This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft File: C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft (raw, json) Hash identifier: q/vCP8FmwVjQ1WAxAAKklCtqUyPuXOS/Mkz6e2f0Vr4= Subject key identifier: 19:3B:2A:3B:CF:8C:2C:24:16:AE:B2:B2:B2:BC:54:1C:01:54:C9:78 Authority key identifier: 0B:9C:CA:90:DD:0D:7A:8A:37:66:6B:19:21:7F:E0:D8:40:37:B7:A2 Certificate issuer: /CN=apnic-rpki-root-iana-origin Certificate serial: 0110 Authority info access: rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Subject info access: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft Manifest number: D8 Signing time: Tue 27 Jan 2026 23:25:35 +0000 Manifest this update: Tue 27 Jan 2026 23:25:34 +0000 Manifest next update: Tue 03 Mar 2026 23:25:34 +0000 Files and hashes: 1: C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl (hash: 4fCijBPE6EJRrxjOJtk6moDvI2AJMCLidpG4IXJq56k=) 2: mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer (hash: 8N2YWWBs16f1hHJGyN439PSj8iUH5kkU6k2ddbKlaRQ=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 23:25:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=apnic-rpki-root-iana-origin Validity Not Before: Jan 27 23:25:34 2026 GMT Not After : Mar 3 23:25:34 2026 GMT Subject: CN=6979496e-c8c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:7e:ff:cd:2e:96:61:b7:a0:9a:1b:48:f5:4a: 9a:8f:39:f1:b1:0c:f0:dd:b4:3f:b9:5c:6b:f3:67: d5:88:ea:83:cf:0a:02:8a:6a:30:f1:62:f1:37:68: b9:b4:91:6e:fe:82:fe:be:9b:82:04:20:2a:4e:7c: 45:bd:a5:df:bc:64:33:97:1e:c9:cb:cc:da:90:53: 95:20:65:c0:b9:6b:60:44:cd:01:93:ea:e7:5f:7d: 8f:dc:c1:26:21:f2:54:e2:73:6c:27:63:eb:88:9c: cf:9e:91:f1:40:c1:37:37:4a:ba:e9:87:d5:f4:6d: a4:05:31:61:11:aa:66:e5:ba:b7:3e:15:6b:4f:49: d5:7e:5f:ef:71:23:12:2c:05:f3:bf:c4:b9:a6:3a: c1:ec:24:52:9f:b5:dd:00:69:d4:c6:b1:34:1e:54: 4d:f2:40:0c:52:33:70:7a:28:f5:75:82:f6:f9:ba: 06:8f:43:92:b0:57:c7:7a:e9:8a:b5:91:14:3f:61: 23:f8:38:28:ff:5b:e7:45:58:74:89:1d:87:33:bb: ec:aa:25:ae:91:3c:c8:8c:b3:24:c9:da:c4:08:d9: 6a:38:6b:f7:37:08:95:a6:71:8a:1e:1f:98:cf:6a: cb:d9:d9:ea:74:37:f0:fb:8e:1e:43:4f:85:d7:b2: 6d:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:3B:2A:3B:CF:8C:2C:24:16:AE:B2:B2:B2:BC:54:1C:01:54:C9:78 X509v3 Authority Key Identifier: keyid:0B:9C:CA:90:DD:0D:7A:8A:37:66:6B:19:21:7F:E0:D8:40:37:B7:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:c9:47:72:0e:ca:b9:b9:f6:96:b9:61:1a:94:95:66:0d:51: 45:6a:47:e8:88:2a:91:6b:93:85:82:2d:18:16:df:44:f7:f2: 02:78:1d:03:20:f7:a8:d7:ef:0c:98:f6:56:04:31:24:dd:95: 76:4d:f8:fb:83:60:12:64:80:88:e0:95:e8:f1:f7:10:79:16: ce:ea:53:2a:fc:0c:3d:e2:b9:4a:2b:92:a2:8e:09:ca:f2:1b: 09:9c:3a:65:aa:cf:08:d6:5e:16:43:15:da:cf:b7:51:f9:72: fb:5f:59:34:31:ad:6e:dd:75:fe:33:ca:e1:90:d8:f4:d3:0a: 30:df:56:7a:8a:54:49:82:e1:94:b9:0d:ea:7a:3f:19:e4:e5: 67:23:01:57:e2:4d:02:27:c5:8b:4a:57:ce:87:44:4d:58:81: 0a:49:5a:79:3d:45:43:fb:7d:fa:14:e1:fa:82:9e:17:b6:90: 0d:e4:58:86:63:6c:de:3c:26:8e:d0:57:dd:0c:a1:90:1a:29: 19:61:f4:ac:e5:49:6d:40:48:a3:a1:c2:c1:b8:e9:87:83:e9: 91:76:15:3d:2e:7d:4c:ce:de:a7:4f:c6:31:fc:ad:2b:8c:97: b6:b7:42:5b:c8:46:26:76:a6:f7:9b:bb:cc:1c:c4:c7:56:8a: be:f5:45:c5 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgICARAwDQYJKoZIhvcNAQELBQAwJjEkMCIGA1UEAwwbYXBu aWMtcnBraS1yb290LWlhbmEtb3JpZ2luMB4XDTI2MDEyNzIzMjUzNFoXDTI2MDMw MzIzMjUzNFowGDEWMBQGA1UEAwwNNjk3OTQ5NmUtYzhjODCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBAKt+/80ulmG3oJobSPVKmo858bEM8N20P7lca/Nn 1Yjqg88KAopqMPFi8TdoubSRbv6C/r6bggQgKk58Rb2l37xkM5ceycvM2pBTlSBl wLlrYETNAZPq5199j9zBJiHyVOJzbCdj64icz56R8UDBNzdKuumH1fRtpAUxYRGq ZuW6tz4Va09J1X5f73EjEiwF87/EuaY6wewkUp+13QBp1MaxNB5UTfJADFIzcHoo 9XWC9vm6Bo9DkrBXx3rpirWRFD9hI/g4KP9b50VYdIkdhzO77KolrpE8yIyzJMna xAjZajhr9zcIlaZxih4fmM9qy9nZ6nQ38PuOHkNPhdeybaUCAwEAAaOCAi4wggIq MB0GA1UdDgQWBBQZOyo7z4wsJBausrKyvFQcAVTJeDAfBgNVHSMEGDAWgBQLnMqQ 3Q16ijdmaxkhf+DYQDe3ojAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGag ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5LzgzOERCMjE0MTY2 NTExRTJCM0JDMjg2MTcyRkQxRkYyL0M1ektrTjBOZW9vM1ptc1pJWF9nMkVBM3Q2 SS5jcmwwXQYIKwYBBQUHAQEEUTBPME0GCCsGAQUFBzAChkFyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvYXBuaWMtcnBraS1yb290LWlhbmEtb3JpZ2lu LmNlcjBKBgNVHSABAf8EQDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0 dHBzOi8vd3d3LmFwbmljLm5ldC9SUEtJL0NQUy5wZGYwfgYIKwYBBQUHAQsEcjBw MG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv ODM4REIyMTQxNjY1MTFFMkIzQkMyODYxNzJGRDFGRjIvQzV6S2tOME5lb28zWm1z WklYX2cyRUEzdDZJLm1mdDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUF BwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAG3J R3IOyrm59pa5YRqUlWYNUUVqR+iIKpFrk4WCLRgW30T38gJ4HQMg96jX7wyY9lYE MSTdlXZN+PuDYBJkgIjglejx9xB5Fs7qUyr8DD3iuUorkqKOCcryGwmcOmWqzwjW XhZDFdrPt1H5cvtfWTQxrW7ddf4zyuGQ2PTTCjDfVnqKVEmC4ZS5Dep6Pxnk5Wcj AVfiTQInxYtKV86HRE1YgQpJWnk9RUP7ffoU4fqCnhe2kA3kWIZjbN48Jo7QV90M oZAaKRlh9KzlSW1ASKOhwsG46YeD6ZF2FT0ufUzO3qdPxjH8rSuMl7a3QlvIRiZ2 pvebu8wcxMdWir71RcU= -----END CERTIFICATE-----Generated at Tue Feb 3 17:20:51 2026 by rpki-client