This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft File: SHy2MxcaDd84rLtq0e2K5pZVhgo.mft (raw, json) Hash identifier: bQnnsELyJ7yPrJ2NP2t/Lk7gMbigPpnYEt9HO+u24+M= Subject key identifier: BE:DC:C6:23:E9:35:A6:3E:E8:83:0C:BC:37:9D:CB:35:C8:9F:1E:E4 Authority key identifier: 48:7C:B6:33:17:1A:0D:DF:38:AC:BB:6A:D1:ED:8A:E6:96:55:86:0A Certificate issuer: /CN=A916899E/serialNumber=487CB633171A0DDF38ACBB6AD1ED8AE69655860A Certificate serial: 020E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft Manifest number: 020A Signing time: Thu 01 Jan 2026 01:57:20 +0000 Manifest this update: Thu 01 Jan 2026 01:57:20 +0000 Manifest next update: Thu 08 Jan 2026 01:57:20 +0000 Files and hashes: 1: SHy2MxcaDd84rLtq0e2K5pZVhgo.crl (hash: MHSwL7SPiDcMBuM4g4xWYOvD8BLcxP6awluRoksnysA=) 2: 96540A72CD0E11ED9A9CAE58C4F9AE02.roa (hash: gQgaVP6gsqEmtORlyD8C7NpCpWYfOsLgU2Aae4Tbg5g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.crl rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 Jan 2026 01:57:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 526 (0x20e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916899E, serialNumber=487CB633171A0DDF38ACBB6AD1ED8AE69655860A Validity Not Before: Jan 1 01:57:20 2026 GMT Not After : Jan 8 01:57:20 2026 GMT Subject: CN=6955d480-583e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9a:51:77:8b:7c:56:f1:35:a3:6b:99:c3:5a: a4:ca:de:d3:ec:59:4e:5b:8a:c3:00:33:08:02:37: 5a:b7:95:1d:10:93:2b:b7:5c:5e:29:23:d3:b1:e4: 2f:0a:69:4d:be:4e:96:2d:5f:29:7b:ab:fd:7a:a7: 68:54:51:f4:16:16:c8:5b:14:f6:00:6c:15:5b:60: 08:59:51:84:49:68:d5:48:f3:de:00:25:7a:49:5d: b1:81:a7:f4:2b:c9:8a:86:50:2c:27:5a:15:e9:b0: a3:22:53:90:a5:36:08:aa:63:e8:9e:c4:2c:53:28: 3b:19:e5:a5:86:99:d3:62:7a:33:63:73:8d:f0:b6: ae:fc:8a:bf:04:0c:87:70:1b:e9:29:32:55:f0:6e: 3a:4c:ab:5e:da:cd:d1:f4:3f:64:1e:ea:08:54:f1: 0c:3f:fd:c6:30:80:41:1a:b0:62:ac:67:d4:d9:dc: d0:83:44:8e:39:6f:e0:81:25:43:3c:78:1d:e9:73: b6:70:f8:5a:44:4e:39:86:f7:6e:bc:31:4a:43:6b: 32:79:8b:c7:1e:b3:c2:73:65:36:3f:d2:3c:80:77: b4:e1:ad:5a:a0:07:2a:d3:9f:4d:f1:f7:65:67:5f: 75:42:25:fe:05:61:e0:89:2a:73:2a:66:fc:61:48: a7:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:DC:C6:23:E9:35:A6:3E:E8:83:0C:BC:37:9D:CB:35:C8:9F:1E:E4 X509v3 Authority Key Identifier: keyid:48:7C:B6:33:17:1A:0D:DF:38:AC:BB:6A:D1:ED:8A:E6:96:55:86:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:3f:bf:cc:a7:c9:4a:80:c4:12:28:69:33:d8:e4:4f:b2:98: 61:17:b9:ee:ff:dc:92:75:aa:41:70:2e:9e:e8:03:fd:d1:ae: fe:71:86:73:60:7d:51:0e:a5:d3:a4:ce:62:08:9a:66:28:a6: 1b:b5:14:5f:b9:07:b9:ca:13:e0:3a:70:1a:0d:c8:90:50:4b: a8:40:b3:84:8a:3c:1a:85:8c:ab:ed:83:05:fa:65:9a:36:0d: c8:a4:b4:81:54:71:46:4c:fe:25:65:75:c3:6c:99:cf:d1:a9: 16:a5:6e:17:64:73:af:a4:70:4d:44:7f:06:9c:07:f9:ef:c3: e5:e4:a2:79:78:6a:ff:58:3d:48:a4:f2:e6:2b:c9:11:be:ef: 76:34:a5:6f:7f:c1:26:bd:1f:24:a8:d3:25:a7:9c:9c:78:3e: b4:88:3f:bd:7c:80:e1:3f:c5:4c:b0:35:a9:54:c6:f3:e1:14: 11:86:a8:15:80:13:ca:b7:6d:16:3c:0d:12:2b:11:87:45:30: b4:cd:fd:0f:f2:54:ef:6a:2d:8d:e7:f1:8e:02:cc:53:05:e4: de:b9:2e:43:1a:4d:40:02:53:c0:87:5e:3d:74:1a:53:37:34: 0e:35:16:a9:5f:71:fa:c1:27:7e:bd:1f:d7:5a:2f:4b:4a:98: 96:ff:55:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg5OUUxMTAvBgNVBAUTKDQ4N0NCNjMzMTcxQTBEREYzOEFDQkI2QUQxRUQ4QUU2 OTY1NTg2MEEwHhcNMjYwMTAxMDE1NzIwWhcNMjYwMTA4MDE1NzIwWjAYMRYwFAYD VQQDDA02OTU1ZDQ4MC01ODNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5pRd4t8VvE1o2uZw1qkyt7T7FlOW4rDADMIAjdat5UdEJMrt1xeKSPTseQv CmlNvk6WLV8pe6v9eqdoVFH0FhbIWxT2AGwVW2AIWVGESWjVSPPeACV6SV2xgaf0 K8mKhlAsJ1oV6bCjIlOQpTYIqmPonsQsUyg7GeWlhpnTYnozY3ON8Lau/Iq/BAyH cBvpKTJV8G46TKte2s3R9D9kHuoIVPEMP/3GMIBBGrBirGfU2dzQg0SOOW/ggSVD PHgd6XO2cPhaRE45hvduvDFKQ2syeYvHHrPCc2U2P9I8gHe04a1aoAcq059N8fdl Z191QiX+BWHgiSpzKmb8YUintwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL7cxiPp NaY+6IMMvDedyzXInx7kMB8GA1UdIwQYMBaAFEh8tjMXGg3fOKy7atHtiuaWVYYK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODk5RS82QzEzNTQzNEM5 RjMxMUVEQTU4NDkyNjlDNEY5QUUwMi9TSHkyTXhjYURkODRyTHRxMGUySzVwWlZo Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NIeTJNeGNhRGQ4NHJMdHEwZTJLNXBaVmhnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODk5RS82QzEzNTQzNEM5RjMxMUVEQTU4NDkyNjlDNEY5QUUwMi9TSHkyTXhjYURk ODRyTHRxMGUySzVwWlZoZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnP7/Mp8lKgMQSKGkz2ORPsphhF7nu/9ySdapBcC6e6AP90a7+cYZz YH1RDqXTpM5iCJpmKKYbtRRfuQe5yhPgOnAaDciQUEuoQLOEijwahYyr7YMF+mWa Ng3IpLSBVHFGTP4lZXXDbJnP0akWpW4XZHOvpHBNRH8GnAf578Pl5KJ5eGr/WD1I pPLmK8kRvu92NKVvf8EmvR8kqNMlp5yceD60iD+9fIDhP8VMsDWpVMbz4RQRhqgV gBPKt20WPA0SKxGHRTC0zf0P8lTvai2N5/GOAsxTBeTeuS5DGk1AAlPAh149dBpT NzQONRapX3H6wSd+vR/XWi9LSpiW/1Ws -----END CERTIFICATE-----Generated at Fri Jan 2 08:17:45 2026 by rpki-client