This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft File: mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft (raw, json) Hash identifier: X9df12iixMqWg0kqSMM6SusJLRqb7gbVK1DWMG9vtIQ= Subject key identifier: 29:C7:4F:00:1E:C1:2E:0E:E8:44:29:99:F3:D6:5C:83:A5:0C:AD:6B Authority key identifier: 98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24 Certificate issuer: /CN=apnic-rpki-root-intermediate/serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924 Certificate serial: 0405 Authority info access: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer Subject info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft Manifest number: 01FD Signing time: Thu 08 Jan 2026 00:31:01 +0000 Manifest this update: Thu 08 Jan 2026 00:31:00 +0000 Manifest next update: Sun 15 Feb 2026 00:31:00 +0000 Files and hashes: 1: mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl (hash: ZlkxLYgkWlHP6YrHc0jd0hmc8LS9/Pepg6c82odaNLo=) 2: DmWk9f02tb1o6zySNAiXjJB6p58.cer (hash: Fxa1FPCYhxgUDYJ5Yt/n5hBb+t3vszGQLhBJBD7mecg=) 3: dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer (hash: Vn5ZqVzFcpH3RWmlubEUl/e6AivrUATPn+P8RS7ehgw=) 4: NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer (hash: NNRmCkUau9X02u79Px3QwcTodHbkWW+WmHkQngETnp4=) 5: DPzneFf88B852ZpitKpi5hWedvg.cer (hash: vwpMvjGjOAwUT2lW+JqPZCwS9iM7Db0BGcO5sFRcGII=) 6: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer (hash: ERp48rSxC2r3G30QZpvaNb47cirE8GMjuQZcsfrMtOk=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 23:57:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1029 (0x405) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=apnic-rpki-root-intermediate, serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924 Validity Not Before: Jan 8 00:31:00 2026 GMT Not After : Feb 15 00:31:00 2026 GMT Subject: CN=695efac5-eeda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:db:4e:b2:a0:64:11:6a:d3:23:1a:60:83:66: 68:3d:35:34:89:2e:4f:79:87:f9:54:44:a0:c4:7a: 43:9d:5a:2f:e3:a0:dc:f7:f6:d7:ac:02:bf:37:49: 30:86:47:aa:ee:51:f1:ac:68:5f:72:8c:d7:f3:dd: 42:1c:9d:c0:e6:4f:c8:91:3a:db:10:35:55:92:68: c5:59:ef:8e:52:6a:90:a2:3d:4b:3a:96:97:14:6f: 0f:02:ea:c0:d2:03:58:1b:d6:65:5e:7c:60:6f:a7: ea:e8:bf:bc:15:0c:40:dd:53:24:35:e9:7e:6c:b0: 1a:94:b9:b2:b4:1b:6c:48:63:49:23:56:70:6f:01: 7b:46:30:aa:d3:79:3b:a4:59:14:72:46:fd:80:c5: cc:ec:dc:11:37:57:15:8c:96:57:d6:76:8f:43:38: 5a:4a:02:3e:21:9e:81:ea:7e:3f:54:10:c4:4f:3d: 10:27:42:dc:ef:11:14:99:af:1d:b0:21:4a:4f:0a: 63:45:63:a4:36:18:75:9f:c5:61:91:73:53:52:5f: 66:3d:98:92:28:09:0b:c1:c8:96:24:7a:8a:20:f1: 35:19:45:30:ab:eb:5f:9e:49:e9:7c:bc:da:01:ba: fc:f6:e4:04:00:85:1f:72:74:61:b4:71:da:37:4e: 01:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:C7:4F:00:1E:C1:2E:0E:E8:44:29:99:F3:D6:5C:83:A5:0C:AD:6B X509v3 Authority Key Identifier: keyid:98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:43:d2:dc:b9:c2:82:99:40:7b:59:d5:26:d3:40:1a:6c:29: 4b:a3:37:92:3d:60:31:71:45:d0:70:b9:87:d7:e9:41:37:45: 44:a4:d5:e2:f3:8a:52:d0:1a:aa:22:b7:c4:8c:85:ae:7b:8c: 78:29:d4:ae:23:f7:c0:9f:82:20:ab:74:59:27:63:69:91:21: e8:e5:b1:93:47:da:86:13:a3:c1:26:26:b6:52:1d:91:b4:7a: d4:10:3c:16:47:7b:33:5b:63:78:db:42:30:7f:eb:70:ea:95: 96:9d:83:16:c8:e2:d6:3d:2c:8d:ef:fa:2d:a7:3b:a0:49:ad: eb:81:de:d6:7a:f7:9f:c0:74:21:38:7b:77:2f:a9:88:81:45: 21:14:b6:25:72:f2:8d:3f:f8:74:72:c8:e0:14:ed:66:7b:d9: 72:7e:0b:72:e5:fd:8e:ad:d9:20:30:fa:44:13:7f:4a:f4:5c: c1:cf:80:a0:55:c7:f7:95:00:a8:55:25:c6:2b:c9:3f:f0:cc: fa:20:80:97:0b:cb:4d:f8:76:e1:17:0b:31:e2:92:f8:c8:d8: 2e:5f:a6:79:de:c0:2a:27:a2:17:96:87:34:0b:07:7b:d4:e6: 64:66:92:08:ec:b5:22:46:8f:4d:f1:c2:d6:ac:74:94:e4:57: 09:bb:79:f1 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICBAUwDQYJKoZIhvcNAQELBQAwWjElMCMGA1UEAxMcYXBu aWMtcnBraS1yb290LWludGVybWVkaWF0ZTExMC8GA1UEBRMoOTgxNDJDOUQwQjQx QTNCOUZCNjAzRDc2OTg0ODIzNkZEMUYzMTkyNDAeFw0yNjAxMDgwMDMxMDBaFw0y NjAyMTUwMDMxMDBaMBgxFjAUBgNVBAMMDTY5NWVmYWM1LWVlZGEwggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQCS206yoGQRatMjGmCDZmg9NTSJLk95h/lU RKDEekOdWi/joNz39tesAr83STCGR6ruUfGsaF9yjNfz3UIcncDmT8iROtsQNVWS aMVZ745SapCiPUs6lpcUbw8C6sDSA1gb1mVefGBvp+rov7wVDEDdUyQ16X5ssBqU ubK0G2xIY0kjVnBvAXtGMKrTeTukWRRyRv2Axczs3BE3VxWMllfWdo9DOFpKAj4h noHqfj9UEMRPPRAnQtzvERSZrx2wIUpPCmNFY6Q2GHWfxWGRc1NSX2Y9mJIoCQvB yJYkeoog8TUZRTCr61+eSel8vNoBuvz25AQAhR9ydGG0cdo3TgGXAgMBAAGjggJP MIICSzAdBgNVHQ4EFgQUKcdPAB7BLg7oRCmZ89Zcg6UMrWswHwYDVR0jBBgwFoAU mBQsnQtBo7n7YD12mEgjb9HzGSQwDgYDVR0PAQH/BAQDAgeAMHMGA1UdHwRsMGow aKBmoGSGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJF MEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9tQlFzblF0Qm83bjdZRDEybUVnamI5 SHpHU1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5LzgzOERCMjE0MTY2NTExRTJCM0JDMjg2 MTcyRkQxRkYyL21CUXNuUXRCbzduN1lEMTJtRWdqYjlIekdTUS5jZXIwSgYDVR0g AQH/BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5h cG5pYy5uZXQvUlBLSS9DUFMucGRmMH4GCCsGAQUFBwELBHIwcDBuBggrBgEFBQcw C4ZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5Lzk4MDY1MkUwQjc3 RTExRTdBOTZBMzk1MjFBNEY0RkI0L21CUXNuUXRCbzduN1lEMTJtRWdqYjlIekdT US5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAw BgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCnQ9LcucKCmUB7WdUm 00AabClLozeSPWAxcUXQcLmH1+lBN0VEpNXi84pS0BqqIrfEjIWue4x4KdSuI/fA n4Igq3RZJ2NpkSHo5bGTR9qGE6PBJia2Uh2RtHrUEDwWR3szW2N420Iwf+tw6pWW nYMWyOLWPSyN7/otpzugSa3rgd7WevefwHQhOHt3L6mIgUUhFLYlcvKNP/h0csjg FO1me9lyfgty5f2OrdkgMPpEE39K9FzBz4CgVcf3lQCoVSXGK8k/8Mz6IICXC8tN +HbhFwsx4pL4yNguX6Z53sAqJ6IXloc0Cwd71OZkZpII7LUiRo9N8cLWrHSU5FcJ u3nx -----END CERTIFICATE-----Generated at Wed Jan 14 17:01:13 2026 by rpki-client