This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft File: kBUoySF5F9lWch0caFZlNFvrVv0.mft (raw, json) Hash identifier: HsLyJbwStxk8H++pj9/6QNW2ynEywA57LeX3no66oA0= Subject key identifier: 1A:A0:82:22:92:2A:27:00:8C:EC:4B:81:3F:BC:51:CF:57:1E:5D:0C Authority key identifier: 90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD Certificate issuer: /CN=A91CFAB9/serialNumber=901528C9217917D956721D1C685665345BEB56FD Certificate serial: 03A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft Manifest number: 03A5 Signing time: Sat 24 Jan 2026 23:37:40 +0000 Manifest this update: Sat 24 Jan 2026 23:37:39 +0000 Manifest next update: Sat 31 Jan 2026 23:37:39 +0000 Files and hashes: 1: kBUoySF5F9lWch0caFZlNFvrVv0.crl (hash: IMoUy/6PkMbYMdl7EHTrn5qG3yUMNVI9EOfgcBfTRbc=) 2: 39A335D6CB3F11ECBEBC9A1DC4F9AE02.roa (hash: NmvW/sg0pEXjTHBegEg6TihBwGGc4JodMMQnzVosHvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 23:37:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 937 (0x3a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFAB9, serialNumber=901528C9217917D956721D1C685665345BEB56FD Validity Not Before: Jan 24 23:37:39 2026 GMT Not After : Jan 31 23:37:39 2026 GMT Subject: CN=697557c4-4fb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:30:c0:62:d1:7f:ec:10:09:cb:f5:74:cc:59: 1f:3d:d5:0a:70:16:54:74:bb:55:5e:a1:76:67:a0: ad:54:4c:5a:69:64:82:b7:52:4b:9c:93:b9:ee:0a: b9:3f:58:da:f2:7c:26:05:e7:01:ce:8d:55:ec:7a: ad:29:52:02:f9:ee:6f:83:5c:7d:43:cd:14:03:a9: 36:1f:d5:7a:a2:6a:c1:2a:dd:3c:88:e1:81:9c:8a: d9:65:b8:0c:4f:80:d1:0d:0f:c1:52:84:68:42:a5: 48:8f:61:8e:6b:0a:39:8e:a9:3f:c1:0c:83:ad:99: 05:71:05:69:8d:c2:67:1e:18:c8:f1:8c:2c:89:58: 78:0e:48:9f:ce:2f:fc:2b:17:e4:f3:49:f4:72:74: 06:32:11:20:ce:c1:d3:1f:97:a4:4e:82:fc:ce:27: 0b:63:15:bb:f9:96:90:41:be:ff:04:9b:f0:72:ad: d0:ab:a5:76:b9:6b:1a:e0:cc:cd:47:b0:ba:08:d9: ec:33:62:85:92:4f:e2:6d:f5:d6:55:5f:fc:e5:fc: 93:fd:2c:3d:28:16:05:73:62:da:29:23:53:27:5c: 34:c7:9b:ef:a3:71:9b:a7:fc:3c:8a:1d:f9:0a:fe: e2:fe:c8:71:d7:4a:b2:98:e8:b9:74:66:63:c8:da: 94:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:A0:82:22:92:2A:27:00:8C:EC:4B:81:3F:BC:51:CF:57:1E:5D:0C X509v3 Authority Key Identifier: keyid:90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:c2:7b:f9:9b:76:b9:cb:c5:23:ec:42:d0:3a:fc:8f:80:43: 5a:21:f6:09:93:3c:f7:9a:a7:df:f8:91:80:61:61:18:72:98: 81:62:14:08:0d:18:28:63:f9:4c:2d:d1:66:2b:cc:57:2c:82: 36:11:59:6a:7e:7f:da:04:01:4b:9c:1e:85:85:33:44:b2:81: 4f:10:a7:9c:66:2d:6b:f2:5f:20:98:9f:0a:ff:9a:33:e3:8a: 4c:c4:a8:bf:73:24:16:d0:38:67:b8:91:48:1f:3f:39:5d:8e: 95:01:2d:e5:6c:8b:7c:d6:bd:de:91:73:48:a2:3d:c3:f9:d4: 60:87:f0:a2:85:1b:ad:ec:ca:1e:17:7c:1f:a3:c9:69:5d:be: fe:d5:cb:06:8c:b0:17:9d:4f:b0:52:2f:e5:23:a9:00:13:2d: e5:5e:da:8f:a4:b6:3a:36:63:0b:ac:06:c2:29:12:06:a6:87: 99:1d:34:b2:af:02:f9:64:6b:67:bf:b1:ad:b6:25:8e:89:ec: ed:30:58:37:71:09:38:15:2a:69:1c:d4:e9:2e:99:9f:4b:26: c1:fb:e1:47:7d:2f:e0:f3:0a:14:44:ed:44:d4:c5:ab:fd:c5: 19:6a:75:b1:3b:40:2d:86:ef:fe:78:ba:b2:e5:26:22:df:4d: b5:35:a3:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBQjkxMTAvBgNVBAUTKDkwMTUyOEM5MjE3OTE3RDk1NjcyMUQxQzY4NTY2NTM0 NUJFQjU2RkQwHhcNMjYwMTI0MjMzNzM5WhcNMjYwMTMxMjMzNzM5WjAYMRYwFAYD VQQDDA02OTc1NTdjNC00ZmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAujDAYtF/7BAJy/V0zFkfPdUKcBZUdLtVXqF2Z6CtVExaaWSCt1JLnJO57gq5 P1ja8nwmBecBzo1V7HqtKVIC+e5vg1x9Q80UA6k2H9V6omrBKt08iOGBnIrZZbgM T4DRDQ/BUoRoQqVIj2GOawo5jqk/wQyDrZkFcQVpjcJnHhjI8YwsiVh4Dkifzi/8 Kxfk80n0cnQGMhEgzsHTH5ekToL8zicLYxW7+ZaQQb7/BJvwcq3Qq6V2uWsa4MzN R7C6CNnsM2KFkk/ibfXWVV/85fyT/Sw9KBYFc2LaKSNTJ1w0x5vvo3Gbp/w8ih35 Cv7i/shx10qymOi5dGZjyNqUUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBqggiKS KicAjOxLgT+8Uc9XHl0MMB8GA1UdIwQYMBaAFJAVKMkheRfZVnIdHGhWZTRb61b9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkFCOS8xQ0Q0NEY5RUM3 N0ExMUVDQjk0MzRDMkNDNEY5QUUwMi9rQlVveVNGNUY5bFdjaDBjYUZabE5GdnJW djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tCVW95U0Y1RjlsV2NoMGNhRlpsTkZ2clZ2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkFCOS8xQ0Q0NEY5RUM3N0ExMUVDQjk0MzRDMkNDNEY5QUUwMi9rQlVveVNGNUY5 bFdjaDBjYUZabE5GdnJWdjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHwnv5m3a5y8Uj7ELQOvyPgENaIfYJkzz3mqff+JGAYWEYcpiBYhQI DRgoY/lMLdFmK8xXLII2EVlqfn/aBAFLnB6FhTNEsoFPEKecZi1r8l8gmJ8K/5oz 44pMxKi/cyQW0DhnuJFIHz85XY6VAS3lbIt81r3ekXNIoj3D+dRgh/CihRut7Moe F3wfo8lpXb7+1csGjLAXnU+wUi/lI6kAEy3lXtqPpLY6NmMLrAbCKRIGpoeZHTSy rwL5ZGtnv7GttiWOieztMFg3cQk4FSppHNTpLpmfSybB++FHfS/g8woURO1E1MWr /cUZanWxO0Athu/+eLqy5SYi3021NaP1 -----END CERTIFICATE-----Generated at Sun Jan 25 11:50:27 2026 by rpki-client