This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft File: KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft (raw, json) Hash identifier: kawhLlNwmKo5+3VE8grLMNCTh9RQQ6Sogo5y6WHCCVI= Subject key identifier: AB:CC:78:F6:5E:38:40:89:5B:83:FA:A5:80:59:F1:00:30:F0:C6:30 Authority key identifier: 28:17:D4:A8:64:4A:EC:41:9A:DC:CE:E3:0C:4E:87:A2:4D:2F:F5:7B Certificate issuer: /CN=A9158650/serialNumber=2817D4A8644AEC419ADCCEE30C4E87A24D2FF57B Certificate serial: 0223 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft Manifest number: 021E Signing time: Sun 25 Jan 2026 01:28:18 +0000 Manifest this update: Sun 25 Jan 2026 01:28:18 +0000 Manifest next update: Sun 01 Feb 2026 01:28:18 +0000 Files and hashes: 1: KBfUqGRK7EGa3M7jDE6Hok0v9Xs.crl (hash: IU2SJxG7ndg6snmU4y+U/we7zQNfX4rStMEglNqZlgI=) 2: EA5A9A32BDAA11ED92995562C4F9AE02.roa (hash: /EEXvT665opKL7OI/mui0sN2NqpuGn4U8tvIvrJ8aw8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.crl rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 01:28:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 547 (0x223) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158650, serialNumber=2817D4A8644AEC419ADCCEE30C4E87A24D2FF57B Validity Not Before: Jan 25 01:28:18 2026 GMT Not After : Feb 1 01:28:18 2026 GMT Subject: CN=697571b2-2413 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d6:27:4c:06:07:dd:41:96:5d:70:ca:d1:3f: 63:14:fc:a0:5b:00:c6:e7:28:27:c8:52:9f:f8:f5: 40:ca:32:ef:0c:8c:dd:53:4f:25:68:b5:aa:3a:71: 9d:82:46:b5:26:8d:61:29:fc:6f:7e:ed:c2:2d:a6: 45:f8:27:e4:6f:a0:21:6d:37:6f:c7:46:7e:4b:2c: f6:38:bc:f9:0b:9a:1a:79:47:47:e9:b2:24:33:79: 99:f4:d0:1e:37:04:6d:11:48:87:84:8a:4a:7d:89: d1:99:25:ec:12:af:52:2e:f3:66:92:79:0b:ce:a8: 94:36:f0:ad:2b:ba:10:cb:85:e6:2f:c2:36:61:25: c6:1b:09:14:5a:bf:c3:27:db:f7:6d:1f:65:f8:82: f2:bf:3b:ed:51:fc:1b:67:5f:5a:52:51:86:14:c5: 32:95:5b:41:c0:78:93:b3:a4:64:68:cd:04:3e:24: bb:20:1b:d7:79:12:99:73:a3:cd:79:f3:ed:2c:44: 94:7e:67:f4:c7:93:e7:9d:69:af:f7:2f:ca:b8:7e: 65:aa:fc:bf:cb:76:94:10:9a:0d:f7:ef:a9:72:4f: 73:a6:3a:bb:41:bb:eb:5c:8f:c2:ee:19:c7:7a:f7: 1c:31:69:d2:bd:6e:b7:78:16:6e:3e:68:ab:2e:8f: 1e:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:CC:78:F6:5E:38:40:89:5B:83:FA:A5:80:59:F1:00:30:F0:C6:30 X509v3 Authority Key Identifier: keyid:28:17:D4:A8:64:4A:EC:41:9A:DC:CE:E3:0C:4E:87:A2:4D:2F:F5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:82:79:7b:a2:c8:d2:3d:f1:7d:38:2d:25:35:7c:09:30:2e: 7f:25:21:11:23:51:19:3d:bc:5c:c6:9d:2a:a4:1e:7f:bc:32: 69:9c:49:36:7b:b1:42:24:7d:2f:16:c0:f8:65:a2:7a:3f:5a: b5:d2:dc:9f:b9:bb:74:db:10:af:bb:36:e6:03:9b:eb:c7:97: 2c:6e:b1:0f:56:34:b8:e5:b8:f3:86:eb:53:a5:71:96:54:73: 61:7c:1d:c5:a3:fb:89:82:3e:d3:db:33:17:3e:57:4d:99:20: 5a:62:59:5f:1c:fc:84:34:bb:80:ff:03:3c:04:b8:14:e2:51: 62:9f:e3:f4:ab:bf:cc:b6:51:e2:4f:e4:5c:46:2a:2e:18:72: 4b:d6:31:8d:76:ce:ba:ee:7f:e3:46:af:da:32:42:6c:02:e8: a5:be:5a:b9:a9:d8:ee:29:23:c4:d6:6e:19:97:43:b3:b9:17: cd:49:73:f4:ca:53:31:f5:2e:a7:54:d4:d2:9d:c8:c3:3e:2b: 8a:a5:9e:31:0f:3a:45:48:da:79:a2:4b:71:51:57:a2:59:56: 9e:76:7c:6c:f6:35:aa:38:71:94:2e:76:26:aa:9c:04:cb:fc: ce:d2:c3:92:50:d8:79:bd:c2:35:07:90:c0:86:58:bf:b1:6d: 9c:29:2a:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg2NTAxMTAvBgNVBAUTKDI4MTdENEE4NjQ0QUVDNDE5QURDQ0VFMzBDNEU4N0Ey NEQyRkY1N0IwHhcNMjYwMTI1MDEyODE4WhcNMjYwMjAxMDEyODE4WjAYMRYwFAYD VQQDDA02OTc1NzFiMi0yNDEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr9YnTAYH3UGWXXDK0T9jFPygWwDG5ygnyFKf+PVAyjLvDIzdU08laLWqOnGd gka1Jo1hKfxvfu3CLaZF+Cfkb6AhbTdvx0Z+Syz2OLz5C5oaeUdH6bIkM3mZ9NAe NwRtEUiHhIpKfYnRmSXsEq9SLvNmknkLzqiUNvCtK7oQy4XmL8I2YSXGGwkUWr/D J9v3bR9l+ILyvzvtUfwbZ19aUlGGFMUylVtBwHiTs6RkaM0EPiS7IBvXeRKZc6PN efPtLESUfmf0x5PnnWmv9y/KuH5lqvy/y3aUEJoN9++pck9zpjq7QbvrXI/C7hnH evccMWnSvW63eBZuPmirLo8erwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKvMePZe OECJW4P6pYBZ8QAw8MYwMB8GA1UdIwQYMBaAFCgX1KhkSuxBmtzO4wxOh6JNL/V7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODY1MC83NzU4RDJDMkJE QTcxMUVEQUVDRDRBNURDNEY5QUUwMi9LQmZVcUdSSzdFR2EzTTdqREU2SG9rMHY5 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tCZlVxR1JLN0VHYTNNN2pERTZIb2swdjlYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODY1MC83NzU4RDJDMkJEQTcxMUVEQUVDRDRBNURDNEY5QUUwMi9LQmZVcUdSSzdF R2EzTTdqREU2SG9rMHY5WHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWgnl7osjSPfF9OC0lNXwJMC5/JSERI1EZPbxcxp0qpB5/vDJpnEk2 e7FCJH0vFsD4ZaJ6P1q10tyfubt02xCvuzbmA5vrx5csbrEPVjS45bjzhutTpXGW VHNhfB3Fo/uJgj7T2zMXPldNmSBaYllfHPyENLuA/wM8BLgU4lFin+P0q7/MtlHi T+RcRiouGHJL1jGNds667n/jRq/aMkJsAuilvlq5qdjuKSPE1m4Zl0OzuRfNSXP0 ylMx9S6nVNTSncjDPiuKpZ4xDzpFSNp5oktxUVeiWVaednxs9jWqOHGULnYmqpwE y/zO0sOSUNh5vcI1B5DAhli/sW2cKSo5 -----END CERTIFICATE-----Generated at Sun Jan 25 10:42:43 2026 by rpki-client