This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120BC1/DAC603888C7211F0A2B0AE56C4F9AE02/BKjyj1J-GJFnrMkDDL7a2KnEF7k.mft File: BKjyj1J-GJFnrMkDDL7a2KnEF7k.mft (raw, json) Hash identifier: AdHa8Cs7Dsuwo6uqvd6tzVlYzqZ4LqZmorqGpZA9sGM= Subject key identifier: 5D:DC:7E:1B:57:D4:4E:A9:CD:B0:F6:13:BD:19:F4:91:D7:9C:15:B9 Authority key identifier: 04:A8:F2:8F:52:7E:18:91:67:AC:C9:03:0C:BE:DA:D8:A9:C4:17:B9 Certificate issuer: /CN=A9120BC1/serialNumber=04A8F28F527E189167ACC9030CBEDAD8A9C417B9 Certificate serial: 4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKjyj1J-GJFnrMkDDL7a2KnEF7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120BC1/DAC603888C7211F0A2B0AE56C4F9AE02/BKjyj1J-GJFnrMkDDL7a2KnEF7k.mft Manifest number: 4A Signing time: Fri 23 Jan 2026 06:21:14 +0000 Manifest this update: Fri 23 Jan 2026 06:21:13 +0000 Manifest next update: Fri 30 Jan 2026 06:21:13 +0000 Files and hashes: 1: BKjyj1J-GJFnrMkDDL7a2KnEF7k.crl (hash: bGm03wciagSBNRm7wIqu1wVtzqys/KLpQ2Z4Yd33ktI=) 2: 309260868C7311F0A82E0E57C4F9AE02.roa (hash: pmJN4rlyAjyIEwtIxMwQqfFU7tME7Agin1X2d5LeW2c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120BC1/DAC603888C7211F0A2B0AE56C4F9AE02/BKjyj1J-GJFnrMkDDL7a2KnEF7k.crl rsync://rpki.apnic.net/member_repository/A9120BC1/DAC603888C7211F0A2B0AE56C4F9AE02/BKjyj1J-GJFnrMkDDL7a2KnEF7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKjyj1J-GJFnrMkDDL7a2KnEF7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 06:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120BC1, serialNumber=04A8F28F527E189167ACC9030CBEDAD8A9C417B9 Validity Not Before: Jan 23 06:21:13 2026 GMT Not After : Jan 30 06:21:13 2026 GMT Subject: CN=6973135a-a896 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5e:a9:0b:93:4e:1f:8f:ff:e5:7b:8d:3d:dd: 48:d4:62:de:35:b0:5d:4e:22:65:9e:69:96:2b:59: c1:16:f1:f4:e7:54:0a:ec:ca:78:24:c0:c4:00:7a: c0:c4:5d:ad:9b:ca:9b:86:09:b0:13:06:b6:e5:ed: b2:b7:d7:0c:60:ab:e6:85:92:12:b2:37:98:f8:9a: 8d:42:b5:b1:63:ac:56:66:b5:03:a4:99:63:38:82: 2a:e4:9e:78:5a:a6:40:0e:a1:b2:2f:40:18:31:14: 2f:0c:8b:ac:29:2d:a4:b0:d2:69:21:cd:e9:70:2c: 32:8b:43:6f:43:51:93:c7:62:81:f4:d1:af:5b:bd: db:5c:0c:7d:06:61:66:60:96:a8:67:fe:fb:84:8f: 68:0d:e4:dc:9e:cb:cf:7b:e0:6d:45:ba:d0:e4:73: f0:43:48:f2:b0:84:15:08:74:02:95:82:c6:ed:6b: 43:fc:6e:26:f3:a2:88:72:3e:d6:33:9a:98:a9:cb: 9f:b1:e8:dc:a4:5a:6a:07:2e:84:14:28:f3:8d:47: 0b:87:bf:85:4b:c3:6c:81:c1:5a:6f:0e:64:5e:7f: a9:06:6a:38:99:09:c0:e9:b7:46:f5:39:c5:04:f0: 9a:49:3d:ef:6a:31:8d:d7:db:df:b2:ef:a2:0e:8f: e3:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:DC:7E:1B:57:D4:4E:A9:CD:B0:F6:13:BD:19:F4:91:D7:9C:15:B9 X509v3 Authority Key Identifier: keyid:04:A8:F2:8F:52:7E:18:91:67:AC:C9:03:0C:BE:DA:D8:A9:C4:17:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120BC1/DAC603888C7211F0A2B0AE56C4F9AE02/BKjyj1J-GJFnrMkDDL7a2KnEF7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKjyj1J-GJFnrMkDDL7a2KnEF7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120BC1/DAC603888C7211F0A2B0AE56C4F9AE02/BKjyj1J-GJFnrMkDDL7a2KnEF7k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:db:f7:49:3e:ff:ec:f9:74:5e:91:8c:7e:4f:92:fb:e8:36: cc:8c:7d:15:d6:d2:f5:10:a9:e6:79:d3:0a:ee:51:a7:65:05: 1c:07:58:92:46:2a:e6:71:0d:a6:bb:22:18:10:09:bc:d0:52: 49:f6:cb:2b:c5:3b:e8:f4:80:19:eb:ae:64:47:70:6c:82:6b: e4:7d:9f:54:a3:8e:6c:a5:09:6e:af:84:89:3c:af:58:0e:e6: e9:20:63:2d:45:8f:50:22:1b:9f:09:c8:29:c3:eb:b4:8c:49: 41:af:c6:a8:9a:90:fd:63:df:25:40:41:d7:3b:e3:8c:5c:e2: 2d:f1:13:57:cc:ad:b3:12:bb:7d:02:b7:bd:11:0c:b4:27:dd: 1d:51:11:3c:d8:b9:24:3b:4f:eb:94:1c:23:e7:7c:6b:ed:fe: 39:f9:f4:3e:f0:46:7d:0b:94:eb:38:ba:7e:fd:59:41:ce:f5: 7f:99:02:c4:18:fd:42:d1:25:8c:2b:fd:b3:e0:c6:f6:fb:e6: 63:de:b1:a0:85:49:38:66:e8:3a:77:6c:ed:94:75:59:b0:b8: 0c:f3:69:ad:b6:15:fc:d5:9a:0e:ff:6d:07:eb:6a:b7:81:b6: 60:6a:98:57:a1:74:51:27:37:bf:fc:b8:4d:8b:7a:94:1d:5f: f2:8b:12:cf -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MEJDMTExMC8GA1UEBRMoMDRBOEYyOEY1MjdFMTg5MTY3QUNDOTAzMENCRURBRDhB OUM0MTdCOTAeFw0yNjAxMjMwNjIxMTNaFw0yNjAxMzAwNjIxMTNaMBgxFjAUBgNV BAMMDTY5NzMxMzVhLWE4OTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQXqkLk04fj//le4093UjUYt41sF1OImWeaZYrWcEW8fTnVArsyngkwMQAesDE Xa2bypuGCbATBrbl7bK31wxgq+aFkhKyN5j4mo1CtbFjrFZmtQOkmWM4girknnha pkAOobIvQBgxFC8Mi6wpLaSw0mkhzelwLDKLQ29DUZPHYoH00a9bvdtcDH0GYWZg lqhn/vuEj2gN5Nyey8974G1FutDkc/BDSPKwhBUIdAKVgsbta0P8bibzoohyPtYz mpipy5+x6NykWmoHLoQUKPONRwuHv4VLw2yBwVpvDmRef6kGajiZCcDpt0b1OcUE 8JpJPe9qMY3X29+y76IOj+OtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXdx+G1fU TqnNsPYTvRn0kdecFbkwHwYDVR0jBBgwFoAUBKjyj1J+GJFnrMkDDL7a2KnEF7kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIwQkMxL0RBQzYwMzg4OEM3 MjExRjBBMkIwQUU1NkM0RjlBRTAyL0JLanlqMUotR0pGbnJNa0RETDdhMktuRUY3 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQktqeWoxSi1HSkZuck1rRERMN2EyS25FRjdrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIw QkMxL0RBQzYwMzg4OEM3MjExRjBBMkIwQUU1NkM0RjlBRTAyL0JLanlqMUotR0pG bnJNa0RETDdhMktuRUY3ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACPb90k+/+z5dF6RjH5PkvvoNsyMfRXW0vUQqeZ50wruUadlBRwHWJJG KuZxDaa7IhgQCbzQUkn2yyvFO+j0gBnrrmRHcGyCa+R9n1SjjmylCW6vhIk8r1gO 5ukgYy1Fj1AiG58JyCnD67SMSUGvxqiakP1j3yVAQdc744xc4i3xE1fMrbMSu30C t70RDLQn3R1RETzYuSQ7T+uUHCPnfGvt/jn59D7wRn0LlOs4un79WUHO9X+ZAsQY /ULRJYwr/bPgxvb75mPesaCFSThm6Dp3bO2UdVmwuAzzaa22FfzVmg7/bQfrareB tmBqmFehdFEnN7/8uE2LepQdX/KLEs8= -----END CERTIFICATE-----Generated at Sun Jan 25 04:35:12 2026 by rpki-client