This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A014A/CC07DAB674FF11EDAB9C9075C4F9AE02/kL0d8TqZHDHxGE1RGvMDFvwAIQI.mft File: kL0d8TqZHDHxGE1RGvMDFvwAIQI.mft (raw, json) Hash identifier: Z95RvzgHj0jAkGu42lh+aJrknuDxIfM9U5dQf+rToW0= Subject key identifier: 5F:EA:FA:B9:2F:B5:28:7C:65:8A:A8:42:EC:89:73:AB:22:3E:14:8C Authority key identifier: 90:BD:1D:F1:3A:99:1C:31:F1:18:4D:51:1A:F3:03:16:FC:00:21:02 Certificate issuer: /CN=A91A014A/serialNumber=90BD1DF13A991C31F1184D511AF30316FC002102 Certificate serial: 0252 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kL0d8TqZHDHxGE1RGvMDFvwAIQI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A014A/CC07DAB674FF11EDAB9C9075C4F9AE02/kL0d8TqZHDHxGE1RGvMDFvwAIQI.mft Manifest number: 024D Signing time: Sun 25 Jan 2026 01:04:24 +0000 Manifest this update: Sun 25 Jan 2026 01:04:24 +0000 Manifest next update: Sun 01 Feb 2026 01:04:24 +0000 Files and hashes: 1: kL0d8TqZHDHxGE1RGvMDFvwAIQI.crl (hash: 9QQjlW8DaGpagYc371FmTRQfl7sN2gheSBIWTR0gbXk=) 2: 203FA37E750611ED95126872C4F9AE02.roa (hash: fm9S9mNo6Y2ygfq7yhWG4UNmDV8piD8pCbOO7u7749k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A014A/CC07DAB674FF11EDAB9C9075C4F9AE02/kL0d8TqZHDHxGE1RGvMDFvwAIQI.crl rsync://rpki.apnic.net/member_repository/A91A014A/CC07DAB674FF11EDAB9C9075C4F9AE02/kL0d8TqZHDHxGE1RGvMDFvwAIQI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kL0d8TqZHDHxGE1RGvMDFvwAIQI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 01:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 594 (0x252) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A014A, serialNumber=90BD1DF13A991C31F1184D511AF30316FC002102 Validity Not Before: Jan 25 01:04:24 2026 GMT Not After : Feb 1 01:04:24 2026 GMT Subject: CN=69756c18-beab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:aa:a1:b4:c6:89:70:35:6e:04:ca:78:03:fd: ef:46:a4:eb:65:28:eb:78:68:fd:1c:b5:ad:5b:d3: fc:a3:9f:c3:09:d5:29:6d:e1:7b:80:d2:27:32:ec: 46:15:63:28:1d:4c:c9:c6:1f:51:d9:91:98:f4:a9: 3c:4c:70:fb:63:7d:d9:a6:51:8c:55:c3:08:83:04: c6:78:72:fc:58:bd:00:6a:c9:c7:70:95:cc:83:18: 17:2c:ee:79:ff:8b:8d:d2:51:ff:20:3c:20:42:07: 9c:24:ee:cf:4d:0b:f6:f2:05:ae:3c:50:d6:c2:8c: 70:e5:97:16:c9:09:f9:dd:46:9b:3b:d9:8b:a7:da: a6:a1:b2:43:5f:c9:e9:78:d4:2a:c2:40:f8:e4:ce: 20:f8:35:02:5a:de:d3:39:a6:22:dc:00:bf:f7:ad: 5b:59:27:f7:de:c2:ed:05:61:d7:5c:95:be:d1:14: 02:4a:60:54:e1:bd:c9:84:b2:cf:01:fb:f0:42:38: b7:42:ff:ac:6e:da:bd:9a:93:7c:39:91:f2:08:d7: 0e:7c:8b:99:4a:20:91:90:d4:29:20:d7:e2:69:00: 5d:5c:00:58:74:4d:53:ad:63:b5:91:77:8c:ad:ef: c9:58:2e:7d:06:72:2d:05:8e:12:82:a3:9c:cc:04: d9:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:EA:FA:B9:2F:B5:28:7C:65:8A:A8:42:EC:89:73:AB:22:3E:14:8C X509v3 Authority Key Identifier: keyid:90:BD:1D:F1:3A:99:1C:31:F1:18:4D:51:1A:F3:03:16:FC:00:21:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A014A/CC07DAB674FF11EDAB9C9075C4F9AE02/kL0d8TqZHDHxGE1RGvMDFvwAIQI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kL0d8TqZHDHxGE1RGvMDFvwAIQI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A014A/CC07DAB674FF11EDAB9C9075C4F9AE02/kL0d8TqZHDHxGE1RGvMDFvwAIQI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:c4:24:d0:56:39:a6:e6:20:ea:48:db:98:38:d5:bd:5a:fe: b9:78:60:31:76:45:c8:de:02:3f:a5:94:bd:c6:ab:0c:60:85: 75:a2:0c:ff:5e:a5:24:75:9a:f1:88:6f:52:25:c9:76:c8:43: 59:59:60:01:e0:da:99:7d:0b:16:d7:9f:67:3f:73:b0:75:b8: 9d:6d:fa:58:c7:49:d7:71:07:7b:f1:be:25:66:36:43:03:1b: 11:e4:82:8a:80:36:65:e7:35:ca:ce:cb:5b:9f:cb:63:d7:20: dc:d5:8f:a8:e4:db:bb:50:38:d1:18:0c:6d:0d:7e:8b:cc:89: 13:c9:5f:a8:89:de:ee:31:5a:09:a8:b6:26:e3:9b:81:73:99: 4d:fa:c5:05:7c:d1:de:45:67:e5:ad:7e:aa:6e:45:94:0d:02: f4:c4:cf:98:08:bc:80:aa:0a:f6:80:aa:98:b5:c4:b3:37:a8: 27:04:b1:0d:01:1a:ff:26:de:2a:cc:96:dc:9a:b8:d0:2e:17: 58:a9:37:03:36:f9:56:b2:55:9d:70:69:45:db:37:34:95:95: 37:a6:a1:d8:ca:41:eb:cd:54:8e:a9:ae:7b:8c:c8:14:2b:59: ab:04:78:b2:aa:f8:86:0a:af:1f:51:99:30:47:d3:ad:2f:32: d3:62:41:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QTAxNEExMTAvBgNVBAUTKDkwQkQxREYxM0E5OTFDMzFGMTE4NEQ1MTFBRjMwMzE2 RkMwMDIxMDIwHhcNMjYwMTI1MDEwNDI0WhcNMjYwMjAxMDEwNDI0WjAYMRYwFAYD VQQDDA02OTc1NmMxOC1iZWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1KqhtMaJcDVuBMp4A/3vRqTrZSjreGj9HLWtW9P8o5/DCdUpbeF7gNInMuxG FWMoHUzJxh9R2ZGY9Kk8THD7Y33ZplGMVcMIgwTGeHL8WL0AasnHcJXMgxgXLO55 /4uN0lH/IDwgQgecJO7PTQv28gWuPFDWwoxw5ZcWyQn53UabO9mLp9qmobJDX8np eNQqwkD45M4g+DUCWt7TOaYi3AC/961bWSf33sLtBWHXXJW+0RQCSmBU4b3JhLLP AfvwQji3Qv+sbtq9mpN8OZHyCNcOfIuZSiCRkNQpINfiaQBdXABYdE1TrWO1kXeM re/JWC59BnItBY4SgqOczATZQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF/q+rkv tSh8ZYqoQuyJc6siPhSMMB8GA1UdIwQYMBaAFJC9HfE6mRwx8RhNURrzAxb8ACEC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDE0QS9DQzA3REFCNjc0 RkYxMUVEQUI5QzkwNzVDNEY5QUUwMi9rTDBkOFRxWkhESHhHRTFSR3ZNREZ2d0FJ UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tMMGQ4VHFaSERIeEdFMVJHdk1ERnZ3QUlRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDE0QS9DQzA3REFCNjc0RkYxMUVEQUI5QzkwNzVDNEY5QUUwMi9rTDBkOFRxWkhE SHhHRTFSR3ZNREZ2d0FJUUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBxCTQVjmm5iDqSNuYONW9Wv65eGAxdkXI3gI/pZS9xqsMYIV1ogz/ XqUkdZrxiG9SJcl2yENZWWAB4NqZfQsW159nP3OwdbidbfpYx0nXcQd78b4lZjZD AxsR5IKKgDZl5zXKzstbn8tj1yDc1Y+o5Nu7UDjRGAxtDX6LzIkTyV+oid7uMVoJ qLYm45uBc5lN+sUFfNHeRWflrX6qbkWUDQL0xM+YCLyAqgr2gKqYtcSzN6gnBLEN ARr/Jt4qzJbcmrjQLhdYqTcDNvlWslWdcGlF2zc0lZU3pqHYykHrzVSOqa57jMgU K1mrBHiyqviGCq8fUZkwR9OtLzLTYkFW -----END CERTIFICATE-----Generated at Mon Jan 26 03:31:39 2026 by rpki-client