This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft File: es5to1-2pKn2-ZcMGLyvWydIEZ8.mft (raw, json) Hash identifier: QEITHuzocvjLeI/hHAD50SEQaBE+cadsGuuFj3qGsh4= Subject key identifier: B4:61:F7:46:66:DA:17:03:4F:92:14:6D:CA:C3:D5:9D:20:8D:0F:0A Authority key identifier: 7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F Certificate issuer: /CN=A917E0A8/serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Certificate serial: 0B1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft Manifest number: 0AF6 Signing time: Tue 20 Jan 2026 18:56:44 +0000 Manifest this update: Tue 20 Jan 2026 18:56:44 +0000 Manifest next update: Tue 27 Jan 2026 18:56:44 +0000 Files and hashes: 1: es5to1-2pKn2-ZcMGLyvWydIEZ8.crl (hash: TbYqv4z7zu4rd14XfKSmuzv+icQ+AYzsLd4wD6Q17k0=) 2: D94C07CAF5B211EFBD3CA23FC4F9AE02.roa (hash: nQp6CVVIzkkqk2XECRH9BEijjawtFfwARhBhch9mLWM=) 3: 495324CA39CB11EBB2F08020C4F9AE02.roa (hash: HTyyzc4XtgSz/IIMfSzZJ+tCNDi1E/skEpatmhSWJ4M=) 4: B24920940C6911EC90B57338C4F9AE02.roa (hash: 46zzXAJsoYLrd8w4NMQBrt4B+bpK+w9wRKgXWSkwTsI=) 5: 7E12F8DC4C0A11ECACB7F96AC4F9AE02.roa (hash: 6TG7RmsvnGNbTnnGm7wGd69mXpkPkix9Q5ZbBmiNmUE=) 6: 46F5BC3206A211EEBDA4D34BC4F9AE02.roa (hash: hhE8XmYwxey9Fv68RhRQXSH/5MjemozAt+vDJtNoqQU=) 7: F90F9A403ACB11EC9FEBB367C4F9AE02.roa (hash: uKI22TwxIQY9iFbcuULN7d8S3JosFyv3WIhvtX7yzyk=) 8: D4EFA44673CD11EA8BE69127C4F9AE02.roa (hash: pnzNagfBV7JflMfDBvAJDWyy7ts19fn5YwbkxkgayA8=) 9: C782AE14615911F08635B771C4F9AE02.roa (hash: MaO7vUeiFdOZPyehARwka9eV8U3aNvjxrHmSWVwidY8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 18:56:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2847 (0xb1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Validity Not Before: Jan 20 18:56:44 2026 GMT Not After : Jan 27 18:56:44 2026 GMT Subject: CN=696fcfec-c582 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:0b:1d:91:5d:04:fd:27:61:ed:bf:1d:1d:ea: 47:e0:45:56:4b:35:58:dc:f2:02:1d:b1:cc:d4:df: 11:66:19:1a:62:63:39:74:c1:e4:c8:63:57:49:a7: 0c:a4:f5:4e:c0:7c:5e:a6:7e:a2:75:d9:fb:74:bc: 73:68:36:5f:a4:d4:24:4d:0d:c5:fb:3c:8f:97:7b: fc:52:da:47:2e:fe:84:bc:c3:05:6c:c8:ef:ac:90: 95:a5:b4:2c:c4:86:b1:c2:c7:d0:86:30:a6:ac:b4: 11:b5:76:6b:d4:50:f8:5c:71:04:fc:c3:32:5e:12: e6:c5:73:1b:c4:a1:a9:c7:ff:f0:ff:41:b1:8b:33: 80:06:90:48:26:e5:eb:f1:6d:38:b5:b6:1b:f3:f8: 17:6b:a4:78:07:80:8c:89:af:ed:bd:ff:6d:a1:26: 1b:da:f4:34:0d:86:45:73:ca:20:77:9d:0e:5b:39: e9:1c:02:75:01:7e:0a:40:d7:c8:51:b9:f0:db:b7: d2:23:7c:cc:dd:f3:8b:46:5e:e4:36:fb:33:75:47: ae:7e:a8:08:e7:a2:6d:1a:d0:30:c2:b9:8d:28:36: cb:d2:c1:25:5f:8c:24:c8:e0:94:90:f8:b8:92:2e: 57:e9:e3:38:06:22:37:fb:00:0b:17:ed:e9:62:2c: fe:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:61:F7:46:66:DA:17:03:4F:92:14:6D:CA:C3:D5:9D:20:8D:0F:0A X509v3 Authority Key Identifier: keyid:7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:e5:6a:95:1b:eb:d6:4f:fb:d8:91:89:ed:67:8b:86:4d:f9: 84:93:d0:72:75:15:30:07:98:83:73:80:6f:4d:3b:68:ef:2b: aa:35:ce:96:d3:5c:10:31:14:f9:69:df:2e:f9:c3:d1:3a:0b: 35:9b:66:66:55:97:be:64:ce:a9:c9:03:62:4d:b2:21:ce:dc: ca:ee:f2:e7:c9:e7:45:50:fc:da:48:90:99:68:fb:10:5a:60: 55:71:ef:83:ad:68:c6:fd:91:36:4d:39:da:30:03:51:14:0e: dd:c1:2a:8e:e6:90:24:8b:9c:1a:a6:33:a0:7a:40:9e:91:8b: 10:10:41:63:61:5a:af:15:10:36:df:b2:e4:c8:ce:41:0c:f5: f5:18:69:9e:02:25:e6:7b:1c:a3:c5:b3:bb:fb:6a:dc:d5:72: 81:75:67:31:de:f7:80:df:b8:a7:fd:2a:2f:c5:98:b3:63:89: 0b:e7:98:6d:08:84:e8:12:f4:44:bb:13:74:1f:8f:db:d6:bf: 10:0d:49:27:8c:2e:5a:08:48:69:82:3b:1b:90:15:e2:c6:0e: 2e:5a:8d:f3:22:f5:d4:b0:27:24:d8:d1:a7:01:9d:b3:05:8e: 00:dd:c8:b3:f6:d5:16:49:ea:ac:4b:b2:2d:97:80:81:31:83: 8c:2a:10:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCx8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDdBQ0U2REEzNUZCNkE0QTlGNkY5OTcwQzE4QkNBRjVC Mjc0ODExOUYwHhcNMjYwMTIwMTg1NjQ0WhcNMjYwMTI3MTg1NjQ0WjAYMRYwFAYD VQQDDA02OTZmY2ZlYy1jNTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9AsdkV0E/Sdh7b8dHepH4EVWSzVY3PICHbHM1N8RZhkaYmM5dMHkyGNXSacM pPVOwHxepn6iddn7dLxzaDZfpNQkTQ3F+zyPl3v8UtpHLv6EvMMFbMjvrJCVpbQs xIaxwsfQhjCmrLQRtXZr1FD4XHEE/MMyXhLmxXMbxKGpx//w/0GxizOABpBIJuXr 8W04tbYb8/gXa6R4B4CMia/tvf9toSYb2vQ0DYZFc8ogd50OWznpHAJ1AX4KQNfI Ubnw27fSI3zM3fOLRl7kNvszdUeufqgI56JtGtAwwrmNKDbL0sElX4wkyOCUkPi4 ki5X6eM4BiI3+wALF+3pYiz+NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLRh90Zm 2hcDT5IUbcrD1Z0gjQ8KMB8GA1UdIwQYMBaAFHrObaNftqSp9vmXDBi8r1snSBGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC9BMDU5QUY4QTY0 MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBLbjItWmNNR0x5dld5ZElF WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzNXRvMS0ycEtuMi1aY01HTHl2V3lkSUVaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTBBOC9BMDU5QUY4QTY0MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBL bjItWmNNR0x5dld5ZElFWjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCm5WqVG+vWT/vYkYntZ4uGTfmEk9BydRUwB5iDc4BvTTto7yuqNc6W 01wQMRT5ad8u+cPROgs1m2ZmVZe+ZM6pyQNiTbIhztzK7vLnyedFUPzaSJCZaPsQ WmBVce+DrWjG/ZE2TTnaMANRFA7dwSqO5pAki5wapjOgekCekYsQEEFjYVqvFRA2 37LkyM5BDPX1GGmeAiXmexyjxbO7+2rc1XKBdWcx3veA37in/SovxZizY4kL55ht CIToEvREuxN0H4/b1r8QDUknjC5aCEhpgjsbkBXixg4uWo3zIvXUsCck2NGnAZ2z BY4A3ciz9tUWSeqsS7Itl4CBMYOMKhDo -----END CERTIFICATE-----Generated at Wed Jan 21 09:07:00 2026 by rpki-client