This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft File: 4XM7lw_d92f_GVQoQ34SQqN2knc.mft (raw, json) Hash identifier: iQE/zsrRPHQsjxCd98N6IcqW9ctNPphAluaVXyULgzg= Subject key identifier: 55:2C:EC:CD:C9:78:F0:84:CE:07:69:D8:62:D9:57:22:8F:7B:84:1B Authority key identifier: E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 Certificate issuer: /CN=A912E5CB/serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Certificate serial: 024B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft Manifest number: 0247 Signing time: Sun 11 Jan 2026 01:03:19 +0000 Manifest this update: Sun 11 Jan 2026 01:03:19 +0000 Manifest next update: Sun 18 Jan 2026 01:03:19 +0000 Files and hashes: 1: 4XM7lw_d92f_GVQoQ34SQqN2knc.crl (hash: CplflI08cT1p3MSBopo7sLqQvnRhCz1F0wqbjSuFl3U=) 2: 5FF4FD52704C11ED97935E7DC4F9AE02.roa (hash: mkay78ArXCLuTCpk5LBJHpYSqvgsay5EEQLpiKDYBb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 Jan 2026 01:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 587 (0x24b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E5CB, serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Validity Not Before: Jan 11 01:03:19 2026 GMT Not After : Jan 18 01:03:19 2026 GMT Subject: CN=6962f6d7-cbe8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:5e:ac:6e:6c:02:f7:a9:72:73:e6:49:a4:a6: 2d:eb:ea:c2:0f:c0:cd:ab:e8:09:a0:da:d2:31:e7: 2c:d9:f6:a0:41:79:22:4f:38:d3:d2:bf:1a:dd:c8: f2:a4:26:2e:d6:e8:81:24:43:34:fa:d8:e1:45:d6: d0:b6:b4:7c:55:73:7a:04:9b:76:23:fb:79:a4:60: cf:ea:b1:03:e0:95:be:ed:01:fc:23:ba:a4:85:10: 14:2c:f4:12:3d:f0:b8:4f:0d:cd:ac:cb:ee:dd:47: dd:38:d1:1e:9c:27:f0:82:37:26:44:04:c2:b3:75: 77:85:54:10:97:9b:56:6e:3f:d3:50:87:4f:d6:01: 53:31:99:7f:85:4f:f4:1c:c9:ad:bf:d4:03:2c:11: a3:a5:6f:05:dd:b0:63:da:87:e3:83:ea:bf:b0:14: 3d:e4:76:bc:d3:7c:e5:9e:46:18:49:06:0e:40:b1: e4:1b:e8:20:35:85:73:94:61:ba:ff:6d:c0:aa:07: 81:fa:03:79:4a:ca:00:4f:f4:2e:a5:1e:47:b4:79: ab:4b:a7:48:95:b3:39:9c:55:f4:71:05:6d:ec:ff: 9d:5b:3d:94:07:82:10:4d:ee:e4:1a:d6:d5:4d:84: 3b:be:a6:1e:ff:98:de:01:7f:fb:ea:ca:90:79:42: a7:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:2C:EC:CD:C9:78:F0:84:CE:07:69:D8:62:D9:57:22:8F:7B:84:1B X509v3 Authority Key Identifier: keyid:E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:99:11:ce:c2:d0:87:6d:65:e4:5a:e5:b6:f3:ad:f9:07:f3: 21:e7:18:76:07:fa:ac:ca:34:c2:30:52:57:0b:84:cd:9e:7e: b2:13:6a:0b:80:bd:ec:3f:d9:ea:5d:95:86:f5:fb:ef:f9:04: 32:5e:01:c6:26:a7:53:d1:19:1e:5d:2b:2d:28:6f:33:37:cb: 8f:37:d3:f8:db:93:cc:f1:b1:ec:7f:0e:90:9a:ba:3d:93:04: df:f4:2c:b7:28:cd:be:75:ce:a4:4c:9c:63:4a:57:f8:b8:36: 09:82:f4:aa:f5:2c:ba:ff:f4:12:e0:76:ce:23:c0:2e:c3:61: ed:e0:15:c8:53:c1:4e:54:a0:e8:69:95:81:e3:bc:cd:71:2c: 2e:db:d5:68:45:b8:f4:8c:ba:21:58:e3:85:72:bb:36:cc:29: 2a:da:0f:33:4f:0b:91:5a:89:80:7b:fc:4e:52:36:8c:7c:0b: 9d:fa:9e:b9:ea:77:e1:78:f2:ab:ce:a3:2c:38:03:7f:cc:39: 3f:5d:79:99:14:1b:6f:6e:71:9d:60:eb:2c:c0:28:5b:78:fb: fa:59:0c:cf:d6:fb:8f:24:5c:c2:b6:10:c4:30:28:a4:4a:26: fe:49:72:95:52:ec:03:b5:7b:ba:6e:70:33:b9:62:39:69:8f: 1d:04:d0:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU1Q0IxMTAvBgNVBAUTKEUxNzMzQjk3MEZEREY3NjdGRjE5NTQyODQzN0UxMjQy QTM3NjkyNzcwHhcNMjYwMTExMDEwMzE5WhcNMjYwMTE4MDEwMzE5WjAYMRYwFAYD VQQDDA02OTYyZjZkNy1jYmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqF6sbmwC96lyc+ZJpKYt6+rCD8DNq+gJoNrSMecs2fagQXkiTzjT0r8a3cjy pCYu1uiBJEM0+tjhRdbQtrR8VXN6BJt2I/t5pGDP6rED4JW+7QH8I7qkhRAULPQS PfC4Tw3NrMvu3UfdONEenCfwgjcmRATCs3V3hVQQl5tWbj/TUIdP1gFTMZl/hU/0 HMmtv9QDLBGjpW8F3bBj2ofjg+q/sBQ95Ha803zlnkYYSQYOQLHkG+ggNYVzlGG6 /23AqgeB+gN5SsoAT/QupR5HtHmrS6dIlbM5nFX0cQVt7P+dWz2UB4IQTe7kGtbV TYQ7vqYe/5jeAX/76sqQeUKnwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFUs7M3J ePCEzgdp2GLZVyKPe4QbMB8GA1UdIwQYMBaAFOFzO5cP3fdn/xlUKEN+EkKjdpJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTVDQi81Mjg4RENFMDcw NDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDkyZl9HVlFvUTM0U1FxTjJr bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRYTTdsd19kOTJmX0dWUW9RMzRTUXFOMmtuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTVDQi81Mjg4RENFMDcwNDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDky Zl9HVlFvUTM0U1FxTjJrbmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSmRHOwtCHbWXkWuW28635B/Mh5xh2B/qsyjTCMFJXC4TNnn6yE2oL gL3sP9nqXZWG9fvv+QQyXgHGJqdT0RkeXSstKG8zN8uPN9P425PM8bHsfw6Qmro9 kwTf9Cy3KM2+dc6kTJxjSlf4uDYJgvSq9Sy6//QS4HbOI8Auw2Ht4BXIU8FOVKDo aZWB47zNcSwu29VoRbj0jLohWOOFcrs2zCkq2g8zTwuRWomAe/xOUjaMfAud+p65 6nfhePKrzqMsOAN/zDk/XXmZFBtvbnGdYOsswChbePv6WQzP1vuPJFzCthDEMCik Sib+SXKVUuwDtXu6bnAzuWI5aY8dBNDS -----END CERTIFICATE-----Generated at Sun Jan 11 19:21:04 2026 by rpki-client