This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.mft File: K99csyKL7Ic-zuddZ1g1RlOCNJI.mft (raw, json) Hash identifier: m31pxgCmubYVCTYaqiDU/lc7E/gzwfPUGo3fbFvmvR0= Subject key identifier: 4D:CB:30:11:0A:71:0A:DB:37:BF:E9:00:9B:76:6D:4D:DD:E0:B5:BF Authority key identifier: 2B:DF:5C:B3:22:8B:EC:87:3E:CE:E7:5D:67:58:35:46:53:82:34:92 Certificate issuer: /CN=A91D8100/serialNumber=2BDF5CB3228BEC873ECEE75D6758354653823492 Certificate serial: 0846 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K99csyKL7Ic-zuddZ1g1RlOCNJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.mft Manifest number: 0839 Signing time: Sat 24 Jan 2026 20:14:26 +0000 Manifest this update: Sat 24 Jan 2026 20:14:25 +0000 Manifest next update: Sat 31 Jan 2026 20:14:25 +0000 Files and hashes: 1: K99csyKL7Ic-zuddZ1g1RlOCNJI.crl (hash: K4493Lz5uDlmZQIOIvhpJPhMySOB6HODYDdsHHUHlu8=) 2: DFB4AB2C9FD911F0B75B1848C4F9AE02.roa (hash: RLRjH/J0+me+Vx3yyTHl66wKq7FxNXMRxmdR2kAu53U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.crl rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K99csyKL7Ic-zuddZ1g1RlOCNJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 20:14:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2118 (0x846) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8100, serialNumber=2BDF5CB3228BEC873ECEE75D6758354653823492 Validity Not Before: Jan 24 20:14:25 2026 GMT Not After : Jan 31 20:14:25 2026 GMT Subject: CN=69752821-fa5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ea:2f:b3:09:04:b0:2c:a2:b4:9f:3a:b4:ec: 63:7a:31:6a:0b:3d:21:14:8f:2e:f5:ff:0c:80:c8: 32:c6:47:ba:b3:ff:77:1f:65:af:62:6f:06:5f:6a: a8:aa:87:41:b6:d1:cd:71:dc:27:f9:bf:ba:29:3c: 2e:77:a9:fe:87:f3:9b:d2:7c:b3:d4:c9:67:30:d5: 3f:aa:00:24:3c:cc:d2:df:77:b8:a9:e4:02:a5:5d: 80:e4:11:3d:28:2e:54:67:c6:16:fa:39:a8:33:bf: bd:53:92:e6:62:c6:c7:69:d4:0c:ee:f2:44:87:6c: 65:08:d9:d8:7c:c1:82:88:61:fa:94:e6:be:0f:12: 85:4b:cf:ad:21:ca:e2:55:12:17:a8:50:17:4e:82: 16:29:7f:62:8d:db:fa:d3:ff:2d:35:92:b3:42:45: 6b:c3:29:f2:37:9f:e3:48:51:c0:22:d7:12:99:d0: e8:57:f4:30:1d:9e:99:03:e6:f1:cb:15:77:3b:1f: 34:ac:b5:89:85:f6:16:97:c4:d0:fe:36:ce:ef:e9: 84:dd:e8:69:bd:f5:68:d9:47:5d:40:f7:40:02:24: 45:71:41:23:6e:95:39:0b:c0:5f:7c:3a:27:7e:ba: bd:ef:16:bd:2d:40:44:85:2b:0b:30:12:6c:93:11: 6b:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:CB:30:11:0A:71:0A:DB:37:BF:E9:00:9B:76:6D:4D:DD:E0:B5:BF X509v3 Authority Key Identifier: keyid:2B:DF:5C:B3:22:8B:EC:87:3E:CE:E7:5D:67:58:35:46:53:82:34:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K99csyKL7Ic-zuddZ1g1RlOCNJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:bb:25:5b:04:d4:53:30:f5:73:90:5b:d5:8e:5d:f8:55:10: b7:2f:ff:a3:4e:25:3e:af:63:24:1b:ac:0d:f5:c4:84:0b:22: 1d:49:ff:29:3b:bc:e5:db:57:b8:95:68:82:fb:16:d7:2d:04: 4b:82:cc:95:8a:ad:c7:e3:45:c6:c5:18:df:d4:02:50:77:c8: 7c:5d:03:63:6a:36:50:13:ec:12:3e:e9:86:62:27:fd:3d:3c: b1:3f:ca:8c:5e:ae:15:ba:bc:57:74:75:7f:fa:26:2a:b0:23: c1:19:43:1c:6b:92:33:d0:ed:46:55:24:3a:56:b6:50:ac:94: 7d:6a:21:bc:5e:59:a5:5d:fa:86:35:3f:a4:bc:0f:a6:f0:ef: e8:08:29:ae:99:fa:79:e2:68:80:d5:bb:89:07:aa:bb:bb:df: 3a:9d:f3:93:1e:fe:d8:e5:01:e3:b1:65:49:9f:73:8c:5a:4c: 7f:70:db:5d:09:d9:4f:be:27:29:7c:27:85:2b:26:eb:9e:21: 30:b0:b1:93:eb:50:ad:04:72:ec:d5:3f:ad:b2:12:74:88:68: 4a:0b:87:fe:ed:25:55:92:35:ba:20:fd:f8:4b:0c:83:20:74: 77:ab:2c:8b:e8:a8:3f:93:71:44:da:0c:a2:f0:0f:ef:53:62: 36:29:39:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgxMDAxMTAvBgNVBAUTKDJCREY1Q0IzMjI4QkVDODczRUNFRTc1RDY3NTgzNTQ2 NTM4MjM0OTIwHhcNMjYwMTI0MjAxNDI1WhcNMjYwMTMxMjAxNDI1WjAYMRYwFAYD VQQDDA02OTc1MjgyMS1mYTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtuovswkEsCyitJ86tOxjejFqCz0hFI8u9f8MgMgyxke6s/93H2WvYm8GX2qo qodBttHNcdwn+b+6KTwud6n+h/Ob0nyz1MlnMNU/qgAkPMzS33e4qeQCpV2A5BE9 KC5UZ8YW+jmoM7+9U5LmYsbHadQM7vJEh2xlCNnYfMGCiGH6lOa+DxKFS8+tIcri VRIXqFAXToIWKX9ijdv60/8tNZKzQkVrwynyN5/jSFHAItcSmdDoV/QwHZ6ZA+bx yxV3Ox80rLWJhfYWl8TQ/jbO7+mE3ehpvfVo2UddQPdAAiRFcUEjbpU5C8BffDon frq97xa9LUBEhSsLMBJskxFrfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE3LMBEK cQrbN7/pAJt2bU3d4LW/MB8GA1UdIwQYMBaAFCvfXLMii+yHPs7nXWdYNUZTgjSS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODEwMC9BQUM3MkUwQ0ZD Q0UxMUVBOEMxOUQ4N0ZDNEY5QUUwMi9LOTljc3lLTDdJYy16dWRkWjFnMVJsT0NO SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s5OWNzeUtMN0ljLXp1ZGRaMWcxUmxPQ05KSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODEwMC9BQUM3MkUwQ0ZDQ0UxMUVBOEMxOUQ4N0ZDNEY5QUUwMi9LOTljc3lLTDdJ Yy16dWRkWjFnMVJsT0NOSkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2uyVbBNRTMPVzkFvVjl34VRC3L/+jTiU+r2MkG6wN9cSECyIdSf8p O7zl21e4lWiC+xbXLQRLgsyViq3H40XGxRjf1AJQd8h8XQNjajZQE+wSPumGYif9 PTyxP8qMXq4VurxXdHV/+iYqsCPBGUMca5Iz0O1GVSQ6VrZQrJR9aiG8XlmlXfqG NT+kvA+m8O/oCCmumfp54miA1buJB6q7u986nfOTHv7Y5QHjsWVJn3OMWkx/cNtd CdlPvicpfCeFKybrniEwsLGT61CtBHLs1T+tshJ0iGhKC4f+7SVVkjW6IP34SwyD IHR3qyyL6Kg/k3FE2gyi8A/vU2I2KTnI -----END CERTIFICATE-----Generated at Sun Jan 25 08:07:42 2026 by rpki-client