This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft File: kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft (raw, json) Hash identifier: acMvqKuv8aIDsutJ5KSwoTUxI+2oy7GS+wsDoncxrWU= Subject key identifier: 0C:74:E3:DF:91:28:96:A1:47:04:32:11:39:2D:61:45:70:3C:4B:39 Authority key identifier: 91:9F:A8:19:B2:FF:F1:45:52:1A:F6:64:03:52:78:E7:E7:91:4A:49 Certificate issuer: /CN=A91BB6E3/serialNumber=919FA819B2FFF145521AF664035278E7E7914A49 Certificate serial: 0242 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft Manifest number: 022D Signing time: Sun 25 Jan 2026 01:30:05 +0000 Manifest this update: Sun 25 Jan 2026 01:30:05 +0000 Manifest next update: Sun 01 Feb 2026 01:30:05 +0000 Files and hashes: 1: kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl (hash: gnz2si9KC1wuyWNUyvE6HOW2t8hGZDHewDFA8P02xNI=) 2: F96174ECC27D11EDB8226F2DC4F9AE02.roa (hash: kXeNIsHETQcXUic6LYufG6XvgVMVgH9sGtHQdmkZT90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 01:30:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 578 (0x242) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB6E3, serialNumber=919FA819B2FFF145521AF664035278E7E7914A49 Validity Not Before: Jan 25 01:30:05 2026 GMT Not After : Feb 1 01:30:05 2026 GMT Subject: CN=6975721d-3622 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:7a:69:a6:bb:c9:22:9c:1a:28:3f:0c:92:80: 75:40:d1:fe:c0:be:46:74:7e:60:bb:99:df:76:b9: b5:24:26:4f:59:11:fc:0d:0e:88:98:d3:82:5f:48: 81:66:2b:4c:31:07:c6:28:20:2d:3c:8f:f5:a0:a6: 04:74:43:98:84:dc:0e:de:21:6b:d7:7f:8a:a4:d7: e7:cb:a8:79:94:f9:bd:69:ec:ff:f5:95:eb:1b:bd: cd:13:10:66:8d:d3:65:d8:0a:ac:bf:dd:4f:e5:35: a3:0d:9b:65:0b:94:87:6e:f0:84:d7:4f:e2:73:c5: d6:89:16:af:4a:11:70:74:b6:c4:cb:5b:1f:d7:dc: d8:21:d9:bd:80:fd:03:5c:6e:c6:3e:2a:3c:e6:68: 2f:54:62:7e:8d:6a:72:ba:f4:18:94:af:fa:f5:e0: eb:3c:2f:fe:e2:80:5c:1a:67:f6:42:e5:87:58:37: 60:05:f0:00:1e:09:8a:fd:db:7e:83:2d:e0:16:7a: 25:0a:51:4f:b4:89:ab:8b:6b:6f:78:db:4a:81:1f: d9:a4:4c:91:72:7a:40:7f:77:d4:b8:cf:cb:62:89: 05:9b:3b:eb:68:d6:2c:64:0c:13:dc:42:2d:8d:0a: 81:7e:8e:ec:8b:93:b5:8b:5d:5a:f9:46:9f:6e:66: 16:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:74:E3:DF:91:28:96:A1:47:04:32:11:39:2D:61:45:70:3C:4B:39 X509v3 Authority Key Identifier: keyid:91:9F:A8:19:B2:FF:F1:45:52:1A:F6:64:03:52:78:E7:E7:91:4A:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:dc:19:28:dc:26:1d:62:9e:7d:5a:28:ad:16:c9:56:08:00: 7f:81:ac:72:6e:ca:0a:d0:d6:f1:ce:10:f4:01:fd:f1:db:84: 13:db:e9:cd:9c:49:aa:ba:5d:c3:43:28:50:02:2c:32:f8:17: 86:91:84:98:2c:71:c7:cd:c2:09:2c:9f:f8:18:66:57:b9:82: 14:28:a0:fa:df:78:69:f3:68:96:25:95:bc:11:5c:c9:3e:fd: cb:65:78:1b:3c:19:31:2a:0d:c0:c3:c5:a2:00:71:f2:35:bb: 9f:54:ae:40:a6:03:61:e5:72:f5:05:1b:89:8b:47:e8:29:bf: aa:1a:96:f3:27:fd:87:99:6b:53:c7:c1:e7:3c:31:ce:f1:4f: 41:4c:83:ba:0e:71:62:80:80:e1:1b:72:18:9b:30:24:54:26: 75:0d:83:51:05:ce:40:2f:23:28:d3:56:b6:48:c6:14:4e:52: d7:9f:e9:df:14:09:b7:db:c6:64:52:19:49:1c:e3:b3:ce:5d: d1:77:35:44:ad:be:c3:e8:60:12:53:3e:58:33:50:54:7a:a6: 2f:3a:26:4f:f1:1e:e3:b0:a7:4a:78:43:87:85:20:aa:70:fd: 44:70:d5:03:7b:ea:bc:bb:aa:1c:21:ea:8d:36:27:1f:57:a6: 6a:1f:b1:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI2RTMxMTAvBgNVBAUTKDkxOUZBODE5QjJGRkYxNDU1MjFBRjY2NDAzNTI3OEU3 RTc5MTRBNDkwHhcNMjYwMTI1MDEzMDA1WhcNMjYwMjAxMDEzMDA1WjAYMRYwFAYD VQQDDA02OTc1NzIxZC0zNjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz3ppprvJIpwaKD8MkoB1QNH+wL5GdH5gu5nfdrm1JCZPWRH8DQ6ImNOCX0iB ZitMMQfGKCAtPI/1oKYEdEOYhNwO3iFr13+KpNfny6h5lPm9aez/9ZXrG73NExBm jdNl2Aqsv91P5TWjDZtlC5SHbvCE10/ic8XWiRavShFwdLbEy1sf19zYIdm9gP0D XG7GPio85mgvVGJ+jWpyuvQYlK/69eDrPC/+4oBcGmf2QuWHWDdgBfAAHgmK/dt+ gy3gFnolClFPtImri2tveNtKgR/ZpEyRcnpAf3fUuM/LYokFmzvraNYsZAwT3EIt jQqBfo7si5O1i11a+UafbmYWhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAx049+R KJahRwQyETktYUVwPEs5MB8GA1UdIwQYMBaAFJGfqBmy//FFUhr2ZANSeOfnkUpJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjZFMy9BMjJDODE0Q0My NzUxMUVEQjNCNEQ3MjhDNEY5QUUwMi9rWi1vR2JMXzhVVlNHdlprQTFKNDUtZVJT a2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2taLW9HYkxfOFVWU0d2WmtBMUo0NS1lUlNray5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjZFMy9BMjJDODE0Q0MyNzUxMUVEQjNCNEQ3MjhDNEY5QUUwMi9rWi1vR2JMXzhV VlNHdlprQTFKNDUtZVJTa2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAI3Bko3CYdYp59WiitFslWCAB/gaxybsoK0NbxzhD0Af3x24QT2+nN nEmqul3DQyhQAiwy+BeGkYSYLHHHzcIJLJ/4GGZXuYIUKKD633hp82iWJZW8EVzJ Pv3LZXgbPBkxKg3Aw8WiAHHyNbufVK5ApgNh5XL1BRuJi0foKb+qGpbzJ/2HmWtT x8HnPDHO8U9BTIO6DnFigIDhG3IYmzAkVCZ1DYNRBc5ALyMo01a2SMYUTlLXn+nf FAm328ZkUhlJHOOzzl3RdzVErb7D6GASUz5YM1BUeqYvOiZP8R7jsKdKeEOHhSCq cP1EcNUDe+q8u6ocIeqNNicfV6ZqH7En -----END CERTIFICATE-----Generated at Sun Jan 25 14:12:21 2026 by rpki-client