This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft File: KXr2WH-YpJnreNLMrjYW70KfV1A.mft (raw, json) Hash identifier: KEQMwDSW1mkwG1xqIFvABQnYQy4f88GeLx33OO55P4g= Subject key identifier: FD:D0:3E:D2:2B:57:A4:22:DD:AD:48:3E:74:6F:6E:CB:DD:E0:F8:CA Authority key identifier: 29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 Certificate issuer: /CN=A91411BC/serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Certificate serial: 13A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft Manifest number: 1399 Signing time: Sat 24 Jan 2026 16:42:16 +0000 Manifest this update: Sat 24 Jan 2026 16:42:16 +0000 Manifest next update: Sat 31 Jan 2026 16:42:16 +0000 Files and hashes: 1: KXr2WH-YpJnreNLMrjYW70KfV1A.crl (hash: MNAnq+ZunBfHTzDvGtTYaqNcxy1XpQnJeh2FU9nBoM4=) 2: B4996A22AC3411E88623474BC4F9AE02.roa (hash: 7JGYiU3kiC6kUGQIsQnoyjTh5wnU3N3mh36JHRhfnlU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 16:42:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5026 (0x13a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91411BC, serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Validity Not Before: Jan 24 16:42:16 2026 GMT Not After : Jan 31 16:42:16 2026 GMT Subject: CN=6974f668-cc9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:80:5f:7f:3a:4d:46:f5:7d:40:9d:28:59:fb: 12:ef:11:fe:44:da:58:20:6e:d3:ae:74:14:8d:a1: 07:bb:a2:34:3a:46:9d:09:fe:f3:26:00:a2:42:34: 63:77:ea:35:a4:ab:a1:d8:65:41:a9:70:24:a1:b2: 39:dc:be:45:c6:30:98:c7:06:46:ee:85:3b:d5:bd: 01:dc:da:f8:0d:10:b2:c0:ba:bc:94:38:67:43:9d: 1d:64:a2:3d:83:e4:67:0f:f5:b8:df:b6:6e:27:de: 93:c6:bb:56:3c:fb:dc:e3:be:78:09:2d:f4:b5:92: 1b:fd:1e:3d:4f:fc:c7:53:6c:68:d9:77:70:b0:a0: 34:62:c6:5d:b2:4b:6c:75:9d:ff:6d:4f:c4:73:68: a5:22:b8:62:90:67:b5:03:1e:45:c2:53:70:65:c6: 9d:f6:5e:44:48:75:fe:45:d3:9d:6f:82:4a:10:69: ba:97:f9:7c:5d:05:d8:04:a8:e1:3c:b5:ea:f6:8c: ac:b3:1f:90:da:c0:50:f9:bb:55:70:0f:c0:61:f3: 97:bb:e4:45:c5:2b:22:e2:20:78:20:fe:1a:d9:96: 3f:03:9a:cd:47:f8:fc:d3:6e:c6:65:98:3d:27:6f: ec:ca:f9:c8:2e:25:30:93:b8:5a:9e:aa:47:e1:49: d6:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:D0:3E:D2:2B:57:A4:22:DD:AD:48:3E:74:6F:6E:CB:DD:E0:F8:CA X509v3 Authority Key Identifier: keyid:29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:a4:dd:1f:59:c3:c4:46:fb:12:06:40:ed:e9:cd:c5:a0:27: f8:56:6a:f8:c8:af:bb:2d:ff:aa:ed:16:4c:46:15:1e:7b:13: 31:f5:d2:00:fc:55:47:77:d5:dd:13:8e:86:07:f1:63:ff:30: ef:4e:85:c5:33:38:0a:47:9f:5a:f0:a0:b6:1f:91:7c:64:c3: a6:08:a6:6e:95:df:6c:1f:f9:60:b3:a0:dd:4b:d4:64:1f:53: 57:7d:bd:76:d0:f2:2f:0c:91:4b:d2:2c:85:aa:98:79:47:59: 80:98:22:ab:14:ad:a4:8c:20:c0:a5:e8:99:69:d7:12:df:bf: ec:58:0c:be:ac:0b:b2:7f:85:ba:ac:60:f2:69:51:1f:31:f2: b6:b3:b1:8f:ac:59:58:c7:33:d2:2b:15:47:7e:a2:1d:55:e6: a9:cb:2d:0d:77:0e:6f:1e:4b:9a:a2:04:91:da:c2:b3:1d:27: 87:17:01:aa:44:fc:6f:48:9a:84:1c:2f:8c:4f:b6:dc:4f:f0: 66:cb:05:3b:f3:b7:6b:98:09:20:10:8d:dd:ff:43:56:34:30: 58:df:aa:3f:c9:f7:82:a7:4b:6f:65:bb:17:4c:67:d1:10:7d: 67:2f:ba:dc:cf:1f:fb:23:f3:4f:36:0d:38:63:59:ec:e8:c4: 5a:e0:79:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDExQkMxMTAvBgNVBAUTKDI5N0FGNjU4N0Y5OEE0OTlFQjc4RDJDQ0FFMzYxNkVG NDI5RjU3NTAwHhcNMjYwMTI0MTY0MjE2WhcNMjYwMTMxMTY0MjE2WjAYMRYwFAYD VQQDDA02OTc0ZjY2OC1jYzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4BffzpNRvV9QJ0oWfsS7xH+RNpYIG7TrnQUjaEHu6I0OkadCf7zJgCiQjRj d+o1pKuh2GVBqXAkobI53L5FxjCYxwZG7oU71b0B3Nr4DRCywLq8lDhnQ50dZKI9 g+RnD/W437ZuJ96TxrtWPPvc4754CS30tZIb/R49T/zHU2xo2XdwsKA0YsZdskts dZ3/bU/Ec2ilIrhikGe1Ax5FwlNwZcad9l5ESHX+RdOdb4JKEGm6l/l8XQXYBKjh PLXq9oyssx+Q2sBQ+btVcA/AYfOXu+RFxSsi4iB4IP4a2ZY/A5rNR/j8027GZZg9 J2/syvnILiUwk7hanqpH4UnWowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP3QPtIr V6Qi3a1IPnRvbsvd4PjKMB8GA1UdIwQYMBaAFCl69lh/mKSZ63jSzK42Fu9Cn1dQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTFCQy9FMzE3MUIwMkFD MzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBKbnJlTkxNcmpZVzcwS2ZW MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tYcjJXSC1ZcEpucmVOTE1yallXNzBLZlYxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTFCQy9FMzE3MUIwMkFDMzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBK bnJlTkxNcmpZVzcwS2ZWMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgpN0fWcPERvsSBkDt6c3FoCf4Vmr4yK+7Lf+q7RZMRhUeexMx9dIA /FVHd9XdE46GB/Fj/zDvToXFMzgKR59a8KC2H5F8ZMOmCKZuld9sH/lgs6DdS9Rk H1NXfb120PIvDJFL0iyFqph5R1mAmCKrFK2kjCDApeiZadcS37/sWAy+rAuyf4W6 rGDyaVEfMfK2s7GPrFlYxzPSKxVHfqIdVeapyy0Ndw5vHkuaogSR2sKzHSeHFwGq RPxvSJqEHC+MT7bcT/BmywU787drmAkgEI3d/0NWNDBY36o/yfeCp0tvZbsXTGfR EH1nL7rczx/7I/NPNg04Y1ns6MRa4Hll -----END CERTIFICATE-----Generated at Sun Jan 25 19:07:23 2026 by rpki-client