This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.mft File: KKyX2Zh-eNvuncufA3NcKDvOGGI.mft (raw, json) Hash identifier: zeFJ7nXUGH7ZVhTUOoPJudeSKtG4FcwljtV8oDMS4wM= Subject key identifier: 6F:8D:7D:1E:2F:DD:67:DF:DB:EE:05:F1:55:B5:5F:F6:CF:79:9A:30 Authority key identifier: 28:AC:97:D9:98:7E:78:DB:EE:9D:CB:9F:03:73:5C:28:3B:CE:18:62 Certificate issuer: /CN=A9157BC3/serialNumber=28AC97D9987E78DBEE9DCB9F03735C283BCE1862 Certificate serial: 0239 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KKyX2Zh-eNvuncufA3NcKDvOGGI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.mft Manifest number: 0236 Signing time: Sun 25 Jan 2026 01:15:33 +0000 Manifest this update: Sun 25 Jan 2026 01:15:33 +0000 Manifest next update: Sun 01 Feb 2026 01:15:33 +0000 Files and hashes: 1: KKyX2Zh-eNvuncufA3NcKDvOGGI.crl (hash: ePjRVIc3Q5vBLJDmuaNVU08vSo720eECwLLbFgkroVM=) 2: 1FCD9DE2926611EDA99A9419C4F9AE02.roa (hash: RqBWzz5uXzyQ1KueU4cHYCTj7govMSTdgiL2egEdolc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.crl rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KKyX2Zh-eNvuncufA3NcKDvOGGI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 01:15:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 569 (0x239) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157BC3, serialNumber=28AC97D9987E78DBEE9DCB9F03735C283BCE1862 Validity Not Before: Jan 25 01:15:33 2026 GMT Not After : Feb 1 01:15:33 2026 GMT Subject: CN=69756eb5-6dc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:36:fb:48:e4:1f:25:be:68:78:b3:4b:df:41: 85:22:21:35:7a:f7:94:e1:7d:0f:e2:3b:cd:16:d1: c3:1b:7f:67:98:b9:a4:01:55:0e:ff:b1:0c:be:82: 88:54:34:51:29:d1:5c:a4:59:81:c0:bf:5f:61:27: 80:17:37:59:42:14:b9:59:5f:f6:cd:16:e2:9b:b4: f0:86:0b:cc:9a:66:66:ee:57:42:32:57:24:61:06: bc:54:b8:51:81:79:86:e0:5c:70:7e:cf:90:6f:a0: 25:4b:9d:8c:39:68:3e:22:97:a3:2b:5b:8c:b9:67: 66:6c:85:13:5a:d5:a6:52:f9:b5:5c:c8:01:87:49: 06:1e:c2:22:38:c8:66:28:6c:45:8a:74:82:68:9e: c8:94:2e:fa:ef:9e:2f:06:f6:30:6b:48:43:4b:0f: 13:33:19:67:e9:ec:f9:c2:56:59:a3:94:f9:69:af: f6:2a:a4:94:60:dc:35:a2:d6:c2:12:87:6b:d8:06: 52:95:79:70:05:de:46:67:c9:f3:16:59:89:dc:1a: aa:dc:e0:cf:e9:59:1e:64:13:11:b0:c8:9b:60:bd: cd:f5:31:c9:5c:f2:9a:42:4b:e8:33:fa:fe:f4:a7: 2a:62:a0:e8:cc:fc:0f:83:7e:16:77:4b:33:1a:ba: d2:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:8D:7D:1E:2F:DD:67:DF:DB:EE:05:F1:55:B5:5F:F6:CF:79:9A:30 X509v3 Authority Key Identifier: keyid:28:AC:97:D9:98:7E:78:DB:EE:9D:CB:9F:03:73:5C:28:3B:CE:18:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KKyX2Zh-eNvuncufA3NcKDvOGGI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:fe:8c:c5:c1:c4:18:78:17:fb:b3:45:41:2b:61:f0:09:3b: e2:01:ed:44:9e:bd:57:07:e9:60:72:90:8b:f8:09:c6:bc:e0: fe:0b:d5:a3:9f:9d:6d:3f:fa:b2:87:14:db:e3:ab:ec:50:cd: 6e:62:59:8d:64:99:4a:f5:d4:f4:f8:e3:83:b4:1e:b7:5f:3d: e6:51:24:22:65:29:47:d4:f2:36:6e:7d:0c:89:46:86:30:40: 66:21:57:f0:bc:99:17:0b:3b:e0:ea:f7:7d:77:56:7a:01:93: e2:26:6e:fe:af:2e:92:9f:e5:a8:dc:cc:85:1f:cf:11:7f:02: 82:ff:ec:3b:43:94:e9:c2:7c:07:8e:fe:9c:7d:1e:05:25:d2: ed:38:b8:1b:8b:c0:5e:5f:fe:3d:88:50:71:29:ad:a2:a7:d7: 2f:ba:8e:2d:04:53:f5:87:8c:3b:53:9a:b1:fe:5f:ed:6a:a1: 1f:9f:bf:58:e1:31:e0:ea:f3:f2:56:cf:ac:d5:07:2b:2f:f8: 59:9a:78:8c:0e:33:fd:80:a5:90:50:ba:87:43:29:7b:22:98: ae:20:20:2f:7c:ab:35:32:e2:f9:64:7d:20:3f:2e:91:f4:4e: fc:d7:e4:f2:7c:d9:bc:3d:7d:38:96:67:e1:d8:19:17:2c:21: 70:19:5b:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCQzMxMTAvBgNVBAUTKDI4QUM5N0Q5OTg3RTc4REJFRTlEQ0I5RjAzNzM1QzI4 M0JDRTE4NjIwHhcNMjYwMTI1MDExNTMzWhcNMjYwMjAxMDExNTMzWjAYMRYwFAYD VQQDDA02OTc1NmViNS02ZGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Tb7SOQfJb5oeLNL30GFIiE1eveU4X0P4jvNFtHDG39nmLmkAVUO/7EMvoKI VDRRKdFcpFmBwL9fYSeAFzdZQhS5WV/2zRbim7TwhgvMmmZm7ldCMlckYQa8VLhR gXmG4Fxwfs+Qb6AlS52MOWg+IpejK1uMuWdmbIUTWtWmUvm1XMgBh0kGHsIiOMhm KGxFinSCaJ7IlC76754vBvYwa0hDSw8TMxln6ez5wlZZo5T5aa/2KqSUYNw1otbC Eodr2AZSlXlwBd5GZ8nzFlmJ3Bqq3ODP6VkeZBMRsMibYL3N9THJXPKaQkvoM/r+ 9KcqYqDozPwPg34Wd0szGrrSiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG+NfR4v 3Wff2+4F8VW1X/bPeZowMB8GA1UdIwQYMBaAFCisl9mYfnjb7p3LnwNzXCg7zhhi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0JDMy83MDhFNkY2ODky NjExMUVEQTUyMDRFNjRDNEY5QUUwMi9LS3lYMlpoLWVOdnVuY3VmQTNOY0tEdk9H R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tLeVgyWmgtZU52dW5jdWZBM05jS0R2T0dHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0JDMy83MDhFNkY2ODkyNjExMUVEQTUyMDRFNjRDNEY5QUUwMi9LS3lYMlpoLWVO dnVuY3VmQTNOY0tEdk9HR0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7/ozFwcQYeBf7s0VBK2HwCTviAe1Enr1XB+lgcpCL+AnGvOD+C9Wj n51tP/qyhxTb46vsUM1uYlmNZJlK9dT0+OODtB63Xz3mUSQiZSlH1PI2bn0MiUaG MEBmIVfwvJkXCzvg6vd9d1Z6AZPiJm7+ry6Sn+Wo3MyFH88RfwKC/+w7Q5TpwnwH jv6cfR4FJdLtOLgbi8BeX/49iFBxKa2ip9cvuo4tBFP1h4w7U5qx/l/taqEfn79Y 4THg6vPyVs+s1QcrL/hZmniMDjP9gKWQULqHQyl7IpiuICAvfKs1MuL5ZH0gPy6R 9E781+TyfNm8PX04lmfh2BkXLCFwGVv9 -----END CERTIFICATE-----Generated at Mon Jan 26 05:12:35 2026 by rpki-client