This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft File: keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft (raw, json) Hash identifier: MWPiuQVdThyJZvbUhJj4Shi1vHq3shmYVMQNYnRrn+4= Subject key identifier: F8:2D:94:09:30:CF:32:50:4C:EA:DC:F9:11:C5:6D:3F:7A:52:3D:37 Authority key identifier: 91:E6:69:CE:02:15:09:7B:D4:D4:77:A1:A7:44:6B:0D:9D:02:48:FF Certificate issuer: /CN=A91876D9/serialNumber=91E669CE0215097BD4D477A1A7446B0D9D0248FF Certificate serial: 0599 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZpzgIVCXvU1Hehp0RrDZ0CSP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft Manifest number: 0592 Signing time: Sat 24 Jan 2026 22:29:41 +0000 Manifest this update: Sat 24 Jan 2026 22:29:40 +0000 Manifest next update: Sat 31 Jan 2026 22:29:40 +0000 Files and hashes: 1: keZpzgIVCXvU1Hehp0RrDZ0CSP8.crl (hash: fr75p8u3mo+AFJI5BdIX1iGuqHqHwP3RkmZdj7GUzyE=) 2: 5C759146B9D211F0A4846C41C4F9AE02.roa (hash: magF5fHTmiSsewDpIaJLfFLa4fslr0l7IIyluckSvII=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.crl rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZpzgIVCXvU1Hehp0RrDZ0CSP8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:29:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1433 (0x599) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91876D9, serialNumber=91E669CE0215097BD4D477A1A7446B0D9D0248FF Validity Not Before: Jan 24 22:29:40 2026 GMT Not After : Jan 31 22:29:40 2026 GMT Subject: CN=697547d4-7a17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:c3:46:87:ac:5c:8b:3d:e7:cf:c5:f3:96:76: 7f:c0:b6:91:cd:09:63:65:2c:c1:ab:f9:a5:42:62: 4f:b1:16:19:24:38:de:2c:c8:39:3c:de:0c:68:c2: dd:e1:da:74:98:0d:cf:3e:ac:fc:63:ff:86:6f:20: 3e:64:db:c8:a6:49:93:33:85:bf:19:4b:dc:5b:2b: 79:08:3c:fb:b5:42:4d:ed:66:a8:5e:7c:03:52:fe: c5:11:f4:f7:9b:15:34:f3:90:93:ef:ca:8b:60:a4: 80:66:11:ab:33:52:a1:07:1b:20:6c:a5:c3:5d:4b: 6d:d6:bd:7b:10:f6:e7:bc:86:da:55:f5:fd:81:08: 73:f4:21:6a:71:a0:2d:6d:53:67:78:31:ce:53:a9: 52:ca:d9:11:3c:5b:7b:df:ef:11:cf:e9:0d:4c:65: 38:fd:b0:35:26:15:7a:70:ce:bb:c6:64:68:92:05: ac:76:91:ef:29:d8:ce:20:44:60:50:52:06:31:36: e4:14:65:27:18:3a:b3:d6:04:93:fa:2f:ee:27:0c: b1:fd:fd:d2:4c:75:ab:e1:aa:55:7c:f8:6c:7d:7d: bd:6e:c8:03:62:5e:ab:4b:c3:54:f7:23:4b:2d:14: 49:fa:ab:0a:a0:58:d9:b9:84:95:3d:8e:2b:10:84: 09:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:2D:94:09:30:CF:32:50:4C:EA:DC:F9:11:C5:6D:3F:7A:52:3D:37 X509v3 Authority Key Identifier: keyid:91:E6:69:CE:02:15:09:7B:D4:D4:77:A1:A7:44:6B:0D:9D:02:48:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZpzgIVCXvU1Hehp0RrDZ0CSP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:e3:bc:37:3d:f7:7c:12:80:1f:7e:06:30:e9:38:ab:1d:61: 6f:07:81:f2:ea:39:48:35:a1:bc:da:ac:1f:95:eb:19:b6:49: 32:8c:d6:dc:f2:06:68:bf:be:db:d4:b5:8a:84:a4:81:7d:b4: 09:94:db:4d:df:ae:be:3a:e0:0f:f6:3a:fa:19:6f:71:41:9e: df:42:9a:a9:9b:b7:03:22:81:95:85:a2:a0:d3:a3:b1:93:a4: eb:60:f3:3f:8a:b4:c5:04:2e:dd:c7:2c:89:da:37:3d:77:18: 52:61:52:d1:da:f3:0f:65:d7:2d:db:ac:99:98:ea:ce:9c:5a: b1:25:1a:f7:70:b4:40:2f:4c:33:c5:ee:ff:8a:f7:43:cc:1d: d7:2f:a1:fe:84:12:90:6b:63:c9:e2:04:fa:31:b0:92:63:25: 73:cb:d2:7f:70:d4:d6:02:a4:fb:4f:39:a4:8c:50:1f:0f:3e: 45:02:0f:ee:21:7d:82:86:8e:55:78:ef:2b:b7:3f:aa:a6:ea: d4:49:d1:69:35:2a:99:b1:7a:87:b7:13:09:f9:6b:bb:d8:2f: ce:be:70:fa:5e:38:36:9c:02:2a:39:ac:37:52:83:b8:a3:5e: 0b:83:b5:ca:ca:3d:86:3c:46:02:62:2b:bc:aa:48:95:50:0e: f7:4c:92:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc2RDkxMTAvBgNVBAUTKDkxRTY2OUNFMDIxNTA5N0JENEQ0NzdBMUE3NDQ2QjBE OUQwMjQ4RkYwHhcNMjYwMTI0MjIyOTQwWhcNMjYwMTMxMjIyOTQwWjAYMRYwFAYD VQQDDA02OTc1NDdkNC03YTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjMNGh6xciz3nz8XzlnZ/wLaRzQljZSzBq/mlQmJPsRYZJDjeLMg5PN4MaMLd 4dp0mA3PPqz8Y/+GbyA+ZNvIpkmTM4W/GUvcWyt5CDz7tUJN7WaoXnwDUv7FEfT3 mxU085CT78qLYKSAZhGrM1KhBxsgbKXDXUtt1r17EPbnvIbaVfX9gQhz9CFqcaAt bVNneDHOU6lSytkRPFt73+8Rz+kNTGU4/bA1JhV6cM67xmRokgWsdpHvKdjOIERg UFIGMTbkFGUnGDqz1gST+i/uJwyx/f3STHWr4apVfPhsfX29bsgDYl6rS8NU9yNL LRRJ+qsKoFjZuYSVPY4rEIQJuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPgtlAkw zzJQTOrc+RHFbT96Uj03MB8GA1UdIwQYMBaAFJHmac4CFQl71NR3oadEaw2dAkj/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzZEOS85MjYwQzY1ODA2 MTgxMUVDQkIyNjJDNUVDNEY5QUUwMi9rZVpwemdJVkNYdlUxSGVocDBSckRaMENT UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tlWnB6Z0lWQ1h2VTFIZWhwMFJyRFowQ1NQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzZEOS85MjYwQzY1ODA2MTgxMUVDQkIyNjJDNUVDNEY5QUUwMi9rZVpwemdJVkNY dlUxSGVocDBSckRaMENTUDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAj47w3Pfd8EoAffgYw6TirHWFvB4Hy6jlINaG82qwflesZtkkyjNbc 8gZov77b1LWKhKSBfbQJlNtN366+OuAP9jr6GW9xQZ7fQpqpm7cDIoGVhaKg06Ox k6TrYPM/irTFBC7dxyyJ2jc9dxhSYVLR2vMPZdct26yZmOrOnFqxJRr3cLRAL0wz xe7/ivdDzB3XL6H+hBKQa2PJ4gT6MbCSYyVzy9J/cNTWAqT7TzmkjFAfDz5FAg/u IX2Cho5VeO8rtz+qpurUSdFpNSqZsXqHtxMJ+Wu72C/OvnD6Xjg2nAIqOaw3UoO4 o14Lg7XKyj2GPEYCYiu8qkiVUA73TJKq -----END CERTIFICATE-----Generated at Sun Jan 25 09:28:38 2026 by rpki-client