This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft File: 2kcnine73_Ktn5igEaKnoufNYNg.mft (raw, json) Hash identifier: WDz3JrmBluZNLTqlQzLHY4977VamIq+txq4UUpNjlpw= Subject key identifier: 41:F0:C7:73:6D:7F:0A:B7:0E:9D:E6:5D:0D:2E:7C:D9:E7:77:59:23 Authority key identifier: DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 Certificate issuer: /CN=A91393BE/serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Certificate serial: 0118 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft Manifest number: 0115 Signing time: Sun 25 Jan 2026 04:04:55 +0000 Manifest this update: Sun 25 Jan 2026 04:04:54 +0000 Manifest next update: Sun 01 Feb 2026 04:04:54 +0000 Files and hashes: 1: 2kcnine73_Ktn5igEaKnoufNYNg.crl (hash: 6v9xRJ49p7myoXKE4zfZFcAoyoT89G5Q5RbNT4RzTfI=) 2: 05A966C652DB11EF990CB840C4F9AE02.roa (hash: uXZnZkbG2vzbvvdgakCXJGAe3jQgXul+4/g2eod9UgM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:04:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 280 (0x118) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91393BE, serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Validity Not Before: Jan 25 04:04:54 2026 GMT Not After : Feb 1 04:04:54 2026 GMT Subject: CN=69759667-90cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:02:20:70:f9:16:e3:e1:9b:4a:14:37:08:12: 0a:ce:e5:5b:e8:f2:29:e1:9a:43:da:02:3a:f9:85: e6:e5:b3:41:6c:7c:d9:16:58:79:4f:b2:51:d6:de: 42:e6:a0:e0:d6:fd:e3:86:14:8b:94:a6:f6:1d:88: 7b:34:7e:90:b8:c7:5d:1b:d2:88:37:19:a7:96:2e: 85:1c:0e:b4:fd:22:56:ce:94:04:d5:51:a0:c7:0c: 48:d4:56:ca:bf:26:6e:71:6b:76:04:17:d0:8f:0b: 6d:cc:01:9f:6b:27:9e:20:86:33:60:af:6d:88:8e: a5:e2:fa:75:9e:d5:18:e2:03:32:67:6b:9e:31:7b: 00:79:1c:82:2f:41:02:37:3a:cc:b9:26:d9:fa:02: 9c:73:cf:04:bf:c2:4f:90:75:40:d7:e6:79:d3:49: fb:e1:9b:ad:c9:1b:79:00:21:e9:0b:92:38:a1:93: 88:6b:58:59:d4:3d:e1:b7:f9:45:ef:75:54:8d:c9: fe:8b:f0:e6:83:a6:10:dd:1d:e6:c2:1a:c9:9e:4f: 56:45:24:62:a4:82:57:5d:d7:5a:d1:4c:7f:63:f8: 4a:8c:99:f4:a8:c5:9a:9b:bd:fc:c3:db:6c:b5:f5: f0:99:3e:d1:ca:88:a0:71:61:bd:c5:74:a7:da:f6: 94:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:F0:C7:73:6D:7F:0A:B7:0E:9D:E6:5D:0D:2E:7C:D9:E7:77:59:23 X509v3 Authority Key Identifier: keyid:DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:cc:6c:fa:8e:1f:97:7a:28:8b:4d:0d:c5:58:a9:7b:c5:fc: 87:cc:a3:9b:8d:7f:e4:8c:16:90:88:a9:c3:f6:7d:1f:70:7b: 16:60:15:cd:0c:db:fd:c9:79:cd:b1:5c:2e:18:14:bf:11:10: 59:0c:1f:2e:bd:37:b4:f7:11:c5:a0:ba:56:fd:37:f1:eb:2d: e3:af:cf:0a:d4:f8:2e:f6:5f:d3:34:87:7f:a7:ac:8b:a9:33: 34:0f:2d:c1:3b:ba:09:79:1d:2b:1c:f4:79:50:7f:45:27:2f: bb:f6:ce:03:8f:48:9f:d6:19:08:c9:35:27:c9:1d:8c:d6:ec: 42:30:5d:c5:49:75:6f:ff:65:ec:1a:11:54:5f:d8:95:2c:99: 21:1a:c2:e6:66:bd:8d:5c:d6:78:ff:ae:d5:84:47:04:64:89: 91:6a:76:2d:7e:28:fd:1b:30:01:09:e5:e5:57:ed:58:51:f3: a3:79:f9:f4:2e:0c:70:40:db:f0:f1:71:a2:aa:ca:0e:d6:1b: 21:f3:ee:e8:0e:98:29:80:ab:8d:21:6c:bc:61:21:41:04:88: f6:94:c3:d8:7a:d4:9c:30:c3:fe:ff:30:8a:09:cd:a8:b5:0d: 3b:49:b3:e5:35:ac:b2:b8:7c:1d:ac:aa:60:d6:11:1a:2a:01: 24:33:06:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzQkUxMTAvBgNVBAUTKERBNDcyNzhBNzdCQkRGRjJBRDlGOThBMDExQTJBN0Ey RTdDRDYwRDgwHhcNMjYwMTI1MDQwNDU0WhcNMjYwMjAxMDQwNDU0WjAYMRYwFAYD VQQDDA02OTc1OTY2Ny05MGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvgIgcPkW4+GbShQ3CBIKzuVb6PIp4ZpD2gI6+YXm5bNBbHzZFlh5T7JR1t5C 5qDg1v3jhhSLlKb2HYh7NH6QuMddG9KINxmnli6FHA60/SJWzpQE1VGgxwxI1FbK vyZucWt2BBfQjwttzAGfayeeIIYzYK9tiI6l4vp1ntUY4gMyZ2ueMXsAeRyCL0EC NzrMuSbZ+gKcc88Ev8JPkHVA1+Z500n74ZutyRt5ACHpC5I4oZOIa1hZ1D3ht/lF 73VUjcn+i/Dmg6YQ3R3mwhrJnk9WRSRipIJXXdda0Ux/Y/hKjJn0qMWam738w9ts tfXwmT7RyoigcWG9xXSn2vaUqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEHwx3Nt fwq3Dp3mXQ0ufNnnd1kjMB8GA1UdIwQYMBaAFNpHJ4p3u9/yrZ+YoBGip6LnzWDY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTNCRS83NzQxNjE0QzUy RDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNfS3RuNWlnRWFLbm91Zk5Z TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY25pbmU3M19LdG41aWdFYUtub3VmTllOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTNCRS83NzQxNjE0QzUyRDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNf S3RuNWlnRWFLbm91Zk5ZTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBazGz6jh+XeiiLTQ3FWKl7xfyHzKObjX/kjBaQiKnD9n0fcHsWYBXN DNv9yXnNsVwuGBS/ERBZDB8uvTe09xHFoLpW/Tfx6y3jr88K1Pgu9l/TNId/p6yL qTM0Dy3BO7oJeR0rHPR5UH9FJy+79s4Dj0if1hkIyTUnyR2M1uxCMF3FSXVv/2Xs GhFUX9iVLJkhGsLmZr2NXNZ4/67VhEcEZImRanYtfij9GzABCeXlV+1YUfOjefn0 LgxwQNvw8XGiqsoO1hsh8+7oDpgpgKuNIWy8YSFBBIj2lMPYetScMMP+/zCKCc2o tQ07SbPlNayyuHwdrKpg1hEaKgEkMwYc -----END CERTIFICATE-----Generated at Sun Jan 25 10:43:04 2026 by rpki-client