This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft File: KQX7MhK9YWRvt69jPqGiV7w6Pew.mft (raw, json) Hash identifier: XXlVjoBUsDpwWRCYtN1rdrgq/6UTddtGnrUpphDp/uU= Subject key identifier: 82:E9:80:2C:8C:54:43:0D:25:02:59:B0:A6:89:24:31:78:68:62:FE Authority key identifier: 29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC Certificate issuer: /CN=A9156971/serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Certificate serial: 350B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft Manifest number: 3505 Signing time: Sat 24 Jan 2026 14:40:56 +0000 Manifest this update: Sat 24 Jan 2026 14:40:56 +0000 Manifest next update: Sat 31 Jan 2026 14:40:56 +0000 Files and hashes: 1: KQX7MhK9YWRvt69jPqGiV7w6Pew.crl (hash: vCG6VNN9F6260+g6XO1Tt+SZCQfQsGU3q8rUnttmz9M=) 2: 4AF78A4AFEC611EF86B4765BC4F9AE02.roa (hash: 4eibZFZxCBojQ0XF3++/6D4cGjzEkC+cfaewXmXRSYk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:40:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13579 (0x350b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156971, serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Validity Not Before: Jan 24 14:40:56 2026 GMT Not After : Jan 31 14:40:56 2026 GMT Subject: CN=6974d9f8-0e45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:4a:e4:b6:c9:0a:21:48:b7:b4:a2:af:11:b9: c1:15:e3:7e:c9:54:0b:0d:db:8b:53:27:83:9b:03: f2:7c:1a:82:9d:47:e0:3e:0e:ec:6a:f2:30:d3:cc: 3c:aa:e0:d3:e8:90:7d:ef:6d:07:68:21:95:4a:68: 01:0e:b3:13:66:f4:69:c9:ac:23:fe:59:59:42:ed: f7:17:37:00:3a:02:ca:5e:e4:35:51:2f:8a:63:e0: d1:e3:28:12:e2:74:d0:cb:fe:2b:74:f8:c1:f1:da: 1b:1f:70:0e:60:c6:36:7b:fc:ff:f7:f6:1a:25:8e: 7c:df:42:45:5d:ea:37:2b:74:37:1e:39:39:50:6d: bc:2d:a6:c4:c1:5c:f5:22:80:62:02:36:ab:e8:18: 0a:06:b1:af:12:ef:50:8e:6d:b8:08:8d:1c:b3:bf: 47:59:a1:61:5a:5f:54:5d:e2:f3:a9:6f:55:66:37: 0b:91:e9:e6:1b:cb:ce:ee:61:09:a7:7f:ae:bd:78: b9:3d:1e:ed:a4:06:ef:54:c5:a2:19:6c:59:3a:4e: c8:1d:bb:3f:88:50:51:78:87:a8:01:46:c8:a1:05: db:3a:10:03:41:96:61:cd:7b:95:70:d5:6e:00:2d: 7b:76:ba:1e:02:64:79:0a:d9:39:ee:8b:06:23:c2: 5b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:E9:80:2C:8C:54:43:0D:25:02:59:B0:A6:89:24:31:78:68:62:FE X509v3 Authority Key Identifier: keyid:29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:3b:64:86:f0:f0:b3:aa:7d:ff:46:3c:1c:e6:66:13:21:8d: f4:32:a5:7d:e6:97:0a:69:e8:31:c5:bf:c6:b0:6a:cc:c0:69: 51:76:27:02:2d:dd:dc:7c:5a:a0:20:42:8e:29:68:f6:2e:40: 26:0a:fa:9e:b3:7b:ca:0c:24:25:54:4d:9a:12:32:f3:5a:26: 09:86:51:0a:37:9a:9b:8a:bc:33:1d:6f:48:78:a7:e3:73:a1: c5:fe:ed:7f:af:6e:04:f5:59:63:9f:39:6a:aa:69:f7:02:b9: 84:56:bf:0c:99:03:6f:ef:10:a7:e8:2f:f4:3f:2b:2f:5f:40: 3f:f5:4c:ac:a2:aa:76:24:db:35:65:b1:94:78:1d:cd:19:87: 51:d5:a5:d0:56:c8:e9:25:45:72:3d:8e:95:e7:ff:fb:7f:87: 8b:62:11:39:af:3e:62:1e:ed:b1:fe:21:5e:91:a6:64:42:08: 1c:f6:8e:d0:52:9b:a7:b2:ec:e4:0a:45:d8:a2:35:73:ab:ed: 21:e3:a1:1c:0c:cb:4a:72:51:14:cf:8b:93:f6:b2:d5:45:0a: 3e:de:f9:c3:a5:d0:af:65:01:c9:80:6c:1e:6e:74:90:9e:a7: 60:d5:db:db:bc:41:a7:eb:cd:93:11:44:3f:6b:ff:6e:27:06: 44:1c:64:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY5NzExMTAvBgNVBAUTKDI5MDVGQjMyMTJCRDYxNjQ2RkI3QUY2MzNFQTFBMjU3 QkMzQTNERUMwHhcNMjYwMTI0MTQ0MDU2WhcNMjYwMTMxMTQ0MDU2WjAYMRYwFAYD VQQDDA02OTc0ZDlmOC0wZTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+ErktskKIUi3tKKvEbnBFeN+yVQLDduLUyeDmwPyfBqCnUfgPg7savIw08w8 quDT6JB9720HaCGVSmgBDrMTZvRpyawj/llZQu33FzcAOgLKXuQ1US+KY+DR4ygS 4nTQy/4rdPjB8dobH3AOYMY2e/z/9/YaJY5830JFXeo3K3Q3Hjk5UG28LabEwVz1 IoBiAjar6BgKBrGvEu9Qjm24CI0cs79HWaFhWl9UXeLzqW9VZjcLkenmG8vO7mEJ p3+uvXi5PR7tpAbvVMWiGWxZOk7IHbs/iFBReIeoAUbIoQXbOhADQZZhzXuVcNVu AC17droeAmR5Ctk57osGI8JbIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFILpgCyM VEMNJQJZsKaJJDF4aGL+MB8GA1UdIwQYMBaAFCkF+zISvWFkb7evYz6hole8Oj3s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Njk3MS80OEMyMjE4NjFE OTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlXUnZ0NjlqUHFHaVY3dzZQ ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tRWDdNaEs5WVdSdnQ2OWpQcUdpVjd3NlBldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Njk3MS80OEMyMjE4NjFEOTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlX UnZ0NjlqUHFHaVY3dzZQZXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwO2SG8PCzqn3/Rjwc5mYTIY30MqV95pcKaegxxb/GsGrMwGlRdicC Ld3cfFqgIEKOKWj2LkAmCvqes3vKDCQlVE2aEjLzWiYJhlEKN5qbirwzHW9IeKfj c6HF/u1/r24E9Vljnzlqqmn3ArmEVr8MmQNv7xCn6C/0PysvX0A/9Uysoqp2JNs1 ZbGUeB3NGYdR1aXQVsjpJUVyPY6V5//7f4eLYhE5rz5iHu2x/iFekaZkQggc9o7Q UpunsuzkCkXYojVzq+0h46EcDMtKclEUz4uT9rLVRQo+3vnDpdCvZQHJgGwebnSQ nqdg1dvbvEGn682TEUQ/a/9uJwZEHGR0 -----END CERTIFICATE-----Generated at Sun Jan 25 10:57:38 2026 by rpki-client