This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft File: KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft (raw, json) Hash identifier: fPbBehIep9GnBHxrN608oph9UjDdflCcLw96tAnjgw0= Subject key identifier: D0:00:B5:73:5B:EA:62:D4:34:93:52:2D:2A:39:28:AE:7D:A8:9D:28 Authority key identifier: 28:75:29:DC:20:CA:0E:CE:95:A7:A5:56:E1:0B:CD:FD:72:37:D8:D8 Certificate issuer: /CN=A91602ED/serialNumber=287529DC20CA0ECE95A7A556E10BCDFD7237D8D8 Certificate serial: 06F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft Manifest number: 06EC Signing time: Sat 24 Jan 2026 21:18:59 +0000 Manifest this update: Sat 24 Jan 2026 21:18:59 +0000 Manifest next update: Sat 31 Jan 2026 21:18:59 +0000 Files and hashes: 1: KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl (hash: b2wd7fmXxOFYmNFloxMFzmJRSJFD7kTZXIlagTRQRPA=) 2: 7883418E943A11EBB6706530C4F9AE02.roa (hash: 3PWLAjjquPEfth1t4lnnO5BhhDmCREh5EWELlkQT0go=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 21:18:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1779 (0x6f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91602ED, serialNumber=287529DC20CA0ECE95A7A556E10BCDFD7237D8D8 Validity Not Before: Jan 24 21:18:59 2026 GMT Not After : Jan 31 21:18:59 2026 GMT Subject: CN=69753743-151b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:02:b6:da:c6:bb:f2:ff:3f:a7:96:2d:40:47: 14:9e:23:7c:c8:d5:36:fd:08:b7:44:fc:7a:18:62: 40:57:7a:fa:f7:bd:1f:2e:09:13:4b:bf:fa:8c:34: 8b:fc:c5:cb:4d:ea:8c:37:06:91:1c:a1:e2:c6:7a: f2:6b:36:43:e7:0f:73:aa:da:8c:04:d6:49:62:1c: 94:c3:c0:81:41:26:65:11:98:a7:ec:2d:24:fc:3a: 78:ff:8e:40:73:a1:4b:aa:f9:0d:75:93:a8:a5:f8: 8b:8b:77:3e:dc:6e:fb:0f:06:e8:10:72:a4:c7:d5: 91:68:71:2b:5e:6d:5b:f8:99:77:de:17:a5:72:c4: dc:84:98:3a:ba:9f:55:e5:58:ab:30:d4:80:42:c5: 01:82:97:0c:92:41:f4:72:79:1c:86:c8:5c:fe:c1: 64:b8:17:3a:37:5d:cc:b1:f0:c4:97:8c:c8:60:82: b6:62:b2:d1:d7:f0:d0:86:f1:8f:87:ab:dc:ec:c5: 50:20:19:a0:7c:8b:c3:93:81:25:83:3c:f7:39:00: 0d:e1:1c:f4:cb:8f:93:e8:b5:e8:95:f8:11:f9:2a: bb:92:8e:8b:8f:c3:01:4e:9a:37:fd:5d:af:73:23: d2:04:d5:be:4d:1e:59:09:53:90:b5:94:2a:2f:23: 9c:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:00:B5:73:5B:EA:62:D4:34:93:52:2D:2A:39:28:AE:7D:A8:9D:28 X509v3 Authority Key Identifier: keyid:28:75:29:DC:20:CA:0E:CE:95:A7:A5:56:E1:0B:CD:FD:72:37:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:9a:05:da:33:dd:66:8f:31:f2:04:d4:4e:b7:3a:a7:f2:6a: 70:39:17:19:5f:ca:d1:a2:91:e9:0d:19:1c:4b:eb:45:3f:fc: 6a:62:c3:fd:13:ac:77:24:6b:92:72:0b:60:07:27:44:9e:f9: 4e:c9:d5:c0:dc:25:dc:ff:0b:b3:5b:45:7d:21:3e:c9:8b:ac: 2d:05:24:ae:7d:c8:fd:0e:de:9b:2e:b5:96:b4:a2:e6:16:4c: 9b:53:4f:93:31:0f:93:18:59:0f:62:38:dc:52:2e:7a:e3:1e: b8:18:d7:32:12:e3:4a:1d:d5:dc:0e:11:77:4c:53:e8:c4:fc: bf:04:81:f3:e0:49:aa:3b:cf:cd:9d:5b:9e:cb:17:be:0e:f4: 5c:f9:a9:b5:16:4e:e6:30:a7:e1:cd:45:18:ff:bd:da:f0:35: f5:87:a1:d0:9b:e1:38:13:ac:49:a6:37:2a:33:7a:e6:db:e5: 6c:e6:9b:3a:51:72:ba:53:39:74:d2:15:2d:1a:80:e7:cf:44: 03:2a:cf:17:63:c4:41:08:97:1b:53:b3:92:db:6a:9f:c4:61: 9a:43:cb:e0:f8:73:c5:a7:62:5f:9b:d3:c7:01:95:a4:61:da: a5:ac:9e:da:c1:c3:fb:79:e5:2c:58:67:3f:d8:12:2b:26:a2: 58:ca:a5:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NjAyRUQxMTAvBgNVBAUTKDI4NzUyOURDMjBDQTBFQ0U5NUE3QTU1NkUxMEJDREZE NzIzN0Q4RDgwHhcNMjYwMTI0MjExODU5WhcNMjYwMTMxMjExODU5WjAYMRYwFAYD VQQDDA02OTc1Mzc0My0xNTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjQK22sa78v8/p5YtQEcUniN8yNU2/Qi3RPx6GGJAV3r6970fLgkTS7/6jDSL /MXLTeqMNwaRHKHixnryazZD5w9zqtqMBNZJYhyUw8CBQSZlEZin7C0k/Dp4/45A c6FLqvkNdZOopfiLi3c+3G77DwboEHKkx9WRaHErXm1b+Jl33helcsTchJg6up9V 5VirMNSAQsUBgpcMkkH0cnkchshc/sFkuBc6N13MsfDEl4zIYIK2YrLR1/DQhvGP h6vc7MVQIBmgfIvDk4Elgzz3OQAN4Rz0y4+T6LXolfgR+Sq7ko6Lj8MBTpo3/V2v cyPSBNW+TR5ZCVOQtZQqLyOcuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNAAtXNb 6mLUNJNSLSo5KK59qJ0oMB8GA1UdIwQYMBaAFCh1Kdwgyg7OlaelVuELzf1yN9jY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDJFRC8xNjdCQzYzQzdD MUIxMUVCOUYzRjNDNjVDNEY5QUUwMi9LSFVwM0NES0RzNlZwNlZXNFF2Tl9YSTMy TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIVXAzQ0RLRHM2VnA2Vlc0UXZOX1hJMzJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDJFRC8xNjdCQzYzQzdDMUIxMUVCOUYzRjNDNjVDNEY5QUUwMi9LSFVwM0NES0Rz NlZwNlZXNFF2Tl9YSTMyTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFmgXaM91mjzHyBNROtzqn8mpwORcZX8rRopHpDRkcS+tFP/xqYsP9 E6x3JGuScgtgBydEnvlOydXA3CXc/wuzW0V9IT7Ji6wtBSSufcj9Dt6bLrWWtKLm FkybU0+TMQ+TGFkPYjjcUi564x64GNcyEuNKHdXcDhF3TFPoxPy/BIHz4EmqO8/N nVueyxe+DvRc+am1Fk7mMKfhzUUY/73a8DX1h6HQm+E4E6xJpjcqM3rm2+Vs5ps6 UXK6Uzl00hUtGoDnz0QDKs8XY8RBCJcbU7OS22qfxGGaQ8vg+HPFp2Jfm9PHAZWk YdqlrJ7awcP7eeUsWGc/2BIrJqJYyqU6 -----END CERTIFICATE-----Generated at Sun Jan 25 15:34:37 2026 by rpki-client