This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft File: xCIPUDVWR7fICyzovHEmqsLiLTc.mft (raw, json) Hash identifier: Yzx8q5aohRhKw2AA+QmA/4lp42wva35Q/KF13RGd8GI= Subject key identifier: F6:38:E9:1D:55:C4:D0:E9:D3:0F:FA:E0:74:0F:80:03:2F:44:25:BB Authority key identifier: C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 Certificate issuer: /CN=A919D64D/serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Certificate serial: 353D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft Manifest number: 351F Signing time: Mon 26 Jan 2026 14:18:21 +0000 Manifest this update: Mon 26 Jan 2026 14:18:20 +0000 Manifest next update: Mon 02 Feb 2026 14:18:20 +0000 Files and hashes: 1: xCIPUDVWR7fICyzovHEmqsLiLTc.crl (hash: WEG1d4ZeDyQcxt/wT6lPbCqq9BuUDVkyzLpZHiaf/y8=) 2: D7ABA864DFE611ED8872DE0EC4F9AE02.roa (hash: dgki84RnKxfDFSXW7buISP/w97pblO+d10cyHqDLr80=) 3: 074A1CE2F1FD11F0BDA01C59486F56BC.roa (hash: eLq+O9W8S1dlLtDBHI7ZDknLWVsMhOc+XeKIC2YtBbg=) 4: 8C2774CA0F3511EF93020023C4F9AE02.roa (hash: ks6ZHeQSlWbDyKZP3PDWWDRvxvqWjlQTJpFGHN+LCL4=) 5: 24D6C7C4F1FD11F0B766F66D486F56BC.roa (hash: 28n7H5WU9QZoT+p5wF3EMxVxiO9h8d98XuG9AYVm9e8=) 6: 24C4305A7CD911EEB0B4C962C4F9AE02.roa (hash: e5E6IXPuP1rU/JKfEU2JqffZsvpnjnyYycraO2Bit8Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Feb 2026 14:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13629 (0x353d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D64D, serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Validity Not Before: Jan 26 14:18:20 2026 GMT Not After : Feb 2 14:18:20 2026 GMT Subject: CN=697777ad-e99b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c7:7e:c9:1f:31:68:07:c7:8a:56:b6:94:59: de:52:87:0e:72:5c:c8:16:d9:b9:17:37:35:78:23: 84:5c:73:ee:40:d5:05:e4:40:fa:e4:c6:72:57:42: 2c:a2:d5:c3:9c:07:f9:b3:2e:6e:de:48:3a:eb:21: 22:d6:3b:56:58:b7:85:15:41:c3:26:ea:1d:ab:c1: da:95:07:b0:33:f3:d3:c3:17:5b:0d:3a:6c:85:e0: bf:c2:a0:98:3a:f8:48:0e:34:62:74:2b:4f:b8:13: 6b:98:b9:eb:ec:09:6e:7d:1c:6b:c4:79:57:f5:d4: 56:5e:95:49:b0:f1:e8:83:a4:81:2e:34:e3:46:b5: d8:1a:ca:1b:77:41:f3:18:7a:45:87:80:ce:79:ed: d4:4e:9c:c8:50:fc:e8:a2:ae:27:f1:39:d7:e5:66: 1e:42:1a:2e:ef:b6:54:a5:1c:96:06:fb:30:fe:45: 9e:76:ff:2a:95:66:65:7c:0c:a9:42:9c:ba:5a:19: 01:1b:e1:88:74:9b:6f:d8:3c:0a:4a:8f:d3:78:b0: 28:1e:24:99:cf:54:0f:44:59:eb:b4:4b:c8:c6:fe: 80:4a:0a:58:23:47:a0:f5:8f:40:4c:ba:d3:39:96: dd:65:e5:07:97:af:78:3c:d7:85:2b:0e:4b:90:ad: 47:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:38:E9:1D:55:C4:D0:E9:D3:0F:FA:E0:74:0F:80:03:2F:44:25:BB X509v3 Authority Key Identifier: keyid:C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:1a:7c:7c:bf:25:e1:11:c1:44:bc:7a:dd:aa:31:93:98:50: 58:cc:f1:94:59:ba:c0:bb:2c:4e:e8:70:09:8c:b2:dd:78:f6: c4:5a:a1:56:fd:0b:58:23:8f:28:1a:c5:ba:c2:a9:ae:54:87: 89:e4:57:ee:75:43:94:60:a2:d2:55:11:6e:ba:71:ca:3f:5c: f3:9a:1d:38:8b:2e:9a:94:21:84:8d:7f:e4:6c:fb:33:e1:5c: e1:03:2d:ea:5c:e1:f1:15:37:43:80:2f:6b:fc:c8:e4:81:e5: 11:a2:36:8c:66:72:89:99:9e:5a:d3:4c:3a:e8:2e:f5:3d:c0: 10:84:4f:c1:02:7e:b5:ce:dc:f5:49:2a:01:2b:28:2c:2e:da: e5:7d:7a:00:62:c8:4a:e5:34:89:b9:47:d7:73:d8:72:48:4b: 38:0e:a9:7a:ec:1f:5d:48:c3:fe:9f:fe:30:1e:3f:b8:80:b9: 23:d3:1a:0a:f2:e2:98:73:72:2f:e0:95:08:17:82:5c:21:a5: 21:67:44:45:07:35:3c:64:43:f3:8e:92:a8:29:72:c1:12:b4: 0a:6f:6d:e9:20:5c:e4:ac:ff:c4:12:65:7e:7e:ef:86:62:76: 02:c7:f6:bf:87:6c:c8:9a:bf:14:ba:00:1f:2f:09:49:a1:cb: 99:d7:b8:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2NEQxMTAvBgNVBAUTKEM0MjIwRjUwMzU1NjQ3QjdDODBCMkNFOEJDNzEyNkFB QzJFMjJEMzcwHhcNMjYwMTI2MTQxODIwWhcNMjYwMjAyMTQxODIwWjAYMRYwFAYD VQQDDA02OTc3NzdhZC1lOTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxMd+yR8xaAfHila2lFneUocOclzIFtm5Fzc1eCOEXHPuQNUF5ED65MZyV0Is otXDnAf5sy5u3kg66yEi1jtWWLeFFUHDJuodq8HalQewM/PTwxdbDTpsheC/wqCY OvhIDjRidCtPuBNrmLnr7AlufRxrxHlX9dRWXpVJsPHog6SBLjTjRrXYGsobd0Hz GHpFh4DOee3UTpzIUPzooq4n8TnX5WYeQhou77ZUpRyWBvsw/kWedv8qlWZlfAyp Qpy6WhkBG+GIdJtv2DwKSo/TeLAoHiSZz1QPRFnrtEvIxv6ASgpYI0eg9Y9ATLrT OZbdZeUHl694PNeFKw5LkK1HSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPY46R1V xNDp0w/64HQPgAMvRCW7MB8GA1UdIwQYMBaAFMQiD1A1Vke3yAss6LxxJqrC4i03 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDY0RC9EOTMzM0ZFNDFE NkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3ZklDeXpvdkhFbXFzTGlM VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hDSVBVRFZXUjdmSUN5em92SEVtcXNMaUxUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDY0RC9EOTMzM0ZFNDFENkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3 ZklDeXpvdkhFbXFzTGlMVGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDGnx8vyXhEcFEvHrdqjGTmFBYzPGUWbrAuyxO6HAJjLLdePbEWqFW /QtYI48oGsW6wqmuVIeJ5FfudUOUYKLSVRFuunHKP1zzmh04iy6alCGEjX/kbPsz 4VzhAy3qXOHxFTdDgC9r/MjkgeURojaMZnKJmZ5a00w66C71PcAQhE/BAn61ztz1 SSoBKygsLtrlfXoAYshK5TSJuUfXc9hySEs4Dql67B9dSMP+n/4wHj+4gLkj0xoK 8uKYc3Iv4JUIF4JcIaUhZ0RFBzU8ZEPzjpKoKXLBErQKb23pIFzkrP/EEmV+fu+G YnYCx/a/h2zImr8UugAfLwlJocuZ17h2 -----END CERTIFICATE-----Generated at Tue Jan 27 06:06:47 2026 by rpki-client