This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft File: XSeFtU0WPtAepUGLz6NPG3RWtxM.mft (raw, json) Hash identifier: wF+cCNd5EUsD9O1kbPa0bsuKWexwXwhq5LRtigbsmxA= Subject key identifier: 1C:75:33:6D:06:92:16:8E:07:CA:48:B2:8B:52:FD:B9:1B:E0:E2:C9 Authority key identifier: 5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 Certificate issuer: /CN=A9167CC5/serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Certificate serial: 0510 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft Manifest number: 04F5 Signing time: Tue 20 Jan 2026 22:57:16 +0000 Manifest this update: Tue 20 Jan 2026 22:57:15 +0000 Manifest next update: Tue 27 Jan 2026 22:57:15 +0000 Files and hashes: 1: XSeFtU0WPtAepUGLz6NPG3RWtxM.crl (hash: aKCY7HtQhuEDdzaBIpJYDGAIqAu6Z0NWV6jP11GwsC0=) 2: 6337963E4C3D11ECB5FF844FC4F9AE02.roa (hash: aTXEi1LzXTl0g2LyujQDHdlXFvir0+qlzsPxrUIKoNA=) 3: ACE844F047AA11ECA0F05026C4F9AE02.roa (hash: rDIISPx2Jw6kCtly/sr/saYDXZ1Vwq2i5nDputMMqM0=) 4: 1F77EFA44C4011EC952D5A23C4F9AE02.roa (hash: 8xg5MTXXpBnfX0/pQTijWkIRf1MFFgkaGBEoo218ZXc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 22:57:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1296 (0x510) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CC5, serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Validity Not Before: Jan 20 22:57:15 2026 GMT Not After : Jan 27 22:57:15 2026 GMT Subject: CN=6970084c-f617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a4:c2:2e:b4:ce:c5:ba:da:dc:17:99:cd:c3: c2:9f:6a:29:b5:2d:b6:fb:cb:e3:ad:e0:6d:b5:82: 02:9f:fe:01:e9:96:5f:aa:eb:77:e2:5e:f8:05:55: 05:f0:c2:13:0b:b7:ab:30:9c:fa:29:27:7a:ea:a4: 01:7f:5e:17:e1:c2:7e:bc:bf:23:04:ed:46:5d:77: 3d:54:2b:6e:ae:5c:6e:fd:ed:b6:16:10:b2:40:8f: 07:ae:60:bd:7c:25:92:66:ed:e4:d2:12:60:bb:38: 69:6f:74:66:52:c7:e0:5c:ac:39:f9:a6:60:7b:78: 0a:0d:f0:80:23:17:c6:95:02:fd:fc:20:b2:34:c4: 9b:a7:62:83:d7:6e:14:0c:e3:1c:23:fa:56:91:8f: 4a:69:07:25:2f:5d:5c:e8:d3:4f:49:2f:58:d2:8d: f2:d6:b3:e2:6d:b5:da:2f:31:d9:47:ec:75:d5:16: b5:8e:8c:1f:60:7d:fe:78:f6:40:db:42:51:3d:a5: b4:85:ff:e5:3d:e0:4a:c4:54:91:21:5e:fb:a1:17: ad:5d:e5:46:1c:2b:77:ea:7d:9f:75:75:fe:d0:7c: c4:48:b0:16:ed:df:fb:b7:b6:99:04:64:97:2d:0a: 64:43:bb:c5:c2:4d:2e:a6:65:41:f1:32:d1:e7:fe: c1:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:75:33:6D:06:92:16:8E:07:CA:48:B2:8B:52:FD:B9:1B:E0:E2:C9 X509v3 Authority Key Identifier: keyid:5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:cf:1d:bc:b8:e7:9c:77:f2:27:75:4d:49:12:fb:ff:60:7c: cc:2c:f0:fa:cb:79:7a:32:05:f9:41:0c:71:51:26:f1:4e:6f: 33:38:12:06:89:b7:e6:23:e7:df:ef:3d:63:35:af:74:97:6f: 86:ba:1a:75:6d:d1:b9:fc:d3:e1:dc:70:2e:2d:c4:39:34:1f: 3f:54:8e:f7:53:9e:5f:6e:a2:82:35:ae:e6:5a:bd:31:01:27: 3d:82:54:62:90:41:85:b5:00:94:14:58:c0:61:70:e7:54:e1: e7:c2:65:2b:70:d6:ab:7e:4c:55:97:4d:0b:d3:19:f7:aa:0d: f1:5f:37:8d:a0:11:d0:ec:e6:cf:ac:ff:fa:c9:58:82:51:6c: 6a:10:ad:83:89:db:e1:74:8b:b4:ce:6c:38:9f:68:52:3a:56: 85:b9:b2:98:db:1b:60:d7:97:dc:94:79:07:97:c1:1d:02:f7: 66:a0:c0:3b:c5:8a:ff:79:5b:37:44:c6:40:f3:37:2b:98:71: 04:da:43:56:c9:df:13:f8:8b:45:95:d9:bb:57:9a:8e:a9:97: a0:7b:2e:5f:78:df:a8:be:24:6e:ed:9f:ce:5e:95:8a:f9:98: 02:38:db:6b:f5:d5:5f:91:86:40:cb:bd:2b:23:fe:7a:99:0d: ec:65:35:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQzUxMTAvBgNVBAUTKDVEMjc4NUI1NEQxNjNFRDAxRUE1NDE4QkNGQTM0RjFC NzQ1NkI3MTMwHhcNMjYwMTIwMjI1NzE1WhcNMjYwMTI3MjI1NzE1WjAYMRYwFAYD VQQDDA02OTcwMDg0Yy1mNjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApKTCLrTOxbra3BeZzcPCn2optS22+8vjreBttYICn/4B6ZZfqut34l74BVUF 8MITC7erMJz6KSd66qQBf14X4cJ+vL8jBO1GXXc9VCturlxu/e22FhCyQI8HrmC9 fCWSZu3k0hJguzhpb3RmUsfgXKw5+aZge3gKDfCAIxfGlQL9/CCyNMSbp2KD124U DOMcI/pWkY9KaQclL11c6NNPSS9Y0o3y1rPibbXaLzHZR+x11Ra1jowfYH3+ePZA 20JRPaW0hf/lPeBKxFSRIV77oRetXeVGHCt36n2fdXX+0HzESLAW7d/7t7aZBGSX LQpkQ7vFwk0upmVB8TLR5/7BPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBx1M20G khaOB8pIsotS/bkb4OLJMB8GA1UdIwQYMBaAFF0nhbVNFj7QHqVBi8+jTxt0VrcT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NDNS8yQUM0RDMzRTQ2 QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0QWVwVUdMejZOUEczUld0 eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTZUZ0VTBXUHRBZXBVR0x6Nk5QRzNSV3R4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NDNS8yQUM0RDMzRTQ2QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0 QWVwVUdMejZOUEczUld0eE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChzx28uOecd/IndU1JEvv/YHzMLPD6y3l6MgX5QQxxUSbxTm8zOBIG ibfmI+ff7z1jNa90l2+Guhp1bdG5/NPh3HAuLcQ5NB8/VI73U55fbqKCNa7mWr0x ASc9glRikEGFtQCUFFjAYXDnVOHnwmUrcNarfkxVl00L0xn3qg3xXzeNoBHQ7ObP rP/6yViCUWxqEK2DidvhdIu0zmw4n2hSOlaFubKY2xtg15fclHkHl8EdAvdmoMA7 xYr/eVs3RMZA8zcrmHEE2kNWyd8T+ItFldm7V5qOqZegey5feN+oviRu7Z/OXpWK +ZgCONtr9dVfkYZAy70rI/56mQ3sZTWy -----END CERTIFICATE-----Generated at Wed Jan 21 14:44:13 2026 by rpki-client