This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft File: KbnmrAGSmMyglt6Jcancj3144dk.mft (raw, json) Hash identifier: 3Lo7DwpVOW3ZsRKuQT8qSH+9gCG/3an01q+RUWxINdA= Subject key identifier: 84:CC:99:15:05:7F:48:A2:43:96:F8:39:1D:E4:A1:D6:2C:2B:46:0E Authority key identifier: 29:B9:E6:AC:01:92:98:CC:A0:96:DE:89:71:A9:DC:8F:7D:78:E1:D9 Certificate issuer: /CN=A91371E4/serialNumber=29B9E6AC019298CCA096DE8971A9DC8F7D78E1D9 Certificate serial: 1246 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft Manifest number: 123A Signing time: Sat 24 Jan 2026 16:50:43 +0000 Manifest this update: Sat 24 Jan 2026 16:50:42 +0000 Manifest next update: Sat 31 Jan 2026 16:50:42 +0000 Files and hashes: 1: KbnmrAGSmMyglt6Jcancj3144dk.crl (hash: PsEwDY5WnGmbAC4IcPsE4ws3sORqSaeRTV/zhuHFKfM=) 2: B6C2A27AF16A11E89550B621C4F9AE02.roa (hash: BFzxkw6Jl6Lyrixu4gWs2v/y+sObxx8rIEhHM4ZupXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.crl rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 16:50:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4678 (0x1246) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91371E4, serialNumber=29B9E6AC019298CCA096DE8971A9DC8F7D78E1D9 Validity Not Before: Jan 24 16:50:42 2026 GMT Not After : Jan 31 16:50:42 2026 GMT Subject: CN=6974f863-42d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d3:9c:c1:89:49:4c:0e:cc:98:af:d4:f2:f3: 0f:c7:be:f8:c4:bc:ab:9e:33:a0:4e:7d:4f:fd:f9: b4:53:fe:53:3f:30:34:f8:6e:a2:e6:86:43:02:42: 30:f3:26:d8:35:00:78:29:4d:01:e0:07:80:2b:b1: 46:79:09:54:91:61:3c:fe:18:a0:d3:a4:26:ab:01: 7a:77:d8:b8:f7:7d:99:a9:2c:ad:83:7e:69:80:86: c3:a0:3a:92:8b:b0:d0:48:e8:41:12:d0:7c:32:36: e6:40:3c:8f:58:c6:88:d1:f8:45:61:bb:05:28:79: 67:9a:79:8a:a4:48:1e:e5:93:c6:fa:55:17:21:88: 3c:97:da:bc:49:28:15:37:74:73:b4:c6:a7:6d:74: ea:cd:f0:03:d1:b2:b8:d4:05:6a:0a:59:24:7b:61: d1:cd:7b:33:dd:c5:db:5e:e5:13:50:88:05:cd:d7: 9d:b0:b1:1c:77:36:0c:6c:4d:f0:2d:1c:ec:c9:45: 23:ad:d1:3d:c4:c4:22:b6:d6:30:e4:b1:2d:93:e5: d3:b0:39:ee:a4:a3:33:9f:e1:96:e7:17:1c:c1:c8: 69:dd:3e:1f:39:fa:52:43:8d:5c:92:52:4d:f2:80: d2:17:97:e1:03:1c:17:3c:7f:b6:d8:c7:c3:73:d7: 2a:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:CC:99:15:05:7F:48:A2:43:96:F8:39:1D:E4:A1:D6:2C:2B:46:0E X509v3 Authority Key Identifier: keyid:29:B9:E6:AC:01:92:98:CC:A0:96:DE:89:71:A9:DC:8F:7D:78:E1:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:8d:43:a7:fc:0a:aa:20:70:4e:01:74:b0:ff:65:2d:e4:96: 30:9f:12:36:17:7d:6a:24:7a:6d:2e:a9:c8:62:f4:62:bd:8b: 10:62:85:ab:5c:10:c3:d9:3f:bd:9f:72:27:c6:ab:cd:0f:47: 6d:4b:99:8c:41:d8:d9:a2:d3:4a:95:74:b2:b4:cc:e0:72:2c: 58:a1:1c:06:84:27:a6:c5:e9:b6:c9:50:c9:6e:f0:d0:20:3c: 89:19:7a:f9:94:f0:8f:6e:36:b3:44:d5:76:77:6c:5d:4c:ed: b8:de:d8:94:3e:06:d4:68:53:72:8f:e9:dd:c3:a1:07:0e:32: 3e:46:7b:57:94:87:16:73:9b:5c:ce:91:cd:2c:8d:17:00:6d: 62:d5:2c:02:21:1a:c1:67:43:83:82:bb:87:b8:68:ef:06:ae: 5a:20:eb:96:0d:6b:25:d0:b5:2d:e6:f8:e9:b7:2d:2f:73:5b: a6:0c:ed:b4:0c:2d:d4:bb:70:83:42:c2:da:4d:5a:ee:29:b9: a2:c3:7e:e1:87:d3:34:23:73:da:2f:fd:01:0c:e7:b5:5c:11: 83:02:85:ba:62:2e:5e:f4:86:43:ab:01:cc:84:97:12:d6:38: b2:b5:a8:04:b5:2b:3e:7c:88:ed:7b:ae:61:bf:73:07:bd:07: b3:ee:94:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzcxRTQxMTAvBgNVBAUTKDI5QjlFNkFDMDE5Mjk4Q0NBMDk2REU4OTcxQTlEQzhG N0Q3OEUxRDkwHhcNMjYwMTI0MTY1MDQyWhcNMjYwMTMxMTY1MDQyWjAYMRYwFAYD VQQDDA02OTc0Zjg2My00MmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwtOcwYlJTA7MmK/U8vMPx774xLyrnjOgTn1P/fm0U/5TPzA0+G6i5oZDAkIw 8ybYNQB4KU0B4AeAK7FGeQlUkWE8/hig06QmqwF6d9i4932ZqSytg35pgIbDoDqS i7DQSOhBEtB8MjbmQDyPWMaI0fhFYbsFKHlnmnmKpEge5ZPG+lUXIYg8l9q8SSgV N3RztManbXTqzfAD0bK41AVqClkke2HRzXsz3cXbXuUTUIgFzdedsLEcdzYMbE3w LRzsyUUjrdE9xMQittYw5LEtk+XTsDnupKMzn+GW5xccwchp3T4fOfpSQ41cklJN 8oDSF5fhAxwXPH+22MfDc9cqywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFITMmRUF f0iiQ5b4OR3kodYsK0YOMB8GA1UdIwQYMBaAFCm55qwBkpjMoJbeiXGp3I99eOHZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzFFNC8zODI0N0E3MEYx NjkxMUU4QjNBNzlEMUVDNEY5QUUwMi9LYm5tckFHU21NeWdsdDZKY2FuY2ozMTQ0 ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tibm1yQUdTbU15Z2x0NkpjYW5jajMxNDRkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzFFNC8zODI0N0E3MEYxNjkxMUU4QjNBNzlEMUVDNEY5QUUwMi9LYm5tckFHU21N eWdsdDZKY2FuY2ozMTQ0ZGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUjUOn/AqqIHBOAXSw/2Ut5JYwnxI2F31qJHptLqnIYvRivYsQYoWr XBDD2T+9n3InxqvND0dtS5mMQdjZotNKlXSytMzgcixYoRwGhCemxem2yVDJbvDQ IDyJGXr5lPCPbjazRNV2d2xdTO243tiUPgbUaFNyj+ndw6EHDjI+RntXlIcWc5tc zpHNLI0XAG1i1SwCIRrBZ0ODgruHuGjvBq5aIOuWDWsl0LUt5vjpty0vc1umDO20 DC3Uu3CDQsLaTVruKbmiw37hh9M0I3PaL/0BDOe1XBGDAoW6Yi5e9IZDqwHMhJcS 1jiytagEtSs+fIjte65hv3MHvQez7pQ1 -----END CERTIFICATE-----Generated at Sun Jan 25 20:08:35 2026 by rpki-client