This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.mft File: NsqppHOp6nOCn3NWgJvBYQOtA64.mft (raw, json) Hash identifier: H36p+nBD0cjW97e0NGg9PcSKGug7kilpywsoGAyUhmA= Subject key identifier: 2A:93:4C:AD:D8:B3:7E:28:4F:04:9D:4B:D7:29:B3:23:87:4A:53:A9 Authority key identifier: 36:CA:A9:A4:73:A9:EA:73:82:9F:73:56:80:9B:C1:61:03:AD:03:AE Certificate issuer: /CN=A9152329/serialNumber=36CAA9A473A9EA73829F7356809BC16103AD03AE Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NsqppHOp6nOCn3NWgJvBYQOtA64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.mft Manifest number: DA Signing time: Sun 11 Jan 2026 04:49:52 +0000 Manifest this update: Sun 11 Jan 2026 04:49:51 +0000 Manifest next update: Sun 18 Jan 2026 04:49:51 +0000 Files and hashes: 1: NsqppHOp6nOCn3NWgJvBYQOtA64.crl (hash: njw4np5YFoB+8XLCAE9e5/BoAs9qpe+yShFc6vd8Q6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.crl rsync://rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NsqppHOp6nOCn3NWgJvBYQOtA64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 Jan 2026 04:49:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152329, serialNumber=36CAA9A473A9EA73829F7356809BC16103AD03AE Validity Not Before: Jan 11 04:49:51 2026 GMT Not After : Jan 18 04:49:51 2026 GMT Subject: CN=69632bf0-d3fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:57:d1:ee:60:4a:50:13:b5:76:8e:4d:f9:cc: c5:25:fb:13:63:9d:77:8e:c3:f2:d9:cd:97:b3:0e: 6a:8d:3a:4c:74:45:75:92:a1:b2:2a:a7:fc:d2:ca: a1:5f:db:d8:42:c0:83:67:fc:3b:d0:62:a1:9a:5e: 12:dc:fc:cf:05:dc:61:52:69:c6:72:f3:30:ea:78: 82:4b:03:bf:3f:9e:b5:84:09:cb:ed:8b:b2:fa:30: e3:6c:93:40:63:b2:3e:f4:aa:00:b9:d8:96:c6:24: 23:4d:6b:a8:b4:01:30:f9:60:37:0d:22:f1:d7:68: 20:dd:65:af:65:1e:65:7b:c6:a0:36:19:5d:4b:c3: 7e:b1:ed:dd:97:bf:b0:a6:f6:f2:5c:b6:8f:c5:be: 9e:fc:4f:36:29:e7:91:50:8b:d0:5f:cb:89:7b:ed: 21:b0:18:e0:f1:13:c1:1f:70:53:6a:40:a1:8f:c9: 82:64:ba:55:cd:1a:42:60:24:c5:8c:2e:82:57:c3: 7e:a8:90:dd:50:a2:a9:2d:ad:61:45:6e:25:7d:00: 81:90:14:fa:fc:3c:97:9c:84:e7:7a:be:26:e0:92: a9:52:b4:07:4b:ed:ad:b4:2a:55:5f:eb:35:05:93: 5a:c2:5c:02:12:c7:cb:45:9d:c7:79:e4:47:ee:61: 3b:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:93:4C:AD:D8:B3:7E:28:4F:04:9D:4B:D7:29:B3:23:87:4A:53:A9 X509v3 Authority Key Identifier: keyid:36:CA:A9:A4:73:A9:EA:73:82:9F:73:56:80:9B:C1:61:03:AD:03:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NsqppHOp6nOCn3NWgJvBYQOtA64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:2a:dc:47:69:af:66:ae:ee:33:36:1f:58:cc:26:0e:6f:85: 22:9b:ac:46:90:5a:54:02:26:64:07:f9:38:36:68:13:28:12: 41:b3:66:ff:e4:fa:fc:79:4e:5b:83:c7:b5:98:f0:74:62:f5: fc:2e:bb:40:e5:ca:22:1e:3c:3e:c5:d6:ff:38:e5:e4:d4:f0: 53:af:79:1a:f4:e5:fc:07:74:a2:3c:06:b7:70:8c:37:0a:a2: e8:2a:51:c1:6a:fc:9e:92:3a:77:23:7a:b4:29:74:ec:ff:bc: dc:1e:3b:ce:c9:8a:f8:db:a2:aa:3f:c4:ff:9b:d5:8c:1e:1d: 95:a0:cf:51:90:67:70:50:ef:f1:8c:af:f5:07:1c:03:f9:6e: ae:cf:0f:1e:60:74:f2:eb:b8:46:22:22:c5:26:37:90:b1:9e: c8:e0:00:22:54:0b:c4:0e:13:ae:6c:69:01:18:8e:d4:81:68: f1:38:8e:6f:b4:f1:ff:27:26:d5:b3:b3:f1:a7:b6:bc:3e:b7: 0e:54:df:cd:05:79:e8:48:c2:95:5f:8d:07:af:b7:01:7f:66: 74:2a:f6:55:ea:b7:f4:a7:b9:a0:ba:30:95:32:52:af:cc:30: 8d:1b:65:9a:4d:ed:2a:02:84:f1:3b:fd:4a:a8:75:33:8f:72: 47:86:ce:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIzMjkxMTAvBgNVBAUTKDM2Q0FBOUE0NzNBOUVBNzM4MjlGNzM1NjgwOUJDMTYx MDNBRDAzQUUwHhcNMjYwMTExMDQ0OTUxWhcNMjYwMTE4MDQ0OTUxWjAYMRYwFAYD VQQDDA02OTYzMmJmMC1kM2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1fR7mBKUBO1do5N+czFJfsTY513jsPy2c2Xsw5qjTpMdEV1kqGyKqf80sqh X9vYQsCDZ/w70GKhml4S3PzPBdxhUmnGcvMw6niCSwO/P561hAnL7Yuy+jDjbJNA Y7I+9KoAudiWxiQjTWuotAEw+WA3DSLx12gg3WWvZR5le8agNhldS8N+se3dl7+w pvbyXLaPxb6e/E82KeeRUIvQX8uJe+0hsBjg8RPBH3BTakChj8mCZLpVzRpCYCTF jC6CV8N+qJDdUKKpLa1hRW4lfQCBkBT6/DyXnITner4m4JKpUrQHS+2ttCpVX+s1 BZNawlwCEsfLRZ3HeeRH7mE7FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCqTTK3Y s34oTwSdS9cpsyOHSlOpMB8GA1UdIwQYMBaAFDbKqaRzqepzgp9zVoCbwWEDrQOu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjMyOS9EMDg2RDU1RUEy NjgxMUVGOUQ5MTQxMThDNEY5QUUwMi9Oc3FwcEhPcDZuT0NuM05XZ0p2QllRT3RB NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05zcXBwSE9wNm5PQ24zTldnSnZCWVFPdEE2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjMyOS9EMDg2RDU1RUEyNjgxMUVGOUQ5MTQxMThDNEY5QUUwMi9Oc3FwcEhPcDZu T0NuM05XZ0p2QllRT3RBNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrKtxHaa9mru4zNh9YzCYOb4Uim6xGkFpUAiZkB/k4NmgTKBJBs2b/ 5Pr8eU5bg8e1mPB0YvX8LrtA5coiHjw+xdb/OOXk1PBTr3ka9OX8B3SiPAa3cIw3 CqLoKlHBavyekjp3I3q0KXTs/7zcHjvOyYr426KqP8T/m9WMHh2VoM9RkGdwUO/x jK/1BxwD+W6uzw8eYHTy67hGIiLFJjeQsZ7I4AAiVAvEDhOubGkBGI7UgWjxOI5v tPH/JybVs7Pxp7a8PrcOVN/NBXnoSMKVX40Hr7cBf2Z0KvZV6rf0p7mgujCVMlKv zDCNG2WaTe0qAoTxO/1KqHUzj3JHhs7M -----END CERTIFICATE-----Generated at Mon Jan 12 22:15:45 2026 by rpki-client