This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft File: mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft (raw, json) Hash identifier: lIyCy4CpDeKYuHtDgpvxlER+BNrCWBYgoia4i7Gq6bk= Subject key identifier: 82:72:40:3C:19:8D:9B:45:0E:A4:EC:91:3D:36:B8:AD:D1:0B:53:A8 Authority key identifier: 98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24 Certificate issuer: /CN=apnic-rpki-root-intermediate/serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924 Certificate serial: 040B Authority info access: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer Subject info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft Manifest number: 0200 Signing time: Tue 27 Jan 2026 22:45:55 +0000 Manifest this update: Tue 27 Jan 2026 22:45:55 +0000 Manifest next update: Tue 03 Mar 2026 22:45:55 +0000 Files and hashes: 1: mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl (hash: HTVL0wnJyXm2YkmzgshsjBoMZNGEPpWVbEV0h3WiAQI=) 2: DmWk9f02tb1o6zySNAiXjJB6p58.cer (hash: Fd2yXvcOGhywUgOtBsL6iEgDpyBn8SwQZVJsPPG58mA=) 3: dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer (hash: 4K6OHABfXbBeFuPk6gqtxTi2oakyGQiyWVkBuwXUhp4=) 4: NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer (hash: NNRmCkUau9X02u79Px3QwcTodHbkWW+WmHkQngETnp4=) 5: DPzneFf88B852ZpitKpi5hWedvg.cer (hash: vwpMvjGjOAwUT2lW+JqPZCwS9iM7Db0BGcO5sFRcGII=) 6: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer (hash: ERp48rSxC2r3G30QZpvaNb47cirE8GMjuQZcsfrMtOk=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 22:45:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1035 (0x40b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=apnic-rpki-root-intermediate, serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924 Validity Not Before: Jan 27 22:45:55 2026 GMT Not After : Mar 3 22:45:55 2026 GMT Subject: CN=69794023-9ee9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:2d:fd:92:58:32:5b:25:61:ca:ec:4a:de:a9: 03:d4:6a:3b:de:6e:4d:93:13:2c:1e:87:72:f9:df: d5:15:af:a6:f1:a9:cc:af:fd:0c:02:d0:c6:44:58: 94:64:da:17:78:4e:05:74:b9:75:6e:2e:5f:f2:80: 46:1e:c3:b3:1a:94:77:12:df:af:9e:7f:39:35:a1: 60:db:0f:14:49:0f:97:7d:1c:7d:fd:26:2e:03:b5: 9c:71:96:e2:2e:f4:c5:31:82:ec:57:e6:67:67:48: 3a:cf:ab:e8:65:df:b2:ee:c9:dc:80:9d:22:a7:3b: 3e:60:08:1e:c5:f0:d2:d6:51:d1:ea:f4:dc:35:82: 83:ea:9a:54:1b:89:5d:f6:1d:d5:e8:03:38:9a:06: 33:c4:c6:16:dc:ae:e0:03:dc:aa:b1:ee:d0:ac:0c: 6b:be:a4:c6:c9:67:e5:eb:46:54:37:2a:c0:24:b4: 91:e8:1c:f3:75:28:de:f3:2b:75:d7:d0:6d:9f:b6: f0:7d:9a:72:79:4e:14:38:2f:a8:1b:6a:5c:aa:83: ee:87:ca:9c:67:e0:cf:c9:7c:60:86:61:c3:26:78: 25:09:ee:c3:12:89:10:a8:6d:61:f4:96:ff:3d:0a: f8:6e:db:8e:5e:59:53:5c:a2:81:e9:65:3b:1e:72: ad:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:72:40:3C:19:8D:9B:45:0E:A4:EC:91:3D:36:B8:AD:D1:0B:53:A8 X509v3 Authority Key Identifier: keyid:98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:28:f0:18:ca:0f:a7:de:40:67:46:7b:88:65:16:2f:56:ba: dd:ce:0f:9f:1d:29:26:7f:1b:24:2f:d6:7b:70:33:3e:c4:54: e0:7d:aa:e1:63:0c:3a:74:c8:c0:03:5e:12:c1:cf:52:4d:9a: 77:28:91:28:f0:c7:f2:f4:4a:ac:80:2a:54:72:08:9b:1d:c8: 6c:af:94:c4:2a:bf:bf:fb:3d:32:82:19:cb:ab:4c:a7:89:b2: 7c:3e:36:e6:20:cf:18:da:57:7d:4b:47:c5:37:02:a2:cf:3a: e3:94:94:6a:48:70:64:bf:07:ba:a3:c0:e0:0d:a2:89:6d:47: d2:ee:73:55:6c:92:07:6f:63:7b:99:3a:62:17:50:5c:4e:37: 36:18:39:d0:ec:59:ed:80:e8:99:23:fc:a5:37:c0:87:f1:0c: 87:de:9f:a9:50:b0:ab:d8:d7:63:b5:e0:78:01:69:24:97:ec: 05:08:0b:db:6a:54:6f:98:0c:b8:f6:51:51:53:f7:15:30:03: 98:20:a6:90:b1:9c:d3:6c:a2:52:fc:2b:4a:7d:bb:b1:fe:5c: 20:2a:c3:34:95:11:43:07:0f:e5:2b:fa:e3:4e:60:e2:2c:c7: 66:2e:5d:07:c6:fe:89:69:bc:22:87:e7:8e:f0:7e:ae:24:95: 05:46:49:77 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICBAswDQYJKoZIhvcNAQELBQAwWjElMCMGA1UEAxMcYXBu aWMtcnBraS1yb290LWludGVybWVkaWF0ZTExMC8GA1UEBRMoOTgxNDJDOUQwQjQx QTNCOUZCNjAzRDc2OTg0ODIzNkZEMUYzMTkyNDAeFw0yNjAxMjcyMjQ1NTVaFw0y NjAzMDMyMjQ1NTVaMBgxFjAUBgNVBAMMDTY5Nzk0MDIzLTllZTkwggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVLf2SWDJbJWHK7EreqQPUajvebk2TEywe h3L539UVr6bxqcyv/QwC0MZEWJRk2hd4TgV0uXVuLl/ygEYew7MalHcS36+efzk1 oWDbDxRJD5d9HH39Ji4DtZxxluIu9MUxguxX5mdnSDrPq+hl37LuydyAnSKnOz5g CB7F8NLWUdHq9Nw1goPqmlQbiV32HdXoAziaBjPExhbcruAD3Kqx7tCsDGu+pMbJ Z+XrRlQ3KsAktJHoHPN1KN7zK3XX0G2ftvB9mnJ5ThQ4L6gbalyqg+6Hypxn4M/J fGCGYcMmeCUJ7sMSiRCobWH0lv89Cvhu245eWVNcooHpZTsecq15AgMBAAGjggJP MIICSzAdBgNVHQ4EFgQUgnJAPBmNm0UOpOyRPTa4rdELU6gwHwYDVR0jBBgwFoAU mBQsnQtBo7n7YD12mEgjb9HzGSQwDgYDVR0PAQH/BAQDAgeAMHMGA1UdHwRsMGow aKBmoGSGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJF MEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9tQlFzblF0Qm83bjdZRDEybUVnamI5 SHpHU1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5LzgzOERCMjE0MTY2NTExRTJCM0JDMjg2 MTcyRkQxRkYyL21CUXNuUXRCbzduN1lEMTJtRWdqYjlIekdTUS5jZXIwSgYDVR0g AQH/BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5h cG5pYy5uZXQvUlBLSS9DUFMucGRmMH4GCCsGAQUFBwELBHIwcDBuBggrBgEFBQcw C4ZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5Lzk4MDY1MkUwQjc3 RTExRTdBOTZBMzk1MjFBNEY0RkI0L21CUXNuUXRCbzduN1lEMTJtRWdqYjlIekdT US5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAw BgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQC9KPAYyg+n3kBnRnuI ZRYvVrrdzg+fHSkmfxskL9Z7cDM+xFTgfarhYww6dMjAA14Swc9STZp3KJEo8Mfy 9EqsgCpUcgibHchsr5TEKr+/+z0yghnLq0ynibJ8PjbmIM8Y2ld9S0fFNwKizzrj lJRqSHBkvwe6o8DgDaKJbUfS7nNVbJIHb2N7mTpiF1BcTjc2GDnQ7FntgOiZI/yl N8CH8QyH3p+pULCr2NdjteB4AWkkl+wFCAvbalRvmAy49lFRU/cVMAOYIKaQsZzT bKJS/CtKfbux/lwgKsM0lRFDBw/lK/rjTmDiLMdmLl0Hxv6Jabwih+eO8H6uJJUF Rkl3 -----END CERTIFICATE-----Generated at Tue Feb 3 00:34:26 2026 by rpki-client