This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft File: Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft (raw, json) Hash identifier: 1O66MAis5+HSSvzmxyVHvjMvmiUvuO9pjQjdB77x8oE= Subject key identifier: D1:FC:20:6D:73:7D:CB:4C:22:74:B2:03:8E:00:A9:43:EA:FC:F8:B8 Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Certificate serial: 11C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft Manifest number: 104F Signing time: Tue 20 Jan 2026 17:16:22 +0000 Manifest this update: Tue 20 Jan 2026 17:16:22 +0000 Manifest next update: Tue 27 Jan 2026 17:16:22 +0000 Files and hashes: 1: Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl (hash: VhPMwSUyUexwXLCwFOba9t5IR9tyzMS462HX2V1Cplo=) 2: C3BEAC38CF7C11F0B0EB4644C4F9AE02.roa (hash: e5x/yFpQ2lnc1Sq7uNqIiSYBP55fGfEsS4tL2Gu1MUE=) 3: 9394D360345F11F0AB96776CC4F9AE02.roa (hash: W4PkU+QwD/8bYuNMSrKUoTp+GmPZQH8HiHMStgOCIWE=) 4: C435900ACF7C11F0AAC14644C4F9AE02.roa (hash: 8rPBOsaa7rJzdB0g/EXgDCRIVsB3I1n1M1fgVfp0lqU=) 5: 2A4EE13E7CFD11F08A91EE21C4F9AE02.roa (hash: p6on445lkdVNXMMWjoYeri4k3QXBG09nZNuaYw4s6Gc=) 6: FD5158C044C511F0ABA4E977C4F9AE02.roa (hash: sBv0Q+ONp8Ppr2WKLMiy/5JZXTR72rxYXPkX8rrfyFE=) 7: C2356A948FE811E98B967A66C4F9AE02.roa (hash: k3PLqMJ24hbj9LTYOeTg1vBguIXi9N/SryWCjUrQYCY=) 8: 5C4E5A6EB9E511EB9717B256C4F9AE02.roa (hash: aRsEa/XlADK8Ys2zNZV3ljXviF6zdG4+twO2EcsTz6U=) 9: 8224E55C345F11F0BD514C6CC4F9AE02.roa (hash: 5yssRnHiNxYbvC97ouK3PFQvut2qP5qu+yNWhWZqjDg=) 10: B969078EB94B11EB8CFABC23C4F9AE02.roa (hash: wbAxf5dVXXEiIwKKpLqE+cuBbqEoiTYyCWdfX3OjWk8=) 11: 50D040327CFD11F0B32D4522C4F9AE02.roa (hash: jfSwj9kU8P/T4IfAw9qOukQY5qFKJhuEAFm89XgMLjg=) 12: C4A85FD48FE811E98B967A66C4F9AE02.roa (hash: r1Xk8MicSL+bI7AGfAkoa/toS5kHIpFMuCE8DDnU/Kg=) 13: 71043990C4D811EA88E6B21FC4F9AE02.roa (hash: rou/LDou6+V/KVPUUd+xyuvJOo9d0Agu7Kr+809dbVM=) 14: 49F4FFBA0A1C11EEA415BE0CC4F9AE02.roa (hash: ytr2HpN06eiSGj2rNCJTUUsU785h9iKeb98Ln4JH8Nk=) 15: F3011EAAB88311EBB2078C50C4F9AE02.roa (hash: NyB93qfmsbAZRAkPJESEcMdym4VpvubYepXKCtssfXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 17:16:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4548 (0x11c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91803DB, serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Validity Not Before: Jan 20 17:16:22 2026 GMT Not After : Jan 27 17:16:22 2026 GMT Subject: CN=696fb866-51f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e0:05:ca:4c:1d:fd:b5:41:6a:d3:08:2e:5c: 03:cf:17:69:73:29:1c:de:9d:5b:55:e7:98:ae:b9: ab:75:a4:6b:99:2f:90:88:3b:55:b8:ed:d7:e5:70: aa:4a:d3:18:e1:f1:6d:cb:4b:61:eb:55:6e:4c:37: 65:f9:aa:96:1f:03:01:2f:fd:5a:9e:b8:a8:af:0e: 46:aa:c6:76:b9:23:ee:46:92:f0:01:8b:dc:38:b8: 7b:6b:e4:a8:7d:9a:cc:40:b6:65:af:85:dd:f4:30: 18:5f:dd:d1:a7:a4:cf:f9:e5:07:0c:c6:a3:3a:e6: 51:6d:21:58:24:bf:01:91:92:d8:8a:67:fc:54:7d: 1d:df:1a:92:0a:aa:f7:ea:9d:2d:85:44:01:a7:c0: 9f:d6:33:84:2f:4a:fa:cb:46:db:b8:48:aa:76:5b: 31:80:3e:39:ec:6f:74:78:f3:23:aa:98:82:62:2b: 0c:87:44:ea:bd:80:ee:9b:d7:67:f9:35:43:54:f0: 17:ca:b0:a0:24:c9:dc:03:c5:9e:db:fb:88:13:e8: ee:88:f5:f8:1e:fa:fe:8d:1c:9c:83:b9:c6:81:51: 39:2a:79:4e:97:05:5a:5b:e7:1e:e5:12:f4:92:37: 9b:e7:cf:41:91:bd:98:d6:5f:73:af:16:94:4c:f0: df:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:FC:20:6D:73:7D:CB:4C:22:74:B2:03:8E:00:A9:43:EA:FC:F8:B8 X509v3 Authority Key Identifier: keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:37:6f:3b:0e:e0:3e:f4:3c:08:77:23:ef:c0:da:47:b4:65: 66:ba:e2:ea:76:7f:bb:b3:a2:84:1a:77:27:9c:dd:c1:03:71: fb:ca:b1:8f:3e:49:a4:9f:e1:c3:ee:8d:ff:54:12:ab:b9:1c: ae:ab:89:bb:4f:5d:a8:89:3b:e5:46:1d:73:2f:64:73:27:9d: c3:e6:eb:73:7a:f4:d8:16:b3:04:03:27:e0:ba:0b:fc:24:cf: 14:e7:7e:ec:a3:04:17:2b:ad:6b:b7:03:83:c4:78:29:29:1e: 50:ce:f0:ac:58:2b:bf:14:5b:8b:82:43:8a:be:2c:65:12:69: 17:68:22:ee:64:c4:05:fb:9f:86:b1:98:68:55:b9:1b:d8:b4: de:95:5d:14:e9:18:ef:28:09:7f:46:48:44:84:7d:92:7f:14: 20:1d:4c:7c:38:91:17:de:f1:89:47:9e:b8:7c:14:b3:c0:e2: e1:4f:ad:73:ee:f8:88:0f:a2:5c:df:8e:88:77:03:28:c2:36: e0:a8:90:93:1a:b1:d5:04:76:da:40:e4:13:e3:f7:6e:af:7c: b2:0b:4c:2e:a8:f7:75:14:9e:50:9e:3a:fe:59:da:33:ff:ae: 3a:40:ff:95:dc:3f:59:77:ca:3e:91:73:04:5c:54:c3:48:03: 1e:ce:99:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzREIxMTAvBgNVBAUTKDM2RUQ4QjY3NUVBNzIzODA4NUFGQTA2QzA5M0U1NEE5 RDNGRDdCNjAwHhcNMjYwMTIwMTcxNjIyWhcNMjYwMTI3MTcxNjIyWjAYMRYwFAYD VQQDDA02OTZmYjg2Ni01MWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2eAFykwd/bVBatMILlwDzxdpcykc3p1bVeeYrrmrdaRrmS+QiDtVuO3X5XCq StMY4fFty0th61VuTDdl+aqWHwMBL/1anriorw5GqsZ2uSPuRpLwAYvcOLh7a+So fZrMQLZlr4Xd9DAYX93Rp6TP+eUHDMajOuZRbSFYJL8BkZLYimf8VH0d3xqSCqr3 6p0thUQBp8Cf1jOEL0r6y0bbuEiqdlsxgD457G90ePMjqpiCYisMh0TqvYDum9dn +TVDVPAXyrCgJMncA8We2/uIE+juiPX4Hvr+jRycg7nGgVE5KnlOlwVaW+ce5RL0 kjeb589Bkb2Y1l9zrxaUTPDfrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNH8IG1z fctMInSyA44AqUPq/Pi4MB8GA1UdIwQYMBaAFDbti2depyOAha+gbAk+VKnT/Xtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDNEQi8wREMzNUQzRThE RDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0Q0ZyNkJzQ1Q1VXFkUDll MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051MkxaMTZuSTRDRnI2QnNDVDVVcWRQOWUyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDNEQi8wREMzNUQzRThERDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0 Q0ZyNkJzQ1Q1VXFkUDllMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDHN287DuA+9DwIdyPvwNpHtGVmuuLqdn+7s6KEGncnnN3BA3H7yrGP Pkmkn+HD7o3/VBKruRyuq4m7T12oiTvlRh1zL2RzJ53D5utzevTYFrMEAyfgugv8 JM8U537sowQXK61rtwODxHgpKR5QzvCsWCu/FFuLgkOKvixlEmkXaCLuZMQF+5+G sZhoVbkb2LTelV0U6RjvKAl/RkhEhH2SfxQgHUx8OJEX3vGJR564fBSzwOLhT61z 7viID6Jc346IdwMowjbgqJCTGrHVBHbaQOQT4/dur3yyC0wuqPd1FJ5Qnjr+Wdoz /646QP+V3D9Zd8o+kXMEXFTDSAMezpnr -----END CERTIFICATE-----Generated at Wed Jan 21 02:12:32 2026 by rpki-client