This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft File: KZYjJd4LreTcndvFdq4ncBK8N1g.mft (raw, json) Hash identifier: QaOpUKEDsK9Akj6/txGIHNajDIwu8+UkdLPtckepMbA= Subject key identifier: B8:13:2F:8B:C4:65:A3:DE:58:62:72:4B:F8:CC:87:FF:E1:C2:A5:EC Authority key identifier: 29:96:23:25:DE:0B:AD:E4:DC:9D:DB:C5:76:AE:27:70:12:BC:37:58 Certificate issuer: /CN=A914DA2D/serialNumber=29962325DE0BADE4DC9DDBC576AE277012BC3758 Certificate serial: 1ADF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft Manifest number: 1ABD Signing time: Sat 24 Jan 2026 16:07:12 +0000 Manifest this update: Sat 24 Jan 2026 16:07:11 +0000 Manifest next update: Sat 31 Jan 2026 16:07:11 +0000 Files and hashes: 1: KZYjJd4LreTcndvFdq4ncBK8N1g.crl (hash: 6pCKLFYSmME8gmCj8Us28d4PSfKwdz4VnASlBCCdqtk=) 2: 442A935E2F1F11F0A35F5757C4F9AE02.roa (hash: D4FdDOMn9kYOe8wUYl/7g0SwBt2d9VcBYOrZDNcFK0M=) 3: B201496EF3A311EC8804FE09C4F9AE02.roa (hash: 1W3bZjmYo4y/faIyWLiaDn4cNEWTqd/xhoIAZdOleqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.crl rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 16:07:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6879 (0x1adf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DA2D, serialNumber=29962325DE0BADE4DC9DDBC576AE277012BC3758 Validity Not Before: Jan 24 16:07:11 2026 GMT Not After : Jan 31 16:07:11 2026 GMT Subject: CN=6974ee30-419f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:b1:4c:c6:cd:30:8c:c8:c7:52:5b:5b:d0:96: 79:ed:37:3d:7a:64:d4:b0:e4:a3:59:41:a7:84:4c: ac:cf:9a:a6:a8:0c:30:03:0a:4f:f1:da:97:d3:90: ea:0e:2c:0d:1e:58:9b:1b:86:30:be:df:81:60:2d: ec:a8:41:d3:9c:4d:44:19:73:b8:54:d4:63:44:8c: bd:84:78:2e:1f:00:3b:04:69:38:1e:be:34:e4:0d: a8:02:e5:73:07:26:12:55:5d:2f:e3:61:6d:d2:a9: 20:97:61:d1:cc:e5:0b:c4:f2:13:ab:a7:56:8e:6d: 00:de:d2:62:0b:81:67:60:2e:a0:32:51:47:83:aa: 95:26:20:8d:9b:e0:1d:8c:6d:b6:e7:f3:35:16:c6: b8:6e:e2:24:10:1c:b3:78:8f:e3:dc:e1:dc:69:52: d4:e2:a8:bc:cb:4e:25:eb:5e:7e:40:a4:64:7b:fa: 05:34:7e:e7:40:88:39:4b:26:b6:62:d0:d9:07:71: 79:f6:ed:2e:3b:6a:8d:a4:cd:0a:ed:9a:66:2a:e9: 74:19:73:20:d2:f7:59:9c:58:5f:83:3c:29:84:7d: 9f:8a:e7:84:8c:63:45:94:d9:d5:04:62:f0:00:ca: 08:6f:2b:86:b9:d7:2b:91:09:65:d8:06:41:62:29: dd:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:13:2F:8B:C4:65:A3:DE:58:62:72:4B:F8:CC:87:FF:E1:C2:A5:EC X509v3 Authority Key Identifier: keyid:29:96:23:25:DE:0B:AD:E4:DC:9D:DB:C5:76:AE:27:70:12:BC:37:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:42:e2:2a:46:4f:ac:48:19:41:da:25:a3:d4:21:a7:78:83: e4:7c:5f:a6:a6:a5:9e:d3:35:e8:be:14:cb:0d:bb:b8:a1:3b: 80:0e:28:92:6b:50:e5:25:a2:de:45:1c:df:77:a1:dd:2e:fa: f4:f6:cb:5c:35:f9:c5:22:b3:3e:8a:c1:bc:16:1f:a7:2b:8c: 97:89:b4:fe:ef:dd:36:5e:72:45:e3:57:fe:9f:ef:93:25:73: e0:f6:22:d8:a5:07:06:fc:84:30:68:de:7f:b9:a7:68:0c:fb: b2:03:63:e4:ea:f7:63:60:82:69:a6:89:ae:a5:7a:d9:ce:e4: 2c:4b:88:fa:4e:a0:75:b5:d2:0b:fd:45:fc:1b:6a:52:56:26: e2:0e:9a:f6:b3:4d:39:ea:8f:83:bc:00:76:d7:ff:01:cb:05: f5:be:5f:86:2c:c0:d0:c5:4c:76:30:7e:07:9b:f2:4d:59:63: f5:1f:19:f7:1b:62:4a:76:66:15:42:8e:80:2a:50:c4:ad:ca: a1:c2:4f:7f:8f:27:f1:6d:0a:fa:4b:37:89:fd:b8:13:c2:19: 77:4a:42:d3:b0:43:69:c8:a5:f0:9f:05:8f:d4:d8:95:41:fe: 4b:a3:f0:c0:29:ac:f6:49:cd:2d:73:0e:92:99:a0:5a:4f:85: ab:5b:b5:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERBMkQxMTAvBgNVBAUTKDI5OTYyMzI1REUwQkFERTREQzlEREJDNTc2QUUyNzcw MTJCQzM3NTgwHhcNMjYwMTI0MTYwNzExWhcNMjYwMTMxMTYwNzExWjAYMRYwFAYD VQQDDA02OTc0ZWUzMC00MTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmrFMxs0wjMjHUltb0JZ57Tc9emTUsOSjWUGnhEysz5qmqAwwAwpP8dqX05Dq DiwNHlibG4Ywvt+BYC3sqEHTnE1EGXO4VNRjRIy9hHguHwA7BGk4Hr405A2oAuVz ByYSVV0v42Ft0qkgl2HRzOULxPITq6dWjm0A3tJiC4FnYC6gMlFHg6qVJiCNm+Ad jG225/M1Fsa4buIkEByzeI/j3OHcaVLU4qi8y04l615+QKRke/oFNH7nQIg5Sya2 YtDZB3F59u0uO2qNpM0K7ZpmKul0GXMg0vdZnFhfgzwphH2fiueEjGNFlNnVBGLw AMoIbyuGudcrkQll2AZBYindIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLgTL4vE ZaPeWGJyS/jMh//hwqXsMB8GA1UdIwQYMBaAFCmWIyXeC63k3J3bxXauJ3ASvDdY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REEyRC84MzgzNjIwQTUw RDUxMUU3OUVDRTQwMTNDNEY5QUUwMi9LWllqSmQ0THJlVGNuZHZGZHE0bmNCSzhO MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0taWWpKZDRMcmVUY25kdkZkcTRuY0JLOE4xZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 REEyRC84MzgzNjIwQTUwRDUxMUU3OUVDRTQwMTNDNEY5QUUwMi9LWllqSmQ0THJl VGNuZHZGZHE0bmNCSzhOMWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASQuIqRk+sSBlB2iWj1CGneIPkfF+mpqWe0zXovhTLDbu4oTuADiiS a1DlJaLeRRzfd6HdLvr09stcNfnFIrM+isG8Fh+nK4yXibT+7902XnJF41f+n++T JXPg9iLYpQcG/IQwaN5/uadoDPuyA2Pk6vdjYIJppomupXrZzuQsS4j6TqB1tdIL /UX8G2pSVibiDpr2s0056o+DvAB21/8BywX1vl+GLMDQxUx2MH4Hm/JNWWP1Hxn3 G2JKdmYVQo6AKlDErcqhwk9/jyfxbQr6SzeJ/bgTwhl3SkLTsENpyKXwnwWP1NiV Qf5Lo/DAKaz2Sc0tcw6SmaBaT4WrW7X1 -----END CERTIFICATE-----Generated at Sun Jan 25 02:52:58 2026 by rpki-client