This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft File: BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft (raw, json) Hash identifier: 49icKA6FcDxsYhFoLtEFnPGV6ksjCcVgyO4YLBf6eXQ= Subject key identifier: CC:AA:58:A3:58:F4:D0:7C:30:C9:FA:53:48:C0:E3:0A:DE:44:3F:F5 Authority key identifier: 06:46:C5:22:91:D5:CD:4D:F4:A0:FF:78:67:84:FC:F5:28:34:63:24 Certificate issuer: /CN=A9122905/serialNumber=0646C52291D5CD4DF4A0FF786784FCF528346324 Certificate serial: 028F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft Manifest number: 028B Signing time: Sun 11 Jan 2026 00:42:17 +0000 Manifest this update: Sun 11 Jan 2026 00:42:17 +0000 Manifest next update: Sun 18 Jan 2026 00:42:17 +0000 Files and hashes: 1: BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl (hash: t4ooCyRaOk4QOFr5b2dkNSQclh1UKc7ny4qe3z0ikBw=) 2: 8BFE9EA6335911EDBC60AC44C4F9AE02.roa (hash: 8x2SsfQuIT881cDaqWjgKUso9bJl3sYc8ulFMGO/wmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 Jan 2026 00:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 655 (0x28f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122905, serialNumber=0646C52291D5CD4DF4A0FF786784FCF528346324 Validity Not Before: Jan 11 00:42:17 2026 GMT Not After : Jan 18 00:42:17 2026 GMT Subject: CN=6962f1e9-4a7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:90:fe:2b:ff:6d:25:4a:24:18:e5:01:53:00: 12:b5:02:eb:c3:e7:a6:67:3b:84:21:ea:3b:4d:59: 1e:20:12:ca:fe:d3:5d:10:85:af:26:64:95:21:14: ee:8f:9e:12:85:70:35:36:22:19:a6:1a:fe:4e:3d: 66:9e:a4:5d:7a:38:0a:98:b8:35:f4:40:67:99:51: 85:8b:67:09:19:bd:2e:09:6b:d2:ba:e0:88:ea:8a: 10:e1:13:bb:39:8b:af:77:98:b1:00:be:33:19:3b: 81:ae:14:63:e2:c1:0a:fc:8c:96:73:cd:40:57:c2: 27:be:d7:94:d3:c4:6f:3d:91:0c:30:6b:c0:78:35: 6c:8c:c5:d0:70:9c:ba:cc:5a:16:18:bc:da:1a:c1: 3a:a1:6a:8d:04:d6:dd:f1:51:56:d0:74:d0:a8:dd: 4e:51:fc:14:e0:12:97:b8:8d:d4:73:5d:7e:bd:da: d7:12:64:cc:09:4f:c8:94:e5:54:ff:e2:25:a5:97: 63:aa:ea:62:1b:36:8e:af:0d:d1:02:7e:16:60:29: 1e:9a:0d:c8:4f:c4:e7:1a:46:28:da:8f:ae:1f:80: 52:ed:5f:b5:50:33:ce:38:af:b5:d4:ce:a0:c6:c9: aa:70:00:4a:2d:bc:aa:91:1c:25:6c:4f:d9:51:2f: 1d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:AA:58:A3:58:F4:D0:7C:30:C9:FA:53:48:C0:E3:0A:DE:44:3F:F5 X509v3 Authority Key Identifier: keyid:06:46:C5:22:91:D5:CD:4D:F4:A0:FF:78:67:84:FC:F5:28:34:63:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:2f:53:47:00:06:2e:1e:b0:b2:b8:10:60:a7:64:d1:c7:23: b7:ca:3d:81:c0:8e:51:c3:fe:ca:46:4e:53:b6:ea:b6:1c:00: a1:25:ca:f3:2f:96:02:97:a1:2a:24:7d:6c:07:cc:f9:84:e4: d3:af:44:32:67:f7:25:02:6b:5f:8e:5d:02:ce:75:6f:86:c1: 1b:37:7c:07:96:14:6c:46:cc:0b:e8:51:12:e2:d6:a0:c9:b7: 5e:3c:09:b0:51:4d:7d:d8:96:bc:e0:29:17:47:d5:a0:6e:41: ae:ee:b2:6e:8b:2c:a4:46:5c:84:6c:39:ae:07:5a:87:34:99: 59:90:e7:a8:c1:de:99:b4:98:41:ee:28:15:eb:02:c2:52:65: 5b:cc:99:c7:00:dd:5c:c8:82:79:03:51:a5:d6:ea:80:65:56: b1:0c:1c:7a:43:8b:bf:e5:64:2a:6e:69:aa:9d:9b:4d:55:ea: 1c:a2:f4:20:f3:03:41:41:2c:9a:9f:ab:ec:aa:6a:6d:c4:0b: 22:ed:97:67:ce:82:c9:9a:4c:b7:2a:81:ee:93:ff:c4:0d:6f: 23:58:e6:6c:c0:31:59:60:05:7e:6d:a0:13:1c:e6:c9:12:cb: fa:b6:9d:df:1b:2a:ec:6e:a8:8e:a2:4f:ef:3e:12:e3:60:1c: 13:17:fb:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjI5MDUxMTAvBgNVBAUTKDA2NDZDNTIyOTFENUNENERGNEEwRkY3ODY3ODRGQ0Y1 MjgzNDYzMjQwHhcNMjYwMTExMDA0MjE3WhcNMjYwMTE4MDA0MjE3WjAYMRYwFAYD VQQDDA02OTYyZjFlOS00YTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5D+K/9tJUokGOUBUwAStQLrw+emZzuEIeo7TVkeIBLK/tNdEIWvJmSVIRTu j54ShXA1NiIZphr+Tj1mnqRdejgKmLg19EBnmVGFi2cJGb0uCWvSuuCI6ooQ4RO7 OYuvd5ixAL4zGTuBrhRj4sEK/IyWc81AV8InvteU08RvPZEMMGvAeDVsjMXQcJy6 zFoWGLzaGsE6oWqNBNbd8VFW0HTQqN1OUfwU4BKXuI3Uc11+vdrXEmTMCU/IlOVU /+IlpZdjqupiGzaOrw3RAn4WYCkemg3IT8TnGkYo2o+uH4BS7V+1UDPOOK+11M6g xsmqcABKLbyqkRwlbE/ZUS8dCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMyqWKNY 9NB8MMn6U0jA4wreRD/1MB8GA1UdIwQYMBaAFAZGxSKR1c1N9KD/eGeE/PUoNGMk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjkwNS8xMUVCMDg2QTMz NTUxMUVEOTQzRkE1M0JDNEY5QUUwMi9Ca2JGSXBIVnpVMzBvUDk0WjRUODlTZzBZ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JrYkZJcEhWelUzMG9QOTRaNFQ4OVNnMFl5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjkwNS8xMUVCMDg2QTMzNTUxMUVEOTQzRkE1M0JDNEY5QUUwMi9Ca2JGSXBIVnpV MzBvUDk0WjRUODlTZzBZeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjL1NHAAYuHrCyuBBgp2TRxyO3yj2BwI5Rw/7KRk5Ttuq2HAChJcrz L5YCl6EqJH1sB8z5hOTTr0QyZ/clAmtfjl0CznVvhsEbN3wHlhRsRswL6FES4tag ybdePAmwUU192Ja84CkXR9WgbkGu7rJuiyykRlyEbDmuB1qHNJlZkOeowd6ZtJhB 7igV6wLCUmVbzJnHAN1cyIJ5A1Gl1uqAZVaxDBx6Q4u/5WQqbmmqnZtNVeocovQg 8wNBQSyan6vsqmptxAsi7ZdnzoLJmky3KoHuk//EDW8jWOZswDFZYAV+baATHObJ Esv6tp3fGyrsbqiOok/vPhLjYBwTF/td -----END CERTIFICATE-----Generated at Sun Jan 11 17:57:52 2026 by rpki-client