This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft File: mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft (raw, json) Hash identifier: 0EJxwx49X/f4mTjmMADC4O4aBiZWpLgCfsbvz5wsspw= Subject key identifier: C1:AC:AA:65:C6:2A:1E:25:E0:FE:D8:DE:39:CB:1B:C8:C0:D0:14:FD Authority key identifier: 98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24 Certificate issuer: /CN=apnic-rpki-root-intermediate/serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924 Certificate serial: 0409 Authority info access: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer Subject info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft Manifest number: 01FF Signing time: Sun 18 Jan 2026 23:10:15 +0000 Manifest this update: Sun 18 Jan 2026 23:10:15 +0000 Manifest next update: Wed 25 Feb 2026 23:10:15 +0000 Files and hashes: 1: mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl (hash: IMmOQXnTLSzgWFTQeGuCRaj9Knz9ariP76ChDG0xYQU=) 2: DmWk9f02tb1o6zySNAiXjJB6p58.cer (hash: Fd2yXvcOGhywUgOtBsL6iEgDpyBn8SwQZVJsPPG58mA=) 3: dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer (hash: /maB3LVAenh4xYBWkg9yT7AhHd55FWrSSxcY62kJYUE=) 4: NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer (hash: NNRmCkUau9X02u79Px3QwcTodHbkWW+WmHkQngETnp4=) 5: DPzneFf88B852ZpitKpi5hWedvg.cer (hash: vwpMvjGjOAwUT2lW+JqPZCwS9iM7Db0BGcO5sFRcGII=) 6: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer (hash: ERp48rSxC2r3G30QZpvaNb47cirE8GMjuQZcsfrMtOk=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 23:10:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1033 (0x409) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=apnic-rpki-root-intermediate, serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924 Validity Not Before: Jan 18 23:10:15 2026 GMT Not After : Feb 25 23:10:15 2026 GMT Subject: CN=696d6857-0424 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e4:b2:9f:95:a3:53:53:82:b2:17:ca:c5:07: 42:70:a3:44:82:26:c0:43:40:13:52:06:eb:e8:2b: 81:15:cf:b9:ee:96:01:e0:c9:0e:ed:99:e2:6d:23: ef:55:51:8f:13:d3:8e:49:82:8c:0f:87:1a:d2:63: 31:c4:11:37:7e:eb:60:22:da:44:22:3d:74:1a:ef: 6d:62:ef:4e:38:6e:5a:b4:6c:aa:c7:1f:cb:e8:95: 10:8a:b4:98:67:2f:ca:ab:d7:d7:1a:8a:48:76:42: ff:99:0f:4b:29:b9:2d:4f:a6:47:43:05:38:cd:78: 22:2b:2f:32:16:01:db:5b:d6:5a:1f:bf:be:7d:e9: 1b:ed:eb:c9:d9:01:68:ee:06:53:a9:c3:b7:f9:55: 54:9b:d3:35:09:7c:c0:bc:0d:a9:99:df:4d:b4:55: 3d:93:b7:47:1b:83:57:d9:30:a7:65:3c:8c:53:d5: f8:64:a1:72:cf:ab:e5:bf:3f:1e:b2:38:b5:fa:d1: b6:4f:34:4b:f0:47:b0:94:38:c4:e8:2f:03:90:d2: 4b:f5:4d:bc:e2:fc:c9:c3:5f:b6:3d:3f:27:89:c4: 61:5c:e9:d3:4f:be:65:4d:e1:28:c8:02:b8:16:b2: 0f:27:41:2e:81:d2:04:2c:d8:96:ab:98:b9:1d:f9: e8:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:AC:AA:65:C6:2A:1E:25:E0:FE:D8:DE:39:CB:1B:C8:C0:D0:14:FD X509v3 Authority Key Identifier: keyid:98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:1b:43:8b:a3:08:dd:28:cd:ab:67:80:8e:89:d4:03:27:35: ad:0d:d0:37:67:83:34:be:17:63:11:b2:77:71:96:9e:67:52: fc:03:38:3a:a8:bb:2a:9a:b1:66:62:86:f4:f0:61:67:b7:c2: 78:d1:5f:23:50:d4:4f:07:1e:df:82:4f:ee:ab:ae:3b:7c:08: a0:6d:0c:c6:72:97:97:e5:11:9e:11:a7:72:d4:00:9c:72:da: df:9c:bb:bd:fe:95:5a:35:f0:9a:d1:2a:02:ee:2d:41:4f:1d: 44:a1:14:37:22:ee:e6:1e:e4:f6:15:10:d2:ac:fb:b7:43:2d: a5:5b:23:ee:23:a3:e3:75:dd:7e:f9:08:71:6d:2d:50:8f:3c: 01:6e:83:f7:3d:8b:cd:c6:6c:35:49:ee:6d:24:2d:2e:0d:dd: 09:6b:68:e1:c8:fa:9a:01:b5:a6:21:9a:e6:3e:9e:28:35:78: 06:ca:85:fd:f2:8f:ee:31:d4:98:1d:38:7a:b8:94:e7:9a:81: d9:d8:bf:c5:a5:51:02:b7:03:41:c2:7f:a9:05:95:4b:0c:c9: 57:77:a1:b9:7e:ab:e1:8f:67:a3:78:11:39:94:f8:1b:cf:f4: 16:dd:fc:ae:02:a4:61:3f:c6:38:39:99:ec:c1:59:29:50:fc: 2f:2d:b0:ee -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICBAkwDQYJKoZIhvcNAQELBQAwWjElMCMGA1UEAxMcYXBu aWMtcnBraS1yb290LWludGVybWVkaWF0ZTExMC8GA1UEBRMoOTgxNDJDOUQwQjQx QTNCOUZCNjAzRDc2OTg0ODIzNkZEMUYzMTkyNDAeFw0yNjAxMTgyMzEwMTVaFw0y NjAyMjUyMzEwMTVaMBgxFjAUBgNVBAMMDTY5NmQ2ODU3LTA0MjQwggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQC65LKflaNTU4KyF8rFB0Jwo0SCJsBDQBNS BuvoK4EVz7nulgHgyQ7tmeJtI+9VUY8T045JgowPhxrSYzHEETd+62Ai2kQiPXQa 721i7044blq0bKrHH8volRCKtJhnL8qr19caikh2Qv+ZD0spuS1PpkdDBTjNeCIr LzIWAdtb1lofv7596Rvt68nZAWjuBlOpw7f5VVSb0zUJfMC8DamZ3020VT2Tt0cb g1fZMKdlPIxT1fhkoXLPq+W/Px6yOLX60bZPNEvwR7CUOMToLwOQ0kv1Tbzi/MnD X7Y9PyeJxGFc6dNPvmVN4SjIArgWsg8nQS6B0gQs2JarmLkd+eijAgMBAAGjggJP MIICSzAdBgNVHQ4EFgQUwayqZcYqHiXg/tjeOcsbyMDQFP0wHwYDVR0jBBgwFoAU mBQsnQtBo7n7YD12mEgjb9HzGSQwDgYDVR0PAQH/BAQDAgeAMHMGA1UdHwRsMGow aKBmoGSGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJF MEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9tQlFzblF0Qm83bjdZRDEybUVnamI5 SHpHU1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5LzgzOERCMjE0MTY2NTExRTJCM0JDMjg2 MTcyRkQxRkYyL21CUXNuUXRCbzduN1lEMTJtRWdqYjlIekdTUS5jZXIwSgYDVR0g AQH/BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5h cG5pYy5uZXQvUlBLSS9DUFMucGRmMH4GCCsGAQUFBwELBHIwcDBuBggrBgEFBQcw C4ZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5Lzk4MDY1MkUwQjc3 RTExRTdBOTZBMzk1MjFBNEY0RkI0L21CUXNuUXRCbzduN1lEMTJtRWdqYjlIekdT US5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAw BgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCwG0OLowjdKM2rZ4CO idQDJzWtDdA3Z4M0vhdjEbJ3cZaeZ1L8Azg6qLsqmrFmYob08GFnt8J40V8jUNRP Bx7fgk/uq647fAigbQzGcpeX5RGeEady1ACcctrfnLu9/pVaNfCa0SoC7i1BTx1E oRQ3Iu7mHuT2FRDSrPu3Qy2lWyPuI6Pjdd1++QhxbS1QjzwBboP3PYvNxmw1Se5t JC0uDd0Ja2jhyPqaAbWmIZrmPp4oNXgGyoX98o/uMdSYHTh6uJTnmoHZ2L/FpVEC twNBwn+pBZVLDMlXd6G5fqvhj2ejeBE5lPgbz/QW3fyuAqRhP8Y4OZnswVkpUPwv LbDu -----END CERTIFICATE-----Generated at Mon Jan 19 20:20:01 2026 by rpki-client