This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft File: 33HZn0zTs4Mms-1HyOSl35ieQvI.mft (raw, json) Hash identifier: 43JIY27a60sbf+uCc5LHRpkHFnTS6OQ4HB+aspMMHLk= Subject key identifier: D1:1F:93:2B:8F:14:46:C2:F2:12:10:D6:49:FD:20:F7:98:C4:C7:38 Authority key identifier: DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 Certificate issuer: /CN=A915A0EE/serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Certificate serial: 01FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft Manifest number: 01F2 Signing time: Sun 11 Jan 2026 01:56:05 +0000 Manifest this update: Sun 11 Jan 2026 01:56:05 +0000 Manifest next update: Sun 18 Jan 2026 01:56:05 +0000 Files and hashes: 1: 33HZn0zTs4Mms-1HyOSl35ieQvI.crl (hash: mT+nOfKZgynygzlxZnvPSFN5oA8tiijPqsQg8NW1v3U=) 2: 1BDBCE5013A011EE91039C41C4F9AE02.roa (hash: p/oubbOjEb8Zn+B8haVjlomp+846cFby5ixQFCvfJFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 Jan 2026 01:56:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 508 (0x1fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0EE, serialNumber=DF71D99F4CD3B38326B3ED47C8E4A5DF989E42F2 Validity Not Before: Jan 11 01:56:05 2026 GMT Not After : Jan 18 01:56:05 2026 GMT Subject: CN=69630335-52db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:2e:b8:d4:fa:a6:b4:b4:97:bc:8a:fa:12:9c: 61:4f:0a:20:ad:15:f9:a9:0c:d5:47:da:7c:33:7a: 73:ea:50:7d:84:6d:cd:97:db:a3:fb:5f:09:43:c0: 04:3a:d4:1f:c2:aa:aa:15:ad:34:f0:6f:b6:fc:ae: 91:5d:a8:9e:27:25:45:da:5e:c2:ac:f3:25:0b:23: 8f:d1:5b:a7:1c:b4:6d:99:2f:14:90:fd:d2:1a:40: c2:74:81:b1:52:f9:75:d5:f9:ab:02:9d:14:bf:71: ac:aa:53:8d:38:30:01:3f:c7:ce:64:6f:d6:26:1a: 9e:26:67:bc:16:f8:d1:77:df:97:74:c7:97:ee:89: 00:4a:4a:76:10:12:75:8d:7a:a3:14:38:28:47:89: d0:f8:7b:45:bd:6a:2a:7c:c3:02:d3:c4:97:b1:11: 23:fb:ea:47:26:fc:46:c6:e8:3c:6d:51:25:e4:bd: 69:6a:0c:9b:e4:64:92:ab:1b:37:16:60:3f:37:5e: 5c:ff:67:a2:3c:f0:a9:89:5c:7c:dc:7f:55:a4:45: 12:ce:8c:1f:8f:8c:88:72:21:7c:e5:6a:1a:19:c6: bd:bd:3a:a0:a8:88:75:32:3f:6e:8f:ba:35:84:04: aa:e1:2d:ed:99:c2:cb:f0:33:6e:26:11:c5:0b:36: 52:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:1F:93:2B:8F:14:46:C2:F2:12:10:D6:49:FD:20:F7:98:C4:C7:38 X509v3 Authority Key Identifier: keyid:DF:71:D9:9F:4C:D3:B3:83:26:B3:ED:47:C8:E4:A5:DF:98:9E:42:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33HZn0zTs4Mms-1HyOSl35ieQvI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0EE/55C803CA09C011EEBE12583AC4F9AE02/33HZn0zTs4Mms-1HyOSl35ieQvI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:a3:26:d5:65:82:76:4c:b5:59:e9:ff:5c:20:30:08:68:6d: 55:af:54:4e:30:a4:49:a7:bc:c1:f1:e9:6d:a7:ba:e2:42:f1: 79:7c:73:0e:2a:48:b1:3b:95:ce:e2:22:99:ca:f1:21:1b:d3: 9d:80:bc:6c:36:6b:27:95:95:64:3a:83:81:91:13:a0:c2:f8: 5d:a8:95:94:d8:70:29:31:33:8b:f5:b4:3d:e8:db:20:ac:42: 25:c9:b9:bc:b1:a5:ce:d2:30:2f:74:7c:b3:06:bb:f8:76:0f: 56:89:30:b9:3f:27:26:4f:3c:3e:4a:07:49:e0:d2:af:45:6f: a7:1a:e6:de:a9:e4:cf:11:5a:a0:6b:43:31:23:07:78:0d:16: 0b:d4:2c:5f:11:a9:ac:2c:9b:7f:9c:c2:11:2e:0c:b5:63:80: ff:d4:6d:37:59:8d:27:98:b1:e1:92:fd:ab:ff:c0:32:a4:90: 94:66:21:e2:2c:2a:91:78:65:5f:0d:f1:50:38:bd:47:8a:eb: 40:01:52:cd:96:d3:82:e2:17:4e:65:4c:a7:39:b6:1f:c9:fc: e4:e0:ff:23:14:7c:6c:da:5f:65:77:79:c2:e8:03:7e:ee:84: 0a:57:2d:31:a0:74:97:a7:5b:a1:2c:37:12:89:f4:45:dc:21: 80:4c:8e:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwRUUxMTAvBgNVBAUTKERGNzFEOTlGNENEM0IzODMyNkIzRUQ0N0M4RTRBNURG OTg5RTQyRjIwHhcNMjYwMTExMDE1NjA1WhcNMjYwMTE4MDE1NjA1WjAYMRYwFAYD VQQDDA02OTYzMDMzNS01MmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7C641PqmtLSXvIr6EpxhTwogrRX5qQzVR9p8M3pz6lB9hG3Nl9uj+18JQ8AE OtQfwqqqFa008G+2/K6RXaieJyVF2l7CrPMlCyOP0VunHLRtmS8UkP3SGkDCdIGx Uvl11fmrAp0Uv3GsqlONODABP8fOZG/WJhqeJme8FvjRd9+XdMeX7okASkp2EBJ1 jXqjFDgoR4nQ+HtFvWoqfMMC08SXsREj++pHJvxGxug8bVEl5L1pagyb5GSSqxs3 FmA/N15c/2eiPPCpiVx83H9VpEUSzowfj4yIciF85WoaGca9vTqgqIh1Mj9uj7o1 hASq4S3tmcLL8DNuJhHFCzZS+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNEfkyuP FEbC8hIQ1kn9IPeYxMc4MB8GA1UdIwQYMBaAFN9x2Z9M07ODJrPtR8jkpd+YnkLy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBFRS81NUM4MDNDQTA5 QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0TW1zLTFIeU9TbDM1aWVR dkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMzSFpuMHpUczRNbXMtMUh5T1NsMzVpZVF2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTBFRS81NUM4MDNDQTA5QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi8zM0habjB6VHM0 TW1zLTFIeU9TbDM1aWVRdkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFoybVZYJ2TLVZ6f9cIDAIaG1Vr1ROMKRJp7zB8eltp7riQvF5fHMO KkixO5XO4iKZyvEhG9OdgLxsNmsnlZVkOoOBkROgwvhdqJWU2HApMTOL9bQ96Nsg rEIlybm8saXO0jAvdHyzBrv4dg9WiTC5PycmTzw+SgdJ4NKvRW+nGubeqeTPEVqg a0MxIwd4DRYL1CxfEamsLJt/nMIRLgy1Y4D/1G03WY0nmLHhkv2r/8AypJCUZiHi LCqReGVfDfFQOL1HiutAAVLNltOC4hdOZUynObYfyfzk4P8jFHxs2l9ld3nC6AN+ 7oQKVy0xoHSXp1uhLDcSifRF3CGATI7G -----END CERTIFICATE-----Generated at Sun Jan 11 15:15:29 2026 by rpki-client