This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft File: cmIg2YvMfcZqPM83Z36go9sJDaQ.mft (raw, json) Hash identifier: RpOYB5MqxcNk9TkpTIIDi7UFXso5y7xGPXZQ+quPQh4= Subject key identifier: 72:7E:B7:50:38:A3:6C:F9:7A:2E:04:5F:7B:0A:CA:64:D6:88:2B:15 Authority key identifier: 72:62:20:D9:8B:CC:7D:C6:6A:3C:CF:37:67:7E:A0:A3:DB:09:0D:A4 Certificate issuer: /CN=A914AE22/serialNumber=726220D98BCC7DC66A3CCF37677EA0A3DB090DA4 Certificate serial: 0C56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft Manifest number: 0C4C Signing time: Mon 26 Jan 2026 18:14:24 +0000 Manifest this update: Mon 26 Jan 2026 18:14:24 +0000 Manifest next update: Mon 02 Feb 2026 18:14:24 +0000 Files and hashes: 1: cmIg2YvMfcZqPM83Z36go9sJDaQ.crl (hash: bhjlskMDbQyp2DxKQQR+00qj3jbVMcyA0dnRQSKYXDE=) 2: 021496F2A4EC11F0A8EB5F7EC4F9AE02.roa (hash: k+6bL1sigdhJhsvVBlCJkl8BzQ8/uafB/3pyO3zl0nM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.crl rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Feb 2026 16:23:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3158 (0xc56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AE22, serialNumber=726220D98BCC7DC66A3CCF37677EA0A3DB090DA4 Validity Not Before: Jan 26 18:14:24 2026 GMT Not After : Feb 2 18:14:24 2026 GMT Subject: CN=6977af00-419e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:07:82:34:f4:e2:5a:c9:f2:bd:69:d4:50:d7: e9:e4:61:24:b4:9d:0d:e6:31:c3:fe:96:2f:97:2a: 37:6f:cc:00:67:24:99:4a:e3:23:f9:2a:2d:c5:a7: a2:23:e1:03:65:d8:8c:51:b9:7f:79:ee:a2:ff:af: 84:6d:b8:ac:f0:63:54:94:f2:4a:1e:b3:73:ce:74: 9e:c4:48:34:25:21:b7:f8:29:7c:c0:f7:8c:ba:83: 91:a4:44:fa:56:38:f2:4b:1f:7c:a4:32:2f:41:e0: 96:13:ee:94:55:b4:cf:fa:b3:9d:6d:5e:b6:c4:3f: bf:d7:87:f4:09:b8:89:8d:89:05:98:1f:9b:e4:20: b0:b1:c0:fe:49:81:28:5c:d3:ad:3f:14:cc:bf:24: f3:e9:c1:9d:84:0d:b0:29:20:35:5d:20:e5:db:d5: e8:55:7e:ad:8c:5d:56:b8:68:53:02:c6:d1:84:c9: 2d:7f:ae:67:87:2d:7c:2a:78:c7:5f:94:e7:d9:67: c8:a3:70:08:76:5b:af:73:11:19:19:a6:66:6a:a6: cf:59:49:f5:1f:c4:88:14:85:b6:14:8e:bd:2d:1c: 5d:0a:c5:c0:47:2c:0a:a7:2d:8f:ae:61:c1:a7:e2: b4:bd:e0:8c:16:a5:9a:1c:ea:71:f2:ac:88:4e:82: 0c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:7E:B7:50:38:A3:6C:F9:7A:2E:04:5F:7B:0A:CA:64:D6:88:2B:15 X509v3 Authority Key Identifier: keyid:72:62:20:D9:8B:CC:7D:C6:6A:3C:CF:37:67:7E:A0:A3:DB:09:0D:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:8c:fe:0b:df:dd:77:b9:d7:b8:d9:6a:a5:38:ff:1a:d4:90: 78:58:0a:3f:78:c6:6f:a4:40:9c:09:fa:5b:67:f8:64:51:90: 73:73:de:91:2b:77:03:37:b4:3d:3e:42:95:aa:9f:d6:1d:11: a2:3b:c0:36:38:78:ac:6c:d2:f4:e6:2e:11:1f:66:cf:3b:38: 12:20:39:58:6b:83:48:3f:2e:bc:70:6b:0d:43:fc:e7:3b:1f: c5:f3:8f:1e:8e:27:cf:b2:42:a8:a4:57:ff:2e:77:12:a5:0a: 97:79:5b:8f:96:b4:12:fc:e7:11:5f:78:e6:13:8a:82:2b:dd: 06:0a:e9:c2:68:f1:ba:5d:a1:99:55:0f:fa:ca:db:2f:f0:95: 9e:97:48:a5:5d:23:97:b2:81:a9:b7:14:47:c0:18:41:11:dc: 8f:06:77:8d:61:d0:d0:52:2b:71:4f:06:db:64:68:47:45:ac: a9:e9:f8:f4:ed:61:65:8b:d9:25:44:9c:71:05:ff:bb:ce:ca: 44:23:f9:c2:00:93:d1:fe:54:1a:ab:5c:74:67:87:b0:2f:a4: 8e:89:ae:b2:3a:b7:d2:dd:6e:4d:d5:85:2e:dd:5d:cd:04:15: 9b:f1:42:1c:e2:8b:a4:10:60:e3:68:55:0a:fe:79:24:11:6f: b5:ee:7e:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFFMjIxMTAvBgNVBAUTKDcyNjIyMEQ5OEJDQzdEQzY2QTNDQ0YzNzY3N0VBMEEz REIwOTBEQTQwHhcNMjYwMTI2MTgxNDI0WhcNMjYwMjAyMTgxNDI0WjAYMRYwFAYD VQQDDA02OTc3YWYwMC00MTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0weCNPTiWsnyvWnUUNfp5GEktJ0N5jHD/pYvlyo3b8wAZySZSuMj+Sotxaei I+EDZdiMUbl/ee6i/6+Ebbis8GNUlPJKHrNzznSexEg0JSG3+Cl8wPeMuoORpET6 VjjySx98pDIvQeCWE+6UVbTP+rOdbV62xD+/14f0CbiJjYkFmB+b5CCwscD+SYEo XNOtPxTMvyTz6cGdhA2wKSA1XSDl29XoVX6tjF1WuGhTAsbRhMktf65nhy18KnjH X5Tn2WfIo3AIdluvcxEZGaZmaqbPWUn1H8SIFIW2FI69LRxdCsXARywKpy2PrmHB p+K0veCMFqWaHOpx8qyIToIM5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHJ+t1A4 o2z5ei4EX3sKymTWiCsVMB8GA1UdIwQYMBaAFHJiINmLzH3GajzPN2d+oKPbCQ2k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUUyMi9CMTc4NDM5RTFC QkYxMUVBQjZBNzRGNzFDNEY5QUUwMi9jbUlnMll2TWZjWnFQTTgzWjM2Z285c0pE YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NtSWcyWXZNZmNacVBNODNaMzZnbzlzSkRhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUUyMi9CMTc4NDM5RTFCQkYxMUVBQjZBNzRGNzFDNEY5QUUwMi9jbUlnMll2TWZj WnFQTTgzWjM2Z285c0pEYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxjP4L3913ude42WqlOP8a1JB4WAo/eMZvpECcCfpbZ/hkUZBzc96R K3cDN7Q9PkKVqp/WHRGiO8A2OHisbNL05i4RH2bPOzgSIDlYa4NIPy68cGsNQ/zn Ox/F848ejifPskKopFf/LncSpQqXeVuPlrQS/OcRX3jmE4qCK90GCunCaPG6XaGZ VQ/6ytsv8JWel0ilXSOXsoGptxRHwBhBEdyPBneNYdDQUitxTwbbZGhHRayp6fj0 7WFli9klRJxxBf+7zspEI/nCAJPR/lQaq1x0Z4ewL6SOia6yOrfS3W5N1YUu3V3N BBWb8UIc4oukEGDjaFUK/nkkEW+17n5I -----END CERTIFICATE-----Generated at Mon Jan 26 19:44:15 2026 by rpki-client