This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft File: KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft (raw, json) Hash identifier: X8oe0jc2nHkoOAciY9P8VXnx6IYI98nXuM1s8DWy7Pk= Subject key identifier: 40:77:62:17:BE:2F:D7:B3:C2:44:CF:BB:7D:C4:13:38:8B:3D:9D:0C Authority key identifier: 28:1D:DA:09:71:75:C0:43:29:43:FD:E5:7C:A3:3D:28:E5:07:3B:C4 Certificate issuer: /CN=A91A7F56/serialNumber=281DDA097175C0432943FDE57CA33D28E5073BC4 Certificate serial: 017D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft Manifest number: 017D Signing time: Sun 25 Jan 2026 02:56:56 +0000 Manifest this update: Sun 25 Jan 2026 02:56:56 +0000 Manifest next update: Sun 01 Feb 2026 02:56:56 +0000 Files and hashes: 1: KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.crl (hash: pQpFelgqUSZ78Y5cO3kVDAxQ/+jlg35P6Fsgz6wckdw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.crl rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 02:56:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 381 (0x17d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7F56, serialNumber=281DDA097175C0432943FDE57CA33D28E5073BC4 Validity Not Before: Jan 25 02:56:56 2026 GMT Not After : Feb 1 02:56:56 2026 GMT Subject: CN=69758678-5b89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:17:d1:ef:4b:8b:e1:00:f3:66:4c:3b:d7:41: 64:70:a8:c7:1d:e7:62:69:f7:23:b3:a0:4b:6a:d4: e0:e2:7c:ad:43:71:4b:bd:6a:87:02:e2:74:9d:f8: 4a:89:2f:71:77:72:0e:5e:68:3e:74:62:e9:7f:f6: f3:74:3e:f5:1f:d8:69:39:a8:81:b0:d7:b0:49:95: ae:a1:3f:b9:43:91:91:74:bd:41:ce:b5:38:5e:1c: 27:3b:79:8a:27:0b:7d:a5:01:ef:3f:31:ad:40:6a: fc:dc:56:68:08:aa:98:8b:ce:b4:11:bb:9b:f1:9d: 29:f3:97:2a:ce:7e:f4:06:24:90:d9:22:bb:73:f1: 05:52:f0:75:85:9f:08:9b:32:b1:fb:13:d1:6f:43: d1:30:25:8d:a3:3c:2b:c9:7e:e0:b0:31:d8:47:6a: 40:b4:d6:52:96:97:d8:d6:dc:bf:6d:c9:d5:69:b9: 64:ba:81:00:d2:89:73:87:0b:28:cc:51:7a:8b:aa: ce:46:0f:88:95:d8:33:2a:48:bd:b5:4d:65:2b:7f: eb:bc:ad:a0:91:45:3f:af:42:75:dc:5a:69:61:9e: b0:9c:89:d2:e9:9c:84:c5:76:4d:73:d7:6e:f3:8f: 4e:9e:fa:27:2f:f0:da:10:10:e3:7f:8f:21:ef:95: a4:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:77:62:17:BE:2F:D7:B3:C2:44:CF:BB:7D:C4:13:38:8B:3D:9D:0C X509v3 Authority Key Identifier: keyid:28:1D:DA:09:71:75:C0:43:29:43:FD:E5:7C:A3:3D:28:E5:07:3B:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:cd:d2:c6:d0:1c:f7:17:8a:d0:b6:1f:c4:7a:ec:1c:20:a3: 1e:a5:12:53:4b:ff:cc:ee:03:02:b3:db:7b:96:c4:7d:13:c0: 44:4e:62:24:2b:84:b7:87:4a:27:83:cf:b4:bb:ba:83:77:33: 91:a0:d3:80:83:35:9e:b2:c3:aa:7f:6e:a0:c3:2f:7a:22:a7: 62:3a:c4:0d:88:e4:6b:49:01:a0:32:29:b1:bb:31:c1:db:6b: cb:54:10:ff:68:7c:8c:5c:e6:f1:a1:02:41:c8:01:af:71:06: c4:5d:de:b9:fd:2e:57:ef:3a:8a:70:71:29:93:72:fd:d4:5a: 76:2f:08:d4:ae:bf:4c:61:b4:95:8c:b4:67:23:cb:1d:12:55: ba:9a:49:cb:19:33:c5:79:ee:83:0d:10:f0:0e:fa:2e:c5:01: a4:35:c5:6e:1a:9d:bd:d6:f9:03:cb:93:c0:3e:0b:d2:08:fc: f7:ee:42:7a:03:11:2d:b5:bf:62:7f:bb:65:2d:f6:c7:9f:98: c2:a4:53:62:bb:b0:2f:f4:8d:06:df:dd:73:d6:96:0f:33:26: 79:f6:c2:b4:1c:ab:f9:41:77:10:f1:c0:95:27:2f:4e:03:af: 09:01:a8:28:d2:58:e9:26:85:85:be:ee:82:f2:22:9b:05:67: f7:c9:12:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdGNTYxMTAvBgNVBAUTKDI4MUREQTA5NzE3NUMwNDMyOTQzRkRFNTdDQTMzRDI4 RTUwNzNCQzQwHhcNMjYwMTI1MDI1NjU2WhcNMjYwMjAxMDI1NjU2WjAYMRYwFAYD VQQDDA02OTc1ODY3OC01Yjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnRfR70uL4QDzZkw710FkcKjHHediafcjs6BLatTg4nytQ3FLvWqHAuJ0nfhK iS9xd3IOXmg+dGLpf/bzdD71H9hpOaiBsNewSZWuoT+5Q5GRdL1BzrU4XhwnO3mK Jwt9pQHvPzGtQGr83FZoCKqYi860Ebub8Z0p85cqzn70BiSQ2SK7c/EFUvB1hZ8I mzKx+xPRb0PRMCWNozwryX7gsDHYR2pAtNZSlpfY1ty/bcnVablkuoEA0olzhwso zFF6i6rORg+IldgzKki9tU1lK3/rvK2gkUU/r0J13FppYZ6wnInS6ZyExXZNc9du 849OnvonL/DaEBDjf48h75WkgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEB3Yhe+ L9ezwkTPu33EEziLPZ0MMB8GA1UdIwQYMBaAFCgd2glxdcBDKUP95XyjPSjlBzvE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0Y1Ni85RTFDODlBNkFD Q0QxMUVFODEwNjkwNTBDNEY5QUUwMi9LQjNhQ1hGMXdFTXBRXzNsZktNOUtPVUhP OFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tCM2FDWEYxd0VNcFFfM2xmS005S09VSE84US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0Y1Ni85RTFDODlBNkFDQ0QxMUVFODEwNjkwNTBDNEY5QUUwMi9LQjNhQ1hGMXdF TXBRXzNsZktNOUtPVUhPOFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDRzdLG0Bz3F4rQth/EeuwcIKMepRJTS//M7gMCs9t7lsR9E8BETmIk K4S3h0ong8+0u7qDdzORoNOAgzWessOqf26gwy96IqdiOsQNiORrSQGgMimxuzHB 22vLVBD/aHyMXObxoQJByAGvcQbEXd65/S5X7zqKcHEpk3L91Fp2LwjUrr9MYbSV jLRnI8sdElW6mknLGTPFee6DDRDwDvouxQGkNcVuGp291vkDy5PAPgvSCPz37kJ6 AxEttb9if7tlLfbHn5jCpFNiu7Av9I0G391z1pYPMyZ59sK0HKv5QXcQ8cCVJy9O A68JAago0ljpJoWFvu6C8iKbBWf3yRJz -----END CERTIFICATE-----Generated at Sun Jan 25 10:44:56 2026 by rpki-client