This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft File: KbaocCpK1kSocQZLZAet5JPmOo0.mft (raw, json) Hash identifier: +4Ab5XJlGjhUKpj6EoR8wDJEaydJx3Sr6vwOvxjvvJM= Subject key identifier: 8E:33:61:54:A9:7C:4B:E4:29:4D:7A:26:31:A4:F9:A1:D2:41:B3:B1 Authority key identifier: 29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D Certificate issuer: /CN=A919EAF3/serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Certificate serial: 1A09 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft Manifest number: 19FA Signing time: Sat 24 Jan 2026 16:08:33 +0000 Manifest this update: Sat 24 Jan 2026 16:08:32 +0000 Manifest next update: Sat 31 Jan 2026 16:08:32 +0000 Files and hashes: 1: KbaocCpK1kSocQZLZAet5JPmOo0.crl (hash: bKYCcOgtqMSDQ8mnRjsCNNfPcbYO5648/LxSmeB93L0=) 2: E7729178378211EF822BAA6EC4F9AE02.roa (hash: 9LBAFHVyWvEKSALgxe/WVtOrUQqJ4PPcHQSe6I3XcVM=) 3: 92AEE092378211EFAEB6B36DC4F9AE02.roa (hash: vof6OG8sAX0uHAvhetFYEpdSjwUJhtpp1UkP8lk0Gm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 16:08:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6665 (0x1a09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EAF3, serialNumber=29B6A8702A4AD644A871064B6407ADE493E63A8D Validity Not Before: Jan 24 16:08:32 2026 GMT Not After : Jan 31 16:08:32 2026 GMT Subject: CN=6974ee81-f38a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:71:d9:c2:3a:e1:1e:64:fc:ce:28:ed:43:1b: 5c:d2:49:23:a6:8b:38:53:be:39:e7:59:ca:60:8e: b5:5f:34:72:e9:29:e3:96:19:f7:ba:8d:91:76:4d: f3:4a:c2:a7:78:d2:ae:a3:c4:43:a5:c1:ba:09:58: af:4a:f8:5a:67:b8:7e:f5:2c:f8:02:3d:fa:d7:96: bc:b9:57:ca:9a:23:d7:72:5f:8d:3e:7a:1d:f2:76: 35:74:31:2e:a1:6c:84:5f:85:bf:2a:02:ad:3a:c3: da:9a:b0:35:86:1d:8e:b8:ee:a5:f7:3d:e4:bc:18: 63:bf:76:01:b4:ac:bd:7e:44:52:ac:81:a4:9f:6c: f9:d6:25:9f:2b:9d:6a:8a:80:6e:f2:6b:94:3e:92: 08:82:92:5a:cc:c9:24:bd:1a:0d:ad:d7:ba:18:4d: ac:0b:cd:34:89:3b:05:d6:c3:a7:04:64:45:d9:3e: ff:20:13:32:20:35:03:9a:a2:09:fe:6c:11:36:40: b8:d9:eb:6f:43:65:97:db:87:97:1a:db:d7:00:fb: 32:d3:8c:c3:06:78:4f:3a:ad:09:76:e9:47:2a:7e: e6:19:00:01:19:66:ba:ee:55:61:a4:17:28:8b:ae: 42:3e:53:20:96:ea:c3:30:1b:b8:00:91:0b:78:f5: 79:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:33:61:54:A9:7C:4B:E4:29:4D:7A:26:31:A4:F9:A1:D2:41:B3:B1 X509v3 Authority Key Identifier: keyid:29:B6:A8:70:2A:4A:D6:44:A8:71:06:4B:64:07:AD:E4:93:E6:3A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KbaocCpK1kSocQZLZAet5JPmOo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EAF3/93BB502E6D1811E7A815DA80C4F9AE02/KbaocCpK1kSocQZLZAet5JPmOo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:4d:ac:61:8d:56:89:d4:4c:f6:9f:3e:6a:36:cc:38:58:1d: 0f:54:a1:02:bd:61:28:95:eb:c6:56:92:a5:86:86:34:82:33: 1f:2b:c9:99:02:1d:87:4f:7b:a5:db:fb:95:f9:35:87:f7:76: fd:45:86:f0:f4:07:0c:a0:c7:0f:6a:90:52:92:eb:86:e8:ae: d4:bf:e2:f3:6d:6b:89:33:cc:b5:5b:dd:a3:02:0b:44:d0:0e: ec:51:10:94:22:e2:bb:9f:55:21:53:30:85:89:98:4d:ce:d4: 85:32:2f:16:14:ff:02:92:8f:7b:b4:f9:8e:7a:88:f6:94:94: 74:0a:f9:49:e8:b0:ff:96:ad:93:2d:66:d8:e8:e9:90:6a:77: 46:08:6e:63:b1:7f:26:fa:63:06:a1:dd:8d:9c:2a:a0:1f:ae: 46:e1:72:df:23:3b:00:e3:e5:72:de:66:f7:b6:f9:0e:21:20: 55:ca:44:89:b3:2b:24:3d:d0:0a:6a:87:e4:1b:64:82:2e:41: e1:7b:25:14:3d:1e:82:13:f0:67:c5:fe:e2:ff:03:23:68:86: 38:8f:96:10:5c:be:77:72:b0:d4:45:d6:94:e6:8c:75:9c:7e: 5e:51:0b:87:5d:94:72:d2:0d:c3:8b:7b:19:dd:06:a3:ea:07: ec:e4:b6:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVBRjMxMTAvBgNVBAUTKDI5QjZBODcwMkE0QUQ2NDRBODcxMDY0QjY0MDdBREU0 OTNFNjNBOEQwHhcNMjYwMTI0MTYwODMyWhcNMjYwMTMxMTYwODMyWjAYMRYwFAYD VQQDDA02OTc0ZWU4MS1mMzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy3HZwjrhHmT8zijtQxtc0kkjpos4U74551nKYI61XzRy6Snjlhn3uo2Rdk3z SsKneNKuo8RDpcG6CVivSvhaZ7h+9Sz4Aj3615a8uVfKmiPXcl+NPnod8nY1dDEu oWyEX4W/KgKtOsPamrA1hh2OuO6l9z3kvBhjv3YBtKy9fkRSrIGkn2z51iWfK51q ioBu8muUPpIIgpJazMkkvRoNrde6GE2sC800iTsF1sOnBGRF2T7/IBMyIDUDmqIJ /mwRNkC42etvQ2WX24eXGtvXAPsy04zDBnhPOq0JdulHKn7mGQABGWa67lVhpBco i65CPlMglurDMBu4AJELePV5xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI4zYVSp fEvkKU16JjGk+aHSQbOxMB8GA1UdIwQYMBaAFCm2qHAqStZEqHEGS2QHreST5jqN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUFGMy85M0JCNTAyRTZE MTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFrU29jUVpMWkFldDVKUG1P bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tiYW9jQ3BLMWtTb2NRWkxaQWV0NUpQbU9vMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUFGMy85M0JCNTAyRTZEMTgxMUU3QTgxNURBODBDNEY5QUUwMi9LYmFvY0NwSzFr U29jUVpMWkFldDVKUG1PbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeTaxhjVaJ1Ez2nz5qNsw4WB0PVKECvWEolevGVpKlhoY0gjMfK8mZ Ah2HT3ul2/uV+TWH93b9RYbw9AcMoMcPapBSkuuG6K7Uv+LzbWuJM8y1W92jAgtE 0A7sURCUIuK7n1UhUzCFiZhNztSFMi8WFP8Cko97tPmOeoj2lJR0CvlJ6LD/lq2T LWbY6OmQandGCG5jsX8m+mMGod2NnCqgH65G4XLfIzsA4+Vy3mb3tvkOISBVykSJ syskPdAKaofkG2SCLkHheyUUPR6CE/Bnxf7i/wMjaIY4j5YQXL53crDURdaU5ox1 nH5eUQuHXZRy0g3Di3sZ3Qaj6gfs5LYx -----END CERTIFICATE-----Generated at Sun Jan 25 15:46:08 2026 by rpki-client