This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft File: 2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft (raw, json) Hash identifier: 34FgRnqsdorSBTPzKS6N1ZpD1PhKY8Hrmd1cA4qJaS0= Subject key identifier: C3:E0:E3:AF:2C:AC:18:16:9E:61:A9:A3:10:B1:8D:E1:A5:63:9D:AB Authority key identifier: D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 Certificate issuer: /CN=A914C4ED/serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Certificate serial: 0255 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft Manifest number: 0250 Signing time: Tue 20 Jan 2026 23:43:38 +0000 Manifest this update: Tue 20 Jan 2026 23:43:37 +0000 Manifest next update: Tue 27 Jan 2026 23:43:37 +0000 Files and hashes: 1: 2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl (hash: 0F5xZ2u9uPej53P9RU4HsVEfkCI5esz9V/8XnSN+zsw=) 2: F060FF0E720D11EDA84BE02EC4F9AE02.roa (hash: MTvQaAV2j4a15rRSTpoB41scqYTwrnry9bJaizx2K5M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 23:43:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 597 (0x255) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED, serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Validity Not Before: Jan 20 23:43:37 2026 GMT Not After : Jan 27 23:43:37 2026 GMT Subject: CN=6970132a-218f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:dd:5f:c6:da:3e:61:2b:99:b0:b2:ac:bc:14: c4:6d:9e:56:f0:db:a8:a9:0a:68:09:88:03:1f:12: 7f:c6:9d:e8:c5:c1:db:96:8e:51:e9:83:81:b1:4c: e7:ca:6f:2c:a6:5c:a7:96:b7:0a:e1:45:0d:53:c3: e9:e5:f7:81:d2:60:ac:8f:92:fd:f5:7f:65:96:7a: 9a:5b:a9:f8:88:72:6d:e6:71:d7:67:48:b4:02:da: ce:b6:69:56:5a:98:d9:f9:b0:09:17:75:2c:59:1d: ff:de:a1:b2:d8:25:fa:fe:13:bd:d5:b8:92:c4:e1: 53:65:2d:f8:93:00:62:54:bd:75:c2:25:4f:54:18: 80:27:60:1a:ac:d5:70:67:e1:48:8a:61:93:1b:6c: 36:54:61:5c:0a:38:28:5c:f9:e4:2d:5a:7c:7b:c3: 8d:bf:88:72:01:25:c5:e0:ca:29:47:d6:74:69:1a: 1f:de:29:3c:6d:42:f0:aa:c3:70:7e:a7:31:3c:e9: 17:16:20:c4:74:de:c2:6a:3e:fe:39:55:e5:a9:d5: 7e:7a:9f:4a:fb:fe:f3:2c:b8:48:96:98:0b:9c:63: 34:00:f2:46:11:24:28:88:2d:c5:bc:21:07:50:86: fe:9d:08:27:94:c0:80:6c:7b:97:a1:9f:b2:91:72: 39:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:E0:E3:AF:2C:AC:18:16:9E:61:A9:A3:10:B1:8D:E1:A5:63:9D:AB X509v3 Authority Key Identifier: keyid:D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:cf:97:86:1c:30:30:c3:62:e3:38:e2:4f:3f:d6:6a:54:e3: a0:4c:37:28:0b:0b:41:7b:fc:a6:1a:da:32:c9:ce:4f:28:5b: e7:60:a6:11:0c:f3:00:06:4d:17:1d:59:61:f1:4a:af:6b:8b: d5:b3:27:24:7d:68:76:e3:2c:2a:a8:0e:9f:66:df:36:5e:9e: 74:29:7c:b7:4f:19:82:56:8c:45:e4:80:60:98:f8:85:14:5f: 92:7d:e5:9d:56:eb:ab:06:b4:37:25:a7:47:f1:2d:98:36:46: d3:b8:1d:a3:a5:65:93:a0:19:d9:c3:3c:60:4e:59:ac:1e:67: a8:ee:40:26:9d:20:4c:e8:28:f7:74:7b:84:fe:16:bf:c7:74: f9:6e:da:13:09:9b:c7:38:26:04:28:fb:4e:bf:5d:8f:31:0e: a3:c5:e4:3d:2a:19:57:e1:01:13:ff:e7:76:2a:c1:52:f9:3d: cd:22:ad:44:b5:d7:82:da:4a:a7:8a:84:8d:4e:91:07:02:42: 58:7f:52:0b:bc:9f:65:0d:1b:ba:f3:53:bc:ee:df:5f:5b:ba: 99:54:f2:fe:5b:00:5f:71:b0:e1:5a:f1:de:e6:83:37:7f:cb: a1:99:15:e2:84:0b:8d:7f:89:00:ef:48:26:b7:e7:e4:0f:2b: 9d:60:4a:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKEQ5ODUyOTE0OENCQTVEREVEM0I3M0Q2MDUyRUUwNTE2 QzAyNEM0RjMwHhcNMjYwMTIwMjM0MzM3WhcNMjYwMTI3MjM0MzM3WjAYMRYwFAYD VQQDDA02OTcwMTMyYS0yMThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoN1fxto+YSuZsLKsvBTEbZ5W8NuoqQpoCYgDHxJ/xp3oxcHblo5R6YOBsUzn ym8splynlrcK4UUNU8Pp5feB0mCsj5L99X9llnqaW6n4iHJt5nHXZ0i0AtrOtmlW WpjZ+bAJF3UsWR3/3qGy2CX6/hO91biSxOFTZS34kwBiVL11wiVPVBiAJ2AarNVw Z+FIimGTG2w2VGFcCjgoXPnkLVp8e8ONv4hyASXF4MopR9Z0aRof3ik8bULwqsNw fqcxPOkXFiDEdN7Caj7+OVXlqdV+ep9K+/7zLLhIlpgLnGM0APJGESQoiC3FvCEH UIb+nQgnlMCAbHuXoZ+ykXI5DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMPg468s rBgWnmGpoxCxjeGlY52rMB8GA1UdIwQYMBaAFNmFKRSMul3e07c9YFLuBRbAJMTz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC83NTk4NDQ0NDcy MEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5NlhkN1R0ejFnVXU0RkZzQWt4 UE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJZVXBGSXk2WGQ3VHR6MWdVdTRGRnNBa3hQTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzRFRC83NTk4NDQ0NDcyMEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5Nlhk N1R0ejFnVXU0RkZzQWt4UE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADz5eGHDAww2LjOOJPP9ZqVOOgTDcoCwtBe/ymGtoyyc5PKFvnYKYR DPMABk0XHVlh8Uqva4vVsyckfWh24ywqqA6fZt82Xp50KXy3TxmCVoxF5IBgmPiF FF+SfeWdVuurBrQ3JadH8S2YNkbTuB2jpWWToBnZwzxgTlmsHmeo7kAmnSBM6Cj3 dHuE/ha/x3T5btoTCZvHOCYEKPtOv12PMQ6jxeQ9KhlX4QET/+d2KsFS+T3NIq1E tdeC2kqnioSNTpEHAkJYf1ILvJ9lDRu681O87t9fW7qZVPL+WwBfcbDhWvHe5oM3 f8uhmRXihAuNf4kA70gmt+fkDyudYEp7 -----END CERTIFICATE-----Generated at Wed Jan 21 13:36:11 2026 by rpki-client