This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft File: knWZPcnEM_JdNYCsd-OV0GaWSD0.mft (raw, json) Hash identifier: iRnmAMcJSmSOvawQ2k76O3ehgu1K4SmE82uYWw+vNjo= Subject key identifier: 7B:D8:33:87:B8:0F:6B:F5:72:B3:49:2A:AF:D2:08:21:78:09:FB:15 Authority key identifier: 92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D Certificate issuer: /CN=A91276A3/serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Certificate serial: 0765 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft Manifest number: 075B Signing time: Sat 24 Jan 2026 20:59:37 +0000 Manifest this update: Sat 24 Jan 2026 20:59:37 +0000 Manifest next update: Sat 31 Jan 2026 20:59:37 +0000 Files and hashes: 1: knWZPcnEM_JdNYCsd-OV0GaWSD0.crl (hash: Ocd6v0NwCHDBjlYzas364D0jsLmntkTA7f5pXgv9d2w=) 2: 57BAE77C517D11EB8949D438C4F9AE02.roa (hash: vb9o8zIrEVzx4v17rwtm5KylYiP5uvQUJ9LusllPhN0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 20:59:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1893 (0x765) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91276A3, serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Validity Not Before: Jan 24 20:59:37 2026 GMT Not After : Jan 31 20:59:37 2026 GMT Subject: CN=697532b9-1c16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:d3:dc:3e:ec:29:10:3c:ef:2a:48:e8:a0:db: 54:4d:ef:c6:6d:a7:dd:05:41:23:76:63:fb:2f:7e: ee:0b:f4:0c:2c:74:e8:47:42:52:b9:8c:fc:0c:95: 4a:28:0d:22:76:9f:4d:03:8b:a4:f6:bc:62:19:71: 21:af:fc:a4:bb:86:85:69:79:1f:3b:89:0d:7f:57: 80:4d:48:14:7e:ad:b1:50:1b:70:91:21:65:09:35: 7d:8b:5a:a2:31:f9:a8:03:e4:dc:cb:40:68:63:61: 42:fd:0e:fd:7a:05:b5:53:18:5e:7a:e1:99:74:c9: 53:bb:e5:78:2f:1f:bb:e9:d4:56:9e:51:fe:35:ab: ea:ea:00:50:69:bc:93:df:76:03:cb:f7:6d:ba:57: 40:ec:9e:15:aa:75:50:ae:73:ba:a1:1e:ce:0d:94: 50:50:29:f5:54:4b:2a:a3:1b:1a:32:74:b1:71:a1: b5:37:26:4c:99:29:d5:5b:af:75:45:17:cf:cc:21: 1e:65:6b:cd:c1:85:f8:b0:88:81:40:b0:35:a8:73: 6c:f9:01:e5:20:56:69:5f:b2:31:e7:bc:5a:b6:54: 65:ff:15:65:23:39:0c:f8:15:e1:43:9c:d5:07:ba: d7:47:66:6f:65:3d:0e:2b:92:95:7e:f0:61:73:82: f4:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:D8:33:87:B8:0F:6B:F5:72:B3:49:2A:AF:D2:08:21:78:09:FB:15 X509v3 Authority Key Identifier: keyid:92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:b0:64:45:e3:9d:20:42:f3:df:70:7d:8f:bc:c8:11:7b:f1: d0:05:9e:27:10:a9:ca:df:8d:c7:ab:c5:c8:5c:ad:56:e8:3a: 8f:6d:d1:df:5d:c6:f0:7a:94:67:1e:04:86:38:28:dc:cf:d2: 07:91:8a:07:b7:03:c1:a6:d0:4d:81:17:2b:99:82:fe:09:9d: 55:d5:d4:3a:26:a4:d4:2e:00:8a:4e:bc:0d:4b:d0:86:4d:bd: 17:a4:e8:42:2a:45:cd:a5:d1:db:6f:52:5d:d1:a3:60:29:3b: 99:39:7f:84:87:95:b2:28:6e:da:1e:58:b4:dc:70:2a:7a:46: d0:52:c4:b4:ac:17:ab:a3:7c:d0:3a:66:aa:2f:b5:8b:61:8d: 95:b8:53:33:60:d5:45:fa:7c:b8:77:e4:3d:ce:d9:ab:be:e2: 55:e2:c3:c3:d1:95:74:eb:0e:86:31:7f:de:6f:87:cf:84:ec: a5:69:17:11:b3:5e:96:37:03:4e:d1:cc:2e:01:4b:9b:9d:42: d5:5a:e4:78:f2:1c:46:05:13:a5:3b:59:b6:f8:e0:71:17:95: c0:cd:a0:0d:df:5e:bd:6c:d8:e1:24:17:9e:ee:f9:7c:34:39: 71:80:50:05:4d:46:2f:21:35:2f:d1:92:fb:c9:5c:7e:57:29: a5:e8:c4:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Mjc2QTMxMTAvBgNVBAUTKDkyNzU5OTNEQzlDNDMzRjI1RDM1ODBBQzc3RTM5NUQw NjY5NjQ4M0QwHhcNMjYwMTI0MjA1OTM3WhcNMjYwMTMxMjA1OTM3WjAYMRYwFAYD VQQDDA02OTc1MzJiOS0xYzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9tPcPuwpEDzvKkjooNtUTe/GbafdBUEjdmP7L37uC/QMLHToR0JSuYz8DJVK KA0idp9NA4uk9rxiGXEhr/yku4aFaXkfO4kNf1eATUgUfq2xUBtwkSFlCTV9i1qi MfmoA+Tcy0BoY2FC/Q79egW1UxheeuGZdMlTu+V4Lx+76dRWnlH+Navq6gBQabyT 33YDy/dtuldA7J4VqnVQrnO6oR7ODZRQUCn1VEsqoxsaMnSxcaG1NyZMmSnVW691 RRfPzCEeZWvNwYX4sIiBQLA1qHNs+QHlIFZpX7Ix57xatlRl/xVlIzkM+BXhQ5zV B7rXR2ZvZT0OK5KVfvBhc4L00QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHvYM4e4 D2v1crNJKq/SCCF4CfsVMB8GA1UdIwQYMBaAFJJ1mT3JxDPyXTWArHfjldBmlkg9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzZBMy84MzIwQkQxQzUx N0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1fSmROWUNzZC1PVjBHYVdT RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tuV1pQY25FTV9KZE5ZQ3NkLU9WMEdhV1NEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzZBMy84MzIwQkQxQzUxN0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1f SmROWUNzZC1PVjBHYVdTRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAssGRF450gQvPfcH2PvMgRe/HQBZ4nEKnK343Hq8XIXK1W6DqPbdHf XcbwepRnHgSGOCjcz9IHkYoHtwPBptBNgRcrmYL+CZ1V1dQ6JqTULgCKTrwNS9CG Tb0XpOhCKkXNpdHbb1Jd0aNgKTuZOX+Eh5WyKG7aHli03HAqekbQUsS0rBero3zQ OmaqL7WLYY2VuFMzYNVF+ny4d+Q9ztmrvuJV4sPD0ZV06w6GMX/eb4fPhOylaRcR s16WNwNO0cwuAUubnULVWuR48hxGBROlO1m2+OBxF5XAzaAN3169bNjhJBee7vl8 NDlxgFAFTUYvITUv0ZL7yVx+Vyml6MTB -----END CERTIFICATE-----Generated at Sun Jan 25 13:53:14 2026 by rpki-client