This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E4E2/41CE9DEEDAFA11F09AF616207CD3641D/gS_w3hw0QUY8yVyohCO-WhCtsXQ.mft File: gS_w3hw0QUY8yVyohCO-WhCtsXQ.mft (raw, json) Hash identifier: wonD1XJGjrbne3MRHXCcZ5/5/LuPOVGvRMxyfpdjNnM= Subject key identifier: 03:F3:BA:28:B9:DD:83:A5:D1:2E:3D:84:4F:AA:8B:80:79:F1:97:4B Authority key identifier: 81:2F:F0:DE:1C:34:41:46:3C:C9:5C:A8:84:23:BE:5A:10:AD:B1:74 Certificate issuer: /CN=A914E4E2/serialNumber=812FF0DE1C3441463CC95CA88423BE5A10ADB174 Certificate serial: 14 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gS_w3hw0QUY8yVyohCO-WhCtsXQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E4E2/41CE9DEEDAFA11F09AF616207CD3641D/gS_w3hw0QUY8yVyohCO-WhCtsXQ.mft Manifest number: 13 Signing time: Sat 17 Jan 2026 06:59:07 +0000 Manifest this update: Sat 17 Jan 2026 06:59:06 +0000 Manifest next update: Sat 24 Jan 2026 06:59:06 +0000 Files and hashes: 1: gS_w3hw0QUY8yVyohCO-WhCtsXQ.crl (hash: glReC7KxvlfuO66v/bRDOj9rZTdL41UMQN8rRSaSsf4=) 2: 6F81A4F8E64811F09CAB54BE376F56BC.roa (hash: Iu+jMJSYCe8XXlTEkGVJAiiEoPkUb2VpGs090qWjkVc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E4E2/41CE9DEEDAFA11F09AF616207CD3641D/gS_w3hw0QUY8yVyohCO-WhCtsXQ.crl rsync://rpki.apnic.net/member_repository/A914E4E2/41CE9DEEDAFA11F09AF616207CD3641D/gS_w3hw0QUY8yVyohCO-WhCtsXQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gS_w3hw0QUY8yVyohCO-WhCtsXQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 06:59:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E4E2, serialNumber=812FF0DE1C3441463CC95CA88423BE5A10ADB174 Validity Not Before: Jan 17 06:59:06 2026 GMT Not After : Jan 24 06:59:06 2026 GMT Subject: CN=696b333b-3e39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a6:16:9c:6a:71:6c:4f:d5:72:f3:dd:fe:54: 8d:a1:62:5b:17:cc:87:b7:d0:2a:e2:c0:7c:3a:74: 7b:44:30:1f:9e:5d:0f:bc:3a:22:ea:55:79:f1:04: 01:16:94:dc:65:a0:aa:26:43:41:f6:c4:ea:47:99: 53:0d:10:97:9e:4d:23:9e:a6:d0:ba:f7:95:2b:3a: 76:c5:3b:b8:3e:9f:03:a9:1c:72:50:40:10:f9:bf: e8:e0:f7:20:b3:3d:86:46:cd:f4:90:5c:d3:fc:92: c6:38:42:fb:74:d0:31:87:a5:bd:a4:aa:71:2d:d4: 26:7e:98:cd:2e:33:9a:76:6a:47:8c:49:53:b3:9c: 2a:d7:12:9c:0f:10:06:3a:8a:dd:8d:0d:cb:2f:dc: 53:29:0b:8c:f5:f9:32:2b:f0:5f:2f:ff:18:43:8c: e7:25:5e:d6:2f:dc:c0:b2:43:39:ce:6b:b4:f9:42: 73:78:4a:bd:a7:ae:33:23:00:b7:d1:d4:63:a3:98: 0f:ce:51:4a:34:89:c7:ca:0a:8c:c1:52:48:f4:3a: 07:21:4a:bd:e9:5d:ac:5d:d4:d9:26:f3:02:b8:f3: bd:de:cb:67:07:ce:c9:ca:bc:cc:33:90:f8:65:bb: 6a:fa:ca:fe:68:a5:2f:85:0d:21:14:19:6b:92:45: 90:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:F3:BA:28:B9:DD:83:A5:D1:2E:3D:84:4F:AA:8B:80:79:F1:97:4B X509v3 Authority Key Identifier: keyid:81:2F:F0:DE:1C:34:41:46:3C:C9:5C:A8:84:23:BE:5A:10:AD:B1:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E4E2/41CE9DEEDAFA11F09AF616207CD3641D/gS_w3hw0QUY8yVyohCO-WhCtsXQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gS_w3hw0QUY8yVyohCO-WhCtsXQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E4E2/41CE9DEEDAFA11F09AF616207CD3641D/gS_w3hw0QUY8yVyohCO-WhCtsXQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:57:9c:0c:04:5a:e7:48:8d:05:d2:d2:79:b2:40:7a:ae:ab: 08:a9:e1:5e:4a:67:72:2d:ed:ac:a9:ad:3a:54:1f:43:2a:85: cf:f8:2d:47:8e:ee:58:f6:41:c1:e4:a1:05:16:8c:19:09:b2: 16:21:26:ff:c9:c9:bc:ef:8e:e2:fa:9e:03:80:9e:e2:12:a9: 14:73:fe:44:bc:ef:d5:80:27:f1:96:36:ae:70:8a:d9:04:29: 77:98:ae:b5:d3:2e:d3:62:ab:e6:2b:a3:26:b6:cf:a8:da:7f: 51:c3:3d:a9:70:b9:9d:ea:1b:d6:bb:a3:b8:d4:e2:7b:f3:53: 30:7a:a2:94:83:8f:c5:7f:68:bc:f9:a1:4d:6c:07:8c:42:2e: 79:4e:c6:38:1f:c6:0c:77:3e:d5:81:a5:03:26:0f:2a:32:21: 81:0e:ff:3c:cf:30:84:c6:4f:55:3d:62:2b:05:33:b0:6c:c3: 71:a4:20:be:aa:6e:26:71:64:fe:97:05:81:cd:2d:07:44:01: aa:0a:8f:1d:7b:d4:60:b7:bf:5d:a6:ca:08:a1:ea:39:08:2b: 64:98:a8:8b:40:44:fd:7a:4e:22:d3:87:e0:bf:75:a1:2d:ca: 42:69:2d:4b:f9:70:fa:51:25:5a:f1:71:61:8f:d8:2b:f8:2e: a9:2a:63:32 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RTRFMjExMC8GA1UEBRMoODEyRkYwREUxQzM0NDE0NjNDQzk1Q0E4ODQyM0JFNUEx MEFEQjE3NDAeFw0yNjAxMTcwNjU5MDZaFw0yNjAxMjQwNjU5MDZaMBgxFjAUBgNV BAMMDTY5NmIzMzNiLTNlMzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQClphacanFsT9Vy893+VI2hYlsXzIe30CriwHw6dHtEMB+eXQ+8OiLqVXnxBAEW lNxloKomQ0H2xOpHmVMNEJeeTSOeptC695UrOnbFO7g+nwOpHHJQQBD5v+jg9yCz PYZGzfSQXNP8ksY4Qvt00DGHpb2kqnEt1CZ+mM0uM5p2akeMSVOznCrXEpwPEAY6 it2NDcsv3FMpC4z1+TIr8F8v/xhDjOclXtYv3MCyQznOa7T5QnN4Sr2nrjMjALfR 1GOjmA/OUUo0icfKCozBUkj0OgchSr3pXaxd1Nkm8wK4873ey2cHzsnKvMwzkPhl u2r6yv5opS+FDSEUGWuSRZAnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUA/O6KLnd g6XRLj2ET6qLgHnxl0swHwYDVR0jBBgwFoAUgS/w3hw0QUY8yVyohCO+WhCtsXQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRFNEUyLzQxQ0U5REVFREFG QTExRjA5QUY2MTYyMDdDRDM2NDFEL2dTX3czaHcwUVVZOHlWeW9oQ08tV2hDdHNY US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZ1NfdzNodzBRVVk4eVZ5b2hDTy1XaEN0c1hRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRF NEUyLzQxQ0U5REVFREFGQTExRjA5QUY2MTYyMDdDRDM2NDFEL2dTX3czaHcwUVVZ OHlWeW9oQ08tV2hDdHNYUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC5XnAwEWudIjQXS0nmyQHquqwip4V5KZ3It7ayprTpUH0Mqhc/4LUeO 7lj2QcHkoQUWjBkJshYhJv/JybzvjuL6ngOAnuISqRRz/kS879WAJ/GWNq5witkE KXeYrrXTLtNiq+Yroya2z6jaf1HDPalwuZ3qG9a7o7jU4nvzUzB6opSDj8V/aLz5 oU1sB4xCLnlOxjgfxgx3PtWBpQMmDyoyIYEO/zzPMITGT1U9YisFM7Bsw3GkIL6q biZxZP6XBYHNLQdEAaoKjx171GC3v12mygih6jkIK2SYqItARP16TiLTh+C/daEt ykJpLUv5cPpRJVrxcWGP2Cv4LqkqYzI= -----END CERTIFICATE-----Generated at Sun Jan 18 02:58:34 2026 by rpki-client