This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft File: kXkVGVyXGrRB_d7eb_PNNy51TLU.mft (raw, json) Hash identifier: OW6E2kV11CVqCp2tkyBu2dqqSyjWTIKQqilN73Z+jEY= Subject key identifier: AE:82:CF:0C:CE:6D:14:87:27:DA:38:EF:F6:54:F7:0D:56:CF:03:1D Authority key identifier: 91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5 Certificate issuer: /CN=A91795CA/serialNumber=917915195C971AB441FDDEDE6FF3CD372E754CB5 Certificate serial: 06AC Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft Manifest number: 06A6 Signing time: Sat 24 Jan 2026 21:25:06 +0000 Manifest this update: Sat 24 Jan 2026 21:25:06 +0000 Manifest next update: Sat 31 Jan 2026 21:25:06 +0000 Files and hashes: 1: kXkVGVyXGrRB_d7eb_PNNy51TLU.crl (hash: 5X/6oeBxJTCtsZQuzSX3HY8ONlaG7uIThZfHhFm/pbc=) 2: 2B8D76AE9BB711EBBB7BA02BC4F9AE02.roa (hash: aHkHq3prWV8PYM6R/1n0/cS3AolHN3tQt/aLI9yRoNU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.crl rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 21:25:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1708 (0x6ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91795CA, serialNumber=917915195C971AB441FDDEDE6FF3CD372E754CB5 Validity Not Before: Jan 24 21:25:06 2026 GMT Not After : Jan 31 21:25:06 2026 GMT Subject: CN=697538b2-425a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:12:46:1d:89:8b:ec:c7:ce:6d:58:4e:77:2c: 36:bf:2f:60:cc:29:2d:f4:0a:48:78:ad:d0:77:b3: 1c:de:0c:17:bf:70:6e:75:1e:3f:ac:00:b8:e9:c3: 69:79:37:c0:33:59:f4:cb:e9:b0:ca:78:3b:ed:b5: 1a:29:2b:47:47:e0:86:bf:9b:6d:da:7e:ee:cc:5a: ea:5f:31:8f:1e:73:0c:3f:09:f0:9f:79:c0:25:b9: d2:a2:25:d2:6b:c8:9b:5f:c7:fa:05:c9:8d:be:f0: fc:63:89:35:59:92:6e:5b:67:41:c4:9e:bc:6c:1e: 0c:c8:36:91:71:5b:c4:40:a9:28:27:fa:20:25:15: a2:75:de:e0:87:86:66:a6:3b:e2:88:66:f9:09:5d: 1d:1d:7c:4a:2b:05:96:f2:9a:e8:a7:56:42:86:01: d5:ce:ba:d7:91:a7:4f:14:d6:0a:a7:06:c4:32:d3: eb:45:99:f3:a9:b7:b3:20:08:13:cc:93:e5:85:11: 3a:79:29:4f:27:2b:1f:e6:26:f4:0b:d7:4b:b7:bb: 4f:04:16:12:e5:6a:36:4b:14:6e:8e:f8:64:c6:93: 30:ac:ae:67:c3:99:3e:71:24:ab:3f:79:9d:b5:52: 58:c0:e5:d5:22:7e:9c:06:0a:4f:f9:5a:9f:c2:1c: af:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:82:CF:0C:CE:6D:14:87:27:DA:38:EF:F6:54:F7:0D:56:CF:03:1D X509v3 Authority Key Identifier: keyid:91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:01:31:fc:10:91:fb:98:77:48:cc:43:c5:95:2e:23:29:af: dc:0c:17:37:be:51:7d:80:cc:83:20:4b:90:54:05:52:96:57: ec:5a:51:a8:4f:13:77:86:b8:9a:ac:8e:e5:94:22:11:bc:b7: e9:c0:fa:23:dc:3f:24:4a:c9:06:3c:5a:ac:5f:7f:50:b7:08: a5:1b:31:0c:64:ab:9d:02:70:52:82:e7:cc:28:a5:04:67:17: ab:06:e7:f3:5d:0e:ff:76:07:10:2f:e6:bc:f3:fc:86:d6:32: a4:d1:36:1a:f5:f2:3e:36:48:4c:e6:c3:2a:dd:7b:0c:fb:26: 94:90:c4:80:7c:61:e1:a5:b1:88:ad:0d:6e:aa:4e:29:f9:8f: c7:7e:8a:4f:d8:df:03:12:8d:9d:06:a4:bf:69:67:74:86:30: 43:7f:d0:8c:02:81:71:c6:3b:34:80:75:23:71:07:fe:28:27: 61:de:c0:3f:f4:81:e4:eb:cc:d0:9e:14:f8:b6:79:7b:1f:0b: 06:e0:26:31:9c:75:9f:82:c0:4e:49:7a:8a:c2:88:fb:67:7d: 41:e5:a2:a9:b2:2d:a3:18:30:89:50:ca:a5:29:ac:7a:28:f2: 9c:ea:18:18:17:45:85:ee:35:09:b6:d7:e1:ca:63:fd:ea:b4: 7e:93:df:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk1Q0ExMTAvBgNVBAUTKDkxNzkxNTE5NUM5NzFBQjQ0MUZEREVERTZGRjNDRDM3 MkU3NTRDQjUwHhcNMjYwMTI0MjEyNTA2WhcNMjYwMTMxMjEyNTA2WjAYMRYwFAYD VQQDDA02OTc1MzhiMi00MjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyxJGHYmL7MfObVhOdyw2vy9gzCkt9ApIeK3Qd7Mc3gwXv3BudR4/rAC46cNp eTfAM1n0y+mwyng77bUaKStHR+CGv5tt2n7uzFrqXzGPHnMMPwnwn3nAJbnSoiXS a8ibX8f6BcmNvvD8Y4k1WZJuW2dBxJ68bB4MyDaRcVvEQKkoJ/ogJRWidd7gh4Zm pjviiGb5CV0dHXxKKwWW8prop1ZChgHVzrrXkadPFNYKpwbEMtPrRZnzqbezIAgT zJPlhRE6eSlPJysf5ib0C9dLt7tPBBYS5Wo2SxRujvhkxpMwrK5nw5k+cSSrP3md tVJYwOXVIn6cBgpP+VqfwhyvoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK6CzwzO bRSHJ9o47/ZU9w1WzwMdMB8GA1UdIwQYMBaAFJF5FRlclxq0Qf3e3m/zzTcudUy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTVDQS82MzQ3Mzc1Njk4 MDYxMUVCQTg3RTI3NjVDNEY5QUUwMi9rWGtWR1Z5WEdyUkJfZDdlYl9QTk55NTFU TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2tYa1ZHVnlYR3JSQl9kN2ViX1BOTnk1MVRMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTVDQS82MzQ3Mzc1Njk4MDYxMUVCQTg3RTI3NjVDNEY5QUUwMi9rWGtWR1Z5WEdy UkJfZDdlYl9QTk55NTFUTFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTATH8EJH7mHdIzEPFlS4jKa/cDBc3vlF9gMyDIEuQVAVSllfsWlGo TxN3hriarI7llCIRvLfpwPoj3D8kSskGPFqsX39QtwilGzEMZKudAnBSgufMKKUE ZxerBufzXQ7/dgcQL+a88/yG1jKk0TYa9fI+NkhM5sMq3XsM+yaUkMSAfGHhpbGI rQ1uqk4p+Y/HfopP2N8DEo2dBqS/aWd0hjBDf9CMAoFxxjs0gHUjcQf+KCdh3sA/ 9IHk68zQnhT4tnl7HwsG4CYxnHWfgsBOSXqKwoj7Z31B5aKpsi2jGDCJUMqlKax6 KPKc6hgYF0WF7jUJttfhymP96rR+k9/r -----END CERTIFICATE-----Generated at Sun Jan 25 12:10:32 2026 by rpki-client