This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft File: lKlQswO0aQDdWjBhAwyJpIloA68.mft (raw, json) Hash identifier: voO7VPHmmmVlTjdxCmk9hFyaz7OBNen8aLyoMophmcA= Subject key identifier: 80:1B:42:C2:9C:AA:1F:59:57:8E:C1:CC:AD:D9:13:2F:14:F4:D4:68 Authority key identifier: 94:A9:50:B3:03:B4:69:00:DD:5A:30:61:03:0C:89:A4:89:68:03:AF Certificate issuer: /CN=A91BAD2D/serialNumber=94A950B303B46900DD5A3061030C89A4896803AF Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft Manifest number: 0165 Signing time: Fri 23 Jan 2026 03:19:44 +0000 Manifest this update: Fri 23 Jan 2026 03:19:43 +0000 Manifest next update: Fri 30 Jan 2026 03:19:43 +0000 Files and hashes: 1: lKlQswO0aQDdWjBhAwyJpIloA68.crl (hash: NH7R0VYekCnM/3XFjnIHf1yATAU2a0dCJDVt+l/b0fs=) 2: 10771E5497C211F0A9D40817C4F9AE02.roa (hash: v/Xxd5gw24bVPmwugefsnZRtykzRBUwrtrP5k40Invw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.crl rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 03:19:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAD2D, serialNumber=94A950B303B46900DD5A3061030C89A4896803AF Validity Not Before: Jan 23 03:19:43 2026 GMT Not After : Jan 30 03:19:43 2026 GMT Subject: CN=6972e8d0-0a83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e2:eb:48:f6:de:8e:ce:aa:0b:9f:56:da:f3: 0c:77:01:1a:3a:80:97:c1:83:ac:bf:7d:c3:19:44: 91:1d:80:e7:72:11:1e:01:6d:e3:5d:c0:de:23:26: 68:5e:21:e1:c6:44:d3:52:46:5f:52:a8:76:f7:a8: a3:e3:05:77:65:fd:ca:25:a1:4d:d9:18:8a:c6:cc: 2c:e2:d4:8d:4c:f6:3d:ff:98:c0:74:e5:36:48:c5: 56:bf:4f:e2:a0:8f:c1:5e:0e:f2:14:53:19:a8:18: c2:86:25:e1:6b:03:de:86:6b:1c:4e:68:18:18:31: ac:f1:97:9c:11:c1:e4:81:84:04:11:ee:b2:b0:f4: 88:3a:6d:e2:33:1c:b6:f6:39:51:7c:35:6e:c6:ac: 65:53:ca:39:59:c4:7a:51:1d:50:18:7e:e1:3e:be: 1f:47:9d:70:72:74:a4:21:c0:6a:d2:fc:2c:77:7f: cc:92:66:35:6d:ba:40:ff:92:fe:cb:48:0b:5d:8f: e5:ca:11:92:af:b3:71:5e:31:8c:31:bf:18:b6:91: 1b:83:17:26:53:39:ff:65:d9:31:89:6f:88:67:0c: 8c:fe:67:44:c7:17:89:13:a9:1d:d6:14:6b:ef:12: dd:93:69:01:95:91:3d:4e:95:32:9e:b2:1e:5f:b2: d0:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:1B:42:C2:9C:AA:1F:59:57:8E:C1:CC:AD:D9:13:2F:14:F4:D4:68 X509v3 Authority Key Identifier: keyid:94:A9:50:B3:03:B4:69:00:DD:5A:30:61:03:0C:89:A4:89:68:03:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:5c:e0:22:3a:cc:50:45:9d:d6:76:07:b4:e0:b7:dc:80:f1: a8:2a:12:7a:44:db:19:82:ea:d3:12:ee:d2:c3:f5:5b:fa:3a: c7:36:a6:8e:ec:00:2b:27:2a:77:bb:92:a2:fc:e9:5f:b1:ff: d7:c5:31:01:b3:4e:11:07:fb:57:7c:fc:c4:1e:ce:15:03:ff: 3d:11:28:16:93:b5:5d:3a:88:2e:c8:32:a3:f6:dc:8e:24:b6: 1c:48:8d:3b:a7:2b:16:ed:fd:ff:52:cf:33:49:22:97:90:99: b9:51:20:b7:47:08:0b:aa:13:02:4c:90:79:a4:0e:e0:89:46: 78:46:a3:dd:7b:31:9a:39:9f:e3:c4:7a:80:0f:3f:c1:ea:ba: 64:f2:bd:8f:d6:c8:79:fe:d0:a7:bc:93:28:12:9b:f0:7e:b4: 73:89:ca:29:62:45:7b:2e:17:94:b6:89:8b:b4:5f:53:6d:de: a6:b1:1f:9f:a6:e0:fd:50:66:f8:77:be:4a:f5:8a:e2:00:b3: 79:94:c1:d3:4c:f1:81:e9:d0:47:be:e5:0e:3c:64:5f:28:0a: 9e:48:73:d5:02:3e:42:ec:2f:a8:a1:0f:ec:96:99:30:df:3f: 41:40:4d:a3:c1:f4:3e:cb:77:92:08:ab:5c:d8:b1:50:d7:50: 08:8a:9b:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFEMkQxMTAvBgNVBAUTKDk0QTk1MEIzMDNCNDY5MDBERDVBMzA2MTAzMEM4OUE0 ODk2ODAzQUYwHhcNMjYwMTIzMDMxOTQzWhcNMjYwMTMwMDMxOTQzWjAYMRYwFAYD VQQDDA02OTcyZThkMC0wYTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqOLrSPbejs6qC59W2vMMdwEaOoCXwYOsv33DGUSRHYDnchEeAW3jXcDeIyZo XiHhxkTTUkZfUqh296ij4wV3Zf3KJaFN2RiKxsws4tSNTPY9/5jAdOU2SMVWv0/i oI/BXg7yFFMZqBjChiXhawPehmscTmgYGDGs8ZecEcHkgYQEEe6ysPSIOm3iMxy2 9jlRfDVuxqxlU8o5WcR6UR1QGH7hPr4fR51wcnSkIcBq0vwsd3/MkmY1bbpA/5L+ y0gLXY/lyhGSr7NxXjGMMb8YtpEbgxcmUzn/ZdkxiW+IZwyM/mdExxeJE6kd1hRr 7xLdk2kBlZE9TpUynrIeX7LQfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIAbQsKc qh9ZV47BzK3ZEy8U9NRoMB8GA1UdIwQYMBaAFJSpULMDtGkA3VowYQMMiaSJaAOv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUQyRC85MDg4RUU1QUU4 MDExMUVFQUQ2QzUwMzBDNEY5QUUwMi9sS2xRc3dPMGFRRGRXakJoQXd5SnBJbG9B NjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xLbFFzd08wYVFEZFdqQmhBd3lKcElsb0E2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUQyRC85MDg4RUU1QUU4MDExMUVFQUQ2QzUwMzBDNEY5QUUwMi9sS2xRc3dPMGFR RGRXakJoQXd5SnBJbG9BNjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHXOAiOsxQRZ3Wdge04LfcgPGoKhJ6RNsZgurTEu7Sw/Vb+jrHNqaO 7AArJyp3u5Ki/Olfsf/XxTEBs04RB/tXfPzEHs4VA/89ESgWk7VdOoguyDKj9tyO JLYcSI07pysW7f3/Us8zSSKXkJm5USC3RwgLqhMCTJB5pA7giUZ4RqPdezGaOZ/j xHqADz/B6rpk8r2P1sh5/tCnvJMoEpvwfrRzicopYkV7LheUtomLtF9Tbd6msR+f puD9UGb4d75K9YriALN5lMHTTPGB6dBHvuUOPGRfKAqeSHPVAj5C7C+ooQ/slpkw 3z9BQE2jwfQ+y3eSCKtc2LFQ11AIipsA -----END CERTIFICATE-----Generated at Sun Jan 25 04:38:19 2026 by rpki-client