This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft File: FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft (raw, json) Hash identifier: l8JnAo+HWZNMoWST0luA5em9Kr3F/d+39aprnzelrPY= Subject key identifier: 7E:9B:09:FC:CC:DA:F4:AF:7A:01:AD:D2:0C:31:CD:DE:58:F8:41:BF Authority key identifier: 16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 Certificate issuer: /CN=A918FC40/serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Certificate serial: 0BCB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft Manifest number: 0BA0 Signing time: Sat 31 Jan 2026 18:36:12 +0000 Manifest this update: Sat 31 Jan 2026 18:36:12 +0000 Manifest next update: Sat 07 Feb 2026 18:36:12 +0000 Files and hashes: 1: FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl (hash: 1+KmJjBzszheC4jF0TT2SkFZnPDRWeOQEf/qS9RtOws=) 2: 49E05638EA0B11F09069D0EA6F6F56BC.roa (hash: uhEChcKTm9IbECZl3F3iXNcQxpy9Q4YWfBmW92mayKQ=) 3: D9C0AD2EF44811F08A68E332626F56BC.roa (hash: i659m+p7MOuHqvDBZ6LVtzJOAByHzjFIR6pH085+Fuo=) 4: E4C4CC72EB8411F09FAB30C6536F56BC.roa (hash: 5ElDBndzsOBEutk4qOykbi2FQeiByz1zphNLkZUjTwE=) 5: 4AD53F9AEA0B11F09069D0EA6F6F56BC.roa (hash: IprNwQgGLTzR8Hsfp9Ppf43Z2bhrGY5lALXQ1xkVDV0=) 6: 4BB2BBFEEA0B11F09069D0EA6F6F56BC.roa (hash: AMx60k45maDeTL13AMZnH+5OR5Ly36xO1XjUBnVESes=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Feb 2026 18:36:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3019 (0xbcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC40, serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Validity Not Before: Jan 31 18:36:12 2026 GMT Not After : Feb 7 18:36:12 2026 GMT Subject: CN=697e4b9c-5f98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:4b:20:9d:05:f6:db:a2:33:cf:17:41:91:b2: d0:d0:4a:6b:10:82:18:89:28:1a:89:4d:29:58:00: dc:f5:ad:3d:b4:e2:8c:a8:9c:d7:40:43:d0:a2:81: c9:60:74:89:ec:d7:4c:3d:58:cb:f9:8e:a1:be:9b: 78:b3:75:87:68:19:df:48:ba:57:2d:94:80:bf:cc: d9:ee:ea:83:e6:48:d0:f5:20:12:8d:dd:d5:e5:e1: 75:ad:ae:76:32:69:b7:72:42:7c:c2:57:76:fb:46: f0:20:7a:1a:55:f2:e6:c0:d5:4e:b4:86:33:97:85: 04:c5:51:bb:3b:81:bd:59:71:02:de:0b:06:b6:0a: c1:0e:c0:48:a3:91:7b:d5:a4:30:83:51:79:bc:a1: 76:1f:9f:1c:a7:63:61:b7:da:5a:71:9f:88:ff:32: 4d:eb:eb:8b:7f:51:b2:d3:28:cd:cd:db:04:8e:6b: a9:0f:91:71:f5:df:ad:d0:7f:3b:ba:04:31:2c:de: f6:14:19:6a:1e:5d:72:80:da:92:11:61:ff:00:f4: bf:14:a3:ee:1e:72:61:bc:93:15:29:6f:b1:ba:48: c0:57:61:a9:b2:aa:88:b5:7a:4d:78:0f:73:4d:45: 24:2d:d9:3f:23:af:37:75:dc:35:19:31:68:90:93: c3:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:9B:09:FC:CC:DA:F4:AF:7A:01:AD:D2:0C:31:CD:DE:58:F8:41:BF X509v3 Authority Key Identifier: keyid:16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:5c:ca:10:99:e6:47:21:b5:15:49:ba:20:4f:4b:e2:cb:bc: 8c:36:95:28:e1:4d:1f:8a:ee:17:60:62:7d:f6:e5:b4:0a:a7: 02:15:ad:03:31:27:46:f5:72:c7:ab:76:47:77:e3:93:65:f9: d9:ed:c9:f7:dd:d0:d9:5e:8c:78:44:cc:a1:0d:ba:0a:5e:d4: f9:d5:52:3d:2a:37:06:db:b4:a8:68:1f:65:e7:f5:bb:05:58: b5:82:1b:e4:ec:1f:2a:c7:ab:51:9e:43:0d:05:44:84:2e:cc: 5e:0d:98:a7:b3:14:6b:47:2b:1f:9b:c9:4a:0f:4b:cc:08:ea: cb:d0:6f:34:9b:e5:d8:da:c5:fe:36:8c:4e:f4:e9:a2:9e:07: 98:52:29:5d:d2:6d:e0:81:25:6e:ae:d7:5b:19:92:de:f1:c2: e6:c0:ca:69:9b:39:5f:d7:c8:14:3f:2e:2e:b9:0f:09:c5:60: e4:1d:33:de:9d:a1:bd:a0:00:38:06:c3:a9:6f:7e:35:e9:31: e0:02:d2:77:73:26:e0:7a:15:7e:d2:d1:0e:50:d7:69:06:9d: fb:1b:aa:70:80:8d:d4:60:6a:91:d8:f4:6f:9c:0a:f7:6d:d4: 47:be:9e:61:56:0a:2c:26:3c:27:49:50:b5:3e:c7:27:6d:74: 75:b1:71:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNDAxMTAvBgNVBAUTKDE2MDFEODY1MERENTU2QjJBRkIwODNCMjMzRkY2NUFF M0RBRDE1NzEwHhcNMjYwMTMxMTgzNjEyWhcNMjYwMjA3MTgzNjEyWjAYMRYwFAYD VQQDDA02OTdlNGI5Yy01Zjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApUsgnQX226IzzxdBkbLQ0EprEIIYiSgaiU0pWADc9a09tOKMqJzXQEPQooHJ YHSJ7NdMPVjL+Y6hvpt4s3WHaBnfSLpXLZSAv8zZ7uqD5kjQ9SASjd3V5eF1ra52 Mmm3ckJ8wld2+0bwIHoaVfLmwNVOtIYzl4UExVG7O4G9WXEC3gsGtgrBDsBIo5F7 1aQwg1F5vKF2H58cp2Nht9pacZ+I/zJN6+uLf1Gy0yjNzdsEjmupD5Fx9d+t0H87 ugQxLN72FBlqHl1ygNqSEWH/APS/FKPuHnJhvJMVKW+xukjAV2GpsqqItXpNeA9z TUUkLdk/I683ddw1GTFokJPDZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH6bCfzM 2vSvegGt0gwxzd5Y+EG/MB8GA1UdIwQYMBaAFBYB2GUN1Vayr7CDsjP/Za49rRVx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM0MC82MTdGMzUzNjQw RTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZyS3ZzSU95TV85bHJqMnRG WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZnSFlaUTNWVnJLdnNJT3lNXzlscmoydEZYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkM0MC82MTdGMzUzNjQwRTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZy S3ZzSU95TV85bHJqMnRGWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHXMoQmeZHIbUVSbogT0viy7yMNpUo4U0fiu4XYGJ99uW0CqcCFa0D MSdG9XLHq3ZHd+OTZfnZ7cn33dDZXox4RMyhDboKXtT51VI9KjcG27SoaB9l5/W7 BVi1ghvk7B8qx6tRnkMNBUSELsxeDZinsxRrRysfm8lKD0vMCOrL0G80m+XY2sX+ NoxO9OmingeYUild0m3ggSVurtdbGZLe8cLmwMppmzlf18gUPy4uuQ8JxWDkHTPe naG9oAA4BsOpb3416THgAtJ3cybgehV+0tEOUNdpBp37G6pwgI3UYGqR2PRvnAr3 bdRHvp5hVgosJjwnSVC1PscnbXR1sXGD -----END CERTIFICATE-----Generated at Mon Feb 2 17:23:46 2026 by rpki-client