This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft File: KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft (raw, json) Hash identifier: dm71AVpa3Avoi4QyeVdIyOM2MQpnKDF2E6Vh/rIjclM= Subject key identifier: 71:63:60:BB:81:D4:FA:50:CE:A6:1A:97:66:C7:92:2C:CE:27:FA:CB Authority key identifier: 2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 Certificate issuer: /CN=A912F3B6/serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Certificate serial: 0129 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft Manifest number: 0121 Signing time: Sun 25 Jan 2026 04:03:01 +0000 Manifest this update: Sun 25 Jan 2026 04:03:00 +0000 Manifest next update: Sun 01 Feb 2026 04:03:00 +0000 Files and hashes: 1: KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl (hash: JQFzKKvLN6xTF+OzW/h0kN/meUwD/3mLywMdOnW3RRM=) 2: D91E3ADC498E11EF908FD222C4F9AE02.roa (hash: ZZDdEUCyxIX0Eybvqkeb03mNWg+YxSkSpegb3mdW8RE=) 3: D9C5B55A498E11EF908FD222C4F9AE02.roa (hash: CGn0Q55/AX22nfT4AGCKBK/ILhvxf+/fmsvng3DA1pY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:03:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F3B6, serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Validity Not Before: Jan 25 04:03:00 2026 GMT Not After : Feb 1 04:03:00 2026 GMT Subject: CN=697595f5-8a75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2d:ac:f3:0e:2c:8f:5b:fd:f2:53:7f:4c:8c: d8:7b:ba:ee:90:0b:e8:05:2f:d8:2e:92:14:57:8e: b4:0e:9e:3c:3a:53:f3:42:68:ee:3d:88:f2:17:cf: e1:ac:28:f9:ae:6f:02:b6:7b:53:0a:eb:9c:58:ea: 34:8c:87:a4:01:45:b6:45:f2:97:b1:14:cc:c1:d0: 33:aa:fe:27:f8:f8:35:7a:0c:2f:06:8a:f2:7b:e3: 33:09:59:c8:af:8f:7c:15:4c:43:e5:43:a2:31:3b: ab:3b:ff:4e:ef:f5:ef:1f:03:06:98:2f:dc:78:f9: a9:ad:b4:1f:c2:f8:f6:cc:d4:5d:8d:14:f8:13:6b: da:4e:0e:28:6c:28:dc:b8:8c:af:d2:0d:57:6e:f7: ce:11:20:a8:90:2e:3b:c9:2a:af:37:33:e9:b7:03: 73:ad:df:c5:92:28:04:2d:39:36:c7:1f:ae:b1:61: 29:14:69:69:e8:01:09:7f:bf:0d:93:38:47:71:5d: cc:1b:35:82:85:cd:aa:43:58:ba:4c:5c:e8:55:b0: 40:ea:b4:aa:d5:41:bb:13:fb:81:e3:58:c2:13:d9: 53:73:1a:db:76:63:0a:39:a4:ff:53:af:10:91:a0: 5b:fa:0d:d6:dc:eb:6f:0b:b9:76:0f:a6:9f:21:ad: fa:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:63:60:BB:81:D4:FA:50:CE:A6:1A:97:66:C7:92:2C:CE:27:FA:CB X509v3 Authority Key Identifier: keyid:2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:a7:16:d7:76:81:00:1f:2c:f1:f2:b6:c9:ef:83:2a:cc:cc: 71:3c:f8:05:c3:82:30:87:45:90:06:4b:fa:22:95:c9:ba:d1: c2:c3:25:49:b8:b4:f3:d8:d0:13:90:16:29:3d:3c:4c:20:f1: 8c:7f:47:5b:55:d6:5f:55:da:85:4e:87:34:97:41:c0:ff:d8: 22:48:7d:ef:9e:ec:85:63:6e:99:62:f6:75:68:b9:6b:07:77: d0:f4:4e:32:9e:d1:f7:7e:7c:6f:1b:3b:7b:f6:1e:9a:f3:9c: 06:9a:4a:31:eb:18:80:c8:e3:5e:dd:79:1b:77:c8:55:9e:e1: 12:7d:42:69:1a:01:91:e0:88:a3:11:cf:d1:59:d9:23:83:52: 42:08:d8:ff:9c:30:41:e5:fc:5c:15:fb:21:a5:21:51:2d:8c: ca:04:21:45:c3:99:9d:93:85:6f:6d:a4:72:d5:62:ed:1d:6b: 70:23:c4:e6:99:ac:63:08:8a:f7:05:80:63:e0:c7:85:be:99: 81:b4:22:54:ae:4d:16:ce:ba:ee:35:4f:01:8a:0f:b4:6f:9f: 28:58:8c:b4:7d:8f:61:28:37:5d:43:29:c0:4e:6e:fa:de:94: b8:5e:cb:4f:ab:f7:01:89:a6:5e:1f:10:a8:43:69:44:5d:bf: 0b:45:d5:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYzQjYxMTAvBgNVBAUTKDJCMTMxQUExMEQ3RTZCRkVBMzY3RTgxQjczRDdGREIw QUMwMUQ2NzgwHhcNMjYwMTI1MDQwMzAwWhcNMjYwMjAxMDQwMzAwWjAYMRYwFAYD VQQDDA02OTc1OTVmNS04YTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuC2s8w4sj1v98lN/TIzYe7rukAvoBS/YLpIUV460Dp48OlPzQmjuPYjyF8/h rCj5rm8CtntTCuucWOo0jIekAUW2RfKXsRTMwdAzqv4n+Pg1egwvBorye+MzCVnI r498FUxD5UOiMTurO/9O7/XvHwMGmC/cePmprbQfwvj2zNRdjRT4E2vaTg4obCjc uIyv0g1XbvfOESCokC47ySqvNzPptwNzrd/FkigELTk2xx+usWEpFGlp6AEJf78N kzhHcV3MGzWChc2qQ1i6TFzoVbBA6rSq1UG7E/uB41jCE9lTcxrbdmMKOaT/U68Q kaBb+g3W3OtvC7l2D6afIa36OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHFjYLuB 1PpQzqYal2bHkizOJ/rLMB8GA1UdIwQYMBaAFCsTGqENfmv+o2foG3PX/bCsAdZ4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjNCNi81MEYwMTFDODQ4 QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9LeE1hb1ExLWFfNmpaLWdiYzlmOXNLd0Ix bmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t4TWFvUTEtYV82alotZ2JjOWY5c0t3QjFuZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjNCNi81MEYwMTFDODQ4QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9LeE1hb1ExLWFf NmpaLWdiYzlmOXNLd0IxbmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBApxbXdoEAHyzx8rbJ74MqzMxxPPgFw4Iwh0WQBkv6IpXJutHCwyVJ uLTz2NATkBYpPTxMIPGMf0dbVdZfVdqFToc0l0HA/9giSH3vnuyFY26ZYvZ1aLlr B3fQ9E4yntH3fnxvGzt79h6a85wGmkox6xiAyONe3Xkbd8hVnuESfUJpGgGR4Iij Ec/RWdkjg1JCCNj/nDBB5fxcFfshpSFRLYzKBCFFw5mdk4VvbaRy1WLtHWtwI8Tm maxjCIr3BYBj4MeFvpmBtCJUrk0WzrruNU8Big+0b58oWIy0fY9hKDddQynATm76 3pS4XstPq/cBiaZeHxCoQ2lEXb8LRdXK -----END CERTIFICATE-----Generated at Sun Jan 25 14:14:59 2026 by rpki-client