This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft File: KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft (raw, json) Hash identifier: g+N7E6rM+39C3ple50rswIbKRfyA6y0l3jLWJvbz8hU= Subject key identifier: 70:A4:93:05:4B:6F:BA:84:31:90:0A:EA:0C:98:4C:2A:86:F5:BF:7D Authority key identifier: 29:76:87:67:53:D6:55:62:A7:CA:85:E3:E9:E8:DF:75:07:97:C9:48 Certificate issuer: /CN=A914F521/serialNumber=2976876753D65562A7CA85E3E9E8DF750797C948 Certificate serial: 0E34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft Manifest number: 0E17 Signing time: Sat 24 Jan 2026 17:30:16 +0000 Manifest this update: Sat 24 Jan 2026 17:30:16 +0000 Manifest next update: Sat 31 Jan 2026 17:30:16 +0000 Files and hashes: 1: KXaHZ1PWVWKnyoXj6ejfdQeXyUg.crl (hash: zDHjwseXX6Cq+AeAOLVAcy8mq0okdih0madTGuxua98=) 2: 757320342E4011EEBC464879C4F9AE02.roa (hash: P37lIdcSAoW+RqsdCkFvhSnyXLO3TfyFSiBj1G2ZldU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.crl rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:30:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3636 (0xe34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F521, serialNumber=2976876753D65562A7CA85E3E9E8DF750797C948 Validity Not Before: Jan 24 17:30:16 2026 GMT Not After : Jan 31 17:30:16 2026 GMT Subject: CN=697501a8-b7c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:79:35:94:bf:a0:63:a5:67:91:8d:a5:b9:6f: c0:3b:6e:07:91:39:e4:21:1c:af:1f:f6:05:b8:ee: dc:bd:e0:de:80:e4:89:28:0b:b7:5c:c4:50:17:d5: d8:ae:1a:c8:90:ad:b3:55:91:aa:80:42:cb:53:c4: 47:b0:de:7f:fe:1b:d2:82:97:31:1b:65:b4:97:d9: c7:04:96:38:6f:47:5b:74:39:4d:09:ad:8e:1e:56: db:72:3d:db:17:e1:0a:b5:fb:2a:7c:40:5b:9e:5b: 83:60:ed:cf:f6:b9:48:94:55:92:34:9c:01:26:56: b5:f9:a9:7f:fd:8b:26:14:53:b3:a3:1a:25:d4:34: b9:51:e8:af:b1:ae:e7:84:bc:4d:d1:99:36:c7:be: e9:4c:fe:c7:cc:80:81:09:0e:e3:ad:e7:c9:79:67: 78:cf:aa:ad:09:26:5a:46:d6:3b:57:29:c7:e9:8e: c5:a9:28:9c:76:0c:d9:5b:ec:f7:ae:96:5c:ef:2f: a8:74:68:28:35:3c:ed:c4:3e:ad:03:7f:eb:ca:2f: e7:78:69:38:e7:80:1d:94:5c:4c:fc:3a:94:f9:f2: 4e:96:d2:6e:e5:b4:39:36:83:22:02:40:e7:7f:e4: 76:f4:24:7e:d6:2c:10:be:68:4e:49:a0:f8:6b:ea: ea:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:A4:93:05:4B:6F:BA:84:31:90:0A:EA:0C:98:4C:2A:86:F5:BF:7D X509v3 Authority Key Identifier: keyid:29:76:87:67:53:D6:55:62:A7:CA:85:E3:E9:E8:DF:75:07:97:C9:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:ce:52:0d:7b:9b:73:17:14:5d:00:d6:a1:e3:b6:dc:a5:98: b3:fb:ba:82:a1:23:62:ed:20:bf:69:f5:89:78:55:a8:a0:e9: c9:90:70:8f:3f:69:5d:78:4d:0f:9e:87:4a:70:2f:9c:09:ba: 28:c1:d2:5d:4c:00:d3:4f:c0:35:91:83:93:e9:ee:7e:b0:25: af:f6:5f:e4:35:2c:5c:89:37:06:7a:4b:ad:3a:d1:cf:f9:2a: 7e:86:54:be:57:8b:df:31:51:a5:78:54:70:40:c6:d4:2e:ad: 66:bf:e7:41:b9:74:10:f1:bd:07:f1:3e:af:8e:b8:61:a9:5b: a4:64:92:41:e4:92:1c:31:ea:2e:fe:cc:d3:57:6e:b4:52:71: 51:a0:bb:2b:90:ae:40:27:f5:fe:b3:d8:83:f1:9b:34:7e:74: 04:d6:6c:2b:d4:d3:ec:bd:90:bf:1a:56:b5:c5:19:06:b4:db: 18:ee:d4:41:0a:e0:9f:99:a5:05:ad:80:f9:d4:45:a6:c8:bb: b0:b2:25:7b:f6:cd:03:d9:37:ac:6f:44:3c:0f:70:a7:ac:ba: 27:6a:24:1a:5e:eb:7b:8b:1e:07:c3:94:e3:dd:ac:25:58:ba: 74:ad:33:6e:aa:16:f7:bb:ab:67:93:77:3f:42:a8:ce:07:34: e3:50:1c:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY1MjExMTAvBgNVBAUTKDI5NzY4NzY3NTNENjU1NjJBN0NBODVFM0U5RThERjc1 MDc5N0M5NDgwHhcNMjYwMTI0MTczMDE2WhcNMjYwMTMxMTczMDE2WjAYMRYwFAYD VQQDDA02OTc1MDFhOC1iN2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz3k1lL+gY6VnkY2luW/AO24HkTnkIRyvH/YFuO7cveDegOSJKAu3XMRQF9XY rhrIkK2zVZGqgELLU8RHsN5//hvSgpcxG2W0l9nHBJY4b0dbdDlNCa2OHlbbcj3b F+EKtfsqfEBbnluDYO3P9rlIlFWSNJwBJla1+al//YsmFFOzoxol1DS5Ueivsa7n hLxN0Zk2x77pTP7HzICBCQ7jrefJeWd4z6qtCSZaRtY7VynH6Y7FqSicdgzZW+z3 rpZc7y+odGgoNTztxD6tA3/ryi/neGk454AdlFxM/DqU+fJOltJu5bQ5NoMiAkDn f+R29CR+1iwQvmhOSaD4a+rqewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHCkkwVL b7qEMZAK6gyYTCqG9b99MB8GA1UdIwQYMBaAFCl2h2dT1lVip8qF4+no33UHl8lI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjUyMS8yMTY1ODgyMEM2 N0UxMUU5QUYzQkE3NjVDNEY5QUUwMi9LWGFIWjFQV1ZXS255b1hqNmVqZmRRZVh5 VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tYYUhaMVBXVldLbnlvWGo2ZWpmZFFlWHlVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjUyMS8yMTY1ODgyMEM2N0UxMUU5QUYzQkE3NjVDNEY5QUUwMi9LWGFIWjFQV1ZX S255b1hqNmVqZmRRZVh5VWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlzlINe5tzFxRdANah47bcpZiz+7qCoSNi7SC/afWJeFWooOnJkHCP P2ldeE0PnodKcC+cCboowdJdTADTT8A1kYOT6e5+sCWv9l/kNSxciTcGekutOtHP +Sp+hlS+V4vfMVGleFRwQMbULq1mv+dBuXQQ8b0H8T6vjrhhqVukZJJB5JIcMeou /szTV260UnFRoLsrkK5AJ/X+s9iD8Zs0fnQE1mwr1NPsvZC/Gla1xRkGtNsY7tRB CuCfmaUFrYD51EWmyLuwsiV79s0D2Tesb0Q8D3CnrLonaiQaXut7ix4Hw5Tj3awl WLp0rTNuqhb3u6tnk3c/QqjOBzTjUBwC -----END CERTIFICATE-----Generated at Sun Jan 25 06:11:12 2026 by rpki-client