This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft File: kzxM1thDXA-L4vUjRybWYQ9-2jo.mft (raw, json) Hash identifier: RZsjrstkO6qTmxYgDxBOUMqoAL3cPClkcfbU+RHq1AE= Subject key identifier: 9F:05:80:1C:CF:94:B9:60:EC:70:07:EE:57:0F:F1:45:A8:58:9E:71 Authority key identifier: 93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A Certificate issuer: /CN=A918D0DE/serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A Certificate serial: 0C84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft Manifest number: 0C75 Signing time: Sat 24 Jan 2026 18:11:34 +0000 Manifest this update: Sat 24 Jan 2026 18:11:34 +0000 Manifest next update: Sat 31 Jan 2026 18:11:34 +0000 Files and hashes: 1: kzxM1thDXA-L4vUjRybWYQ9-2jo.crl (hash: sG6EZFYncRDjGeu/nfn3b3tTcfR1Lmh2jWFA9JnGx+E=) 2: 38FFAC50884411EDA212BC24C4F9AE02.roa (hash: ckq5cjCEQ/2WL7JkGpSyoM0Cdw/OAtqMQAwrig1lc1c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 18:11:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3204 (0xc84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0DE, serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A Validity Not Before: Jan 24 18:11:34 2026 GMT Not After : Jan 31 18:11:34 2026 GMT Subject: CN=69750b56-7de6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d9:a9:1d:b2:40:33:df:7e:e4:4a:fe:7c:90: 94:15:0f:a6:ec:52:0f:dd:d1:75:12:fa:67:d4:fd: 1b:0c:88:98:bb:42:47:d6:6f:8f:c4:1b:33:e3:15: 21:8d:b2:1c:fe:2d:ee:88:8e:d8:2e:91:70:43:bd: 89:bc:99:9d:d3:ec:c7:ba:48:ad:32:1d:9d:b5:70: 4d:dc:47:60:d5:b9:26:7f:14:e6:3e:a9:77:8d:b0: 86:44:45:86:5e:5c:55:ed:08:2d:2b:60:66:62:79: ec:98:ba:5d:d6:ba:84:e2:22:ed:6f:a2:fe:38:a9: 44:4a:4f:11:7c:aa:47:eb:cc:46:94:7e:24:b9:98: 1c:fe:95:40:9c:19:4d:51:ef:28:86:a5:39:59:51: f7:ed:88:3c:ec:bd:35:2b:28:29:0e:78:47:36:7c: a5:10:25:6c:c7:c0:5f:75:d7:33:97:4a:e2:ad:e4: d8:67:c0:17:cf:7a:29:20:dd:93:8a:9d:9d:26:3c: 21:c0:a1:ac:db:9d:ee:2e:2a:6d:df:b7:a9:f2:4c: de:c5:26:64:fb:93:56:1a:a5:7d:d7:dd:01:18:86: 26:49:de:74:db:42:1f:ce:da:b7:87:7c:24:89:30: 13:a6:70:4a:60:4d:93:18:a6:ea:09:37:8c:d6:50: 3e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:05:80:1C:CF:94:B9:60:EC:70:07:EE:57:0F:F1:45:A8:58:9E:71 X509v3 Authority Key Identifier: keyid:93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:71:92:aa:01:81:53:b5:f8:97:7a:2d:8a:56:e0:b8:58:37: ba:08:42:d5:59:3d:fb:6e:2c:e2:4e:7d:78:9d:a1:d9:16:34: b7:0f:12:11:2d:e7:0f:38:79:21:aa:87:90:10:f5:be:56:1c: da:b8:2e:d4:04:2b:7c:ea:98:5d:04:3b:43:ee:e3:bd:b0:7c: 3c:a4:0a:ad:ec:20:87:19:3f:08:a4:95:59:b3:00:5a:6a:5d: 8e:63:66:0e:56:1a:c3:1b:37:32:53:a6:73:33:3e:5f:c9:4c: 59:96:1c:a6:1b:c7:16:78:32:81:e8:a1:a7:f2:e0:35:e5:37: 56:63:dc:62:44:c8:cf:ab:a7:92:3f:20:ab:85:b4:aa:5a:4c: c1:6b:04:75:c2:2a:e5:9f:cb:bc:33:91:a8:e5:c4:1d:0e:ff: e8:19:3e:40:eb:f0:5a:e5:88:4f:5a:59:9a:04:f9:59:2b:46: 4c:66:8f:61:be:f4:6a:8b:e9:5b:c2:e1:bb:8e:04:9e:64:fe: 26:a6:85:e6:fe:bb:32:87:00:be:c9:cb:fc:47:16:c4:e0:b6: 0f:08:f7:1e:c0:9c:49:7a:40:16:94:b6:2f:32:b1:e4:59:c6: 9f:04:a7:f2:0b:02:8a:be:cd:22:0f:c5:a2:3e:47:c7:b8:be: 79:05:aa:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwREUxMTAvBgNVBAUTKDkzM0M0Q0Q2RDg0MzVDMEY4QkUyRjUyMzQ3MjZENjYx MEY3RURBM0EwHhcNMjYwMTI0MTgxMTM0WhcNMjYwMTMxMTgxMTM0WjAYMRYwFAYD VQQDDA02OTc1MGI1Ni03ZGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdmpHbJAM99+5Er+fJCUFQ+m7FIP3dF1Evpn1P0bDIiYu0JH1m+PxBsz4xUh jbIc/i3uiI7YLpFwQ72JvJmd0+zHukitMh2dtXBN3Edg1bkmfxTmPql3jbCGREWG XlxV7QgtK2BmYnnsmLpd1rqE4iLtb6L+OKlESk8RfKpH68xGlH4kuZgc/pVAnBlN Ue8ohqU5WVH37Yg87L01KygpDnhHNnylECVsx8Bfddczl0rireTYZ8AXz3opIN2T ip2dJjwhwKGs253uLipt37ep8kzexSZk+5NWGqV9190BGIYmSd5020Ifztq3h3wk iTATpnBKYE2TGKbqCTeM1lA+wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ8FgBzP lLlg7HAH7lcP8UWoWJ5xMB8GA1UdIwQYMBaAFJM8TNbYQ1wPi+L1I0cm1mEPfto6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBERS9EQTQ1RDQzMDE1 MjUxMUVBODBEQkYwMDlDNEY5QUUwMi9renhNMXRoRFhBLUw0dlVqUnliV1lROS0y am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6eE0xdGhEWEEtTDR2VWpSeWJXWVE5LTJqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBERS9EQTQ1RDQzMDE1MjUxMUVBODBEQkYwMDlDNEY5QUUwMi9renhNMXRoRFhB LUw0dlVqUnliV1lROS0yam8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXcZKqAYFTtfiXei2KVuC4WDe6CELVWT37biziTn14naHZFjS3DxIR LecPOHkhqoeQEPW+VhzauC7UBCt86phdBDtD7uO9sHw8pAqt7CCHGT8IpJVZswBa al2OY2YOVhrDGzcyU6ZzMz5fyUxZlhymG8cWeDKB6KGn8uA15TdWY9xiRMjPq6eS PyCrhbSqWkzBawR1wirln8u8M5Go5cQdDv/oGT5A6/Ba5YhPWlmaBPlZK0ZMZo9h vvRqi+lbwuG7jgSeZP4mpoXm/rsyhwC+ycv8RxbE4LYPCPcewJxJekAWlLYvMrHk WcafBKfyCwKKvs0iD8WiPkfHuL55Bapw -----END CERTIFICATE-----Generated at Sun Jan 25 17:02:46 2026 by rpki-client