This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft File: KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft (raw, json) Hash identifier: /7KVzs6Wva3VA+HmotCoEraxQKb8GWV9WVXwZPviP58= Subject key identifier: 68:3F:D3:1D:7F:EC:37:1D:08:B5:AC:82:A4:03:F7:58:F1:B2:4B:B7 Authority key identifier: 29:0C:40:10:FA:DC:47:69:47:E0:09:3F:43:F7:00:4F:0D:7C:5C:1C Certificate issuer: /CN=A91A3456/serialNumber=290C4010FADC476947E0093F43F7004F0D7C5C1C Certificate serial: 0B8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft Manifest number: 0B86 Signing time: Sat 24 Jan 2026 18:36:46 +0000 Manifest this update: Sat 24 Jan 2026 18:36:46 +0000 Manifest next update: Sat 31 Jan 2026 18:36:46 +0000 Files and hashes: 1: KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl (hash: JMv9MHgM5lS4TiYGDNUtBgr5BtBUISmPghOQ2y50TFU=) 2: 496096EE41A311EABAADCE0AC4F9AE02.roa (hash: PulA86jFfi+mSmGrurNlPPzi/J9i4GAt5gWrp9tpCBs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 18:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2957 (0xb8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3456, serialNumber=290C4010FADC476947E0093F43F7004F0D7C5C1C Validity Not Before: Jan 24 18:36:46 2026 GMT Not After : Jan 31 18:36:46 2026 GMT Subject: CN=6975113e-e0b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ba:9c:e4:72:96:1b:17:3c:c5:f3:78:b7:8a: 7a:9b:bc:28:40:fd:cf:ac:bd:e9:7c:40:78:72:9a: d7:a1:dc:96:db:22:ce:0d:e3:d8:da:3a:dd:6e:24: 27:e1:a6:6c:d2:23:c1:de:e6:71:fb:82:d3:5d:23: a3:73:de:69:2b:0e:b1:35:c9:65:a0:a9:06:b9:95: 84:af:75:54:ed:f7:49:0b:83:a2:19:c9:86:c7:00: 78:ff:98:38:87:7c:10:04:a2:2a:ea:63:b2:82:c3: a7:f2:93:58:b6:3d:25:de:18:88:34:17:f0:4d:f5: 05:9a:b7:4e:eb:dc:bf:a5:35:a3:ef:a2:02:b2:c1: ac:66:45:c1:b1:87:fd:a9:85:60:7b:8d:6a:9d:04: 2a:62:3b:87:7b:99:80:af:3a:68:9d:56:98:41:bb: 14:2a:d9:f5:58:e2:4a:9b:19:c1:d7:0f:00:8e:ae: a6:3f:32:ca:0c:d7:d8:62:95:83:37:01:a3:87:7f: 35:9b:fd:d6:bf:a8:b9:7e:e8:e6:db:ee:0f:b2:f3: 9c:1d:13:f5:6b:70:d4:1b:cb:23:36:18:c9:60:e9: 2c:40:b9:97:78:de:8f:ec:d1:95:70:df:25:79:a3: 7b:58:58:74:3c:ea:1f:61:43:2a:31:e0:43:c0:3f: 05:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:3F:D3:1D:7F:EC:37:1D:08:B5:AC:82:A4:03:F7:58:F1:B2:4B:B7 X509v3 Authority Key Identifier: keyid:29:0C:40:10:FA:DC:47:69:47:E0:09:3F:43:F7:00:4F:0D:7C:5C:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:72:f5:f6:90:10:95:be:2a:95:6f:bf:00:be:2f:99:f5:44: d7:2d:87:67:5d:b0:16:0c:4a:37:98:b2:79:62:ef:df:c2:f0: db:b0:83:75:91:b7:33:10:a6:89:8a:cb:27:5d:bc:79:af:66: 70:bb:a5:2e:57:e6:a8:a1:c3:f0:00:99:bf:68:bd:98:e6:79: fe:b4:69:06:26:91:68:b6:a2:27:0c:97:ea:f7:e2:b4:9d:8e: a7:a9:05:b8:6c:f3:df:11:8f:41:c0:13:6c:ed:6d:af:30:bb: 0c:7a:c6:5a:01:90:56:f4:38:10:32:83:b9:d4:cf:64:9d:b1: ce:5f:ea:10:4e:a4:84:9c:86:92:dd:f4:16:3f:99:39:2c:aa: 9d:4c:d2:42:ac:63:fe:90:68:f4:2d:d3:84:7d:de:32:3c:a4: aa:81:77:65:91:1b:73:70:29:ff:1d:cc:af:2a:fc:5c:db:cb: 6b:21:b2:35:8a:69:63:13:ae:26:e4:3f:10:f1:6a:65:f7:71: 84:77:7d:96:f1:51:d8:44:bf:68:d8:00:c9:8b:67:d3:a0:eb: e7:68:ee:27:86:05:82:de:00:e3:bd:14:46:95:7c:05:2b:68: 20:fc:29:18:46:c0:4b:a4:c9:fe:65:2b:86:0c:e4:e3:38:93: f7:f0:3d:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC40wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM0NTYxMTAvBgNVBAUTKDI5MEM0MDEwRkFEQzQ3Njk0N0UwMDkzRjQzRjcwMDRG MEQ3QzVDMUMwHhcNMjYwMTI0MTgzNjQ2WhcNMjYwMTMxMTgzNjQ2WjAYMRYwFAYD VQQDDA02OTc1MTEzZS1lMGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy7qc5HKWGxc8xfN4t4p6m7woQP3PrL3pfEB4cprXodyW2yLODePY2jrdbiQn 4aZs0iPB3uZx+4LTXSOjc95pKw6xNclloKkGuZWEr3VU7fdJC4OiGcmGxwB4/5g4 h3wQBKIq6mOygsOn8pNYtj0l3hiINBfwTfUFmrdO69y/pTWj76ICssGsZkXBsYf9 qYVge41qnQQqYjuHe5mArzponVaYQbsUKtn1WOJKmxnB1w8Ajq6mPzLKDNfYYpWD NwGjh381m/3Wv6i5fujm2+4PsvOcHRP1a3DUG8sjNhjJYOksQLmXeN6P7NGVcN8l eaN7WFh0POofYUMqMeBDwD8FtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGg/0x1/ 7DcdCLWsgqQD91jxsku3MB8GA1UdIwQYMBaAFCkMQBD63EdpR+AJP0P3AE8NfFwc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzQ1Ni82QzI3RjI1QTQx QTExMUVBQTQ3RDFFODZDNEY5QUUwMi9LUXhBRVByY1IybEg0QWtfUV9jQVR3MThY QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tReEFFUHJjUjJsSDRBa19RX2NBVHcxOFhCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzQ1Ni82QzI3RjI1QTQxQTExMUVBQTQ3RDFFODZDNEY5QUUwMi9LUXhBRVByY1Iy bEg0QWtfUV9jQVR3MThYQncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAcvX2kBCVviqVb78Avi+Z9UTXLYdnXbAWDEo3mLJ5Yu/fwvDbsIN1 kbczEKaJissnXbx5r2Zwu6UuV+aoocPwAJm/aL2Y5nn+tGkGJpFotqInDJfq9+K0 nY6nqQW4bPPfEY9BwBNs7W2vMLsMesZaAZBW9DgQMoO51M9knbHOX+oQTqSEnIaS 3fQWP5k5LKqdTNJCrGP+kGj0LdOEfd4yPKSqgXdlkRtzcCn/HcyvKvxc28trIbI1 imljE64m5D8Q8Wpl93GEd32W8VHYRL9o2ADJi2fToOvnaO4nhgWC3gDjvRRGlXwF K2gg/CkYRsBLpMn+ZSuGDOTjOJP38D1W -----END CERTIFICATE-----Generated at Sun Jan 25 09:39:44 2026 by rpki-client