This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.mft File: FKbKvDAuwePc503pi_VYoEK-rFY.mft (raw, json) Hash identifier: nESF234cBZv5WhGHfAesnrgGF7l3TN72UDDaFi6/Hdw= Subject key identifier: 29:4E:63:B0:A4:89:A3:FB:60:40:11:A5:BB:F3:6A:B3:76:C9:9F:54 Authority key identifier: 14:A6:CA:BC:30:2E:C1:E3:DC:E7:4D:E9:8B:F5:58:A0:42:BE:AC:56 Certificate issuer: /CN=A91409DC/serialNumber=14A6CABC302EC1E3DCE74DE98BF558A042BEAC56 Certificate serial: 08DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.mft Manifest number: 156D Signing time: Sat 24 Jan 2026 18:00:48 +0000 Manifest this update: Sat 24 Jan 2026 18:00:48 +0000 Manifest next update: Sat 31 Jan 2026 18:00:48 +0000 Files and hashes: 1: FKbKvDAuwePc503pi_VYoEK-rFY.crl (hash: eBIVhc1FSkPQ5WB6TgbDC+6GZeJVb7/ekGMit6FWL9Y=) 2: DB78B2684BCD11EE8F976B7EC4F9AE02.roa (hash: LJOeHyhGq5PPmm1YdhMXahy2BlMK+uuqLBs6e3cOua4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.crl rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 18:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2270 (0x8de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91409DC, serialNumber=14A6CABC302EC1E3DCE74DE98BF558A042BEAC56 Validity Not Before: Jan 24 18:00:48 2026 GMT Not After : Jan 31 18:00:48 2026 GMT Subject: CN=697508d0-c0c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:72:d7:ab:49:ac:fc:84:34:46:04:20:b2:45: 1a:37:54:11:d7:8f:a4:d8:1b:ec:26:a8:92:b2:ba: cc:15:25:61:63:bc:f7:89:5a:c9:e5:ed:48:47:16: 1c:2b:95:4b:92:2b:db:6a:f3:7d:60:66:a7:46:4d: 98:90:e0:c5:97:d6:92:81:41:82:19:43:87:a6:18: c3:e3:9c:73:fb:77:69:23:b8:6c:71:4a:7e:a3:85: 72:04:61:6f:43:1e:41:c5:3f:30:d2:8c:f6:34:da: fd:d3:de:80:e0:7e:95:d0:58:27:5b:cf:a9:7c:58: ad:51:1b:9a:eb:14:fe:f2:92:c7:93:33:56:b6:35: 3e:6b:7f:39:b3:43:e8:81:6d:ec:6b:51:91:ed:13: 19:a5:7b:fd:2b:db:bf:88:d9:d6:7d:24:01:3d:76: c9:eb:83:7b:44:dc:08:d4:c0:1b:98:97:31:01:a6: 00:20:de:dc:e4:ad:68:ab:6b:d0:e8:b8:fc:ac:f8: 0e:65:0d:19:43:34:1c:07:e6:81:ee:e8:11:39:08: 1a:62:c7:a8:93:5d:ef:87:04:64:21:de:4d:8b:ae: b5:e0:94:37:0e:71:fc:21:ab:a9:04:64:b6:d6:0d: 3d:47:e6:ee:c3:61:68:d7:33:a9:a4:3d:b7:99:aa: 0c:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:4E:63:B0:A4:89:A3:FB:60:40:11:A5:BB:F3:6A:B3:76:C9:9F:54 X509v3 Authority Key Identifier: keyid:14:A6:CA:BC:30:2E:C1:E3:DC:E7:4D:E9:8B:F5:58:A0:42:BE:AC:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:52:8e:b5:d7:90:65:8e:57:52:be:b5:75:bb:ad:87:de:7c: 7b:90:a5:a4:1e:0c:7d:6c:75:4a:70:7d:ba:b8:53:04:2d:9a: 1d:a8:d1:04:17:85:c0:4e:ba:1e:d0:8a:20:9e:31:d2:c3:38: c3:c7:b9:c1:c6:60:b3:83:cc:ea:7e:99:a8:ea:a5:ce:13:c2: 64:90:37:24:7d:94:c5:c5:b1:84:fe:9b:62:f3:92:fc:3a:52: 94:a3:ee:2f:6e:20:6e:94:d4:dc:79:0c:ed:ed:f9:a3:0e:75: 2c:54:c6:ab:68:25:58:6e:64:f6:24:5b:ba:46:a6:7b:28:e7: 39:d9:e4:c4:71:5d:90:d8:d0:9a:14:b1:43:9e:c9:3b:67:59: b0:3d:ad:a2:d8:0b:53:d2:ce:96:2f:40:24:c6:92:6d:51:43: 8b:7f:37:06:50:e3:5b:c8:82:0e:af:1a:69:ec:1e:29:0e:db: 27:a7:93:bf:8e:92:42:4f:86:07:fd:8c:8a:bf:fc:09:a1:f2: f2:3e:cc:dc:f0:f4:f6:a5:50:54:4c:f7:d7:e4:b0:51:b5:8a: 0e:35:93:54:ee:75:ac:5d:2f:65:08:21:84:a6:5d:65:2d:09: 13:22:71:2c:6b:f6:a6:e9:49:95:db:40:0b:b8:12:f7:4d:da: 36:5f:04:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA5REMxMTAvBgNVBAUTKDE0QTZDQUJDMzAyRUMxRTNEQ0U3NERFOThCRjU1OEEw NDJCRUFDNTYwHhcNMjYwMTI0MTgwMDQ4WhcNMjYwMTMxMTgwMDQ4WjAYMRYwFAYD VQQDDA02OTc1MDhkMC1jMGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm3LXq0ms/IQ0RgQgskUaN1QR14+k2BvsJqiSsrrMFSVhY7z3iVrJ5e1IRxYc K5VLkivbavN9YGanRk2YkODFl9aSgUGCGUOHphjD45xz+3dpI7hscUp+o4VyBGFv Qx5BxT8w0oz2NNr9096A4H6V0FgnW8+pfFitURua6xT+8pLHkzNWtjU+a385s0Po gW3sa1GR7RMZpXv9K9u/iNnWfSQBPXbJ64N7RNwI1MAbmJcxAaYAIN7c5K1oq2vQ 6Lj8rPgOZQ0ZQzQcB+aB7ugROQgaYseok13vhwRkId5Ni6614JQ3DnH8IaupBGS2 1g09R+buw2Fo1zOppD23maoM/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFClOY7Ck iaP7YEARpbvzarN2yZ9UMB8GA1UdIwQYMBaAFBSmyrwwLsHj3OdN6Yv1WKBCvqxW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDlEQy9BNUJCRkFBNjA5 MzUxMUVBQUIxMEM5MUZDNEY5QUUwMi9GS2JLdkRBdXdlUGM1MDNwaV9WWW9FSy1y RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZLYkt2REF1d2VQYzUwM3BpX1ZZb0VLLXJGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDlEQy9BNUJCRkFBNjA5MzUxMUVBQUIxMEM5MUZDNEY5QUUwMi9GS2JLdkRBdXdl UGM1MDNwaV9WWW9FSy1yRlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWUo6115BljldSvrV1u62H3nx7kKWkHgx9bHVKcH26uFMELZodqNEE F4XATroe0IognjHSwzjDx7nBxmCzg8zqfpmo6qXOE8JkkDckfZTFxbGE/pti85L8 OlKUo+4vbiBulNTceQzt7fmjDnUsVMaraCVYbmT2JFu6RqZ7KOc52eTEcV2Q2NCa FLFDnsk7Z1mwPa2i2AtT0s6WL0AkxpJtUUOLfzcGUONbyIIOrxpp7B4pDtsnp5O/ jpJCT4YH/YyKv/wJofLyPszc8PT2pVBUTPfX5LBRtYoONZNU7nWsXS9lCCGEpl1l LQkTInEsa/am6UmV20ALuBL3Tdo2XwSK -----END CERTIFICATE-----Generated at Sun Jan 25 02:50:56 2026 by rpki-client