This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft File: 40tPgNnj9wC8rExSxasj61t-37s.mft (raw, json) Hash identifier: wTVeb6eN6uB5AzzNaYXLaxdjobHd74QMzC+V7A9DQzI= Subject key identifier: 68:B0:B8:EA:B1:8D:CA:ED:8E:1F:6F:04:DE:33:E0:FC:BD:22:94:2D Authority key identifier: E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB Certificate issuer: /CN=A918E4B7/serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Certificate serial: 01B5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft Manifest number: 01AF Signing time: Mon 26 Jan 2026 22:35:55 +0000 Manifest this update: Mon 26 Jan 2026 22:35:54 +0000 Manifest next update: Mon 02 Feb 2026 22:35:54 +0000 Files and hashes: 1: 40tPgNnj9wC8rExSxasj61t-37s.crl (hash: FUOX+qs4164ezQuAFgy3VjPRF/CVSJf3y0YrG0uu5Jg=) 2: 1E4ABC8C50C111EFA64C2437C4F9AE02.roa (hash: DiLiUTq4svYLUGh7Zlk/IkFGkuorqIquvoUuPTfglVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Feb 2026 16:23:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 437 (0x1b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7, serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Validity Not Before: Jan 26 22:35:54 2026 GMT Not After : Feb 2 22:35:54 2026 GMT Subject: CN=6977ec4b-cee7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:63:e9:31:29:b5:a5:35:8a:7e:f3:7d:9a:48: 2e:96:ac:1e:ab:a5:2a:f9:c4:dc:32:07:79:52:fb: dd:e0:f7:4e:09:65:6a:70:56:eb:a6:3a:ec:35:02: a6:b2:32:ac:8d:64:17:da:ac:57:01:2c:a2:41:92: 25:1d:11:0f:aa:73:60:10:5d:f4:5e:aa:17:65:ab: 0c:55:ef:2d:0f:cc:ba:d5:a7:8f:e6:a4:a5:3c:30: 1b:f4:0b:d2:10:e8:d6:10:4b:5a:14:28:24:a9:1c: 37:28:55:da:fc:9d:b7:39:06:f0:2b:02:18:c8:a9: c5:a8:ac:7e:e8:b6:4a:9a:84:26:16:39:53:60:3a: 7f:88:68:32:86:4b:22:52:a0:62:9c:64:26:54:a4: 40:17:ea:25:fb:b2:9f:52:99:cc:6c:0e:53:0d:19: 14:16:4c:36:9e:de:c0:35:ac:d9:ba:8c:66:a6:2d: 96:e4:ec:4d:05:75:c8:ef:12:97:ab:32:19:0a:2b: df:52:90:e1:7a:44:d1:b6:16:c6:4a:a2:d1:19:92: 71:a9:d9:4a:89:25:05:4c:6c:1e:bf:7c:8c:f7:61: cc:b0:4a:d2:05:7f:75:cd:40:24:69:d1:a1:b9:fd: 5b:1d:b9:d2:e4:6d:51:2a:d0:a5:a1:e5:32:22:96: 27:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:B0:B8:EA:B1:8D:CA:ED:8E:1F:6F:04:DE:33:E0:FC:BD:22:94:2D X509v3 Authority Key Identifier: keyid:E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:9c:47:97:68:9b:ba:af:e8:f2:9b:e5:87:2b:96:24:e8:d5: b2:36:48:05:77:cc:e9:07:7d:58:10:bc:bc:2c:f6:28:e7:c3: 1d:32:6f:f5:bb:48:22:52:f0:b8:95:9b:61:24:e1:a2:1f:50: 46:b0:e6:bf:21:6e:a9:04:31:e0:83:27:00:54:31:cc:95:d2: d1:25:0e:e8:c0:95:30:aa:0e:b6:07:ad:a1:5f:c5:d2:96:24: a2:01:d4:7e:8d:56:10:bd:35:1d:48:fb:89:43:8f:85:d8:6b: 59:62:d0:21:75:37:f3:8b:d0:ed:83:36:01:8c:18:1c:bd:21: 18:7f:7e:89:ff:0e:27:6a:91:41:c3:ed:e6:f6:cb:8e:3f:7b: ff:6c:58:e2:a2:4d:ba:8e:ac:90:99:2b:33:d0:93:76:1a:6d: 9c:bd:c6:f4:c0:b7:81:df:49:97:7d:70:f1:8c:8f:a3:65:f3: 55:f1:86:53:f1:b4:fe:ca:eb:01:70:de:b3:1f:99:5c:9a:21: 78:5e:7c:fa:64:cb:53:c8:fc:d1:77:6e:d7:20:da:22:75:6a: 67:9d:37:62:1e:ab:25:77:a4:31:52:85:09:ae:fa:7e:d0:07: 34:a2:cd:c4:2f:e6:cd:b1:7e:65:ac:49:2a:6b:05:17:11:aa: 2a:d2:15:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKEUzNEI0RjgwRDlFM0Y3MDBCQ0FDNEM1MkM1QUIyM0VC NUI3RURGQkIwHhcNMjYwMTI2MjIzNTU0WhcNMjYwMjAyMjIzNTU0WjAYMRYwFAYD VQQDDA02OTc3ZWM0Yi1jZWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7WPpMSm1pTWKfvN9mkgulqweq6Uq+cTcMgd5Uvvd4PdOCWVqcFbrpjrsNQKm sjKsjWQX2qxXASyiQZIlHREPqnNgEF30XqoXZasMVe8tD8y61aeP5qSlPDAb9AvS EOjWEEtaFCgkqRw3KFXa/J23OQbwKwIYyKnFqKx+6LZKmoQmFjlTYDp/iGgyhksi UqBinGQmVKRAF+ol+7KfUpnMbA5TDRkUFkw2nt7ANazZuoxmpi2W5OxNBXXI7xKX qzIZCivfUpDhekTRthbGSqLRGZJxqdlKiSUFTGwev3yM92HMsErSBX91zUAkadGh uf1bHbnS5G1RKtCloeUyIpYnnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGiwuOqx jcrtjh9vBN4z4Py9IpQtMB8GA1UdIwQYMBaAFONLT4DZ4/cAvKxMUsWrI+tbft+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy85NkU2Njc1QTc4 NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3QzhyRXhTeGFzajYxdC0z N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzQwdFBnTm5qOXdDOHJFeFN4YXNqNjF0LTM3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTRCNy85NkU2Njc1QTc4NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3 QzhyRXhTeGFzajYxdC0zN3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBInEeXaJu6r+jym+WHK5Yk6NWyNkgFd8zpB31YELy8LPYo58MdMm/1 u0giUvC4lZthJOGiH1BGsOa/IW6pBDHggycAVDHMldLRJQ7owJUwqg62B62hX8XS liSiAdR+jVYQvTUdSPuJQ4+F2GtZYtAhdTfzi9DtgzYBjBgcvSEYf36J/w4napFB w+3m9suOP3v/bFjiok26jqyQmSsz0JN2Gm2cvcb0wLeB30mXfXDxjI+jZfNV8YZT 8bT+yusBcN6zH5lcmiF4Xnz6ZMtTyPzRd27XINoidWpnnTdiHqsld6QxUoUJrvp+ 0Ac0os3EL+bNsX5lrEkqawUXEaoq0hVe -----END CERTIFICATE-----Generated at Tue Jan 27 03:58:44 2026 by rpki-client