206D27B85C56A Validity Not Before: Jan 17 05:49:15 2026 GMT Not After : Jan 24 05:49:15 2026 GMT Subject: CN=696b22db-6d4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7a:a8:b3:2f:ed:bb:dc:bc:3b:9e:5e:91:c8: a5:a6:bb:f6:ba:a8:0c:a2:af:58:44:1c:d7:c8:2d: 31:a8:c2:ba:31:a7:3d:e1:8c:85:a1:b5:d8:84:2c: 7d:93:63:a0:6a:5a:15:37:0b:ad:c7:c2:f2:ee:95: 67:40:dc:8d:5d:63:d0:16:ec:cd:90:d2:be:e2:d8: a6:7d:2d:00:e5:06:c8:53:af:37:2c:31:a0:de:34: 1a:bc:24:02:6f:b5:0e:7d:e7:91:a1:33:1a:b4:10: 40:04:f2:c1:67:d8:75:c3:2a:e3:06:b8:d3:83:b4: 69:ab:5b:68:3e:21:63:ca:45:45:5b:dc:d1:ea:ad: 58:3e:16:84:64:17:10:50:70:2d:f0:6b:36:84:c2: 82:e7:10:81:62:b6:46:e3:81:e9:50:19:63:6c:4f: 27:a5:04:c4:11:0f:f0:be:dd:6e:61:0b:29:1f:6b: 47:64:5b:2f:04:5f:1a:01:a0:8c:5f:50:f9:39:25: 7e:71:dd:b6:e6:c5:6b:27:ec:f3:9f:73:9f:d2:b9: 81:e9:9b:02:e7:c3:00:1b:d0:bb:56:d3:45:a4:0d: ee:d7:db:e9:74:60:75:b9:0e:ad:00:dd:8a:6b:79: 6a:ad:ad:fa:c0:71:b8:88:c2:31:87:51:eb:f1:35: d8:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:F9:44:9E:E6:E9:1F:92:A6:88:4F:CB:94:29:2F:C8:83:81:45:DA X509v3 Authority Key Identifier: keyid:95:2A:4D:C7:C4:D6:10:95:98:BE:EE:5A:C0:A2:06:D2:7B:85:C5:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSpNx8TWEJWYvu5awKIG0nuFxWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:6c:7f:e0:83:44:fc:03:7a:e2:cd:0d:1e:e6:f3:5d:97:bd: bf:b4:03:fb:f8:35:b9:35:84:df:a0:35:11:18:fc:f0:8d:e2: e1:73:7b:0d:91:e2:b6:2b:22:a6:2d:60:fc:e3:5a:c0:05:9f: 0b:83:68:53:87:35:21:38:2c:e0:cd:11:de:78:70:7a:dd:03: a4:92:03:62:dc:4a:ba:d2:c3:5a:65:94:fb:77:cf:45:1d:d4: ca:ec:6d:a9:71:56:63:53:47:75:63:a0:b6:b5:02:49:8b:7f: cc:fd:e9:dc:7c:76:a1:0d:f0:dc:ba:0d:8e:2c:d3:a5:8d:ea: d3:c3:c9:e3:d0:2d:9e:72:f1:c0:8d:70:60:fb:51:40:72:77: de:35:75:07:fe:99:c7:8a:17:cd:b7:23:56:c2:9f:46:6d:46: 5d:6d:cb:f4:9d:68:cd:c8:e4:6c:a7:24:4c:af:db:18:2a:0e: 99:52:58:b8:e3:19:a9:18:ca:ff:b1:00:00:2c:72:c7:32:c7: d9:25:39:43:6b:90:af:8e:26:7a:b1:68:43:1d:c3:7a:27:f9: 3f:8c:85:8b:d3:11:3e:7c:3a:d4:1b:82:dc:37:19:6a:76:0d: c9:cd:8e:b2:d3:6c:e0:5e:e9:d5:86:01:af:8c:04:3f:b6:48: a1:c4:97:83 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RDcxRDExMC8GA1UEBRMoOTUyQTREQzdDNEQ2MTA5NTk4QkVFRTVBQzBBMjA2RDI3 Qjg1QzU2QTAeFw0yNjAxMTcwNTQ5MTVaFw0yNjAxMjQwNTQ5MTVaMBgxFjAUBgNV BAMMDTY5NmIyMmRiLTZkNGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBeqizL+273Lw7nl6RyKWmu/a6qAyir1hEHNfILTGowroxpz3hjIWhtdiELH2T Y6BqWhU3C63HwvLulWdA3I1dY9AW7M2Q0r7i2KZ9LQDlBshTrzcsMaDeNBq8JAJv tQ5955GhMxq0EEAE8sFn2HXDKuMGuNODtGmrW2g+IWPKRUVb3NHqrVg+FoRkFxBQ cC3wazaEwoLnEIFitkbjgelQGWNsTyelBMQRD/C+3W5hCykfa0dkWy8EXxoBoIxf UPk5JX5x3bbmxWsn7POfc5/SuYHpmwLnwwAb0LtW00WkDe7X2+l0YHW5Dq0A3Ypr eWqtrfrAcbiIwjGHUevxNdgjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEPlEnubp H5KmiE/LlCkvyIOBRdowHwYDVR0jBBgwFoAUlSpNx8TWEJWYvu5awKIG0nuFxWow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJENzFELzFFMEY5OTJFMzZD RTExRjBBMkE2OUMxRkM0RjlBRTAyL2xTcE54OFRXRUpXWXZ1NWF3S0lHMG51RnhX by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbFNwTng4VFdFSldZdnU1YXdLSUcwbnVGeFdvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJE NzFELzFFMEY5OTJFMzZDRTExRjBBMkE2OUMxRkM0RjlBRTAyL2xTcE54OFRXRUpX WXZ1NWF3S0lHMG51RnhXby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADNsf+CDRPwDeuLNDR7m812Xvb+0A/v4Nbk1hN+gNREY/PCN4uFzew2R 4rYrIqYtYPzjWsAFnwuDaFOHNSE4LODNEd54cHrdA6SSA2LcSrrSw1pllPt3z0Ud 1MrsbalxVmNTR3VjoLa1AkmLf8z96dx8dqEN8Ny6DY4s06WN6tPDyePQLZ5y8cCN cGD7UUByd941dQf+mceKF823I1bCn0ZtRl1ty/SdaM3I5GynJEyv2xgqDplSWLjj GakYyv+xAAAscscyx9klOUNrkK+OJnqxaEMdw3on+T+MhYvTET58OtQbgtw3GWp2 DcnNjrLTbOBe6dWGAa+MBD+2SKHEl4M= -----END CERTIFICATE-----Generated at Sun Jan 18 03:16:12 2026 by rpki-client