This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft File: kY5yieKMGkkiojy1Zb2CG34gphE.mft (raw, json) Hash identifier: /NS33kMl6Wx6p/X6TSuh5LIPVk/rKRC0zip/UEMKmG0= Subject key identifier: DD:2E:5B:FA:94:FF:27:1F:50:B4:62:56:10:E5:DD:7B:1F:76:58:61 Authority key identifier: 91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 Certificate issuer: /CN=A9171B1A/serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Certificate serial: 0D21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft Manifest number: 0D13 Signing time: Sat 24 Jan 2026 17:41:46 +0000 Manifest this update: Sat 24 Jan 2026 17:41:45 +0000 Manifest next update: Sat 31 Jan 2026 17:41:45 +0000 Files and hashes: 1: kY5yieKMGkkiojy1Zb2CG34gphE.crl (hash: wW5L5rkGDPVBGkfg1N3Ec15s6DcqA02OMiIN2RQ4NbE=) 2: 6E3B1338F41211E9AAF5924EC4F9AE02.roa (hash: crrlwPJBnOLvYmfJKxmn3crboPF6B78h7qVd3khCwOc=) 3: 6D9433B0F41211E9AAF5924EC4F9AE02.roa (hash: zsrG738sZcXZENVnoH6VOaw0rvAxdfe6+csvxONB1gM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:41:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3361 (0xd21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171B1A, serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Validity Not Before: Jan 24 17:41:45 2026 GMT Not After : Jan 31 17:41:45 2026 GMT Subject: CN=69750459-5fc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:4f:db:89:95:42:cd:f8:a4:93:ac:6e:3e:66: c9:fe:4c:55:86:1d:e3:4d:56:e0:27:57:c2:41:67: 83:23:db:93:32:d4:dc:c3:12:e2:c0:83:cb:cd:a2: 0c:f7:ff:50:82:56:a4:b3:b6:74:e0:db:20:9d:79: 92:ae:a8:d1:55:fc:52:16:af:d6:0f:58:cb:18:c7: c4:38:b4:bf:9f:c2:c9:02:0e:76:2d:c5:fb:25:ff: 90:e0:3f:eb:7a:b9:7f:5c:d4:5f:a6:44:c7:d5:42: bd:17:28:da:49:60:21:16:92:bd:54:a7:14:ab:33: d4:83:39:52:aa:86:b5:0d:61:8e:70:3a:da:39:c5: aa:53:4c:57:a1:8d:58:86:9d:95:31:09:52:cd:b8: 22:dc:99:f7:27:4c:5e:86:96:a9:4e:0c:a1:38:34: 3a:8b:c3:4d:4c:77:b4:b5:81:f5:bd:0c:70:7b:7c: 47:29:4a:71:0c:7d:4c:6c:1d:6f:32:d3:cb:54:2b: 3a:9b:82:0d:cc:1f:fc:51:ed:cb:6f:4b:86:09:e6: 2b:f3:89:fd:94:d4:fe:f2:fd:16:f8:0f:9e:f8:da: aa:7e:79:d3:e2:9f:c6:f4:2d:cb:2c:53:d9:11:7a: e5:63:4f:76:83:5b:0c:6b:47:03:47:e4:18:b2:21: 0a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:2E:5B:FA:94:FF:27:1F:50:B4:62:56:10:E5:DD:7B:1F:76:58:61 X509v3 Authority Key Identifier: keyid:91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:d7:49:25:75:9a:f1:9f:c3:4b:30:45:3b:cd:4c:ac:25:09: dd:93:17:0b:34:41:17:03:42:12:3a:54:da:ac:89:ba:47:97: 61:18:d3:82:d1:c7:ce:16:48:bd:87:bf:b1:f8:98:3a:08:e3: 32:ef:45:4c:b9:09:65:46:41:48:91:e2:34:0a:98:b2:5e:2d: 9c:27:a0:47:da:a1:c0:95:68:9d:0e:2d:87:85:bc:7d:83:96: bf:a4:8a:3b:e2:d7:1f:03:7f:2e:c0:c5:0c:63:4c:f9:49:b7: 53:00:02:a8:aa:df:ad:e1:87:e1:aa:36:51:47:14:4c:ab:8a: d1:45:58:02:70:5d:87:3a:ba:b8:3e:d2:12:49:f4:3e:da:b0: 19:44:bf:1c:b8:64:9b:f3:cf:78:85:b8:f2:f4:07:fa:3b:a6: d1:8e:7a:4d:1e:fe:db:00:c5:98:73:b5:81:3e:cd:43:e5:df: 79:7b:13:1f:e5:2b:04:ab:6a:83:b3:7e:f3:4c:2b:a7:41:01: fc:7c:f4:38:04:ec:16:bf:c0:78:95:1c:a9:02:de:94:cb:54: 93:99:70:2a:f3:d1:1d:0c:47:26:36:1b:12:68:4e:2f:11:72: 7f:87:39:7c:67:e1:d7:eb:70:47:26:ea:ba:2d:b3:41:27:e7: e2:7a:48:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDSEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFCMUExMTAvBgNVBAUTKDkxOEU3Mjg5RTI4QzFBNDkyMkEyM0NCNTY1QkQ4MjFC N0UyMEE2MTEwHhcNMjYwMTI0MTc0MTQ1WhcNMjYwMTMxMTc0MTQ1WjAYMRYwFAYD VQQDDA02OTc1MDQ1OS01ZmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAh0/biZVCzfikk6xuPmbJ/kxVhh3jTVbgJ1fCQWeDI9uTMtTcwxLiwIPLzaIM 9/9Qglaks7Z04NsgnXmSrqjRVfxSFq/WD1jLGMfEOLS/n8LJAg52LcX7Jf+Q4D/r erl/XNRfpkTH1UK9FyjaSWAhFpK9VKcUqzPUgzlSqoa1DWGOcDraOcWqU0xXoY1Y hp2VMQlSzbgi3Jn3J0xehpapTgyhODQ6i8NNTHe0tYH1vQxwe3xHKUpxDH1MbB1v MtPLVCs6m4INzB/8Ue3Lb0uGCeYr84n9lNT+8v0W+A+e+NqqfnnT4p/G9C3LLFPZ EXrlY092g1sMa0cDR+QYsiEKhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN0uW/qU /ycfULRiVhDl3XsfdlhhMB8GA1UdIwQYMBaAFJGOconijBpJIqI8tWW9ght+IKYR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUIxQS81MUZGQzRFNEY0 MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdra2lvankxWmIyQ0czNGdw aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tZNXlpZUtNR2traW9qeTFaYjJDRzM0Z3BoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUIxQS81MUZGQzRFNEY0MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdr a2lvankxWmIyQ0czNGdwaEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDI10kldZrxn8NLMEU7zUysJQndkxcLNEEXA0ISOlTarIm6R5dhGNOC 0cfOFki9h7+x+Jg6COMy70VMuQllRkFIkeI0CpiyXi2cJ6BH2qHAlWidDi2Hhbx9 g5a/pIo74tcfA38uwMUMY0z5SbdTAAKoqt+t4YfhqjZRRxRMq4rRRVgCcF2HOrq4 PtISSfQ+2rAZRL8cuGSb8894hbjy9Af6O6bRjnpNHv7bAMWYc7WBPs1D5d95exMf 5SsEq2qDs37zTCunQQH8fPQ4BOwWv8B4lRypAt6Uy1STmXAq89EdDEcmNhsSaE4v EXJ/hzl8Z+HX63BHJuq6LbNBJ+fiekjq -----END CERTIFICATE-----Generated at Sun Jan 25 18:15:33 2026 by rpki-client