This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft File: kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft (raw, json) Hash identifier: pK8WniGimsf63+h+oQYYQWHPGpLGxboe/K2TCI496xA= Subject key identifier: DD:F1:E4:27:A3:16:2E:69:EA:99:F4:D6:DD:F1:95:35:C2:EA:65:93 Authority key identifier: 90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 Certificate issuer: /CN=A91C2875/serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Certificate serial: 03DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft Manifest number: 03D4 Signing time: Sat 24 Jan 2026 23:46:35 +0000 Manifest this update: Sat 24 Jan 2026 23:46:35 +0000 Manifest next update: Sat 31 Jan 2026 23:46:35 +0000 Files and hashes: 1: kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl (hash: N7kyIptNxJl9kkmBm6ilMsjRhQKn8bPQTboRPUORCcU=) 2: 0E9CF77EBA6811EC8058A213C4F9AE02.roa (hash: /NRpEcDAXrkS/YDBwDOng+rHtIrpT7sCWxlP3Tbbtb4=) 3: ABB1EE64B4ED11ECBA3D016FC4F9AE02.roa (hash: xHLevAzZuis8NnrBHZLDJf2yx7IF05dGBA1riYkWutY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 23:46:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 990 (0x3de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2875, serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Validity Not Before: Jan 24 23:46:35 2026 GMT Not After : Jan 31 23:46:35 2026 GMT Subject: CN=697559db-3681 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:5a:5e:6d:d7:d1:cc:e1:67:f4:41:5b:9e:cd: f0:5e:5a:a1:27:5b:a1:19:18:8c:09:e6:0b:0b:dc: 46:8e:68:e4:0e:5f:0c:d2:ac:59:36:11:93:db:1c: 23:56:cc:41:d4:48:99:01:6e:1f:57:91:8e:ee:ea: 4c:5a:c7:f6:34:c8:cf:1c:1d:ab:5f:35:39:0f:4d: 2c:46:26:21:ed:3c:03:97:9a:bd:b1:d6:96:17:2f: 33:64:ab:11:4c:95:49:3c:4d:6b:2e:b0:47:6f:b2: ed:c9:7a:75:77:34:36:09:59:34:09:cd:7d:50:34: c2:83:cb:05:85:b6:d2:12:2c:0b:90:1d:fc:98:34: 3b:59:46:44:13:c0:6f:67:c6:0e:9e:62:ab:a9:ec: e0:40:73:8b:6b:a1:34:a4:c4:9d:69:fa:2f:61:cc: 60:51:8d:26:cb:3f:80:50:45:b4:2c:81:8e:52:36: b8:fd:85:2f:a5:8e:4b:65:9e:b2:2f:16:7a:0a:5a: e6:89:f8:7f:2b:78:7a:c0:f2:4d:37:bc:d2:3d:bc: f2:4b:bc:ba:51:60:cc:74:4c:e6:5b:ea:6c:91:9c: f9:c9:84:e5:0c:10:5b:58:1b:88:fa:19:c8:7f:c2: 76:78:40:ea:54:f5:0c:a1:23:6a:82:ba:07:ac:39: e5:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:F1:E4:27:A3:16:2E:69:EA:99:F4:D6:DD:F1:95:35:C2:EA:65:93 X509v3 Authority Key Identifier: keyid:90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:fc:83:a0:0a:bf:1b:35:19:fe:8a:04:96:d8:fb:a3:72:6f: ce:f4:fe:f4:96:2c:88:a6:0f:c4:d2:c4:8c:24:92:46:3a:11: 7e:19:bf:08:8f:6a:5b:ab:98:84:6e:40:52:f1:dc:11:f4:75: b1:2b:2a:d3:12:46:04:a8:8f:7b:00:d4:08:55:8a:4d:98:41: af:43:4f:df:cd:d0:93:2f:6e:9f:37:a1:7c:f6:36:63:27:e6: 6b:f0:8e:29:bb:60:6d:47:0f:31:f7:a7:4c:cb:bf:a6:09:19: df:3b:d8:2f:43:c3:46:bd:10:fe:0a:4c:3d:57:a6:cd:e7:2e: 04:dd:2b:57:13:3e:73:37:86:14:f5:4f:a3:9a:38:34:7f:69: f3:49:9d:b9:25:a8:7a:f7:a0:e8:8e:ae:c2:de:dd:ff:b6:61: 68:3d:79:de:31:6e:76:3e:87:e0:d5:db:c5:db:66:c4:0b:8f: ae:af:2c:cb:78:81:12:23:8b:6b:e6:fe:53:af:b7:a3:ca:de: 93:2d:bc:f9:6c:c6:63:b8:60:0f:c8:77:cb:8b:b4:c3:31:84: d9:be:8f:91:91:25:94:7e:5a:17:6f:25:21:72:06:29:cd:30: 36:03:09:18:db:d3:ad:13:9f:b2:ad:f1:09:ba:e3:cc:72:04: 29:11:45:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA94wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI4NzUxMTAvBgNVBAUTKDkwRDk5QUE4RDc5MTMxNDBBRkFFOUVFMkJGRUJDREEz N0JBMUNEMjgwHhcNMjYwMTI0MjM0NjM1WhcNMjYwMTMxMjM0NjM1WjAYMRYwFAYD VQQDDA02OTc1NTlkYi0zNjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA21pebdfRzOFn9EFbns3wXlqhJ1uhGRiMCeYLC9xGjmjkDl8M0qxZNhGT2xwj VsxB1EiZAW4fV5GO7upMWsf2NMjPHB2rXzU5D00sRiYh7TwDl5q9sdaWFy8zZKsR TJVJPE1rLrBHb7LtyXp1dzQ2CVk0Cc19UDTCg8sFhbbSEiwLkB38mDQ7WUZEE8Bv Z8YOnmKrqezgQHOLa6E0pMSdafovYcxgUY0myz+AUEW0LIGOUja4/YUvpY5LZZ6y LxZ6Clrmifh/K3h6wPJNN7zSPbzyS7y6UWDMdEzmW+pskZz5yYTlDBBbWBuI+hnI f8J2eEDqVPUMoSNqgroHrDnlFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN3x5Cej Fi5p6pn01t3xlTXC6mWTMB8GA1UdIwQYMBaAFJDZmqjXkTFAr66e4r/rzaN7oc0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjg3NS9DMjVERTBFNkI0 RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1VQ3ZycDdpdi12Tm8zdWh6 U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tObWFxTmVSTVVDdnJwN2l2LXZObzN1aHpTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Mjg3NS9DMjVERTBFNkI0RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1V Q3ZycDdpdi12Tm8zdWh6U2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCY/IOgCr8bNRn+igSW2Pujcm/O9P70liyIpg/E0sSMJJJGOhF+Gb8I j2pbq5iEbkBS8dwR9HWxKyrTEkYEqI97ANQIVYpNmEGvQ0/fzdCTL26fN6F89jZj J+Zr8I4pu2BtRw8x96dMy7+mCRnfO9gvQ8NGvRD+Ckw9V6bN5y4E3StXEz5zN4YU 9U+jmjg0f2nzSZ25Jah696Dojq7C3t3/tmFoPXneMW52Pofg1dvF22bEC4+uryzL eIESI4tr5v5Tr7ejyt6TLbz5bMZjuGAPyHfLi7TDMYTZvo+RkSWUfloXbyUhcgYp zTA2AwkY29OtE5+yrfEJuuPMcgQpEUUd -----END CERTIFICATE-----Generated at Sun Jan 25 23:22:02 2026 by rpki-client