This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.mft File: NSX5xUTpmw5jRgCZyS39lNSb9so.mft (raw, json) Hash identifier: mmzP3sTUjh6XQWqwbE9+NGMtLMGTCkz8eddH+RK1ISI= Subject key identifier: C3:22:8C:1B:61:A8:DC:3F:10:D7:68:D2:24:48:F1:51:8C:01:1F:F4 Authority key identifier: 35:25:F9:C5:44:E9:9B:0E:63:46:00:99:C9:2D:FD:94:D4:9B:F6:CA Certificate issuer: /CN=A91D9D7A/serialNumber=3525F9C544E99B0E63460099C92DFD94D49BF6CA Certificate serial: 02AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSX5xUTpmw5jRgCZyS39lNSb9so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.mft Manifest number: 02A8 Signing time: Sun 11 Jan 2026 00:38:46 +0000 Manifest this update: Sun 11 Jan 2026 00:38:46 +0000 Manifest next update: Sun 18 Jan 2026 00:38:46 +0000 Files and hashes: 1: NSX5xUTpmw5jRgCZyS39lNSb9so.crl (hash: UaLTgDsM02vLJbSIsVrP4O0J2GVpqdOj5me2dZCD580=) 2: 81B7763C280211ED93948C10C4F9AE02.roa (hash: EUxX4jfQlcU/1uY0IOylmxYMPcoOQVgae213RHQG1Xc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.crl rsync://rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSX5xUTpmw5jRgCZyS39lNSb9so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 Jan 2026 00:38:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 684 (0x2ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9D7A, serialNumber=3525F9C544E99B0E63460099C92DFD94D49BF6CA Validity Not Before: Jan 11 00:38:46 2026 GMT Not After : Jan 18 00:38:46 2026 GMT Subject: CN=6962f116-5cf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:17:57:a6:c7:19:39:31:9d:42:80:6f:fe:e2: 02:46:c8:4d:e7:a2:e9:6b:f2:63:e9:1b:2d:a7:7a: e2:5c:db:c4:00:eb:4e:3d:5d:ef:e2:22:5d:2c:e1: b8:d5:56:0a:75:1a:d4:71:2c:03:80:4a:75:35:4f: 51:83:80:eb:d9:b4:1f:a5:d8:73:f8:68:f9:c5:f2: c4:57:30:2e:20:5f:4a:01:10:d0:c7:59:61:b8:81: 22:25:da:09:46:04:8f:b5:56:be:5b:8a:15:e0:45: 36:54:5c:ce:05:b8:0b:9a:6d:a2:6e:78:d7:01:95: 5e:4c:79:5e:9c:9a:3e:2d:d0:ae:f2:ba:3c:b9:63: bd:0f:f7:ff:f8:c1:04:7a:a4:3f:23:08:08:0a:08: 7f:92:56:56:97:ac:c2:d3:c4:ee:a9:ce:19:04:a7: 75:df:91:82:21:b3:4e:8b:11:10:9b:03:84:af:e3: 6a:ff:b4:6e:e8:f4:8b:11:5e:1e:c8:5d:79:a3:8b: f6:d4:d6:ad:77:2c:92:c4:fa:7b:33:10:25:19:d9: 86:df:55:88:0f:ff:51:5f:3c:08:29:17:c7:c8:97: 9f:d0:1e:fd:7b:7f:ad:ad:5b:d1:8d:5c:c0:7e:9c: 01:69:68:2d:01:b6:dc:a2:6f:b3:d1:a4:16:ef:30: dd:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:22:8C:1B:61:A8:DC:3F:10:D7:68:D2:24:48:F1:51:8C:01:1F:F4 X509v3 Authority Key Identifier: keyid:35:25:F9:C5:44:E9:9B:0E:63:46:00:99:C9:2D:FD:94:D4:9B:F6:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSX5xUTpmw5jRgCZyS39lNSb9so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9D7A/89A9AA24278311ED9BA02450C4F9AE02/NSX5xUTpmw5jRgCZyS39lNSb9so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:cb:57:f6:99:5a:88:dd:3f:a1:10:7c:75:43:43:58:22:33: 13:59:df:28:48:fe:c5:df:37:2a:6f:ad:c3:71:25:ab:4d:c5: ab:17:1e:b6:80:6f:a9:da:88:51:14:b4:ce:f2:9c:ed:39:29: a9:cd:9f:95:06:2a:93:58:c8:1a:64:78:36:17:f9:48:3c:67: 85:7f:b8:5a:b6:f0:64:0b:0b:57:24:fd:28:32:09:c3:ed:fa: cf:f8:66:68:a1:8f:94:8e:25:d9:7d:58:c0:02:68:65:4f:0f: b4:5c:2a:6d:3f:00:af:db:1b:74:c9:e0:5b:d9:e5:09:b2:19: 6f:96:44:40:91:63:1b:72:14:be:c3:c7:ca:d9:15:cb:d2:42: 70:21:25:01:fd:88:a6:35:dd:2e:81:ea:f9:5d:cb:3f:ff:ff: e2:c6:8e:0f:99:cd:97:fb:88:55:66:6c:74:38:2a:e3:eb:17: e1:d5:58:75:65:71:18:2b:e7:77:57:1f:18:04:cd:5e:c2:70: 4d:65:af:21:e7:4b:2c:a5:b3:a5:24:2b:8c:ba:9c:b4:0b:8b: 03:d8:f9:ec:89:a4:6c:0f:d9:5a:7f:85:ab:f0:c6:50:be:cb: b2:34:6c:ec:cb:e9:a8:64:23:8d:08:92:9f:25:79:c4:1a:4e: dd:a7:f5:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlEN0ExMTAvBgNVBAUTKDM1MjVGOUM1NDRFOTlCMEU2MzQ2MDA5OUM5MkRGRDk0 RDQ5QkY2Q0EwHhcNMjYwMTExMDAzODQ2WhcNMjYwMTE4MDAzODQ2WjAYMRYwFAYD VQQDDA02OTYyZjExNi01Y2Y3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3RdXpscZOTGdQoBv/uICRshN56Lpa/Jj6Rstp3riXNvEAOtOPV3v4iJdLOG4 1VYKdRrUcSwDgEp1NU9Rg4Dr2bQfpdhz+Gj5xfLEVzAuIF9KARDQx1lhuIEiJdoJ RgSPtVa+W4oV4EU2VFzOBbgLmm2ibnjXAZVeTHlenJo+LdCu8ro8uWO9D/f/+MEE eqQ/IwgICgh/klZWl6zC08Tuqc4ZBKd135GCIbNOixEQmwOEr+Nq/7Ru6PSLEV4e yF15o4v21NatdyySxPp7MxAlGdmG31WID/9RXzwIKRfHyJef0B79e3+trVvRjVzA fpwBaWgtAbbcom+z0aQW7zDdqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMMijBth qNw/ENdo0iRI8VGMAR/0MB8GA1UdIwQYMBaAFDUl+cVE6ZsOY0YAmckt/ZTUm/bK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUQ3QS84OUE5QUEyNDI3 ODMxMUVEOUJBMDI0NTBDNEY5QUUwMi9OU1g1eFVUcG13NWpSZ0NaeVMzOWxOU2I5 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05TWDV4VVRwbXc1alJnQ1p5UzM5bE5TYjlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUQ3QS84OUE5QUEyNDI3ODMxMUVEOUJBMDI0NTBDNEY5QUUwMi9OU1g1eFVUcG13 NWpSZ0NaeVMzOWxOU2I5c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqy1f2mVqI3T+hEHx1Q0NYIjMTWd8oSP7F3zcqb63DcSWrTcWrFx62 gG+p2ohRFLTO8pztOSmpzZ+VBiqTWMgaZHg2F/lIPGeFf7hatvBkCwtXJP0oMgnD 7frP+GZooY+UjiXZfVjAAmhlTw+0XCptPwCv2xt0yeBb2eUJshlvlkRAkWMbchS+ w8fK2RXL0kJwISUB/YimNd0uger5Xcs////ixo4Pmc2X+4hVZmx0OCrj6xfh1Vh1 ZXEYK+d3Vx8YBM1ewnBNZa8h50sspbOlJCuMupy0C4sD2PnsiaRsD9laf4Wr8MZQ vsuyNGzsy+moZCONCJKfJXnEGk7dp/Wm -----END CERTIFICATE-----Generated at Mon Jan 12 06:59:42 2026 by rpki-client