This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft File: keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft (raw, json) Hash identifier: qYXOH9Cz78bdzrODKjuRD6Pq74SBSCuodiV1QVd41oM= Subject key identifier: 48:1F:EB:E9:CD:70:B4:AD:68:C4:72:32:C9:37:37:E8:DC:34:9A:2F Authority key identifier: 91:E6:79:72:1E:D1:E0:92:7E:BB:7E:46:1C:80:58:0D:23:93:59:2A Certificate issuer: /CN=A911ACAC/serialNumber=91E679721ED1E0927EBB7E461C80580D2393592A Certificate serial: 053B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft Manifest number: 052D Signing time: Sat 24 Jan 2026 22:48:04 +0000 Manifest this update: Sat 24 Jan 2026 22:48:04 +0000 Manifest next update: Sat 31 Jan 2026 22:48:04 +0000 Files and hashes: 1: keZ5ch7R4JJ-u35GHIBYDSOTWSo.crl (hash: G9pNNV+J6BgPKunwbmn0mwRBdqhySxkWmejRk/0gcnI=) 2: 1295B5943FA611EF94664041C4F9AE02.roa (hash: Xm1rBXhmf8C7NwIdzHcktuLy6xLXnZf/ojX3SwmWi0s=) 3: C52B4E0A3FE011EF88794913C4F9AE02.roa (hash: 3n3nLW0U6YcpS2DSLwMtSeUZ5bCt2NFI2SAX/eDJKCw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.crl rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:48:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1339 (0x53b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ACAC, serialNumber=91E679721ED1E0927EBB7E461C80580D2393592A Validity Not Before: Jan 24 22:48:04 2026 GMT Not After : Jan 31 22:48:04 2026 GMT Subject: CN=69754c24-52f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:e2:89:74:53:50:3e:fe:dc:e0:f9:e3:2b:a6: 81:9f:04:f0:69:4a:47:fa:3f:24:56:fa:26:81:d4: 8d:53:14:91:11:96:66:fa:af:44:42:4b:89:78:ee: dc:2a:ee:88:7b:42:fe:19:b1:98:21:2c:ed:97:2c: c3:fa:bd:2d:dd:1c:cf:32:42:1b:8c:3b:76:72:d2: 8d:03:9a:cb:bd:6b:11:c1:f7:aa:e3:69:1f:65:ce: 4e:0c:85:7f:21:fa:e0:eb:64:01:ba:a9:14:e6:60: af:92:b6:50:21:cc:a4:08:5e:bb:bc:81:2d:8e:19: e8:a3:9e:1c:ff:d1:20:7f:7d:b0:fa:d9:6a:6c:15: fb:e0:ba:48:c7:47:23:bb:26:76:64:8d:33:e2:56: 57:39:f5:cd:48:87:29:8f:c0:55:64:68:df:b3:fb: 2a:c9:18:6f:45:1b:61:e9:f8:01:fe:f0:f2:e4:e1: c5:2e:8b:24:71:7c:51:58:b6:18:a7:a3:4d:d0:79: b3:fd:b6:7f:c6:2a:81:14:0c:51:d0:51:a6:c2:1f: f3:ec:d3:96:2c:f5:de:b9:05:65:03:e4:11:46:fe: 80:ab:f0:04:8d:6a:17:c1:0e:1f:c0:05:d6:c2:c7: 22:68:20:11:17:30:0d:66:84:b3:83:ab:f5:12:b3: eb:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:1F:EB:E9:CD:70:B4:AD:68:C4:72:32:C9:37:37:E8:DC:34:9A:2F X509v3 Authority Key Identifier: keyid:91:E6:79:72:1E:D1:E0:92:7E:BB:7E:46:1C:80:58:0D:23:93:59:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:b1:35:e4:f4:c9:15:da:65:b8:d4:da:b0:1d:73:8f:d2:9c: ea:c1:ec:be:7d:7a:16:a7:74:ee:68:f2:34:5b:4d:3e:ac:9f: 7e:e7:04:8d:25:bd:37:02:ea:cd:5b:98:08:cc:34:6f:76:4b: 04:6d:98:a1:b8:70:8c:a4:84:84:a3:84:0f:c7:3c:15:b2:45: b7:f1:0f:36:9c:69:a5:c9:45:b4:a3:95:d8:e6:79:ae:8a:cb: 98:7b:60:d8:2c:67:7a:74:93:f5:cb:2c:96:f6:15:e7:f0:f6: 6d:36:31:3c:45:3d:9a:2b:52:7d:17:d2:e3:0c:61:f1:c3:e7: e9:ad:74:54:fa:0f:98:bc:e2:82:61:ec:82:7c:bd:bd:bb:9b: 89:5d:97:e4:df:2f:fd:05:bb:01:06:11:7b:d7:d6:9b:dd:49: bd:01:06:4a:0c:f6:f4:26:15:75:7d:15:c2:74:ff:c9:2d:9c: cf:47:fa:62:1f:0f:5c:aa:8f:b0:59:c6:58:1a:65:25:c2:20: f5:43:40:f1:ab:4e:65:8c:49:8e:f4:06:16:d8:0c:8f:a4:f8: f1:f1:c7:27:fe:78:73:f2:b8:ef:ce:9b:3f:1a:3c:18:1e:df: d9:e5:23:43:d0:b1:db:7f:59:50:2c:a9:4d:c8:31:b3:e3:19: db:ee:ea:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx MUFDQUMxMTAvBgNVBAUTKDkxRTY3OTcyMUVEMUUwOTI3RUJCN0U0NjFDODA1ODBE MjM5MzU5MkEwHhcNMjYwMTI0MjI0ODA0WhcNMjYwMTMxMjI0ODA0WjAYMRYwFAYD VQQDDA02OTc1NGMyNC01MmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl+KJdFNQPv7c4PnjK6aBnwTwaUpH+j8kVvomgdSNUxSREZZm+q9EQkuJeO7c Ku6Ie0L+GbGYISztlyzD+r0t3RzPMkIbjDt2ctKNA5rLvWsRwfeq42kfZc5ODIV/ Ifrg62QBuqkU5mCvkrZQIcykCF67vIEtjhnoo54c/9Egf32w+tlqbBX74LpIx0cj uyZ2ZI0z4lZXOfXNSIcpj8BVZGjfs/sqyRhvRRth6fgB/vDy5OHFLoskcXxRWLYY p6NN0Hmz/bZ/xiqBFAxR0FGmwh/z7NOWLPXeuQVlA+QRRv6Aq/AEjWoXwQ4fwAXW wsciaCARFzANZoSzg6v1ErPrbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgf6+nN cLStaMRyMsk3N+jcNJovMB8GA1UdIwQYMBaAFJHmeXIe0eCSfrt+RhyAWA0jk1kq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUNBQy9CM0JEQTU2NDMx RDMxMUVDOEQzQkJGMzBDNEY5QUUwMi9rZVo1Y2g3UjRKSi11MzVHSElCWURTT1RX U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tlWjVjaDdSNEpKLXUzNUdISUJZRFNPVFdTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUNBQy9CM0JEQTU2NDMxRDMxMUVDOEQzQkJGMzBDNEY5QUUwMi9rZVo1Y2g3UjRK Si11MzVHSElCWURTT1RXU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtsTXk9MkV2mW41NqwHXOP0pzqwey+fXoWp3TuaPI0W00+rJ9+5wSN Jb03AurNW5gIzDRvdksEbZihuHCMpISEo4QPxzwVskW38Q82nGmlyUW0o5XY5nmu isuYe2DYLGd6dJP1yyyW9hXn8PZtNjE8RT2aK1J9F9LjDGHxw+fprXRU+g+YvOKC YeyCfL29u5uJXZfk3y/9BbsBBhF719ab3Um9AQZKDPb0JhV1fRXCdP/JLZzPR/pi Hw9cqo+wWcZYGmUlwiD1Q0Dxq05ljEmO9AYW2AyPpPjx8ccn/nhz8rjvzps/GjwY Ht/Z5SND0LHbf1lQLKlNyDGz4xnb7uph -----END CERTIFICATE-----Generated at Sun Jan 25 04:28:37 2026 by rpki-client