This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft File: X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft (raw, json) Hash identifier: o3+vA+pIPRZBXHxnpO6DgZyFP7ooW3LlL2qT97rdpcs= Subject key identifier: 8C:15:DF:82:85:96:3F:4E:C9:41:11:CC:8C:6E:F7:5F:83:EC:0B:3F Authority key identifier: 5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 Certificate issuer: /CN=A9156255/serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Certificate serial: 0265 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft Manifest number: 025D Signing time: Sun 11 Jan 2026 00:52:12 +0000 Manifest this update: Sun 11 Jan 2026 00:52:12 +0000 Manifest next update: Sun 18 Jan 2026 00:52:12 +0000 Files and hashes: 1: X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl (hash: 3kF5L2MjE7emQjoVT6YOfFbChbV5e6KqNBviDU+PW8U=) 2: D1FCB742514711ED92E3885EC4F9AE02.roa (hash: yEKEL/Vmgj/ap31DsnVmbLEDqgJ7Y6orXe7GIcH2R9A=) 3: 5637146C507611EDB59D9E2EC4F9AE02.roa (hash: IYazKEF9pFwcNLUhIv47rtL28xMCsqpjMCPhr8mxAvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 Jan 2026 00:52:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 613 (0x265) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156255, serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Validity Not Before: Jan 11 00:52:12 2026 GMT Not After : Jan 18 00:52:12 2026 GMT Subject: CN=6962f43c-a258 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:8e:4b:cd:7c:7d:b8:56:bb:e8:33:4e:2a:36: 07:39:6c:d6:47:1e:59:5a:da:49:35:3e:a2:76:89: f5:1d:b2:e1:24:c7:04:f2:e3:12:c7:ad:20:61:e4: 2a:b0:f6:af:de:a8:25:4d:c0:88:b6:03:79:11:00: 8b:81:7c:7d:35:1d:c6:e8:e3:87:09:03:54:f0:7d: 3c:0c:af:78:62:bc:bd:8c:e8:6f:df:69:8e:39:e0: 06:00:18:53:26:41:de:18:75:31:a1:6b:d8:b4:dd: 49:fc:71:7c:e7:3f:27:d0:f3:86:1c:9d:09:1f:05: 57:84:af:ea:8e:dd:f9:2d:1e:b7:2b:98:bf:f3:d4: 9f:0f:e4:2d:98:18:fc:9b:06:3f:46:dd:c8:c2:15: fc:87:f5:fe:66:b8:7d:e5:91:49:6d:b6:7f:7a:d9: cf:97:47:4f:90:ca:60:1f:95:64:71:85:70:a2:dd: 57:16:6f:fb:32:c2:67:4e:89:c2:1d:3f:b9:54:8c: e6:e6:f0:a9:05:26:f9:fe:08:2d:a6:b8:3c:be:b9: 05:97:e5:28:73:08:fe:42:8f:a8:af:5f:98:96:f4: 87:a2:a0:c1:28:35:2a:07:33:93:dd:4b:89:db:00: 1c:9c:5e:ef:4a:1d:72:79:ad:de:31:36:d6:af:b8: 1a:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:15:DF:82:85:96:3F:4E:C9:41:11:CC:8C:6E:F7:5F:83:EC:0B:3F X509v3 Authority Key Identifier: keyid:5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:2d:f3:8c:36:01:28:c7:8f:3e:6d:7d:68:0e:b8:94:b8:ba: ba:3a:d0:06:63:a6:ff:0b:08:56:07:d9:b1:c5:95:2b:74:51: eb:f8:b5:21:a4:85:14:12:f6:62:8c:4f:9d:65:e5:f2:fb:57: 97:40:7f:51:ce:6e:cb:2e:49:77:7b:f5:e0:46:81:11:d9:e1: f2:98:13:80:50:74:cd:eb:3d:43:2d:ca:de:f1:3c:65:72:9a: 62:e4:7e:6c:07:e0:1c:25:b5:3c:05:ad:d6:f4:5c:c8:4e:be: f1:7f:52:a9:b2:97:e2:f6:08:21:62:b6:e0:a4:cd:a3:39:ec: 1f:b2:54:b2:3f:1e:47:b9:74:7c:a4:dc:8d:35:4b:f7:9b:69: 88:55:c4:27:fe:5f:3c:24:92:4e:a7:30:87:60:34:6a:06:8b: c9:01:87:e0:55:e9:a0:95:35:cb:43:ca:4e:e8:8f:26:f6:32: d1:38:ca:b6:a0:54:bb:2c:13:36:e0:9d:c8:16:b9:51:00:10: 55:59:6a:de:8e:4c:be:db:4f:cf:a4:e6:d6:98:14:69:ab:40: 88:e9:ac:f9:82:45:a3:c8:b4:a2:26:87:39:ff:78:88:5b:a2: 50:8c:e0:e8:f6:66:f3:82:8a:34:f6:bd:bc:75:75:da:7f:16: 01:75:4e:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYyNTUxMTAvBgNVBAUTKDVGNkM4RkEzQTY1ODc0MDIzMUIyQzRCMTM0ODFCRTEx NTAwQURDNzYwHhcNMjYwMTExMDA1MjEyWhcNMjYwMTE4MDA1MjEyWjAYMRYwFAYD VQQDDA02OTYyZjQzYy1hMjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Y5LzXx9uFa76DNOKjYHOWzWRx5ZWtpJNT6idon1HbLhJMcE8uMSx60gYeQq sPav3qglTcCItgN5EQCLgXx9NR3G6OOHCQNU8H08DK94Yry9jOhv32mOOeAGABhT JkHeGHUxoWvYtN1J/HF85z8n0POGHJ0JHwVXhK/qjt35LR63K5i/89SfD+QtmBj8 mwY/Rt3IwhX8h/X+Zrh95ZFJbbZ/etnPl0dPkMpgH5VkcYVwot1XFm/7MsJnTonC HT+5VIzm5vCpBSb5/ggtprg8vrkFl+Uocwj+Qo+or1+YlvSHoqDBKDUqBzOT3UuJ 2wAcnF7vSh1yea3eMTbWr7gaMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIwV34KF lj9OyUERzIxu91+D7As/MB8GA1UdIwQYMBaAFF9sj6OmWHQCMbLEsTSBvhFQCtx2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjI1NS85MTYyMDg0QzUw NzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRBSXhzc1N4TklHLUVWQUsz SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gyeVBvNlpZZEFJeHNzU3hOSUctRVZBSzNIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjI1NS85MTYyMDg0QzUwNzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRB SXhzc1N4TklHLUVWQUszSFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgLfOMNgEox48+bX1oDriUuLq6OtAGY6b/CwhWB9mxxZUrdFHr+LUh pIUUEvZijE+dZeXy+1eXQH9Rzm7LLkl3e/XgRoER2eHymBOAUHTN6z1DLcre8Txl cppi5H5sB+AcJbU8Ba3W9FzITr7xf1Kpspfi9gghYrbgpM2jOewfslSyPx5HuXR8 pNyNNUv3m2mIVcQn/l88JJJOpzCHYDRqBovJAYfgVemglTXLQ8pO6I8m9jLROMq2 oFS7LBM24J3IFrlRABBVWWrejky+20/PpObWmBRpq0CI6az5gkWjyLSiJoc5/3iI W6JQjODo9mbzgoo09r28dXXafxYBdU71 -----END CERTIFICATE-----Generated at Mon Jan 12 23:50:01 2026 by rpki-client