This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft File: KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft (raw, json) Hash identifier: eTLXXW9DiOAvdFoB2HpDOKosMJ362CvJAp/b58I/jWI= Subject key identifier: 6E:EF:AF:23:FF:D9:A7:38:AF:75:75:49:87:0D:39:12:95:C5:6F:EA Authority key identifier: 29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 Certificate issuer: /CN=A916022F/serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Certificate serial: 1143 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft Manifest number: 24CD Signing time: Sat 24 Jan 2026 16:42:09 +0000 Manifest this update: Sat 24 Jan 2026 16:42:09 +0000 Manifest next update: Sat 31 Jan 2026 16:42:09 +0000 Files and hashes: 1: KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl (hash: DSEzpHFwVfJAt5306kmq8K2OigIBVwP0ZV9c73tkw7c=) 2: DE0A75A605EB11EA94CD7287C4F9AE02.roa (hash: dRGqWnvgsIsN2pbF+Ps/gIu/drVJ5zxN2ZisSAeqSPE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 16:42:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4419 (0x1143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916022F, serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Validity Not Before: Jan 24 16:42:09 2026 GMT Not After : Jan 31 16:42:09 2026 GMT Subject: CN=6974f661-a5d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e2:77:9b:d3:67:19:e9:c5:78:32:aa:da:4c: af:76:37:69:e7:d8:3f:33:1e:95:79:17:18:bb:60: 5f:b6:4f:c1:16:06:05:44:d6:d3:ff:df:7a:e0:94: b8:1d:ad:10:f0:ea:d3:de:a5:8f:00:e2:6a:4b:cf: e4:06:8f:8a:d0:82:c1:b0:ed:4f:fc:27:ac:00:d6: 9a:f9:51:f3:22:80:6d:44:c8:a3:12:9c:58:41:c7: 0e:c0:1d:9e:d5:52:8c:92:13:52:07:40:4a:9e:09: f9:18:7c:b0:ef:bb:38:43:cc:7f:1f:c0:bf:35:f4: 7f:2d:a0:2f:f1:b1:b2:3f:75:00:a0:ea:3d:42:90: 7a:ef:cb:82:04:09:7e:5c:62:25:ab:eb:c8:17:cc: ee:3b:be:19:36:8d:1c:62:08:9e:98:34:cb:40:6e: 8d:b7:b1:ba:14:dd:c3:04:e2:85:c9:f8:d3:a4:2c: 56:bb:35:3e:0e:4a:6d:29:52:97:e8:8c:3a:19:7c: 59:87:95:0a:7f:0e:91:7c:75:7e:23:99:ee:2c:38: 74:13:f7:cc:61:5b:65:0c:d4:a5:0d:d0:29:af:64: 8c:d8:16:6f:6e:24:31:f5:97:88:40:31:0a:30:23: 51:57:83:3a:34:7c:89:41:a8:96:46:10:15:e9:5c: 8d:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:EF:AF:23:FF:D9:A7:38:AF:75:75:49:87:0D:39:12:95:C5:6F:EA X509v3 Authority Key Identifier: keyid:29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:eb:a0:3f:c0:4f:34:5b:28:a3:82:73:56:71:06:ae:89:92: fd:09:30:8d:cb:e1:5b:e5:62:63:26:5d:6d:fe:fb:4d:c5:78: 8e:1e:ea:a4:f8:d3:7e:b8:6a:83:72:c0:ba:fb:17:b1:c1:9d: 73:1c:2d:a8:81:28:ca:5a:72:c3:29:c6:f1:60:3e:50:b0:d7: e0:07:06:28:28:cc:61:6d:08:d8:db:d9:d3:67:74:9b:86:56: f2:78:42:65:de:c4:98:5e:28:3b:94:d5:ca:6a:03:bd:dd:ce: 31:be:67:06:50:28:47:50:b0:c6:ef:f2:dd:dd:7f:9a:7d:4e: d3:3c:e1:74:51:dd:62:74:a3:4f:44:5d:93:08:cf:d6:96:27: 16:14:81:bf:aa:10:f6:d2:29:17:85:08:a2:65:48:96:45:bb: 26:9c:fd:b1:10:8a:f6:69:61:ee:98:f3:f9:de:b1:03:5c:68: 1c:fb:12:99:fb:46:db:fb:b3:0f:f8:42:ae:4c:9d:77:40:06: 82:db:5b:00:73:01:93:c3:4d:c1:ee:f4:53:a1:c4:1e:6a:2f: 5a:b7:c4:42:44:e8:6e:80:96:19:c9:9b:93:84:08:54:76:d6: e9:a4:b5:74:ca:28:14:a6:61:a6:0a:f5:81:50:be:fb:cc:8f: 5b:ad:22:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyMkYxMTAvBgNVBAUTKDI5RDE2Qzk4REIzRDVCRjY0QjZCOTIwNEMwOTYwMDg2 MENEMjk0NTIwHhcNMjYwMTI0MTY0MjA5WhcNMjYwMTMxMTY0MjA5WjAYMRYwFAYD VQQDDA02OTc0ZjY2MS1hNWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+J3m9NnGenFeDKq2kyvdjdp59g/Mx6VeRcYu2Bftk/BFgYFRNbT/9964JS4 Ha0Q8OrT3qWPAOJqS8/kBo+K0ILBsO1P/CesANaa+VHzIoBtRMijEpxYQccOwB2e 1VKMkhNSB0BKngn5GHyw77s4Q8x/H8C/NfR/LaAv8bGyP3UAoOo9QpB678uCBAl+ XGIlq+vIF8zuO74ZNo0cYgiemDTLQG6Nt7G6FN3DBOKFyfjTpCxWuzU+DkptKVKX 6Iw6GXxZh5UKfw6RfHV+I5nuLDh0E/fMYVtlDNSlDdApr2SM2BZvbiQx9ZeIQDEK MCNRV4M6NHyJQaiWRhAV6VyNpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG7vryP/ 2ac4r3V1SYcNORKVxW/qMB8GA1UdIwQYMBaAFCnRbJjbPVv2S2uSBMCWAIYM0pRS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDIyRi85RUM3QUZCNEFB N0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9LZEZzbU5zOVdfWkxhNUlFd0pZQWhnelNs RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tkRnNtTnM5V19aTGE1SUV3SllBaGd6U2xGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDIyRi85RUM3QUZCNEFBN0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9LZEZzbU5zOVdf WkxhNUlFd0pZQWhnelNsRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCI66A/wE80WyijgnNWcQauiZL9CTCNy+Fb5WJjJl1t/vtNxXiOHuqk +NN+uGqDcsC6+xexwZ1zHC2ogSjKWnLDKcbxYD5QsNfgBwYoKMxhbQjY29nTZ3Sb hlbyeEJl3sSYXig7lNXKagO93c4xvmcGUChHULDG7/Ld3X+afU7TPOF0Ud1idKNP RF2TCM/WlicWFIG/qhD20ikXhQiiZUiWRbsmnP2xEIr2aWHumPP53rEDXGgc+xKZ +0bb+7MP+EKuTJ13QAaC21sAcwGTw03B7vRTocQeai9at8RCROhugJYZyZuThAhU dtbppLV0yigUpmGmCvWBUL77zI9brSLB -----END CERTIFICATE-----Generated at Sun Jan 25 09:28:15 2026 by rpki-client