This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft File: D5BpKh7v5_ChrGi14awJ9wJpccw.mft (raw, json) Hash identifier: v86JGcYfXT2pCr0+mU5X75md2orTNtS5kNj2o9S4QR8= Subject key identifier: B4:00:23:B8:70:C9:9F:71:DE:83:69:C5:BB:3B:23:17:0D:30:EB:55 Authority key identifier: 0F:90:69:2A:1E:EF:E7:F0:A1:AC:68:B5:E1:AC:09:F7:02:69:71:CC Certificate issuer: /CN=A91185B8/serialNumber=0F90692A1EEFE7F0A1AC68B5E1AC09F7026971CC Certificate serial: 0215 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft Manifest number: 0215 Signing time: Sun 11 Jan 2026 01:29:54 +0000 Manifest this update: Sun 11 Jan 2026 01:29:54 +0000 Manifest next update: Sun 18 Jan 2026 01:29:54 +0000 Files and hashes: 1: D5BpKh7v5_ChrGi14awJ9wJpccw.crl (hash: zrRmfiuYx9+j6tPCCboabfHUZHSAhxqOIgWPvogd2ZQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.crl rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 Jan 2026 01:29:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 533 (0x215) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91185B8, serialNumber=0F90692A1EEFE7F0A1AC68B5E1AC09F7026971CC Validity Not Before: Jan 11 01:29:54 2026 GMT Not After : Jan 18 01:29:54 2026 GMT Subject: CN=6962fd12-0612 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b9:cf:11:ad:90:87:ce:17:03:76:f0:f6:95: d5:b8:f8:58:bc:cc:af:f5:64:5d:9a:48:4f:b6:aa: cb:a9:30:4b:c6:f4:6a:ae:9d:ed:14:37:37:31:08: 40:e9:2e:65:0a:79:7f:5c:d7:54:2b:7f:a6:12:7e: 3e:ed:df:88:81:77:df:6a:30:3c:a8:20:ad:7a:f5: 7c:cf:bb:ab:34:ab:cd:1b:34:88:05:11:18:56:79: 48:8b:91:93:fc:e8:95:da:fb:e4:7b:e3:71:90:9d: 7a:47:7d:42:4d:2c:d8:3f:8e:c2:f7:9f:0e:6f:85: 0c:c1:e8:d3:c6:17:ec:25:c3:0b:57:a6:91:6a:61: ff:cc:2b:35:3e:3d:d7:12:37:b7:c5:2b:f6:7d:7b: 7d:cd:c9:b2:36:f9:f7:f2:74:5b:b1:b7:26:d7:f8: 50:08:32:43:8d:40:85:c4:e4:b5:af:89:23:17:6c: 01:54:f3:e4:32:57:c2:e3:58:e1:82:ce:63:72:79: c5:d6:86:a7:c5:0e:80:be:92:41:33:a8:1c:cb:e1: eb:72:26:87:1e:a4:c7:57:7f:eb:59:a5:cc:4c:e3: 76:92:07:ee:47:06:b7:05:a3:cf:18:f7:df:de:56: af:25:5f:fc:13:e7:27:92:09:b3:ee:b1:41:a3:3a: ec:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:00:23:B8:70:C9:9F:71:DE:83:69:C5:BB:3B:23:17:0D:30:EB:55 X509v3 Authority Key Identifier: keyid:0F:90:69:2A:1E:EF:E7:F0:A1:AC:68:B5:E1:AC:09:F7:02:69:71:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:ae:4d:55:b3:7d:eb:f7:22:1a:71:39:96:73:03:e4:0b:ec: b7:48:53:e3:da:91:70:2d:05:7f:18:be:85:00:d4:60:26:f4: a2:0c:22:e6:8f:e6:6d:ca:9c:8d:22:4c:b4:c9:d0:8c:6e:ab: 5d:0b:2b:52:a2:3d:5e:c9:d0:b5:7b:76:0c:b6:86:ec:3f:7c: 8e:a0:38:61:ef:e3:98:9f:c4:25:53:91:e1:13:fa:7c:f0:cd: 33:a2:7d:9f:db:7a:ca:4d:f6:d2:e4:6e:b4:77:fc:01:b5:94: 6b:ba:a9:dd:64:9d:30:b7:ab:5d:d8:6d:75:14:c3:c2:b8:95: 2a:c0:5e:ca:c0:d7:9e:53:16:89:20:31:52:6e:b7:22:70:e8: 58:79:eb:11:aa:73:8f:c4:6e:2d:3b:2e:f0:f3:71:55:37:e8: 06:6c:bb:74:fd:b0:a1:a3:d4:c3:cf:06:70:4c:11:09:49:44: ba:1f:e2:9e:2c:81:c8:dc:bc:52:ce:47:86:43:4a:65:86:98: 85:d2:42:76:da:3f:ec:24:40:38:e2:1a:56:83:98:e9:ba:91: 8a:b5:58:b2:e8:ce:7e:1c:91:6e:bd:3f:bd:c0:74:e8:13:1d: c7:cf:92:65:28:b1:c3:25:ee:3a:5b:8f:cb:56:d0:7d:ed:0b: 9b:79:75:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx MTg1QjgxMTAvBgNVBAUTKDBGOTA2OTJBMUVFRkU3RjBBMUFDNjhCNUUxQUMwOUY3 MDI2OTcxQ0MwHhcNMjYwMTExMDEyOTU0WhcNMjYwMTE4MDEyOTU0WjAYMRYwFAYD VQQDDA02OTYyZmQxMi0wNjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrnPEa2Qh84XA3bw9pXVuPhYvMyv9WRdmkhPtqrLqTBLxvRqrp3tFDc3MQhA 6S5lCnl/XNdUK3+mEn4+7d+IgXffajA8qCCtevV8z7urNKvNGzSIBREYVnlIi5GT /OiV2vvke+NxkJ16R31CTSzYP47C958Ob4UMwejTxhfsJcMLV6aRamH/zCs1Pj3X Eje3xSv2fXt9zcmyNvn38nRbsbcm1/hQCDJDjUCFxOS1r4kjF2wBVPPkMlfC41jh gs5jcnnF1oanxQ6AvpJBM6gcy+HrciaHHqTHV3/rWaXMTON2kgfuRwa3BaPPGPff 3lavJV/8E+cnkgmz7rFBozrs8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLQAI7hw yZ9x3oNpxbs7IxcNMOtVMB8GA1UdIwQYMBaAFA+QaSoe7+fwoaxoteGsCfcCaXHM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODVCOC9DRkEzNDA5QUJF MzExMUVEQjRGRjdEMzRDNEY5QUUwMi9ENUJwS2g3djVfQ2hyR2kxNGF3Sjl3SnBj Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Q1QnBLaDd2NV9DaHJHaTE0YXdKOXdKcGNjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODVCOC9DRkEzNDA5QUJFMzExMUVEQjRGRjdEMzRDNEY5QUUwMi9ENUJwS2g3djVf Q2hyR2kxNGF3Sjl3SnBjY3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArrk1Vs33r9yIacTmWcwPkC+y3SFPj2pFwLQV/GL6FANRgJvSiDCLm j+ZtypyNIky0ydCMbqtdCytSoj1eydC1e3YMtobsP3yOoDhh7+OYn8QlU5HhE/p8 8M0zon2f23rKTfbS5G60d/wBtZRruqndZJ0wt6td2G11FMPCuJUqwF7KwNeeUxaJ IDFSbrcicOhYeesRqnOPxG4tOy7w83FVN+gGbLt0/bCho9TDzwZwTBEJSUS6H+Ke LIHI3LxSzkeGQ0plhpiF0kJ22j/sJEA44hpWg5jpupGKtViy6M5+HJFuvT+9wHTo Ex3Hz5JlKLHDJe46W4/LVtB97QubeXWj -----END CERTIFICATE-----Generated at Sun Jan 11 20:50:44 2026 by rpki-client