This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft File: rs-kglLctVxfHrOBKIztw-b4YnQ.mft (raw, json) Hash identifier: 2Muh2503phREbTS+Bm+ri0j8bYWuFkQwXHrcjJWMQZE= Subject key identifier: C7:50:AD:3B:79:F4:26:5A:5D:63:DA:3C:A2:A6:17:23:2E:F2:B8:4C Authority key identifier: AE:CF:A4:82:52:DC:B5:5C:5F:1E:B3:81:28:8C:ED:C3:E6:F8:62:74 Certificate issuer: /CN=A91356BA/serialNumber=AECFA48252DCB55C5F1EB381288CEDC3E6F86274 Certificate serial: 010C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rs-kglLctVxfHrOBKIztw-b4YnQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft Manifest number: 0109 Signing time: Sun 25 Jan 2026 04:17:13 +0000 Manifest this update: Sun 25 Jan 2026 04:17:13 +0000 Manifest next update: Sun 01 Feb 2026 04:17:13 +0000 Files and hashes: 1: rs-kglLctVxfHrOBKIztw-b4YnQ.crl (hash: AEzES8ju176DxTjxr90nTWZ0mlFo10rgqcNCSsDqC0g=) 2: C37A8D80DC9411F0B18EF655406F56BC.roa (hash: qnCZU7C59oQWFeEtmfxzdPCrAt6hK/fzPVfYtt26rIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.crl rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rs-kglLctVxfHrOBKIztw-b4YnQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:17:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 268 (0x10c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91356BA, serialNumber=AECFA48252DCB55C5F1EB381288CEDC3E6F86274 Validity Not Before: Jan 25 04:17:13 2026 GMT Not After : Feb 1 04:17:13 2026 GMT Subject: CN=69759949-20d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:73:46:b1:b1:82:6b:2e:a7:6c:ed:6c:29:ba: b6:5a:bc:74:a5:c9:e5:3a:36:22:e3:60:49:5c:a0: 85:6e:d2:3d:c7:ff:c5:be:cd:3f:e2:67:89:0b:2b: 4c:18:0b:18:d1:e6:99:48:a3:cf:84:5b:30:53:4d: 3d:b0:ae:bf:39:52:f3:ac:2c:45:28:94:6f:53:23: cc:6b:bf:a5:44:8b:73:3b:83:94:60:97:5c:83:4b: 3b:d6:d8:8b:8b:3f:e7:33:72:fa:8d:bf:b4:5e:b7: 58:9d:b0:e6:99:e2:51:99:3b:4a:c4:87:b7:11:c2: 93:92:8d:c1:60:c2:d6:ad:f0:02:53:c9:15:04:b4: f5:a8:84:d4:7d:db:bb:34:e0:ce:81:30:82:ee:15: 26:2f:52:14:8c:9f:90:3b:1a:b2:cf:26:d0:8a:38: a2:db:77:04:85:a2:74:e3:1f:91:0a:5c:1b:7d:09: 31:cb:70:a7:8e:a4:f3:34:2c:3d:4d:91:58:f4:b0: 36:ce:75:d0:87:0f:ea:ad:73:12:7f:84:20:1d:c9: 90:14:e8:90:19:1e:0e:f7:fa:ad:4c:54:95:6f:b6: 1f:1c:46:be:a5:ce:a8:10:71:d9:a1:39:31:a3:1f: 69:62:49:26:34:00:99:5a:34:54:21:10:c2:bd:2b: bd:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:50:AD:3B:79:F4:26:5A:5D:63:DA:3C:A2:A6:17:23:2E:F2:B8:4C X509v3 Authority Key Identifier: keyid:AE:CF:A4:82:52:DC:B5:5C:5F:1E:B3:81:28:8C:ED:C3:E6:F8:62:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rs-kglLctVxfHrOBKIztw-b4YnQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:d1:e8:61:51:4d:a4:86:c5:48:b8:ab:43:c2:e3:16:57:dc: 64:a2:ec:13:cb:9b:41:38:f3:e4:24:29:ed:6a:fc:33:fa:b8: 97:96:b4:f8:d7:50:2f:54:55:11:06:47:7d:f1:e1:b9:18:83: 9f:70:87:8e:78:29:45:48:52:4e:f9:95:d6:63:51:62:3a:06: 2b:d8:95:36:ad:70:fa:ec:63:28:d3:4e:cc:87:5d:79:12:3d: 27:21:5e:79:0b:d6:7d:69:7a:91:6c:10:77:7c:1d:16:c2:e6: 96:10:39:0d:36:79:e3:e6:65:e8:7b:58:b3:41:9d:60:07:6e: ae:78:cb:66:45:7f:4f:ff:62:e2:a7:6d:8d:42:8a:3b:15:04: 52:a7:22:71:bc:d6:cb:38:ee:12:56:b5:37:ad:5f:9b:26:da: 31:de:18:27:a6:ed:50:6a:ff:9a:25:26:f5:43:46:38:af:98: e1:a0:d8:0c:8d:16:12:89:63:70:86:31:c5:a7:19:24:9b:19: 95:6c:6c:96:91:0c:fa:c2:fb:5d:1a:ec:06:d2:8a:01:b1:b9: 4f:61:dd:3a:ac:be:60:72:2b:e8:47:55:d1:4f:d9:50:0d:11: 3f:13:4f:fb:e6:64:f2:1a:c1:5b:6d:8d:66:94:85:34:82:29: 36:e2:4f:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU2QkExMTAvBgNVBAUTKEFFQ0ZBNDgyNTJEQ0I1NUM1RjFFQjM4MTI4OENFREMz RTZGODYyNzQwHhcNMjYwMTI1MDQxNzEzWhcNMjYwMjAxMDQxNzEzWjAYMRYwFAYD VQQDDA02OTc1OTk0OS0yMGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtHNGsbGCay6nbO1sKbq2Wrx0pcnlOjYi42BJXKCFbtI9x//Fvs0/4meJCytM GAsY0eaZSKPPhFswU009sK6/OVLzrCxFKJRvUyPMa7+lRItzO4OUYJdcg0s71tiL iz/nM3L6jb+0XrdYnbDmmeJRmTtKxIe3EcKTko3BYMLWrfACU8kVBLT1qITUfdu7 NODOgTCC7hUmL1IUjJ+QOxqyzybQijii23cEhaJ04x+RClwbfQkxy3CnjqTzNCw9 TZFY9LA2znXQhw/qrXMSf4QgHcmQFOiQGR4O9/qtTFSVb7YfHEa+pc6oEHHZoTkx ox9pYkkmNACZWjRUIRDCvSu92wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMdQrTt5 9CZaXWPaPKKmFyMu8rhMMB8GA1UdIwQYMBaAFK7PpIJS3LVcXx6zgSiM7cPm+GJ0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTZCQS8yNjQ1MjFEMjY5 MDUxMUVGQUQyMzA0NjRDNEY5QUUwMi9ycy1rZ2xMY3RWeGZIck9CS0l6dHctYjRZ blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JzLWtnbExjdFZ4ZkhyT0JLSXp0dy1iNFluUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTZCQS8yNjQ1MjFEMjY5MDUxMUVGQUQyMzA0NjRDNEY5QUUwMi9ycy1rZ2xMY3RW eGZIck9CS0l6dHctYjRZblEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCy0ehhUU2khsVIuKtDwuMWV9xkouwTy5tBOPPkJCntavwz+riXlrT4 11AvVFURBkd98eG5GIOfcIeOeClFSFJO+ZXWY1FiOgYr2JU2rXD67GMo007Mh115 Ej0nIV55C9Z9aXqRbBB3fB0WwuaWEDkNNnnj5mXoe1izQZ1gB26ueMtmRX9P/2Li p22NQoo7FQRSpyJxvNbLOO4SVrU3rV+bJtox3hgnpu1Qav+aJSb1Q0Y4r5jhoNgM jRYSiWNwhjHFpxkkmxmVbGyWkQz6wvtdGuwG0ooBsblPYd06rL5gcivoR1XRT9lQ DRE/E0/75mTyGsFbbY1mlIU0gik24k/3 -----END CERTIFICATE-----Generated at Sun Jan 25 08:14:11 2026 by rpki-client