This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft File: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft (raw, json) Hash identifier: RuX8iK9JCllDC216aRA283/b5SNDQnh2uPxHtRSdzUU= Subject key identifier: 7A:AC:DA:6C:F2:C9:E4:79:EC:FF:EE:58:BD:8C:75:E0:F7:5C:14:6E Authority key identifier: 96:A8:5E:F4:B8:CA:F5:D4:C3:5A:15:7F:4E:12:5E:E4:94:BA:F9:39 Certificate issuer: /CN=A90DC5BE/serialNumber=96A85EF4B8CAF5D4C35A157F4E125EE494BAF939 Certificate serial: 48B8 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer Subject info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft Manifest number: 48AC Signing time: Thu 22 Jan 2026 14:50:25 +0000 Manifest this update: Thu 22 Jan 2026 14:50:25 +0000 Manifest next update: Thu 29 Jan 2026 14:50:25 +0000 Files and hashes: 1: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl (hash: qCXY7fUa0oJDrjcGOhUV/YO/CjWhA7FbnDpDmnZ7n3o=) 2: V2i_S72Luw3lwVz_jwqRSKCyLtU.cer (hash: d7nW44PMgX3RwaXF2oB8L8gcCuQ2vF0toLT5KaRwyyE=) 3: 4kPzvoJVabsWrLN0vJjavmkLF8E.cer (hash: fxyUaruAjaaco/fzq2Q5nRs7XM9NtVdLWIcLFflk+gY=) 4: Ak2PFao5dyF1iDou3BZQFOGSiho.cer (hash: NRcDr6REbVzbTiHoNzZyK4YoKwtLqg9UeS+C5SRci4o=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 29 Jan 2026 14:50:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18616 (0x48b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=96A85EF4B8CAF5D4C35A157F4E125EE494BAF939 Validity Not Before: Jan 22 14:50:25 2026 GMT Not After : Jan 29 14:50:25 2026 GMT Subject: CN=69723931-e72b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:95:74:61:08:e7:cb:05:f5:8f:ae:aa:d2:14: e6:5a:5a:90:0e:6f:c8:b0:83:0e:8c:f8:03:69:ea: 23:17:90:24:97:be:76:d1:51:3e:ce:19:6d:33:68: 96:d1:66:9c:bf:5b:c1:5c:e6:95:16:4c:bf:34:43: 01:fe:2c:9b:1d:13:a6:b9:27:2e:7a:ec:e9:f3:9c: f9:f6:2f:c3:c7:57:3a:f7:02:6f:73:1d:22:c0:81: 17:3a:09:96:30:23:fb:b1:48:ae:b6:3f:de:e7:43: af:fe:7d:e8:bb:38:23:e0:c5:9f:93:07:b9:db:ae: 34:16:1e:d6:f0:04:22:24:e5:fa:5c:63:90:57:91: f9:46:e4:4b:6f:3a:99:e8:58:e3:59:ac:03:5e:4a: 0a:70:d7:f4:2f:b0:82:92:59:f0:2f:97:f7:cf:91: 25:9d:64:1b:e3:b1:75:93:04:57:5a:db:16:62:c9: 14:0c:c8:e1:ec:15:2c:5c:ef:82:40:a5:21:93:27: fb:c6:ac:e1:37:4c:c7:92:82:8e:e0:c3:82:6f:a4: 35:29:1c:d0:9c:d2:35:95:c0:f8:d1:60:54:1e:7b: 14:c6:a6:4c:d7:e0:3b:98:b4:8b:e8:78:3f:56:15: da:48:7d:af:25:8e:eb:c7:8e:7b:0c:76:69:91:79: f5:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:AC:DA:6C:F2:C9:E4:79:EC:FF:EE:58:BD:8C:75:E0:F7:5C:14:6E X509v3 Authority Key Identifier: keyid:96:A8:5E:F4:B8:CA:F5:D4:C3:5A:15:7F:4E:12:5E:E4:94:BA:F9:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:13:64:5e:4c:7d:35:2f:ca:14:9b:56:fe:0c:c9:24:bc:e9: 9b:27:a6:34:df:7d:aa:4f:3b:76:02:05:ef:62:a5:64:86:31: 93:f5:d9:75:ed:73:6c:4f:5b:27:6d:4b:a8:fa:62:8c:23:7c: bf:5a:c8:f3:fa:4f:bc:ca:82:d1:58:57:8e:37:1b:64:19:f9: 2a:00:56:85:98:85:74:7a:52:1b:eb:97:07:61:8e:24:41:b2: 6b:0b:69:c4:1c:3d:4c:c3:3f:42:76:b7:57:e0:57:47:b6:1e: 85:52:0a:0b:28:98:7c:1a:f7:b1:0d:5b:27:c2:af:91:98:e3: 6d:0f:8b:94:70:22:94:c6:87:a6:dd:2b:da:b6:03:4b:c1:dc: 39:20:da:c4:04:5e:69:27:c3:4b:6b:15:6f:87:1f:4a:91:6e: 2b:cb:d7:34:43:79:7a:90:4c:60:cf:6c:d0:69:e3:cf:c2:fa: cd:61:45:2d:1a:b3:64:9c:9a:82:de:66:f3:5a:c5:49:ea:f7: 1e:d1:21:59:8b:a1:60:23:42:9c:93:05:63:22:93:16:b4:1c: 6c:22:59:24:0d:ce:19:b4:39:55:bb:2a:03:7d:4c:7a:6c:1c: d4:9f:fd:6f:e7:c9:8d:28:ae:56:de:7c:34:b5:6a:f6:3a:80: 5a:b5:9e:cc -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkw REM1QkUxMTAvBgNVBAUTKDk2QTg1RUY0QjhDQUY1RDRDMzVBMTU3RjRFMTI1RUU0 OTRCQUY5MzkwHhcNMjYwMTIyMTQ1MDI1WhcNMjYwMTI5MTQ1MDI1WjAYMRYwFAYD VQQDDA02OTcyMzkzMS1lNzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0pV0YQjnywX1j66q0hTmWlqQDm/IsIMOjPgDaeojF5Akl7520VE+zhltM2iW 0Wacv1vBXOaVFky/NEMB/iybHROmuScueuzp85z59i/Dx1c69wJvcx0iwIEXOgmW MCP7sUiutj/e50Ov/n3ouzgj4MWfkwe52640Fh7W8AQiJOX6XGOQV5H5RuRLbzqZ 6FjjWawDXkoKcNf0L7CCklnwL5f3z5ElnWQb47F1kwRXWtsWYskUDMjh7BUsXO+C QKUhkyf7xqzhN0zHkoKO4MOCb6Q1KRzQnNI1lcD40WBUHnsUxqZM1+A7mLSL6Hg/ VhXaSH2vJY7rx457DHZpkXn1/wIDAQABo4IChzCCAoMwHQYDVR0OBBYEFHqs2mzy yeR57P/uWL2MdeD3XBRuMB8GA1UdIwQYMBaAFJaoXvS4yvXUw1oVf04SXuSUuvk5 MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjRBMUJFQTYxRDY2MTFFMkIyQ0Q4QjdDNzJG RDFGRjIvbHFoZTlMaks5ZFREV2hWX1RoSmU1SlM2LVRrLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9scWhlOUxqSzlk VERXaFZfVGhKZTVKUzYtVGsuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNEExQkVBNjFENjYxMUUyQjJDRDhCN0M3MkZE MUZGMi9scWhlOUxqSzlkVERXaFZfVGhKZTVKUzYtVGsubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQB6E2ReTH01L8oUm1b+DMkkvOmbJ6Y0332q Tzt2AgXvYqVkhjGT9dl17XNsT1snbUuo+mKMI3y/Wsjz+k+8yoLRWFeONxtkGfkq AFaFmIV0elIb65cHYY4kQbJrC2nEHD1Mwz9CdrdX4FdHth6FUgoLKJh8GvexDVsn wq+RmONtD4uUcCKUxoem3SvatgNLwdw5INrEBF5pJ8NLaxVvhx9KkW4ry9c0Q3l6 kExgz2zQaePPwvrNYUUtGrNknJqC3mbzWsVJ6vce0SFZi6FgI0KckwVjIpMWtBxs IlkkDc4ZtDlVuyoDfUx6bBzUn/1v58mNKK5W3nw0tWr2OoBatZ7M -----END CERTIFICATE-----Generated at Thu Jan 22 23:54:43 2026 by rpki-client