This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft File: kI2z-bdG9SC7uahMhT9pJsFeub0.mft (raw, json) Hash identifier: eRn/1so/EafEkDPK/MCMy2JPOkPSQJwrVi7LzOPeJro= Subject key identifier: DE:50:D3:BA:C4:9F:28:21:4A:39:E6:67:F6:4A:98:93:0E:78:D6:ED Authority key identifier: 90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD Certificate issuer: /CN=A919A909/serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Certificate serial: 0134 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft Manifest number: 0131 Signing time: Sun 25 Jan 2026 03:48:00 +0000 Manifest this update: Sun 25 Jan 2026 03:48:00 +0000 Manifest next update: Sun 01 Feb 2026 03:48:00 +0000 Files and hashes: 1: kI2z-bdG9SC7uahMhT9pJsFeub0.crl (hash: /YuJh3uFPG/f2E4/oxT9IUNlOeTdM8pnzbpD+bRhfTU=) 2: 879152E62E4811EF929FE162C4F9AE02.roa (hash: cr46hMBXMjVoUuUCIeS55LaT84JtFcqvVMAfnbq95f8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:47:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 308 (0x134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A909, serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Validity Not Before: Jan 25 03:48:00 2026 GMT Not After : Feb 1 03:48:00 2026 GMT Subject: CN=69759270-c62d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:d6:27:78:af:a3:ff:05:6e:ae:47:92:e0:b1: 47:6a:37:c0:2d:21:23:8a:bf:62:6d:63:29:49:af: c5:50:f0:4a:1d:22:42:e5:b1:fb:e3:91:1e:91:7d: 60:87:36:c3:12:94:be:95:f8:b5:65:44:0c:bb:a6: 23:d6:8a:c9:fe:10:d6:4f:88:aa:78:64:7e:c0:3c: f4:48:d1:6e:87:59:3f:04:86:9c:e7:37:29:91:5c: 26:ab:a3:5f:bc:f6:3f:16:c1:ef:90:82:24:68:84: 8d:00:cb:03:fc:6f:3b:e6:a9:ce:da:04:7f:7d:1c: 8d:86:62:6d:bb:c1:f7:70:9e:76:e2:b7:1f:93:44: 74:1e:35:6f:21:23:07:66:3f:67:c0:ea:31:45:cb: 1f:94:b0:fc:5b:af:1a:13:62:ef:81:4d:ef:58:4a: 02:2b:da:f5:ef:91:45:75:34:ba:51:e2:85:0c:a5: f9:8d:e3:93:75:ba:11:e3:fe:40:8a:aa:b9:2f:32: fc:cb:ed:dd:9a:b5:c0:d8:f2:8e:d6:1a:ee:6f:71: 37:b2:1b:2d:f2:1d:69:4a:87:56:24:2d:4b:71:9b: 10:0d:02:38:dd:74:fc:38:6a:1a:5a:99:bb:cf:56: 79:68:03:89:af:4e:f2:f6:63:21:33:34:7c:5a:7c: 4c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:50:D3:BA:C4:9F:28:21:4A:39:E6:67:F6:4A:98:93:0E:78:D6:ED X509v3 Authority Key Identifier: keyid:90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:d8:72:56:97:ff:ac:18:61:9f:cf:98:29:be:7a:de:5c:96: 32:96:ed:4f:d1:f3:50:6b:01:11:52:b2:60:5b:3f:4e:9d:60: f8:11:77:16:1e:87:65:32:1e:e1:d8:40:42:97:20:fc:72:46: 63:f6:ba:09:85:32:3e:8e:97:cb:91:43:3d:45:76:b8:7c:94: cd:a4:66:0b:77:ad:e1:15:21:e1:3c:8a:d0:ca:10:15:1f:17: 92:f2:7b:fc:56:1a:13:2b:80:80:9b:02:9e:3d:91:fe:3a:34: a5:43:0a:f3:fe:b7:13:17:39:6e:38:b1:ba:6a:89:ee:82:ae: ff:82:3a:eb:ef:ee:14:5e:f5:fe:55:99:42:1f:06:af:6c:38: 36:15:1a:54:3c:72:b0:95:5b:78:d2:57:55:64:fc:fa:20:e0: cf:6c:3c:18:86:1a:4c:d5:c5:56:44:31:8c:59:b9:27:85:50: a8:2b:7e:1f:dc:63:7e:4a:aa:cb:85:90:84:47:ad:d2:3c:68: 34:6c:c4:f4:be:89:65:73:e9:ff:ae:5d:be:0e:25:87:56:e0: b3:7a:32:80:41:a5:e9:ba:a5:15:15:ea:58:bb:a1:34:aa:c7: 0d:cd:cc:69:fe:be:06:26:94:2b:23:23:80:2c:0a:73:67:c9: d4:ca:83:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE5MDkxMTAvBgNVBAUTKDkwOERCM0Y5Qjc0NkY1MjBCQkI5QTg0Qzg1M0Y2OTI2 QzE1RUI5QkQwHhcNMjYwMTI1MDM0ODAwWhcNMjYwMjAxMDM0ODAwWjAYMRYwFAYD VQQDDA02OTc1OTI3MC1jNjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA99YneK+j/wVurkeS4LFHajfALSEjir9ibWMpSa/FUPBKHSJC5bH745EekX1g hzbDEpS+lfi1ZUQMu6Yj1orJ/hDWT4iqeGR+wDz0SNFuh1k/BIac5zcpkVwmq6Nf vPY/FsHvkIIkaISNAMsD/G875qnO2gR/fRyNhmJtu8H3cJ524rcfk0R0HjVvISMH Zj9nwOoxRcsflLD8W68aE2LvgU3vWEoCK9r175FFdTS6UeKFDKX5jeOTdboR4/5A iqq5LzL8y+3dmrXA2PKO1hrub3E3shst8h1pSodWJC1LcZsQDQI43XT8OGoaWpm7 z1Z5aAOJr07y9mMhMzR8WnxMNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN5Q07rE nyghSjnmZ/ZKmJMOeNbtMB8GA1UdIwQYMBaAFJCNs/m3RvUgu7moTIU/aSbBXrm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTkwOS8yMDlFRERDRTJB MzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlTQzd1YWhNaFQ5cEpzRmV1 YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJMnotYmRHOVNDN3VhaE1oVDlwSnNGZXViMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTkwOS8yMDlFRERDRTJBMzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlT Qzd1YWhNaFQ5cEpzRmV1YjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC72HJWl/+sGGGfz5gpvnreXJYylu1P0fNQawERUrJgWz9OnWD4EXcW HodlMh7h2EBClyD8ckZj9roJhTI+jpfLkUM9RXa4fJTNpGYLd63hFSHhPIrQyhAV HxeS8nv8VhoTK4CAmwKePZH+OjSlQwrz/rcTFzluOLG6aonugq7/gjrr7+4UXvX+ VZlCHwavbDg2FRpUPHKwlVt40ldVZPz6IODPbDwYhhpM1cVWRDGMWbknhVCoK34f 3GN+SqrLhZCER63SPGg0bMT0vollc+n/rl2+DiWHVuCzejKAQaXpuqUVFepYu6E0 qscNzcxp/r4GJpQrIyOALApzZ8nUyoPw -----END CERTIFICATE-----Generated at Sun Jan 25 14:00:30 2026 by rpki-client