This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft File: mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft (raw, json) Hash identifier: qQCYNzleaLK6b24YyEJXGRKoKVHRjyCoGL1LJfWzBB4= Subject key identifier: 51:4F:B9:8C:2C:28:C8:80:49:14:A9:41:A2:AF:49:29:73:5D:EC:91 Authority key identifier: 98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24 Certificate issuer: /CN=apnic-rpki-root-intermediate/serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924 Certificate serial: 03F7 Authority info access: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer Subject info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft Manifest number: 01F6 Signing time: Tue 30 Dec 2025 00:35:33 +0000 Manifest this update: Tue 30 Dec 2025 00:35:33 +0000 Manifest next update: Fri 06 Feb 2026 00:35:33 +0000 Files and hashes: 1: mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl (hash: 9/2JXy8H7qsgKB+CvbHV+sqqNZURzhxBkirf+LrbzjY=) 2: DmWk9f02tb1o6zySNAiXjJB6p58.cer (hash: Fxa1FPCYhxgUDYJ5Yt/n5hBb+t3vszGQLhBJBD7mecg=) 3: dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer (hash: driOZIMrYpeegbJP3qagtV6ARnuMSLAQM6YoZ3eHR5I=) 4: NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer (hash: NNRmCkUau9X02u79Px3QwcTodHbkWW+WmHkQngETnp4=) 5: DPzneFf88B852ZpitKpi5hWedvg.cer (hash: Zpb8GQtMT6IhBCs4+sbRf3Qz2x88xyPIqlIZut1utpA=) 6: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer (hash: ERp48rSxC2r3G30QZpvaNb47cirE8GMjuQZcsfrMtOk=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 23:57:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1015 (0x3f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=apnic-rpki-root-intermediate, serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924 Validity Not Before: Dec 30 00:35:33 2025 GMT Not After : Feb 6 00:35:33 2026 GMT Subject: CN=69531e55-e735 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:bd:f8:ee:9c:c5:a8:43:77:89:af:c1:43:02: 8c:76:6c:bf:70:e2:07:81:2c:e1:64:74:5f:a7:2f: 6e:14:7a:62:20:d3:b9:84:2e:b4:10:e8:af:74:d5: d0:ec:2e:27:ab:f5:7d:80:34:7d:ea:df:92:54:dd: fe:82:d5:28:51:03:26:eb:f4:05:39:26:11:7b:0a: 21:fb:a6:f7:d6:39:ea:3a:9d:18:16:ca:05:fd:97: bc:6b:12:8a:0f:b4:f8:94:6f:b9:25:9b:90:1b:d1: e9:0c:3a:a7:cd:91:2b:55:89:d8:a1:f0:9f:9a:c8: 1f:10:8f:1b:74:7e:48:5e:40:63:b9:2a:b8:04:7e: 32:5d:24:e1:7d:fe:d5:1c:78:4a:d9:36:0a:bf:b2: 81:69:65:74:d7:83:ca:1e:ff:a1:c9:4a:aa:2f:4a: 24:bc:74:91:12:82:b2:4e:1a:e3:d3:eb:ce:91:be: 9f:60:1f:3f:cb:23:9e:51:13:ac:a2:45:e6:3e:ba: 25:91:78:22:76:15:f5:ae:d6:0a:3f:81:6f:e4:c2: ae:3f:44:d7:5a:ce:fb:ce:22:f3:fc:69:c4:2a:9d: 49:7f:3e:b0:d2:fe:ed:bf:19:38:56:90:d8:c3:33: 6a:84:c2:e9:e5:40:da:01:4e:4f:4b:f3:20:c5:98: e5:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:4F:B9:8C:2C:28:C8:80:49:14:A9:41:A2:AF:49:29:73:5D:EC:91 X509v3 Authority Key Identifier: keyid:98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:0b:cf:b9:86:7b:ad:63:13:04:e9:0e:33:44:cc:27:26:9a: ef:38:ef:c7:47:93:92:54:e9:c7:84:2c:7a:36:50:e7:70:4a: d8:e3:79:d8:25:71:01:54:f2:c5:d8:35:9c:0d:6b:d2:71:18: c3:50:2f:f7:a6:6a:5f:98:c4:6e:a8:fc:16:bc:d5:00:0b:ca: c8:1c:78:e3:94:fc:ae:46:14:0a:a1:57:92:bb:8a:48:b3:8b: 92:42:bb:7c:33:bd:42:ce:c6:a2:8b:46:f8:b5:22:bb:12:2a: 68:d3:e2:31:04:d7:c3:de:20:a3:c0:b4:a5:cc:89:49:7c:b4: bc:96:7c:fb:ac:63:2e:49:20:dd:05:5b:ff:5d:50:88:46:ad: a7:01:ac:a5:39:84:c1:7a:1b:15:f1:79:84:01:61:36:ac:d9: 13:2c:7f:06:ac:b1:39:5a:71:f6:37:c4:a4:ac:d9:09:17:05: d6:5b:4c:d3:28:bc:67:db:08:0a:de:e5:37:1c:33:93:a3:ba: 2e:9d:cc:70:d5:2f:99:25:9b:eb:a8:60:03:44:2b:52:89:2d: 51:84:38:d7:44:a8:72:e6:b9:ca:ca:7f:5c:59:65:13:2a:77: d0:7f:b8:53:21:23:88:2c:35:1e:0b:65:f3:d2:84:c3:d8:39: 30:ad:ed:84 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICA/cwDQYJKoZIhvcNAQELBQAwWjElMCMGA1UEAxMcYXBu aWMtcnBraS1yb290LWludGVybWVkaWF0ZTExMC8GA1UEBRMoOTgxNDJDOUQwQjQx QTNCOUZCNjAzRDc2OTg0ODIzNkZEMUYzMTkyNDAeFw0yNTEyMzAwMDM1MzNaFw0y NjAyMDYwMDM1MzNaMBgxFjAUBgNVBAMMDTY5NTMxZTU1LWU3MzUwggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4vfjunMWoQ3eJr8FDAox2bL9w4geBLOFk dF+nL24UemIg07mELrQQ6K901dDsLier9X2ANH3q35JU3f6C1ShRAybr9AU5JhF7 CiH7pvfWOeo6nRgWygX9l7xrEooPtPiUb7klm5Ab0ekMOqfNkStVidih8J+ayB8Q jxt0fkheQGO5KrgEfjJdJOF9/tUceErZNgq/soFpZXTXg8oe/6HJSqovSiS8dJES grJOGuPT686Rvp9gHz/LI55RE6yiReY+uiWReCJ2FfWu1go/gW/kwq4/RNdazvvO IvP8acQqnUl/PrDS/u2/GThWkNjDM2qEwunlQNoBTk9L8yDFmOUlAgMBAAGjggJP MIICSzAdBgNVHQ4EFgQUUU+5jCwoyIBJFKlBoq9JKXNd7JEwHwYDVR0jBBgwFoAU mBQsnQtBo7n7YD12mEgjb9HzGSQwDgYDVR0PAQH/BAQDAgeAMHMGA1UdHwRsMGow aKBmoGSGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJF MEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9tQlFzblF0Qm83bjdZRDEybUVnamI5 SHpHU1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5LzgzOERCMjE0MTY2NTExRTJCM0JDMjg2 MTcyRkQxRkYyL21CUXNuUXRCbzduN1lEMTJtRWdqYjlIekdTUS5jZXIwSgYDVR0g AQH/BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5h cG5pYy5uZXQvUlBLSS9DUFMucGRmMH4GCCsGAQUFBwELBHIwcDBuBggrBgEFBQcw C4ZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5Lzk4MDY1MkUwQjc3 RTExRTdBOTZBMzk1MjFBNEY0RkI0L21CUXNuUXRCbzduN1lEMTJtRWdqYjlIekdT US5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAw BgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBBC8+5hnutYxME6Q4z RMwnJprvOO/HR5OSVOnHhCx6NlDncErY43nYJXEBVPLF2DWcDWvScRjDUC/3pmpf mMRuqPwWvNUAC8rIHHjjlPyuRhQKoVeSu4pIs4uSQrt8M71Czsaii0b4tSK7Eipo 0+IxBNfD3iCjwLSlzIlJfLS8lnz7rGMuSSDdBVv/XVCIRq2nAaylOYTBehsV8XmE AWE2rNkTLH8GrLE5WnH2N8SkrNkJFwXWW0zTKLxn2wgK3uU3HDOTo7ouncxw1S+Z JZvrqGADRCtSiS1RhDjXRKhy5rnKyn9cWWUTKnfQf7hTISOILDUeC2Xz0oTD2Dkw re2E -----END CERTIFICATE-----Generated at Wed Jan 7 16:24:22 2026 by rpki-client