This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft File: KgHI_pZ5aUR4MewBwCvE6cuaziw.mft (raw, json) Hash identifier: ozlH6V1APyFG1FrFcOk4rgkL6bpxjoyOSIOx20pTSG4= Subject key identifier: 78:C9:5E:69:7C:3E:38:82:46:E5:52:04:E9:E0:9A:65:D5:32:A5:A1 Authority key identifier: 2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C Certificate issuer: /CN=A9158F8D/serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Certificate serial: 0116 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft Manifest number: 0111 Signing time: Sun 25 Jan 2026 04:15:39 +0000 Manifest this update: Sun 25 Jan 2026 04:15:39 +0000 Manifest next update: Sun 01 Feb 2026 04:15:39 +0000 Files and hashes: 1: KgHI_pZ5aUR4MewBwCvE6cuaziw.crl (hash: uHZtwQQOVq5F0QfbWpSMwJMWjBklE5V8PKO8lXJn77w=) 2: B9574A322C1311F0B642882AC4F9AE02.roa (hash: QN8v9t5P0QTRBsYg+U9O7T5DHQfpoMuEMEImQ353CzQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 278 (0x116) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158F8D, serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Validity Not Before: Jan 25 04:15:39 2026 GMT Not After : Feb 1 04:15:39 2026 GMT Subject: CN=697598eb-f5a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a7:43:c4:2f:32:a3:29:ae:43:cd:e7:c9:69: 54:55:cc:dd:db:3b:b3:e6:61:c5:a2:71:ef:e5:18: 5f:e6:f8:a9:01:84:d5:fd:6f:cc:c9:e0:33:dc:31: 3a:c1:17:9c:e7:77:f7:0f:32:ab:ce:4c:db:6b:fe: 6b:da:f1:b6:0f:bf:ff:7a:d9:f9:61:be:66:2a:98: e8:54:ac:0e:2d:2d:3d:3a:ec:06:d5:52:90:3c:65: b4:4b:62:c1:45:62:ad:1d:cd:36:86:f8:c3:20:b3: 88:b1:a6:ce:5b:31:f6:91:8f:f6:1f:16:44:ab:bb: 9d:eb:a6:4c:f2:a4:48:2f:b2:f1:38:8c:9d:61:15: 32:95:7d:97:11:15:aa:d5:44:6a:ad:35:7a:48:09: c6:e2:6b:2b:a4:c6:ef:8d:5b:4a:71:cc:9d:9e:d8: e7:34:c8:0d:2b:7d:83:47:48:9f:f7:54:cd:1f:f2: 31:f0:c4:67:eb:31:1f:ad:ba:8f:fa:96:67:98:80: d1:6f:03:14:27:c0:09:16:e2:17:60:ec:92:14:3a: 12:55:f4:f4:d2:f4:32:2d:ed:5f:d9:a2:5d:e1:a3: ca:68:4b:fc:c0:79:9e:d3:b7:65:5f:8f:8f:c8:ae: 01:76:8a:b5:50:56:48:d3:57:6a:26:1a:9f:7a:82: df:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:C9:5E:69:7C:3E:38:82:46:E5:52:04:E9:E0:9A:65:D5:32:A5:A1 X509v3 Authority Key Identifier: keyid:2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e3:fe:27:d2:e8:e1:c6:7e:0f:f0:54:64:9a:73:63:d5:d6:b3: 48:e7:06:ae:4e:e1:e3:2a:86:15:ab:80:4b:3a:58:1e:8c:06: da:0e:78:3b:15:2e:e6:5e:13:0f:a3:17:eb:c6:ba:86:ac:77: 37:29:45:3d:f0:06:90:13:f8:ea:b1:25:91:6d:b8:93:3d:2a: 88:a4:06:fe:91:24:fb:7a:95:95:a2:0b:ed:cc:7b:76:8d:82: de:4e:8b:98:16:20:60:5f:67:2c:c7:16:4d:05:4f:20:36:c8: b8:de:98:31:3d:08:a7:bd:11:80:ff:a6:ed:1a:5f:97:c1:cc: f0:2d:47:37:15:90:ae:3a:86:c9:84:e1:e2:f4:04:c8:fe:13: 78:50:c7:73:8a:bf:74:5a:ec:47:ae:f3:bc:df:8f:b8:f0:5c: c8:3a:9a:17:61:b0:13:5f:47:b1:d5:42:2b:15:c0:2b:ff:17: a2:00:a3:14:21:2d:d8:88:97:b5:06:5b:0f:33:1f:c9:e5:62: ee:bc:6b:d9:02:61:55:b7:36:4f:62:78:94:65:76:bd:52:20: e0:70:ee:e5:25:d2:73:19:c3:b3:20:3a:f8:69:14:da:24:09: 2e:4b:9b:75:88:ac:2d:03:b2:1e:e4:90:b2:14:d8:45:41:32: 78:5c:1d:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThGOEQxMTAvBgNVBAUTKDJBMDFDOEZFOTY3OTY5NDQ3ODMxRUMwMUMwMkJDNEU5 Q0I5QUNFMkMwHhcNMjYwMTI1MDQxNTM5WhcNMjYwMjAxMDQxNTM5WjAYMRYwFAYD VQQDDA02OTc1OThlYi1mNWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqadDxC8yoymuQ83nyWlUVczd2zuz5mHFonHv5Rhf5vipAYTV/W/MyeAz3DE6 wRec53f3DzKrzkzba/5r2vG2D7//etn5Yb5mKpjoVKwOLS09OuwG1VKQPGW0S2LB RWKtHc02hvjDILOIsabOWzH2kY/2HxZEq7ud66ZM8qRIL7LxOIydYRUylX2XERWq 1URqrTV6SAnG4msrpMbvjVtKccydntjnNMgNK32DR0if91TNH/Ix8MRn6zEfrbqP +pZnmIDRbwMUJ8AJFuIXYOySFDoSVfT00vQyLe1f2aJd4aPKaEv8wHme07dlX4+P yK4Bdoq1UFZI01dqJhqfeoLfDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHjJXml8 PjiCRuVSBOngmmXVMqWhMB8GA1UdIwQYMBaAFCoByP6WeWlEeDHsAcArxOnLms4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEY4RC9BMTc5RTUzQzY0 NzcxMUVGQTgyREU5M0RDNEY5QUUwMi9LZ0hJX3BaNWFVUjRNZXdCd0N2RTZjdWF6 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tnSElfcFo1YVVSNE1ld0J3Q3ZFNmN1YXppdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEY4RC9BMTc5RTUzQzY0NzcxMUVGQTgyREU5M0RDNEY5QUUwMi9LZ0hJX3BaNWFV UjRNZXdCd0N2RTZjdWF6aXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDj/ifS6OHGfg/wVGSac2PV1rNI5wauTuHjKoYVq4BLOlgejAbaDng7 FS7mXhMPoxfrxrqGrHc3KUU98AaQE/jqsSWRbbiTPSqIpAb+kST7epWVogvtzHt2 jYLeTouYFiBgX2csxxZNBU8gNsi43pgxPQinvRGA/6btGl+XwczwLUc3FZCuOobJ hOHi9ATI/hN4UMdzir90WuxHrvO834+48FzIOpoXYbATX0ex1UIrFcAr/xeiAKMU IS3YiJe1BlsPMx/J5WLuvGvZAmFVtzZPYniUZXa9UiDgcO7lJdJzGcOzIDr4aRTa JAkuS5t1iKwtA7Ie5JCyFNhFQTJ4XB0R -----END CERTIFICATE-----Generated at Sun Jan 25 06:27:36 2026 by rpki-client