This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft File: NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft (raw, json) Hash identifier: MsoAzlp2QdY0Q39iPt3dWbzdGf8KXlqh5DJ1a4BhVk0= Subject key identifier: 1F:17:BF:C3:CA:C1:7E:3C:2F:EE:24:88:EA:5B:AB:18:F1:DB:B0:5B Authority key identifier: 34:0F:81:34:33:71:9A:76:0E:3B:FE:21:93:36:87:26:11:79:C3:27 Certificate issuer: /CN=A91FA562/serialNumber=340F813433719A760E3BFE21933687261179C327 Certificate serial: 01E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft Manifest number: 01E4 Signing time: Sun 11 Jan 2026 01:57:55 +0000 Manifest this update: Sun 11 Jan 2026 01:57:55 +0000 Manifest next update: Sun 18 Jan 2026 01:57:55 +0000 Files and hashes: 1: NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl (hash: mC/0sGbmBHyOs5rVMUW5Oogfk1/C1uEgEsRprRdNla8=) 2: 7588035C913E11EFB46E9A72C4F9AE02.roa (hash: mBxiRWgEarnzYFat9Qg22lu2bbXA9CIcAcjVQbJnnic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 Jan 2026 01:57:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 489 (0x1e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA562, serialNumber=340F813433719A760E3BFE21933687261179C327 Validity Not Before: Jan 11 01:57:55 2026 GMT Not After : Jan 18 01:57:55 2026 GMT Subject: CN=696303a3-db21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:46:13:5e:29:c4:48:8a:0a:40:10:68:f9:bc: 33:c0:57:26:87:84:8f:cf:86:05:77:75:b5:12:a6: ff:d3:0b:d0:56:10:fc:e8:ab:0e:52:96:dc:0a:63: a5:b5:cd:fd:34:9d:96:41:e2:a5:a4:f5:2a:f8:99: 57:20:e9:86:fd:78:90:7a:df:0b:85:a6:36:86:be: 24:d8:c1:5a:55:cb:68:d3:88:4a:1b:31:87:ee:87: 2f:92:9c:94:90:d7:65:40:19:ab:cb:14:88:e6:cd: df:a7:9e:5d:9b:19:45:8f:61:5a:a7:81:13:75:6b: ab:cc:e4:d6:80:17:5b:71:1a:26:99:13:b7:5a:d1: 93:5f:d3:1e:a5:fa:21:92:91:66:ba:b6:bf:09:92: 34:72:6c:e8:43:fd:54:e6:47:cb:f6:b6:af:b3:e8: 63:45:2b:ed:e9:cc:b1:7f:b9:b8:77:a9:f4:00:e2: 7e:0d:73:3f:1a:aa:05:83:1a:51:61:9a:59:08:e2: 49:9d:07:6d:b2:a2:65:66:51:e3:74:84:89:38:73: 19:8a:82:7f:dc:1a:ee:de:6b:df:4a:11:a1:31:d9: df:dd:fd:34:38:4f:a7:d7:68:91:d6:79:44:d0:33: f3:79:89:cc:47:d3:ea:a0:4f:88:11:be:fc:76:c5: 29:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:17:BF:C3:CA:C1:7E:3C:2F:EE:24:88:EA:5B:AB:18:F1:DB:B0:5B X509v3 Authority Key Identifier: keyid:34:0F:81:34:33:71:9A:76:0E:3B:FE:21:93:36:87:26:11:79:C3:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:09:6b:7e:7f:76:fd:87:8b:54:37:06:31:fe:e4:80:f8:3f: f2:eb:8d:b0:03:e1:00:75:25:0a:b7:bd:bd:30:cb:f7:ef:27: 57:5f:74:0d:40:03:89:4d:f7:05:0c:80:4f:f2:91:de:b7:6f: 61:7b:36:df:0d:98:f7:8a:a0:6f:c4:3e:37:d4:d2:6e:fa:5d: da:0d:3e:a2:20:86:06:14:e0:c6:1c:f0:fc:b9:b2:66:9a:88: 36:0d:c2:5e:a3:54:99:e9:5d:e8:2d:47:0d:01:41:b1:ac:a5: fc:6e:c4:1f:10:74:52:46:4f:2d:ae:59:d9:3e:95:71:9a:c9: a0:14:e0:5e:b4:f9:aa:98:ae:21:e3:ae:ac:bd:a9:97:00:65: 69:cf:b3:10:80:88:c4:e4:e5:39:50:82:a4:8c:47:ff:d2:b5: ed:ed:88:9d:70:0c:9d:6f:8f:4b:c6:af:87:3f:ab:6e:59:eb: 43:c2:6a:9b:b4:f0:90:42:a0:fc:6f:f8:20:c7:a4:ef:12:c5: 87:07:f1:4f:23:40:2e:ac:51:bb:69:e7:1f:b9:39:cf:9f:de: ec:d9:f4:40:6d:e4:de:8d:97:13:36:61:40:cc:0f:74:b1:68: 4b:70:04:cf:a2:4a:a7:39:bf:cb:60:da:e2:e1:c2:6d:c3:a4: 82:7b:f4:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE1NjIxMTAvBgNVBAUTKDM0MEY4MTM0MzM3MTlBNzYwRTNCRkUyMTkzMzY4NzI2 MTE3OUMzMjcwHhcNMjYwMTExMDE1NzU1WhcNMjYwMTE4MDE1NzU1WjAYMRYwFAYD VQQDDA02OTYzMDNhMy1kYjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1kYTXinESIoKQBBo+bwzwFcmh4SPz4YFd3W1Eqb/0wvQVhD86KsOUpbcCmOl tc39NJ2WQeKlpPUq+JlXIOmG/XiQet8LhaY2hr4k2MFaVcto04hKGzGH7ocvkpyU kNdlQBmryxSI5s3fp55dmxlFj2Fap4ETdWurzOTWgBdbcRommRO3WtGTX9Mepfoh kpFmura/CZI0cmzoQ/1U5kfL9ravs+hjRSvt6cyxf7m4d6n0AOJ+DXM/GqoFgxpR YZpZCOJJnQdtsqJlZlHjdISJOHMZioJ/3Bru3mvfShGhMdnf3f00OE+n12iR1nlE 0DPzeYnMR9PqoE+IEb78dsUpXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB8Xv8PK wX48L+4kiOpbqxjx27BbMB8GA1UdIwQYMBaAFDQPgTQzcZp2Djv+IZM2hyYRecMn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTU2Mi8yNjU3RjczRTBC QzkxMUVFOEY3OUJCNURDNEY5QUUwMi9OQS1CTkROeG1uWU9PXzRoa3phSEpoRjV3 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BLUJORE54bW5ZT09fNGhremFISmhGNXd5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTU2Mi8yNjU3RjczRTBCQzkxMUVFOEY3OUJCNURDNEY5QUUwMi9OQS1CTkROeG1u WU9PXzRoa3phSEpoRjV3eWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWCWt+f3b9h4tUNwYx/uSA+D/y642wA+EAdSUKt729MMv37ydXX3QN QAOJTfcFDIBP8pHet29hezbfDZj3iqBvxD431NJu+l3aDT6iIIYGFODGHPD8ubJm mog2DcJeo1SZ6V3oLUcNAUGxrKX8bsQfEHRSRk8trlnZPpVxmsmgFOBetPmqmK4h 466svamXAGVpz7MQgIjE5OU5UIKkjEf/0rXt7YidcAydb49Lxq+HP6tuWetDwmqb tPCQQqD8b/ggx6TvEsWHB/FPI0AurFG7aecfuTnPn97s2fRAbeTejZcTNmFAzA90 sWhLcATPokqnOb/LYNri4cJtw6SCe/S3 -----END CERTIFICATE-----Generated at Sun Jan 11 15:11:31 2026 by rpki-client