This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91113A5/E57F35924B7711F0B1CB9E27C4F9AE02/kCG-_ztj7nJIuQ3apd2_p-MSHNk.mft File: kCG-_ztj7nJIuQ3apd2_p-MSHNk.mft (raw, json) Hash identifier: fIFieKJrBWl1opcaRVIwsgFvoQ9IUgHaPOuYJGBYu3M= Subject key identifier: 28:A7:A1:B8:9A:2E:0F:0B:65:AD:C7:FB:25:7A:D3:2E:8D:7C:49:31 Authority key identifier: 90:21:BE:FF:3B:63:EE:72:48:B9:0D:DA:A5:DD:BF:A7:E3:12:1C:D9 Certificate issuer: /CN=A91113A5/serialNumber=9021BEFF3B63EE7248B90DDAA5DDBFA7E3121CD9 Certificate serial: 72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCG-_ztj7nJIuQ3apd2_p-MSHNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91113A5/E57F35924B7711F0B1CB9E27C4F9AE02/kCG-_ztj7nJIuQ3apd2_p-MSHNk.mft Manifest number: 72 Signing time: Fri 23 Jan 2026 05:56:16 +0000 Manifest this update: Fri 23 Jan 2026 05:56:15 +0000 Manifest next update: Fri 30 Jan 2026 05:56:15 +0000 Files and hashes: 1: kCG-_ztj7nJIuQ3apd2_p-MSHNk.crl (hash: 7C67WC/njQNIRPJhTdqlHg1IM5Yf16yELC1AJpja33E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91113A5/E57F35924B7711F0B1CB9E27C4F9AE02/kCG-_ztj7nJIuQ3apd2_p-MSHNk.crl rsync://rpki.apnic.net/member_repository/A91113A5/E57F35924B7711F0B1CB9E27C4F9AE02/kCG-_ztj7nJIuQ3apd2_p-MSHNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCG-_ztj7nJIuQ3apd2_p-MSHNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 05:56:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91113A5, serialNumber=9021BEFF3B63EE7248B90DDAA5DDBFA7E3121CD9 Validity Not Before: Jan 23 05:56:15 2026 GMT Not After : Jan 30 05:56:15 2026 GMT Subject: CN=69730d80-803e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7e:b2:f7:38:3a:fe:47:14:99:6f:a4:d1:ee: 4f:41:41:0f:63:0f:59:df:24:35:b5:46:57:cc:11: 9b:60:06:91:98:b2:4d:86:f2:7d:4e:0b:8c:ae:e4: 06:17:f2:83:05:f8:a8:04:97:28:c3:ac:2d:cc:be: 59:e6:40:92:73:ae:de:a0:d2:1a:8a:7d:26:7c:d5: 77:56:85:a3:64:dc:0e:79:e0:6e:83:a7:75:f7:dc: 16:3f:28:87:28:4c:c6:69:50:96:2e:95:0c:a8:9d: 59:bd:ec:26:6d:90:15:bb:98:07:e7:8a:9d:6e:ec: 2b:54:bf:5b:24:3d:f3:60:a8:05:ba:60:f4:a7:4d: 28:c6:a1:b9:97:a4:14:c4:9c:e7:fb:85:e5:6d:a4: 87:84:b4:07:6b:85:dd:a5:f2:5b:86:ec:95:32:53: a2:60:a9:50:10:5f:0b:29:5a:d0:9d:5f:32:3b:c9: 05:d1:0f:d7:e7:cf:e2:26:a5:a1:0d:47:29:f7:e2: 26:6a:ab:c8:bd:59:7d:71:cd:a7:a3:21:0e:d0:25: 0c:6f:e9:4d:2f:6a:76:55:59:58:f1:03:49:a8:c0: c6:2e:19:c1:d9:c8:4d:58:ca:c1:36:c7:88:d7:51: 39:96:78:9d:64:94:80:c2:3b:09:8c:6c:0e:87:50: 1c:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:A7:A1:B8:9A:2E:0F:0B:65:AD:C7:FB:25:7A:D3:2E:8D:7C:49:31 X509v3 Authority Key Identifier: keyid:90:21:BE:FF:3B:63:EE:72:48:B9:0D:DA:A5:DD:BF:A7:E3:12:1C:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91113A5/E57F35924B7711F0B1CB9E27C4F9AE02/kCG-_ztj7nJIuQ3apd2_p-MSHNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCG-_ztj7nJIuQ3apd2_p-MSHNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91113A5/E57F35924B7711F0B1CB9E27C4F9AE02/kCG-_ztj7nJIuQ3apd2_p-MSHNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:ec:43:a4:0b:55:66:02:10:62:bb:c1:59:a7:6d:32:b7:9c: 24:81:eb:b0:dc:90:6c:15:af:8c:14:5f:78:72:fb:67:60:2b: b9:8c:84:2f:05:55:2e:eb:56:90:2b:a5:e6:ab:71:11:a3:13: 7e:9a:33:c2:10:76:17:97:db:6a:0b:14:3e:03:cb:05:89:bd: e8:de:b6:af:be:02:7d:55:7f:ac:30:dd:5f:a2:f0:4b:bc:77: d6:7c:c5:b5:a4:33:8d:85:16:19:f8:ab:7c:f5:4a:e9:7d:0e: 50:73:68:68:d2:40:09:3d:1e:81:48:e4:49:ad:55:5b:43:17: ba:3a:36:d4:d0:f4:6a:9c:a5:7b:91:7b:7e:f3:57:d6:19:b2: 4b:41:2a:8a:3e:a6:47:70:fa:62:3e:04:5a:70:f3:7a:43:5d: 15:ea:ac:fe:44:7b:27:86:26:39:fd:67:8c:93:5b:cc:2a:7e: e6:58:ea:6b:1c:5d:43:e7:ae:27:67:0d:1e:94:30:3e:4d:40: ab:79:4e:12:32:f7:ee:83:6d:1d:b6:7a:3c:76:fd:b8:9a:6e: c7:35:d0:41:22:02:a2:c9:20:07:c2:b6:74:dd:19:d2:e3:8b: 07:e2:93:e4:ce:bc:a7:50:70:64:fe:28:dc:45:73:4e:d1:ce: f4:eb:07:0d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MTNBNTExMC8GA1UEBRMoOTAyMUJFRkYzQjYzRUU3MjQ4QjkwRERBQTVEREJGQTdF MzEyMUNEOTAeFw0yNjAxMjMwNTU2MTVaFw0yNjAxMzAwNTU2MTVaMBgxFjAUBgNV BAMMDTY5NzMwZDgwLTgwM2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6frL3ODr+RxSZb6TR7k9BQQ9jD1nfJDW1RlfMEZtgBpGYsk2G8n1OC4yu5AYX 8oMF+KgElyjDrC3MvlnmQJJzrt6g0hqKfSZ81XdWhaNk3A554G6Dp3X33BY/KIco TMZpUJYulQyonVm97CZtkBW7mAfnip1u7CtUv1skPfNgqAW6YPSnTSjGobmXpBTE nOf7heVtpIeEtAdrhd2l8luG7JUyU6JgqVAQXwspWtCdXzI7yQXRD9fnz+ImpaEN Ryn34iZqq8i9WX1xzaejIQ7QJQxv6U0vanZVWVjxA0mowMYuGcHZyE1YysE2x4jX UTmWeJ1klIDCOwmMbA6HUBzbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUKKehuJou Dwtlrcf7JXrTLo18STEwHwYDVR0jBBgwFoAUkCG+/ztj7nJIuQ3apd2/p+MSHNkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTExM0E1L0U1N0YzNTkyNEI3 NzExRjBCMUNCOUUyN0M0RjlBRTAyL2tDRy1fenRqN25KSXVRM2FwZDJfcC1NU0hO ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva0NHLV96dGo3bkpJdVEzYXBkMl9wLU1TSE5rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEx M0E1L0U1N0YzNTkyNEI3NzExRjBCMUNCOUUyN0M0RjlBRTAyL2tDRy1fenRqN25K SXVRM2FwZDJfcC1NU0hOay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG7sQ6QLVWYCEGK7wVmnbTK3nCSB67DckGwVr4wUX3hy+2dgK7mMhC8F VS7rVpArpearcRGjE36aM8IQdheX22oLFD4DywWJvejetq++An1Vf6ww3V+i8Eu8 d9Z8xbWkM42FFhn4q3z1Sul9DlBzaGjSQAk9HoFI5EmtVVtDF7o6NtTQ9GqcpXuR e37zV9YZsktBKoo+pkdw+mI+BFpw83pDXRXqrP5EeyeGJjn9Z4yTW8wqfuZY6msc XUPnridnDR6UMD5NQKt5ThIy9+6DbR22ejx2/biabsc10EEiAqLJIAfCtnTdGdLj iwfik+TOvKdQcGT+KNxFc07RzvTrBw0= -----END CERTIFICATE-----Generated at Sun Jan 25 04:39:13 2026 by rpki-client