This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft File: Khx4XL6-fNe6tToSO2BVhg9gfxg.mft (raw, json) Hash identifier: U5uaxEY4CEqsfiUT0yIVyi/03VO0U4DFbav5lHU2Mxs= Subject key identifier: 1F:F8:2C:FE:37:D3:32:89:89:3E:30:BC:F6:88:E3:99:3E:92:6C:F6 Authority key identifier: 2A:1C:78:5C:BE:BE:7C:D7:BA:B5:3A:12:3B:60:55:86:0F:60:7F:18 Certificate issuer: /CN=A91D6AB2/serialNumber=2A1C785CBEBE7CD7BAB53A123B6055860F607F18 Certificate serial: 08AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft Manifest number: 0D37 Signing time: Sat 24 Jan 2026 19:53:10 +0000 Manifest this update: Sat 24 Jan 2026 19:53:10 +0000 Manifest next update: Sat 31 Jan 2026 19:53:10 +0000 Files and hashes: 1: Khx4XL6-fNe6tToSO2BVhg9gfxg.crl (hash: 8CEQJVyCLCX5pihPsVM5dcjRNNCybyIm5+lZ6DEkZGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.crl rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2220 (0x8ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6AB2, serialNumber=2A1C785CBEBE7CD7BAB53A123B6055860F607F18 Validity Not Before: Jan 24 19:53:10 2026 GMT Not After : Jan 31 19:53:10 2026 GMT Subject: CN=69752326-87f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:83:24:d0:8c:ea:2e:62:24:37:91:bd:34:58: 6d:15:73:90:71:75:e5:7f:5c:7e:31:1a:dd:ce:34: f8:7c:21:45:24:9a:3a:02:35:c2:d9:27:15:fe:8a: 97:53:e5:dc:08:9a:d2:6c:5c:d7:72:ae:26:ca:56: 00:dc:ba:a9:e7:34:8d:30:2e:09:a5:f7:b1:6e:6b: 77:da:d3:24:60:b3:ab:47:63:88:ce:9d:ee:a8:98: eb:a0:c8:cf:ad:8d:66:2e:18:5b:82:e5:3f:71:02: 53:dc:56:10:00:03:8c:cc:d7:72:58:5c:55:c4:ed: 05:ff:61:77:7e:e2:96:fe:e6:3b:e5:f6:30:24:ca: d1:7b:d0:8a:92:74:61:37:87:39:29:0c:71:ff:21: bd:c8:24:dc:2d:b0:61:b7:72:e9:aa:61:ac:76:c7: 91:76:ae:6c:68:1b:eb:7b:ef:fc:c2:c9:42:84:54: d0:99:e1:ec:be:e0:aa:f5:09:30:1a:85:22:88:72: 4c:06:37:1b:86:02:ef:c1:10:7f:d1:c2:af:8f:2e: c0:f9:61:ab:11:1c:bf:44:4b:94:da:f7:2e:36:d7: 98:a2:89:6b:a6:ab:76:29:88:90:45:a1:60:c0:e7: 10:0a:3d:65:33:3e:3e:0f:0f:80:f6:13:bd:0e:e0: e4:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:F8:2C:FE:37:D3:32:89:89:3E:30:BC:F6:88:E3:99:3E:92:6C:F6 X509v3 Authority Key Identifier: keyid:2A:1C:78:5C:BE:BE:7C:D7:BA:B5:3A:12:3B:60:55:86:0F:60:7F:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:ad:89:2e:73:ff:cc:1e:43:ac:e6:01:e0:31:58:5f:13:ea: 91:be:ba:8b:64:52:b0:3c:9b:54:38:35:c1:f6:65:5f:af:1d: ac:1c:6b:67:be:4d:1e:fe:b9:93:49:01:72:95:ba:27:7f:ba: 19:74:cf:15:07:c1:61:20:f2:ab:5d:e2:27:01:ac:ef:e5:05: 58:91:f7:c7:70:cd:01:e5:4f:5b:79:5c:13:62:5a:4a:fb:24: 63:77:db:fa:1a:e0:0f:60:08:77:56:97:84:01:ed:7c:66:6b: aa:eb:9c:c1:86:63:ae:a3:68:22:7e:5b:90:8a:b9:8d:a8:6d: 57:66:57:08:4f:b6:aa:e2:8c:60:6c:10:58:b5:b1:c6:fe:a7: c1:73:cf:94:0a:09:dc:95:98:ad:80:27:bc:54:ea:19:17:f9: ea:85:10:c1:8f:97:36:28:1e:2b:54:84:50:19:e0:d3:39:6f: c5:2c:4f:72:9c:ab:02:cd:cb:55:86:68:8d:29:78:26:37:28: a1:18:1d:30:7b:bd:5c:04:61:6a:3a:e9:62:a3:cf:53:99:ea: 9e:09:a0:fe:5a:ce:d3:56:1e:b2:e9:41:08:fe:56:a0:fb:90: f1:13:b7:20:05:d9:69:4e:1c:2d:51:51:6f:42:a9:af:b6:b4: f7:7d:e4:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZBQjIxMTAvBgNVBAUTKDJBMUM3ODVDQkVCRTdDRDdCQUI1M0ExMjNCNjA1NTg2 MEY2MDdGMTgwHhcNMjYwMTI0MTk1MzEwWhcNMjYwMTMxMTk1MzEwWjAYMRYwFAYD VQQDDA02OTc1MjMyNi04N2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwIMk0IzqLmIkN5G9NFhtFXOQcXXlf1x+MRrdzjT4fCFFJJo6AjXC2ScV/oqX U+XcCJrSbFzXcq4mylYA3Lqp5zSNMC4Jpfexbmt32tMkYLOrR2OIzp3uqJjroMjP rY1mLhhbguU/cQJT3FYQAAOMzNdyWFxVxO0F/2F3fuKW/uY75fYwJMrRe9CKknRh N4c5KQxx/yG9yCTcLbBht3LpqmGsdseRdq5saBvre+/8wslChFTQmeHsvuCq9Qkw GoUiiHJMBjcbhgLvwRB/0cKvjy7A+WGrERy/REuU2vcuNteYoolrpqt2KYiQRaFg wOcQCj1lMz4+Dw+A9hO9DuDkFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB/4LP43 0zKJiT4wvPaI45k+kmz2MB8GA1UdIwQYMBaAFCoceFy+vnzXurU6EjtgVYYPYH8Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkFCMi8wQUYyRUFBQUNG NzAxMUVBOEFFNTVENDhDNEY5QUUwMi9LaHg0WEw2LWZOZTZ0VG9TTzJCVmhnOWdm eGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0toeDRYTDYtZk5lNnRUb1NPMkJWaGc5Z2Z4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkFCMi8wQUYyRUFBQUNGNzAxMUVBOEFFNTVENDhDNEY5QUUwMi9LaHg0WEw2LWZO ZTZ0VG9TTzJCVmhnOWdmeGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAArYkuc//MHkOs5gHgMVhfE+qRvrqLZFKwPJtUODXB9mVfrx2sHGtn vk0e/rmTSQFylbonf7oZdM8VB8FhIPKrXeInAazv5QVYkffHcM0B5U9beVwTYlpK +yRjd9v6GuAPYAh3VpeEAe18Zmuq65zBhmOuo2gifluQirmNqG1XZlcIT7aq4oxg bBBYtbHG/qfBc8+UCgnclZitgCe8VOoZF/nqhRDBj5c2KB4rVIRQGeDTOW/FLE9y nKsCzctVhmiNKXgmNyihGB0we71cBGFqOulio89TmeqeCaD+Ws7TVh6y6UEI/lag +5DxE7cgBdlpThwtUVFvQqmvtrT3feQe -----END CERTIFICATE-----Generated at Sun Jan 25 06:17:38 2026 by rpki-client