This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft File: kDfAsp43CSqDhSzkuIW3dqfB47Y.mft (raw, json) Hash identifier: oDf60Mty5E+eJVcVYALhNML13QOAKwqXJRrUGGKx6hw= Subject key identifier: 4F:72:22:D5:D0:14:18:84:67:E0:2A:9E:7A:A3:23:B5:64:36:D8:ED Authority key identifier: 90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 Certificate issuer: /CN=A91957D1/serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Certificate serial: 0196 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft Manifest number: 0192 Signing time: Sun 25 Jan 2026 02:49:37 +0000 Manifest this update: Sun 25 Jan 2026 02:49:37 +0000 Manifest next update: Sun 01 Feb 2026 02:49:37 +0000 Files and hashes: 1: kDfAsp43CSqDhSzkuIW3dqfB47Y.crl (hash: SJfJH7lpk2XjhyK7Mg+0Qv0Ql3lNqA/eXX/JAhFDqjg=) 2: 72CE4D80958411EEB3748B58C4F9AE02.roa (hash: GyK0WIBreUywAdxh5kO624MwwPbx0zTO9wpPeKdWbNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 02:49:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 406 (0x196) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91957D1, serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Validity Not Before: Jan 25 02:49:37 2026 GMT Not After : Feb 1 02:49:37 2026 GMT Subject: CN=697584c1-5a5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:9e:cd:7d:7d:6f:39:17:e2:65:c5:97:68:15: 58:15:15:63:a3:92:15:c3:7a:d5:72:d8:fc:b8:55: 6f:ae:6e:26:b2:33:c8:6f:9d:f5:9a:1c:5c:d3:88: fb:36:18:49:5d:e1:d1:96:a0:f8:9d:a2:45:44:91: f1:2e:70:c5:bc:63:6b:b6:2f:74:23:32:16:48:b9: 9e:e3:26:ec:7c:61:3d:ea:bc:ac:2e:4e:c4:81:c7: fb:dc:79:56:96:72:82:47:20:4a:fe:5c:26:51:26: 0c:96:63:87:6b:d0:09:2b:3f:aa:e8:8b:12:b3:86: aa:5b:fd:8b:9f:bb:4b:5e:7f:e5:e3:6d:d8:21:9f: db:f6:22:49:8f:b2:0e:b3:dd:2e:3e:65:c6:fe:0d: cf:28:39:99:06:eb:9d:02:c0:7e:72:1b:77:aa:c7: 69:d9:59:18:43:98:57:4e:b5:99:47:97:cd:e3:be: d9:bb:a1:d5:6a:05:1a:c0:6c:79:ab:04:a0:f5:69: 4a:a9:99:d4:03:d8:d9:64:79:14:b7:98:7d:75:58: d8:1a:54:18:d2:7e:b4:56:a8:b1:54:c8:9c:41:51: 08:cb:df:3d:8d:ea:ef:0b:dd:c8:d3:50:f2:9d:5e: 0b:a8:86:63:d3:d3:cb:fb:91:17:dd:65:58:b4:22: bb:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:72:22:D5:D0:14:18:84:67:E0:2A:9E:7A:A3:23:B5:64:36:D8:ED X509v3 Authority Key Identifier: keyid:90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:b1:5e:17:a8:67:95:c1:7f:7f:4c:f5:9d:55:13:8c:c8:af: 3c:b2:87:2d:64:17:40:99:de:38:aa:73:05:43:54:eb:4c:1e: bf:9a:33:74:8b:cf:23:fd:05:2b:c6:27:36:51:74:74:37:bb: cf:0f:83:f9:e2:ed:57:2c:ad:ca:fa:8f:68:49:ae:d0:d1:3f: 6e:ef:d2:0e:00:a8:3d:ec:3f:3c:88:97:42:4d:64:a7:b9:bb: 76:56:4e:7b:30:36:21:3f:3e:58:20:33:15:62:42:66:f2:76: f4:0c:4d:e1:29:20:e5:74:19:a9:21:a2:8f:c9:c6:ef:31:76: 21:1e:64:ea:41:9b:3b:0d:9d:3f:7d:8a:e3:84:12:9e:8d:bb: 49:60:b8:10:f9:ba:f0:3d:2e:05:16:86:4d:d4:45:93:c9:0e: b5:0a:0b:3d:1e:96:1a:72:5d:71:3c:a0:de:33:89:5f:4a:66: eb:0d:56:19:c0:39:b0:5e:2e:df:38:d9:e7:fb:10:35:38:2f: d8:2e:19:2f:9d:aa:e0:30:34:9f:ca:48:98:48:dc:f5:a8:6c: a8:ce:a1:53:9a:fd:60:de:8a:39:c7:2c:1b:db:e4:8d:0e:ce: 37:49:38:fb:68:f2:c2:2f:80:1c:41:9b:88:7d:75:50:ef:92: 51:a6:f6:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU3RDExMTAvBgNVBAUTKDkwMzdDMEIyOUUzNzA5MkE4Mzg1MkNFNEI4ODVCNzc2 QTdDMUUzQjYwHhcNMjYwMTI1MDI0OTM3WhcNMjYwMjAxMDI0OTM3WjAYMRYwFAYD VQQDDA02OTc1ODRjMS01YTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyp7NfX1vORfiZcWXaBVYFRVjo5IVw3rVctj8uFVvrm4msjPIb531mhxc04j7 NhhJXeHRlqD4naJFRJHxLnDFvGNrti90IzIWSLme4ybsfGE96rysLk7Egcf73HlW lnKCRyBK/lwmUSYMlmOHa9AJKz+q6IsSs4aqW/2Ln7tLXn/l423YIZ/b9iJJj7IO s90uPmXG/g3PKDmZBuudAsB+cht3qsdp2VkYQ5hXTrWZR5fN477Zu6HVagUawGx5 qwSg9WlKqZnUA9jZZHkUt5h9dVjYGlQY0n60VqixVMicQVEIy989jervC93I01Dy nV4LqIZj09PL+5EX3WVYtCK7kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE9yItXQ FBiEZ+AqnnqjI7VkNtjtMB8GA1UdIwQYMBaAFJA3wLKeNwkqg4Us5LiFt3anweO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTdEMS9GMDUzNzc5NDkz QkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NTcURoU3prdUlXM2RxZkI0 N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEZkFzcDQzQ1NxRGhTemt1SVczZHFmQjQ3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTdEMS9GMDUzNzc5NDkzQkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NT cURoU3prdUlXM2RxZkI0N1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAosV4XqGeVwX9/TPWdVROMyK88soctZBdAmd44qnMFQ1TrTB6/mjN0 i88j/QUrxic2UXR0N7vPD4P54u1XLK3K+o9oSa7Q0T9u79IOAKg97D88iJdCTWSn ubt2Vk57MDYhPz5YIDMVYkJm8nb0DE3hKSDldBmpIaKPycbvMXYhHmTqQZs7DZ0/ fYrjhBKejbtJYLgQ+brwPS4FFoZN1EWTyQ61Cgs9HpYacl1xPKDeM4lfSmbrDVYZ wDmwXi7fONnn+xA1OC/YLhkvnargMDSfykiYSNz1qGyozqFTmv1g3oo5xywb2+SN Ds43STj7aPLCL4AcQZuIfXVQ75JRpvZW -----END CERTIFICATE-----Generated at Sun Jan 25 18:36:58 2026 by rpki-client