This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft File: tWQnMiZdQL91ypSp7IEZIRwbmzI.mft (raw, json) Hash identifier: ce82A5E6dTPsej9xiICo5pvUGXA82nssj7SUjyFzIyg= Subject key identifier: ED:B6:F8:A7:62:3A:22:09:5E:F0:06:40:EA:79:24:55:4E:84:C8:6C Authority key identifier: B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 Certificate issuer: /CN=A916C128/serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Certificate serial: 2CAA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft Manifest number: 2C01 Signing time: Mon 26 Jan 2026 15:24:04 +0000 Manifest this update: Mon 26 Jan 2026 15:24:03 +0000 Manifest next update: Mon 02 Feb 2026 15:24:03 +0000 Files and hashes: 1: tWQnMiZdQL91ypSp7IEZIRwbmzI.crl (hash: VKlHZmb4eSwbJxLqz4rsKZLdi/yXT9NgVjPoGr9QL/A=) 2: DF821D20ABDE11ED954F5C84C4F9AE02.roa (hash: je3auOg70+6cT16YOal/ttbSxW+A5XuODnJlOPCEZSc=) 3: E0CC928CABDE11ED954F5C84C4F9AE02.roa (hash: LZsU00B4/gx6lo+GhGlRRaLNP1lXi+x7ZDLzlvJoUls=) 4: 4462F034F0EC11EB9D0B176AC4F9AE02.roa (hash: aSO9wjURcYGva8bAjVzZpymdiAuS5bByHQh+Eq4/Ung=) 5: 13461F60ABDC11EDAE837666C4F9AE02.roa (hash: NyqTZQOkUqWoaM40ZktUlOiopL6FbxfHLQstlqudq2c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Feb 2026 15:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11434 (0x2caa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C128, serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Validity Not Before: Jan 26 15:24:03 2026 GMT Not After : Feb 2 15:24:03 2026 GMT Subject: CN=69778714-d371 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:d2:7b:44:eb:44:4b:9a:93:e1:3b:c8:e7:d9: ee:e0:e9:16:fc:e3:1c:a0:d6:e4:44:23:ca:05:c6: 87:4c:ae:9e:03:44:08:46:21:95:95:ad:da:fc:d1: 7e:54:90:d6:bb:27:9a:91:92:9b:5a:21:ed:77:0d: 20:ea:6f:05:31:e8:a3:82:a7:b3:49:1a:a6:82:1a: cf:64:e1:90:d5:c7:7b:58:e5:a7:6e:f5:4f:36:31: ea:a7:5a:23:c3:04:b9:b9:65:91:26:2b:ab:1b:19: 83:cd:ae:aa:2e:01:80:42:83:c2:47:18:be:00:88: ce:dd:7c:8f:63:f1:17:ab:56:4c:ce:30:a5:25:57: 36:ba:d6:71:4d:c2:71:86:f2:ad:80:80:0a:39:5d: 84:ef:6d:dc:2f:90:45:71:2a:8a:97:db:37:27:fe: c4:80:6d:bb:0c:9c:6f:7a:90:b1:5e:45:c5:ca:87: 76:90:fd:dd:0e:62:1f:b0:31:5c:3e:c7:45:e5:90: 98:8a:31:a7:c3:40:e0:4e:40:1a:57:24:08:a6:51: 69:66:9a:af:15:98:44:db:62:cd:2a:4f:3a:64:cb: 2f:dd:29:a6:58:2d:9b:29:6e:06:e4:91:59:f3:f9: 51:27:54:b2:70:65:af:5b:28:10:e5:1f:f6:f9:3a: a4:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:B6:F8:A7:62:3A:22:09:5E:F0:06:40:EA:79:24:55:4E:84:C8:6C X509v3 Authority Key Identifier: keyid:B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:1e:15:bf:89:2b:21:61:19:aa:b7:be:12:c4:e7:40:21:b1: 86:2d:1a:79:bd:6f:88:13:5a:10:ba:a7:77:53:90:20:8b:5b: a4:34:10:41:28:d6:fb:bb:40:25:4c:ab:4a:23:14:74:f0:84: be:b8:0c:b7:18:c5:2d:8d:ae:6e:b9:0f:49:50:f0:b5:de:dc: 63:a3:d8:ab:58:39:f3:16:69:80:fc:96:bc:53:24:94:99:ab: ed:56:8e:f0:80:2e:8d:93:be:d9:1f:3e:7d:10:69:30:cf:68: 42:04:47:95:d9:c8:61:13:a4:d1:ed:76:1e:1d:41:74:b7:d8: d0:36:e8:cf:0a:52:c0:0e:da:59:76:5a:11:54:63:b8:71:23: 0d:ea:bb:ff:3e:b1:0f:6f:b2:59:fb:c2:b8:f0:95:d9:fb:42: 8f:ad:7a:b8:30:9d:06:05:59:cc:e7:e0:8c:f6:27:11:96:97: df:a2:1d:8e:49:cd:40:1b:e7:90:1c:d0:42:01:91:be:fc:42: 83:24:46:27:fe:da:25:84:40:e1:37:76:10:42:54:2e:89:80: 8d:a3:f8:f8:9e:55:22:4e:ed:dd:fc:78:be:e0:b2:ac:57:60: fd:3f:64:fd:89:aa:89:48:f3:69:3c:d2:74:ec:07:ff:a9:8c: 17:40:a9:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMxMjgxMTAvBgNVBAUTKEI1NjQyNzMyMjY1RDQwQkY3NUNBOTRBOUVDODExOTIx MUMxQjlCMzIwHhcNMjYwMTI2MTUyNDAzWhcNMjYwMjAyMTUyNDAzWjAYMRYwFAYD VQQDDA02OTc3ODcxNC1kMzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9tJ7ROtES5qT4TvI59nu4OkW/OMcoNbkRCPKBcaHTK6eA0QIRiGVla3a/NF+ VJDWuyeakZKbWiHtdw0g6m8FMeijgqezSRqmghrPZOGQ1cd7WOWnbvVPNjHqp1oj wwS5uWWRJiurGxmDza6qLgGAQoPCRxi+AIjO3XyPY/EXq1ZMzjClJVc2utZxTcJx hvKtgIAKOV2E723cL5BFcSqKl9s3J/7EgG27DJxvepCxXkXFyod2kP3dDmIfsDFc PsdF5ZCYijGnw0DgTkAaVyQIplFpZpqvFZhE22LNKk86ZMsv3SmmWC2bKW4G5JFZ 8/lRJ1SycGWvWygQ5R/2+TqkgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO22+Kdi OiIJXvAGQOp5JFVOhMhsMB8GA1UdIwQYMBaAFLVkJzImXUC/dcqUqeyBGSEcG5sy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzEyOC82NjRBOUJDQUZB NkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFMOTF5cFNwN0lFWklSd2Jt ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RXUW5NaVpkUUw5MXlwU3A3SUVaSVJ3Ym16SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzEyOC82NjRBOUJDQUZBNkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFM OTF5cFNwN0lFWklSd2JtekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUHhW/iSshYRmqt74SxOdAIbGGLRp5vW+IE1oQuqd3U5Agi1ukNBBB KNb7u0AlTKtKIxR08IS+uAy3GMUtja5uuQ9JUPC13txjo9irWDnzFmmA/Ja8UySU mavtVo7wgC6Nk77ZHz59EGkwz2hCBEeV2chhE6TR7XYeHUF0t9jQNujPClLADtpZ dloRVGO4cSMN6rv/PrEPb7JZ+8K48JXZ+0KPrXq4MJ0GBVnM5+CM9icRlpffoh2O Sc1AG+eQHNBCAZG+/EKDJEYn/tolhEDhN3YQQlQuiYCNo/j4nlUiTu3d/Hi+4LKs V2D9P2T9iaqJSPNpPNJ07Af/qYwXQKk0 -----END CERTIFICATE-----Generated at Mon Jan 26 21:53:28 2026 by rpki-client