This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.mft File: kS3Nd84XYnPZShzEJZKtBclnamI.mft (raw, json) Hash identifier: Cdq/8Z7aKsiKiGQ2JFWIQvY5YSLu2DXV+zx2FrmCqs0= Subject key identifier: 21:2D:6F:83:5B:C7:58:A4:B4:9F:B5:0A:E6:38:70:9F:F5:6D:95:90 Authority key identifier: 91:2D:CD:77:CE:17:62:73:D9:4A:1C:C4:25:92:AD:05:C9:67:6A:62 Certificate issuer: /CN=A91CA6E6/serialNumber=912DCD77CE176273D94A1CC42592AD05C9676A62 Certificate serial: 01FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS3Nd84XYnPZShzEJZKtBclnamI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.mft Manifest number: 033B Signing time: Sun 25 Jan 2026 01:46:10 +0000 Manifest this update: Sun 25 Jan 2026 01:46:10 +0000 Manifest next update: Sun 01 Feb 2026 01:46:10 +0000 Files and hashes: 1: kS3Nd84XYnPZShzEJZKtBclnamI.crl (hash: 2HKJST2i9mfEPt50S756f5coKCbuJocwD1D+0TmA6ys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.crl rsync://rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS3Nd84XYnPZShzEJZKtBclnamI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 01:46:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 507 (0x1fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA6E6, serialNumber=912DCD77CE176273D94A1CC42592AD05C9676A62 Validity Not Before: Jan 25 01:46:10 2026 GMT Not After : Feb 1 01:46:10 2026 GMT Subject: CN=697575e2-e29f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:74:ea:09:8c:0f:75:80:41:bf:d4:ba:6d:a7: 64:47:7a:76:c7:fe:35:ef:3b:8b:52:50:6c:af:ab: bc:69:c7:c0:31:07:6a:d5:61:ce:f5:63:3c:a2:0d: 81:d6:4a:a5:15:ac:10:aa:4f:5e:aa:b9:c5:b2:fb: 52:af:28:97:c0:db:44:6b:c6:e0:04:c0:08:2f:c9: 57:6a:d8:55:ac:02:cb:73:20:94:c4:19:5f:87:9a: 98:68:8a:ca:e4:cb:85:fa:4d:5f:e4:ed:4d:90:ea: ac:88:72:03:ff:be:bd:c8:4f:47:96:43:a6:9f:02: 55:f5:af:10:e4:59:6b:f3:ec:84:21:f3:77:55:11: fb:7c:f5:1f:66:3a:14:60:3a:79:44:86:fd:3f:5c: 30:d5:f3:80:8a:91:9f:58:f9:f3:2d:01:65:df:e5: f8:64:3f:f3:93:6e:af:c4:a8:b2:35:44:b8:53:c6: c7:52:98:a9:ee:88:08:27:d7:71:6f:11:42:54:52: c1:76:c9:e6:71:e7:ca:df:7c:fd:3a:09:fc:e3:ca: cf:8f:d3:2a:1d:a9:6f:18:01:84:be:86:6c:92:50: 12:57:5e:d6:a8:1b:2a:f0:d4:5f:7e:f4:3c:ef:ef: 60:22:f7:01:3c:f9:18:43:bd:88:eb:da:43:94:83: 4b:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:2D:6F:83:5B:C7:58:A4:B4:9F:B5:0A:E6:38:70:9F:F5:6D:95:90 X509v3 Authority Key Identifier: keyid:91:2D:CD:77:CE:17:62:73:D9:4A:1C:C4:25:92:AD:05:C9:67:6A:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS3Nd84XYnPZShzEJZKtBclnamI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:37:01:c2:d3:ef:c8:c7:14:30:f3:bb:51:b7:80:ec:61:4f: 62:fb:a8:40:8c:b3:59:6d:cf:f1:fc:87:d5:d8:62:9e:62:85: 5c:89:49:32:b4:97:86:72:3d:1e:50:17:9f:d6:bd:b4:ef:c1: 54:1e:12:20:db:65:49:bc:ed:d7:bd:69:00:57:e0:d3:c8:05: b6:e9:8e:ba:a4:45:e6:80:50:9d:a5:4d:bf:1d:59:7d:3b:dc: 42:35:57:58:41:78:02:7c:eb:f8:4a:59:02:08:97:1c:b5:be: 52:b0:94:f3:bb:e6:f7:ab:6e:fb:f8:fb:c2:86:49:11:ab:a8: 1f:04:cd:8e:20:6e:3a:3b:3a:c8:1d:19:f0:d2:ac:64:de:03: df:96:6a:0b:1d:52:d8:4e:c6:f3:a9:a6:fe:a2:ae:7e:86:8c: 14:c4:18:3c:2d:8a:7d:94:dc:50:44:8b:f7:d4:23:7e:c3:ac: 33:8e:ef:15:10:b6:ad:77:2f:76:e6:d0:fe:ad:51:9c:9a:69: fe:0b:bd:76:ca:8e:75:6d:d1:9d:fe:f4:69:5d:3c:bc:86:6a: f9:0e:cf:ec:37:6b:a0:73:6e:2b:3c:77:f2:30:e5:5a:5f:52: 94:9e:7b:e2:d8:03:20:27:ba:8c:c1:60:98:56:ea:12:e9:fb: b8:d8:45:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Q0E2RTYxMTAvBgNVBAUTKDkxMkRDRDc3Q0UxNzYyNzNEOTRBMUNDNDI1OTJBRDA1 Qzk2NzZBNjIwHhcNMjYwMTI1MDE0NjEwWhcNMjYwMjAxMDE0NjEwWjAYMRYwFAYD VQQDDA02OTc1NzVlMi1lMjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3nTqCYwPdYBBv9S6badkR3p2x/417zuLUlBsr6u8acfAMQdq1WHO9WM8og2B 1kqlFawQqk9eqrnFsvtSryiXwNtEa8bgBMAIL8lXathVrALLcyCUxBlfh5qYaIrK 5MuF+k1f5O1NkOqsiHID/769yE9HlkOmnwJV9a8Q5Flr8+yEIfN3VRH7fPUfZjoU YDp5RIb9P1ww1fOAipGfWPnzLQFl3+X4ZD/zk26vxKiyNUS4U8bHUpip7ogIJ9dx bxFCVFLBdsnmcefK33z9Ogn848rPj9MqHalvGAGEvoZsklASV17WqBsq8NRffvQ8 7+9gIvcBPPkYQ72I69pDlINLJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCEtb4Nb x1iktJ+1CuY4cJ/1bZWQMB8GA1UdIwQYMBaAFJEtzXfOF2Jz2UocxCWSrQXJZ2pi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTZFNi8zQjgzQUZFMEYw RDAxMUVEODA1MDc2NkFDNEY5QUUwMi9rUzNOZDg0WFluUFpTaHpFSlpLdEJjbG5h bUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTM05kODRYWW5QWlNoekVKWkt0QmNsbmFtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTZFNi8zQjgzQUZFMEYwRDAxMUVEODA1MDc2NkFDNEY5QUUwMi9rUzNOZDg0WFlu UFpTaHpFSlpLdEJjbG5hbUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDANwHC0+/IxxQw87tRt4DsYU9i+6hAjLNZbc/x/IfV2GKeYoVciUky tJeGcj0eUBef1r2078FUHhIg22VJvO3XvWkAV+DTyAW26Y66pEXmgFCdpU2/HVl9 O9xCNVdYQXgCfOv4SlkCCJcctb5SsJTzu+b3q277+PvChkkRq6gfBM2OIG46OzrI HRnw0qxk3gPflmoLHVLYTsbzqab+oq5+howUxBg8LYp9lNxQRIv31CN+w6wzju8V ELatdy925tD+rVGcmmn+C712yo51bdGd/vRpXTy8hmr5Ds/sN2ugc24rPHfyMOVa X1KUnnvi2AMgJ7qMwWCYVuoS6fu42EUZ -----END CERTIFICATE-----Generated at Sun Jan 25 06:19:30 2026 by rpki-client