This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.mft File: 2zfNKCxsfbw6kLEDt6I53NFY_2A.mft (raw, json) Hash identifier: sC1+xKFBLcQlgMTnSDeqfSoQ3OVt4t20YwYV75222eE= Subject key identifier: 03:D7:30:09:11:8E:94:36:64:4D:7C:A3:D2:40:AD:E0:DB:25:F7:B6 Authority key identifier: DB:37:CD:28:2C:6C:7D:BC:3A:90:B1:03:B7:A2:39:DC:D1:58:FF:60 Certificate issuer: /CN=A913E652/serialNumber=DB37CD282C6C7DBC3A90B103B7A239DCD158FF60 Certificate serial: 0943 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zfNKCxsfbw6kLEDt6I53NFY_2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.mft Manifest number: 093C Signing time: Sat 10 Jan 2026 19:37:15 +0000 Manifest this update: Sat 10 Jan 2026 19:37:15 +0000 Manifest next update: Sat 17 Jan 2026 19:37:15 +0000 Files and hashes: 1: 2zfNKCxsfbw6kLEDt6I53NFY_2A.crl (hash: zapXtOqIkApX/AuYlVaQAfzGGsyFjezaCKNaVAMlWgE=) 2: 6154A3B0B2B611EAA5884016C4F9AE02.roa (hash: m3vZJbIZBtxTaQynxqIVLeVn+IvoTb+bYR9Z6G9kdLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.crl rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zfNKCxsfbw6kLEDt6I53NFY_2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 Jan 2026 19:37:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2371 (0x943) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E652, serialNumber=DB37CD282C6C7DBC3A90B103B7A239DCD158FF60 Validity Not Before: Jan 10 19:37:15 2026 GMT Not After : Jan 17 19:37:15 2026 GMT Subject: CN=6962aa6b-5c96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:99:d7:73:3f:e0:12:41:ba:86:4a:05:f5:50: 29:6b:5e:fa:69:da:69:d0:79:cc:16:64:78:48:60: 3c:e5:7d:df:fd:fb:84:ca:e7:7e:9e:ab:ef:f9:0a: 43:cd:90:01:58:1a:d4:92:4e:3c:a1:fa:ad:39:ad: 3d:a7:cc:d3:04:e0:8f:ff:22:98:4e:2b:d4:14:5f: bd:21:c1:28:c2:23:6d:4c:bd:4f:68:d4:1f:6a:54: 29:65:4f:46:46:66:5f:56:d6:06:09:d1:f2:23:64: 9e:42:c0:4d:86:a1:c0:e0:61:0f:c3:93:e5:e5:10: f0:c4:c4:ba:82:47:79:dc:de:b1:67:47:0a:1d:fd: 40:7f:7a:1d:ef:7c:01:3f:bc:0c:57:9e:8e:93:60: 0f:ff:a9:61:34:d8:82:09:97:31:ed:33:55:ab:24: 82:2f:12:81:e5:7c:4d:7d:cf:a2:80:13:87:02:44: 04:5f:a0:c3:21:ab:af:79:4f:9d:61:fd:a0:db:57: b7:a5:e2:35:f1:27:42:a8:97:34:34:26:1b:00:4f: ad:fc:96:a9:f4:28:e1:5f:7e:98:3f:1d:61:79:ad: 72:b6:43:86:5f:ea:b4:e8:9c:65:2d:43:41:b9:8e: 81:f4:4b:6f:98:22:ae:b7:18:3f:9a:5a:3c:19:69: 43:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:D7:30:09:11:8E:94:36:64:4D:7C:A3:D2:40:AD:E0:DB:25:F7:B6 X509v3 Authority Key Identifier: keyid:DB:37:CD:28:2C:6C:7D:BC:3A:90:B1:03:B7:A2:39:DC:D1:58:FF:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zfNKCxsfbw6kLEDt6I53NFY_2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:5d:9d:eb:cb:03:ee:19:2d:1d:97:86:f5:7f:69:2c:bf:2f: ef:8b:6c:60:6d:ed:97:ed:e3:a4:2d:d3:05:6f:d4:22:3d:22: bf:78:9f:83:3d:71:8e:f0:ba:fd:89:68:a5:e5:c5:b2:23:97: bd:13:d9:61:22:17:b0:2c:39:90:99:d4:26:e4:be:00:4a:c9: 50:84:af:0e:b9:11:24:90:b8:75:a9:a2:af:05:21:ba:26:04: 0a:7a:80:9e:5e:3d:6f:82:46:d9:e6:36:7f:64:a6:3c:6c:0f: e5:ab:bd:be:80:a5:c3:80:f0:e0:20:16:ee:0d:9d:59:62:a1: f7:51:f2:28:65:46:68:41:24:f5:c7:3a:1e:f9:d1:45:44:94: f7:5a:24:9f:71:4c:28:7f:9d:df:31:52:f9:93:09:48:7e:73: c5:8e:27:da:76:17:66:86:e1:a7:ac:39:13:c4:cf:4d:05:1c: d6:77:bf:7b:3e:e6:d9:70:f4:a2:6b:bd:3d:fa:89:a5:95:2d: fa:9f:2d:c2:99:41:d7:59:49:2b:1b:1d:12:7b:50:cb:96:96: 88:39:fe:a9:71:1c:b3:39:58:b9:8c:7b:41:71:de:71:41:5d: 0e:23:c0:d2:81:f0:7e:4b:75:03:f4:d5:9d:05:4a:e3:3e:2f: 9e:b8:0d:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U2NTIxMTAvBgNVBAUTKERCMzdDRDI4MkM2QzdEQkMzQTkwQjEwM0I3QTIzOURD RDE1OEZGNjAwHhcNMjYwMTEwMTkzNzE1WhcNMjYwMTE3MTkzNzE1WjAYMRYwFAYD VQQDDA02OTYyYWE2Yi01Yzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoJnXcz/gEkG6hkoF9VApa176adpp0HnMFmR4SGA85X3f/fuEyud+nqvv+QpD zZABWBrUkk48ofqtOa09p8zTBOCP/yKYTivUFF+9IcEowiNtTL1PaNQfalQpZU9G RmZfVtYGCdHyI2SeQsBNhqHA4GEPw5Pl5RDwxMS6gkd53N6xZ0cKHf1Af3od73wB P7wMV56Ok2AP/6lhNNiCCZcx7TNVqySCLxKB5XxNfc+igBOHAkQEX6DDIauveU+d Yf2g21e3peI18SdCqJc0NCYbAE+t/Jap9CjhX36YPx1hea1ytkOGX+q06JxlLUNB uY6B9EtvmCKutxg/mlo8GWlD1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAPXMAkR jpQ2ZE18o9JAreDbJfe2MB8GA1UdIwQYMBaAFNs3zSgsbH28OpCxA7eiOdzRWP9g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTY1Mi82MDBBQjQ2NEIy QjUxMUVBOEFEQzQ0MTVDNEY5QUUwMi8yemZOS0N4c2ZidzZrTEVEdDZJNTNORllf MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ6Zk5LQ3hzZmJ3NmtMRUR0Nkk1M05GWV8yQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTY1Mi82MDBBQjQ2NEIyQjUxMUVBOEFEQzQ0MTVDNEY5QUUwMi8yemZOS0N4c2Zi dzZrTEVEdDZJNTNORllfMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVXZ3rywPuGS0dl4b1f2ksvy/vi2xgbe2X7eOkLdMFb9QiPSK/eJ+D PXGO8Lr9iWil5cWyI5e9E9lhIhewLDmQmdQm5L4ASslQhK8OuREkkLh1qaKvBSG6 JgQKeoCeXj1vgkbZ5jZ/ZKY8bA/lq72+gKXDgPDgIBbuDZ1ZYqH3UfIoZUZoQST1 xzoe+dFFRJT3WiSfcUwof53fMVL5kwlIfnPFjifadhdmhuGnrDkTxM9NBRzWd797 PubZcPSia709+omllS36ny3CmUHXWUkrGx0Se1DLlpaIOf6pcRyzOVi5jHtBcd5x QV0OI8DSgfB+S3UD9NWdBUrjPi+euA05 -----END CERTIFICATE-----Generated at Mon Jan 12 05:02:14 2026 by rpki-client