This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft File: Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft (raw, json) Hash identifier: cURidUfGDFKDdgs/SGurp/anUTctWSPZPujwzLZdEbE= Subject key identifier: 9B:06:6F:DD:F9:45:8B:92:D2:80:D8:E9:C2:A4:5A:95:B3:12:0E:47 Authority key identifier: 2A:BA:2A:A3:CB:3F:94:58:1C:5D:3D:91:BA:36:B8:A9:D8:E8:DE:AD Certificate issuer: /CN=A91B80C2/serialNumber=2ABA2AA3CB3F94581C5D3D91BA36B8A9D8E8DEAD Certificate serial: 0165 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft Manifest number: 0154 Signing time: Sun 25 Jan 2026 03:35:14 +0000 Manifest this update: Sun 25 Jan 2026 03:35:13 +0000 Manifest next update: Sun 01 Feb 2026 03:35:13 +0000 Files and hashes: 1: Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl (hash: HJ5eoowNkbtRxUx/NecFX54ZMNnUVONpXjacQmTPwfI=) 2: 145B3B88C46B11F085C51F82C4F9AE02.roa (hash: J9CnTUyePYPB90BlLPftIH1AYzCyvJxP8FcjWilMdvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:35:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 357 (0x165) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80C2, serialNumber=2ABA2AA3CB3F94581C5D3D91BA36B8A9D8E8DEAD Validity Not Before: Jan 25 03:35:13 2026 GMT Not After : Feb 1 03:35:13 2026 GMT Subject: CN=69758f71-cf9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ed:97:49:2d:87:4a:49:d9:2c:80:f2:d7:f1: d0:60:dc:34:d7:a3:ed:8b:a4:c6:e1:db:c8:f1:ca: 9c:ad:f3:db:b4:49:41:42:34:c9:57:70:ce:9d:e9: eb:ad:1c:f3:a1:1c:5e:50:14:aa:9d:e6:d4:e5:ba: 64:9b:6b:fe:3a:aa:99:ec:11:fd:80:bb:46:95:39: 7a:ec:e8:9f:b0:69:c7:33:f6:d9:6d:a1:7b:90:36: d1:b3:92:51:e5:d5:06:94:0a:c0:79:74:c2:1c:af: 7c:86:9a:2f:13:3b:4e:40:ff:d9:40:d7:e8:91:b0: a5:7f:61:cf:7b:14:38:65:1a:5d:ed:48:fd:64:9d: bb:d2:bc:08:50:13:e0:fe:5d:4b:c2:b0:4a:22:da: 75:7a:b1:91:98:5b:e4:d6:11:ad:eb:a3:42:9d:5e: d1:5e:37:e3:09:c4:8c:f5:eb:50:57:67:51:af:9f: dd:a0:ec:80:0f:3a:24:cc:77:1e:b1:04:24:2a:55: d1:64:b8:8d:ac:36:d2:67:a8:71:cd:97:e9:40:79: f4:df:14:a3:4c:aa:fb:a9:fc:16:89:9b:ae:f8:b2: ce:69:50:a1:f2:56:89:7e:3d:9b:3e:63:fa:b5:68: a7:9e:fb:84:af:3e:5b:9e:02:c8:e9:21:12:1b:cf: 41:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:06:6F:DD:F9:45:8B:92:D2:80:D8:E9:C2:A4:5A:95:B3:12:0E:47 X509v3 Authority Key Identifier: keyid:2A:BA:2A:A3:CB:3F:94:58:1C:5D:3D:91:BA:36:B8:A9:D8:E8:DE:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:5a:11:01:17:2f:1c:a1:9b:20:f3:3d:83:e1:28:cf:4d:a7: 8e:28:e7:1f:d6:ce:69:60:5c:16:79:7b:3d:a7:58:94:44:a5: e9:97:3b:55:86:ab:a4:70:d9:f6:91:bc:3b:e8:b2:e6:3f:d2: 08:6e:b9:ff:e3:4f:c1:29:e6:e2:0f:1c:65:28:fb:70:b4:fc: 49:97:2f:37:79:ef:c0:40:1c:b7:45:42:90:2d:e0:c3:0b:93: 5e:cd:09:08:ba:8d:1f:4c:52:e5:2c:81:39:c3:48:0e:cd:69: 1b:17:7b:e1:d0:fd:c4:99:e7:17:77:6e:25:a6:46:c8:da:8c: 60:fe:10:5b:b3:c8:5d:1f:21:bc:36:f2:e2:62:59:40:17:58: f1:4b:c6:b4:6c:d9:ca:c8:9a:25:e5:6b:b1:b1:24:f4:b5:ea: a3:26:fa:21:42:d8:e6:02:6c:97:f6:5f:8e:73:2a:f4:4d:c2: ec:be:5c:17:93:eb:5e:d9:32:f5:50:1e:2a:3a:94:f3:06:31: 3a:77:73:9e:dd:db:c1:e0:da:e8:26:d2:8f:65:d5:0c:7f:a7: 59:14:77:b1:d0:06:39:60:64:fe:7d:d6:05:11:7e:0a:b9:41: 03:01:7f:45:cc:cf:88:3f:94:82:b3:fa:e5:b8:2a:b8:30:3d: 21:48:cb:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQzIxMTAvBgNVBAUTKDJBQkEyQUEzQ0IzRjk0NTgxQzVEM0Q5MUJBMzZCOEE5 RDhFOERFQUQwHhcNMjYwMTI1MDMzNTEzWhcNMjYwMjAxMDMzNTEzWjAYMRYwFAYD VQQDDA02OTc1OGY3MS1jZjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAou2XSS2HSknZLIDy1/HQYNw016Pti6TG4dvI8cqcrfPbtElBQjTJV3DOnenr rRzzoRxeUBSqnebU5bpkm2v+OqqZ7BH9gLtGlTl67OifsGnHM/bZbaF7kDbRs5JR 5dUGlArAeXTCHK98hpovEztOQP/ZQNfokbClf2HPexQ4ZRpd7Uj9ZJ270rwIUBPg /l1LwrBKItp1erGRmFvk1hGt66NCnV7RXjfjCcSM9etQV2dRr5/doOyADzokzHce sQQkKlXRZLiNrDbSZ6hxzZfpQHn03xSjTKr7qfwWiZuu+LLOaVCh8laJfj2bPmP6 tWinnvuErz5bngLI6SESG89BgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJsGb935 RYuS0oDY6cKkWpWzEg5HMB8GA1UdIwQYMBaAFCq6KqPLP5RYHF09kbo2uKnY6N6t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBDMi85ODNFNjE1MDE3 MUExMUVGODY1Nzc1NEZDNEY5QUUwMi9Lcm9xbzhzX2xGZ2NYVDJSdWphNHFkam8z cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tyb3FvOHNfbEZnY1hUMlJ1amE0cWRqbzNxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBDMi85ODNFNjE1MDE3MUExMUVGODY1Nzc1NEZDNEY5QUUwMi9Lcm9xbzhzX2xG Z2NYVDJSdWphNHFkam8zcTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpWhEBFy8coZsg8z2D4SjPTaeOKOcf1s5pYFwWeXs9p1iURKXplztV hqukcNn2kbw76LLmP9IIbrn/40/BKebiDxxlKPtwtPxJly83ee/AQBy3RUKQLeDD C5NezQkIuo0fTFLlLIE5w0gOzWkbF3vh0P3EmecXd24lpkbI2oxg/hBbs8hdHyG8 NvLiYllAF1jxS8a0bNnKyJol5WuxsST0teqjJvohQtjmAmyX9l+Ocyr0TcLsvlwX k+te2TL1UB4qOpTzBjE6d3Oe3dvB4NroJtKPZdUMf6dZFHex0AY5YGT+fdYFEX4K uUEDAX9FzM+IP5SCs/rluCq4MD0hSMsn -----END CERTIFICATE-----Generated at Sun Jan 25 21:11:15 2026 by rpki-client