This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft File: CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft (raw, json) Hash identifier: cX1udU2H214wUq3jAO7Un34SrXURfNy9LlWZht+BMq8= Subject key identifier: D6:72:10:1D:20:C2:9D:0E:21:6C:8E:98:49:38:9F:96:8A:C2:20:89 Authority key identifier: 08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED Certificate issuer: /CN=A916CCFF/serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED Certificate serial: 0518 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft Manifest number: 04FE Signing time: Mon 02 Feb 2026 23:13:13 +0000 Manifest this update: Mon 02 Feb 2026 23:13:12 +0000 Manifest next update: Mon 09 Feb 2026 23:13:12 +0000 Files and hashes: 1: CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl (hash: FddGzGSwBB9RogGx5hFx/HW99DfEWxNLDn85LWFcNnk=) 2: 413AD9F852E411EC9E19AA2FC4F9AE02.roa (hash: Y2Z1jehKepnssjRVP8joGvXLmK9adM98wErhHrOtaeg=) 3: 41E32C9852E411EC9E19AA2FC4F9AE02.roa (hash: i1mD+r6XwMu6On3/bUlN+PaLdP6khHenZ0Z0HUab9AI=) 4: 02F57BD252E711EC931DB95CC4F9AE02.roa (hash: TGHGZPpqAj2jmtX8lTQMi8kBaI8ojiWWIFj1IWycEgs=) 5: 0517C4F0470311EC9E6FA71DC4F9AE02.roa (hash: o+VIx3yy8oMDW/C3RImP2D9X9JrFefZYlsNOIecQzAE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Feb 2026 23:13:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1304 (0x518) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CCFF, serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED Validity Not Before: Feb 2 23:13:12 2026 GMT Not After : Feb 9 23:13:12 2026 GMT Subject: CN=69812f89-0156 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:3e:f0:43:3a:84:4b:a4:1b:2a:dd:fb:9e:68: e1:44:e8:ee:4d:25:40:10:71:15:9a:c1:c4:e6:99: e3:73:44:ce:2b:53:ba:6a:ca:69:8d:6b:d2:a9:b7: c9:b3:7d:e3:78:a4:32:7d:a2:ad:b2:c9:fa:87:c9: f0:0e:51:e1:e2:8f:ad:68:bc:9e:2a:94:9f:b1:a7: f2:ac:ec:e3:be:8c:ea:42:a2:53:a7:3a:a1:e4:64: be:cf:96:b8:24:e6:23:00:b1:98:0a:61:94:8d:20: 8f:df:a8:3c:da:6f:b6:2d:b4:ab:a2:47:2a:74:db: c2:08:34:f6:31:07:48:6e:24:44:ba:b9:08:51:76: 91:0c:61:fb:48:24:39:40:52:ae:29:e3:2f:1e:5a: 9e:0f:25:80:34:85:96:86:b8:ba:80:e2:b4:7c:0b: fe:ef:c0:7f:cc:45:46:ac:ba:0b:c3:16:cb:ea:f0: 03:89:30:55:52:a4:eb:52:e9:25:8b:1c:fe:bf:5f: 8d:48:cf:d2:6b:47:60:40:02:d6:c8:bb:82:f0:c7: 26:ac:16:ed:08:eb:dc:d2:9a:33:23:19:8e:a9:6f: 3a:b7:ee:6e:f6:77:e2:fb:65:24:01:55:30:91:a3: 38:92:c0:fb:ed:64:3d:a9:62:a5:48:39:22:37:c8: ba:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:72:10:1D:20:C2:9D:0E:21:6C:8E:98:49:38:9F:96:8A:C2:20:89 X509v3 Authority Key Identifier: keyid:08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:81:83:f5:6a:cf:e1:98:bf:2e:63:55:82:0b:bb:f1:e5:31: 8e:d8:f3:83:6e:f6:ad:26:c2:00:a3:69:62:ec:d1:db:21:a5: 44:eb:38:4d:94:67:b2:01:07:4b:ac:b6:56:e5:82:58:6d:17: 29:d6:7e:a5:bc:19:0c:a1:a6:0c:cf:31:93:43:aa:61:98:57: 36:c8:c1:9d:c5:e8:d5:22:2f:d1:cb:8f:52:8b:a5:ca:d0:78: b1:38:fd:9a:a2:f6:a6:41:1d:ca:2d:a8:be:17:9b:ee:80:31: 7e:d9:26:a5:d2:0c:5b:a1:50:c1:c4:aa:c1:02:52:f0:54:ec: a6:f8:b0:94:4d:47:1e:a1:4e:05:3e:2b:e7:99:a2:c1:fc:1f: e0:bc:0a:f9:c8:1a:49:8f:7f:29:22:0f:83:1a:8e:82:c3:b0: 3b:cb:0c:d1:ab:24:6a:02:be:22:0a:51:d1:34:a3:22:42:a0: 6d:9e:3b:87:6f:ba:cf:2a:8b:51:2d:0f:f4:4e:05:eb:35:69: 1a:4f:9b:cc:f6:bd:87:bd:1d:2f:d7:53:b8:35:5b:62:7f:3f: 21:79:e9:c9:35:cf:c3:e0:1c:b1:46:cd:70:af:6c:6f:45:7d: 33:9e:3f:82:59:27:9a:19:f5:b2:f8:80:f0:a5:b7:bb:4e:b4: 73:52:44:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNDRkYxMTAvBgNVBAUTKDA4MDM2NjJDNTcxMzI1NzI4RjI0RkFBRDhDQjFBNUYx OTAwNzE1RUQwHhcNMjYwMjAyMjMxMzEyWhcNMjYwMjA5MjMxMzEyWjAYMRYwFAYD VQQDDA02OTgxMmY4OS0wMTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlj7wQzqES6QbKt37nmjhROjuTSVAEHEVmsHE5pnjc0TOK1O6asppjWvSqbfJ s33jeKQyfaKtssn6h8nwDlHh4o+taLyeKpSfsafyrOzjvozqQqJTpzqh5GS+z5a4 JOYjALGYCmGUjSCP36g82m+2LbSrokcqdNvCCDT2MQdIbiREurkIUXaRDGH7SCQ5 QFKuKeMvHlqeDyWANIWWhri6gOK0fAv+78B/zEVGrLoLwxbL6vADiTBVUqTrUukl ixz+v1+NSM/Sa0dgQALWyLuC8McmrBbtCOvc0pozIxmOqW86t+5u9nfi+2UkAVUw kaM4ksD77WQ9qWKlSDkiN8i6EQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNZyEB0g wp0OIWyOmEk4n5aKwiCJMB8GA1UdIwQYMBaAFAgDZixXEyVyjyT6rYyxpfGQBxXt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0NGRi85QTVFQzE2QzQ2 RkUxMUVDOTRFM0QyNEFDNEY5QUUwMi9DQU5tTEZjVEpYS1BKUHF0akxHbDhaQUhG ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBTm1MRmNUSlhLUEpQcXRqTEdsOFpBSEZlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Q0NGRi85QTVFQzE2QzQ2RkUxMUVDOTRFM0QyNEFDNEY5QUUwMi9DQU5tTEZjVEpY S1BKUHF0akxHbDhaQUhGZTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtgYP1as/hmL8uY1WCC7vx5TGO2PODbvatJsIAo2li7NHbIaVE6zhN lGeyAQdLrLZW5YJYbRcp1n6lvBkMoaYMzzGTQ6phmFc2yMGdxejVIi/Ry49Si6XK 0HixOP2aovamQR3KLai+F5vugDF+2Sal0gxboVDBxKrBAlLwVOym+LCUTUceoU4F PivnmaLB/B/gvAr5yBpJj38pIg+DGo6Cw7A7ywzRqyRqAr4iClHRNKMiQqBtnjuH b7rPKotRLQ/0TgXrNWkaT5vM9r2HvR0v11O4NVtifz8heenJNc/D4ByxRs1wr2xv RX0znj+CWSeaGfWy+IDwpbe7TrRzUkQU -----END CERTIFICATE-----Generated at Wed Feb 4 04:55:11 2026 by rpki-client