This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft File: mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft (raw, json) Hash identifier: /31HQ4wAYYFSEmYoy7bsaxz2b73zjCDxomrAtFFMp4g= Subject key identifier: 46:06:51:4A:A7:EE:31:23:9A:D4:37:0A:F4:CC:A0:11:E9:BA:34:DE Authority key identifier: 98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24 Certificate issuer: /CN=apnic-rpki-root-intermediate/serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924 Certificate serial: 0407 Authority info access: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer Subject info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft Manifest number: 01FE Signing time: Thu 15 Jan 2026 22:37:47 +0000 Manifest this update: Thu 15 Jan 2026 22:37:47 +0000 Manifest next update: Sun 22 Feb 2026 22:37:47 +0000 Files and hashes: 1: mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl (hash: TIYv/8nhuVByKRWBUZMPrIXkWP1i8Ab8OXUsosYPCD4=) 2: DmWk9f02tb1o6zySNAiXjJB6p58.cer (hash: Fxa1FPCYhxgUDYJ5Yt/n5hBb+t3vszGQLhBJBD7mecg=) 3: dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer (hash: /maB3LVAenh4xYBWkg9yT7AhHd55FWrSSxcY62kJYUE=) 4: NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer (hash: NNRmCkUau9X02u79Px3QwcTodHbkWW+WmHkQngETnp4=) 5: DPzneFf88B852ZpitKpi5hWedvg.cer (hash: vwpMvjGjOAwUT2lW+JqPZCwS9iM7Db0BGcO5sFRcGII=) 6: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer (hash: ERp48rSxC2r3G30QZpvaNb47cirE8GMjuQZcsfrMtOk=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 23:57:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1031 (0x407) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=apnic-rpki-root-intermediate, serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924 Validity Not Before: Jan 15 22:37:47 2026 GMT Not After : Feb 22 22:37:47 2026 GMT Subject: CN=69696c3b-40fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:c7:5c:93:0a:fe:ec:cd:3d:db:ba:f8:98:1b: fe:4f:8f:2e:50:00:14:ae:5d:f6:9a:1f:03:5d:c1: df:dc:30:52:ff:12:f7:72:79:53:a8:e1:40:98:da: 15:eb:1c:18:fc:37:32:7e:14:ea:de:cf:c3:a2:97: d1:ab:26:32:a0:d1:fc:fc:10:26:d7:e0:64:39:a3: 1c:e4:2a:e8:60:e4:83:d7:dc:3a:a9:cc:1a:2e:ed: 1e:4b:94:ee:55:01:f5:fa:81:9f:a5:1c:25:a5:68: 7f:22:15:80:ef:5d:b8:18:9a:f7:a5:96:ca:47:4f: 4c:c0:3e:d3:34:2e:50:0a:b6:c7:b4:c0:5c:49:8c: f0:6e:06:5b:94:7a:8f:04:23:69:1c:97:1c:e0:72: 90:56:fd:17:d7:cd:7e:5f:47:da:3c:a3:d1:4d:c1: ae:7d:f1:13:e9:13:8d:e8:7d:8a:f0:6a:bc:0f:61: 7a:a5:87:0c:01:b2:86:cd:b0:51:5e:ba:12:79:e6: 0d:dd:46:01:73:fd:d4:3d:53:64:6e:c2:ec:cd:81: ef:86:c0:64:d5:99:8a:cc:c4:81:68:d0:db:b4:ee: 13:fe:c5:64:5b:83:d7:28:19:24:13:66:ed:98:8c: 4d:e4:a1:ab:e3:4b:ac:40:45:cd:be:8b:27:de:e0: a9:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:06:51:4A:A7:EE:31:23:9A:D4:37:0A:F4:CC:A0:11:E9:BA:34:DE X509v3 Authority Key Identifier: keyid:98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:ef:d1:30:92:78:9a:f9:36:14:42:76:a8:e1:e0:fa:b7:91: 99:9e:e9:25:95:f2:19:5a:be:c6:03:d6:a1:44:20:a2:ae:2a: ab:32:da:45:86:47:b9:9e:72:16:d1:62:45:19:3a:ea:a0:96: 28:39:88:b5:a0:c7:49:71:ce:83:f4:6c:fd:a6:e5:52:19:21: 59:2e:7c:3a:97:df:af:7e:0d:90:f2:1a:e4:73:04:c7:54:4d: 90:9c:03:88:9d:ce:bd:47:b9:61:ac:33:21:e7:79:79:07:60: 13:8b:9e:dc:20:05:9f:12:39:f3:c0:05:0e:ba:49:0f:39:8e: d1:10:b7:eb:26:3b:a2:75:7e:c0:22:ad:98:ff:8f:ab:27:9e: 83:8b:86:c1:cc:64:35:03:0d:8f:a5:b5:02:34:ea:20:28:5a: 66:58:2f:cc:07:6e:06:e9:4d:27:7d:75:28:3f:ac:1f:67:57: b5:56:90:60:55:38:21:92:b6:2c:3e:45:27:bc:4a:26:33:cf: be:5f:2b:0a:bc:90:0a:d7:a4:e1:6b:f7:b9:20:bc:29:3e:2b: 67:dd:91:94:ee:b3:4c:81:d4:73:85:98:96:8f:ed:72:66:b2: b2:a5:66:2c:74:8c:ab:9a:e0:d4:36:fa:1f:60:0c:e1:b8:84: e6:7a:82:4d -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICBAcwDQYJKoZIhvcNAQELBQAwWjElMCMGA1UEAxMcYXBu aWMtcnBraS1yb290LWludGVybWVkaWF0ZTExMC8GA1UEBRMoOTgxNDJDOUQwQjQx QTNCOUZCNjAzRDc2OTg0ODIzNkZEMUYzMTkyNDAeFw0yNjAxMTUyMjM3NDdaFw0y NjAyMjIyMjM3NDdaMBgxFjAUBgNVBAMMDTY5Njk2YzNiLTQwZmMwggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbx1yTCv7szT3buviYG/5Pjy5QABSuXfaa HwNdwd/cMFL/EvdyeVOo4UCY2hXrHBj8NzJ+FOrez8Oil9GrJjKg0fz8ECbX4GQ5 oxzkKuhg5IPX3DqpzBou7R5LlO5VAfX6gZ+lHCWlaH8iFYDvXbgYmvellspHT0zA PtM0LlAKtse0wFxJjPBuBluUeo8EI2kclxzgcpBW/RfXzX5fR9o8o9FNwa598RPp E43ofYrwarwPYXqlhwwBsobNsFFeuhJ55g3dRgFz/dQ9U2RuwuzNge+GwGTVmYrM xIFo0Nu07hP+xWRbg9coGSQTZu2YjE3koavjS6xARc2+iyfe4KmtAgMBAAGjggJP MIICSzAdBgNVHQ4EFgQURgZRSqfuMSOa1DcK9MygEem6NN4wHwYDVR0jBBgwFoAU mBQsnQtBo7n7YD12mEgjb9HzGSQwDgYDVR0PAQH/BAQDAgeAMHMGA1UdHwRsMGow aKBmoGSGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJF MEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9tQlFzblF0Qm83bjdZRDEybUVnamI5 SHpHU1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5LzgzOERCMjE0MTY2NTExRTJCM0JDMjg2 MTcyRkQxRkYyL21CUXNuUXRCbzduN1lEMTJtRWdqYjlIekdTUS5jZXIwSgYDVR0g AQH/BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5h cG5pYy5uZXQvUlBLSS9DUFMucGRmMH4GCCsGAQUFBwELBHIwcDBuBggrBgEFBQcw C4ZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5Lzk4MDY1MkUwQjc3 RTExRTdBOTZBMzk1MjFBNEY0RkI0L21CUXNuUXRCbzduN1lEMTJtRWdqYjlIekdT US5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAw BgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBX79Ewknia+TYUQnao 4eD6t5GZnukllfIZWr7GA9ahRCCiriqrMtpFhke5nnIW0WJFGTrqoJYoOYi1oMdJ cc6D9Gz9puVSGSFZLnw6l9+vfg2Q8hrkcwTHVE2QnAOInc69R7lhrDMh53l5B2AT i57cIAWfEjnzwAUOukkPOY7RELfrJjuidX7AIq2Y/4+rJ56Di4bBzGQ1Aw2PpbUC NOogKFpmWC/MB24G6U0nfXUoP6wfZ1e1VpBgVTghkrYsPkUnvEomM8++XysKvJAK 16Tha/e5ILwpPitn3ZGU7rNMgdRzhZiWj+1yZrKypWYsdIyrmuDUNvofYAzhuITm eoJN -----END CERTIFICATE-----Generated at Sun Jan 18 20:09:26 2026 by rpki-client