This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFDF3/757DB7887D7111EB82D3D661C4F9AE02/cnQCOx-0p0kyj11N-DsN0_B_6UI.mft File: cnQCOx-0p0kyj11N-DsN0_B_6UI.mft (raw, json) Hash identifier: SUWFNNCoxkIK8T0JkDyq6gY3jyEcGsIVkRL7Bl/lcM8= Subject key identifier: AE:48:E0:8D:FA:99:3A:4E:DA:97:1C:E4:0F:C8:42:14:49:ED:A8:3D Authority key identifier: 72:74:02:3B:1F:B4:A7:49:32:8F:5D:4D:F8:3B:0D:D3:F0:7F:E9:42 Certificate issuer: /CN=A91FFDF3/serialNumber=7274023B1FB4A749328F5D4DF83B0DD3F07FE942 Certificate serial: 06D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnQCOx-0p0kyj11N-DsN0_B_6UI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFDF3/757DB7887D7111EB82D3D661C4F9AE02/cnQCOx-0p0kyj11N-DsN0_B_6UI.mft Manifest number: 06D8 Signing time: Sat 10 Jan 2026 21:21:36 +0000 Manifest this update: Sat 10 Jan 2026 21:21:36 +0000 Manifest next update: Sat 17 Jan 2026 21:21:36 +0000 Files and hashes: 1: cnQCOx-0p0kyj11N-DsN0_B_6UI.crl (hash: fH7DK93Hz8g2xhJJvHWsk0LspQcF/9AOLdzlvMA7ZlY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFDF3/757DB7887D7111EB82D3D661C4F9AE02/cnQCOx-0p0kyj11N-DsN0_B_6UI.crl rsync://rpki.apnic.net/member_repository/A91FFDF3/757DB7887D7111EB82D3D661C4F9AE02/cnQCOx-0p0kyj11N-DsN0_B_6UI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnQCOx-0p0kyj11N-DsN0_B_6UI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 Jan 2026 21:21:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1752 (0x6d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFDF3, serialNumber=7274023B1FB4A749328F5D4DF83B0DD3F07FE942 Validity Not Before: Jan 10 21:21:36 2026 GMT Not After : Jan 17 21:21:36 2026 GMT Subject: CN=6962c2e0-2560 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:3d:db:5b:1d:e9:af:95:b5:88:96:93:61:d1: 5f:d6:0d:34:0b:38:9a:ab:4e:b6:ee:76:66:d2:99: 41:9f:a0:20:f6:6f:44:6a:f9:f0:bd:0e:b8:c9:82: 94:06:18:a4:32:5a:65:a5:2d:82:9d:17:9f:fa:f7: c4:b9:4c:68:1f:21:f3:c9:bc:c4:93:ed:7d:6f:d9: 2a:2d:65:fb:46:3d:73:42:bb:12:fe:32:db:ba:61: 53:20:9c:48:2d:db:38:ea:6d:24:75:20:68:24:a9: 25:97:75:bc:31:94:d8:cf:53:1c:a6:b7:af:b7:7f: 3c:c2:08:22:98:c3:81:ea:b8:af:16:c9:83:d2:95: cc:49:09:1c:af:c9:ef:87:c9:68:62:81:c4:ec:63: a2:be:bd:c6:ff:3e:59:20:f6:a1:ed:51:db:9c:33: ae:96:f5:7a:00:2b:ba:fd:4d:35:d8:e2:da:2e:6c: 1a:6f:db:1d:1e:12:c7:2f:6b:f9:b5:ca:de:e1:16: dc:69:44:53:30:11:35:fc:15:8a:08:e2:98:55:90: ba:34:ab:f3:c0:16:e2:db:67:a0:2e:79:e3:92:0b: 3b:f7:44:ca:4c:da:94:1d:a8:fc:aa:32:f2:b7:48: 33:f5:03:40:85:bd:b9:21:60:1d:8d:24:46:f0:48: 7e:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:48:E0:8D:FA:99:3A:4E:DA:97:1C:E4:0F:C8:42:14:49:ED:A8:3D X509v3 Authority Key Identifier: keyid:72:74:02:3B:1F:B4:A7:49:32:8F:5D:4D:F8:3B:0D:D3:F0:7F:E9:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFDF3/757DB7887D7111EB82D3D661C4F9AE02/cnQCOx-0p0kyj11N-DsN0_B_6UI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnQCOx-0p0kyj11N-DsN0_B_6UI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFDF3/757DB7887D7111EB82D3D661C4F9AE02/cnQCOx-0p0kyj11N-DsN0_B_6UI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:f5:af:e9:80:6d:a8:fe:89:39:0a:49:77:ea:52:9b:f0:c3: ff:7a:c3:71:bf:e6:9b:dc:09:95:4c:f6:7e:49:68:4f:31:9b: 49:a8:e7:9e:46:e6:29:ad:85:b6:28:18:a1:e5:b2:8f:3c:18: 4e:01:4f:ba:54:30:57:34:f1:ba:63:e5:e5:2d:53:7d:b2:80: db:51:30:01:06:04:20:f8:23:8a:ce:40:d4:84:da:83:0a:55: 5a:d5:90:80:9c:cc:85:9d:42:69:4c:d2:08:80:2a:6d:c8:b0: 19:5d:d5:cd:4f:df:85:73:3a:07:14:de:a0:e8:be:7f:eb:d8: c7:05:94:ee:7c:c0:05:1d:e9:20:88:46:d3:28:14:d1:5e:b9: ff:18:33:ad:4d:6b:51:df:1b:1f:11:28:dc:e8:bd:df:fe:29: fa:88:61:46:17:2d:a3:a5:51:4c:55:38:62:58:2b:de:9b:e7: c1:80:07:18:0c:12:be:4c:bf:3f:29:71:84:16:ab:f0:7d:b2: 43:2d:8b:85:cd:2a:d0:15:b5:f3:8a:11:6f:85:db:35:96:84: ee:f9:ac:01:25:d4:cc:34:45:4f:06:8c:47:09:98:91:72:78: c3:ae:fc:88:cb:8e:35:26:75:a7:d7:09:45:3e:f0:b5:ea:f4: 3a:e5:3a:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkZERjMxMTAvBgNVBAUTKDcyNzQwMjNCMUZCNEE3NDkzMjhGNUQ0REY4M0IwREQz RjA3RkU5NDIwHhcNMjYwMTEwMjEyMTM2WhcNMjYwMTE3MjEyMTM2WjAYMRYwFAYD VQQDDA02OTYyYzJlMC0yNTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6T3bWx3pr5W1iJaTYdFf1g00Cziaq0627nZm0plBn6Ag9m9EavnwvQ64yYKU BhikMlplpS2CnRef+vfEuUxoHyHzybzEk+19b9kqLWX7Rj1zQrsS/jLbumFTIJxI Lds46m0kdSBoJKkll3W8MZTYz1Mcprevt388wggimMOB6rivFsmD0pXMSQkcr8nv h8loYoHE7GOivr3G/z5ZIPah7VHbnDOulvV6ACu6/U012OLaLmwab9sdHhLHL2v5 tcre4RbcaURTMBE1/BWKCOKYVZC6NKvzwBbi22egLnnjkgs790TKTNqUHaj8qjLy t0gz9QNAhb25IWAdjSRG8Eh+uQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK5I4I36 mTpO2pcc5A/IQhRJ7ag9MB8GA1UdIwQYMBaAFHJ0AjsftKdJMo9dTfg7DdPwf+lC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRkRGMy83NTdEQjc4ODdE NzExMUVCODJEM0Q2NjFDNEY5QUUwMi9jblFDT3gtMHAwa3lqMTFOLURzTjBfQl82 VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuUUNPeC0wcDBreWoxMU4tRHNOMF9CXzZVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RkRGMy83NTdEQjc4ODdENzExMUVCODJEM0Q2NjFDNEY5QUUwMi9jblFDT3gtMHAw a3lqMTFOLURzTjBfQl82VUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCa9a/pgG2o/ok5Ckl36lKb8MP/esNxv+ab3AmVTPZ+SWhPMZtJqOee RuYprYW2KBih5bKPPBhOAU+6VDBXNPG6Y+XlLVN9soDbUTABBgQg+COKzkDUhNqD ClVa1ZCAnMyFnUJpTNIIgCptyLAZXdXNT9+FczoHFN6g6L5/69jHBZTufMAFHekg iEbTKBTRXrn/GDOtTWtR3xsfESjc6L3f/in6iGFGFy2jpVFMVThiWCvem+fBgAcY DBK+TL8/KXGEFqvwfbJDLYuFzSrQFbXzihFvhds1loTu+awBJdTMNEVPBoxHCZiR cnjDrvyIy441JnWn1wlFPvC16vQ65Tra -----END CERTIFICATE-----Generated at Sun Jan 11 19:55:02 2026 by rpki-client