This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft File: kKmEULnak4EYotWtU02IKPS5RjQ.mft (raw, json) Hash identifier: HhXkMcJh+2kflo7bSd5y8WpwgQJno/amPiZHzvGipLw= Subject key identifier: 40:BF:6D:F8:CD:24:1F:EF:3E:7D:2D:6C:D4:01:F9:17:5C:15:37:86 Authority key identifier: 90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 Certificate issuer: /CN=A91EA2CC/serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Certificate serial: 0CA0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft Manifest number: 0C8A Signing time: Sat 24 Jan 2026 18:09:23 +0000 Manifest this update: Sat 24 Jan 2026 18:09:22 +0000 Manifest next update: Sat 31 Jan 2026 18:09:22 +0000 Files and hashes: 1: kKmEULnak4EYotWtU02IKPS5RjQ.crl (hash: ia5P8Au1mamtwpcCZTZSf45sG9stQ1cApm8dC/EgW+c=) 2: E6144BC6F52011EFB886A255C4F9AE02.roa (hash: aEMS3M29hCCeByUCXZ+uvfYFpf4/VBfRmYpl07QvYhY=) 3: C9989D9EF52011EF88416555C4F9AE02.roa (hash: J1Y3R18xnrLrxVnTd6dnJAcJxU9kFVJTgj8vMihGb8o=) 4: D376CA2E63B311EFBEFCDF10C4F9AE02.roa (hash: G+U7uQFgAb2U+N/txdaeFUXvdA97Z5VnhrdZ+BD6M4c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 18:09:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3232 (0xca0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA2CC, serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Validity Not Before: Jan 24 18:09:22 2026 GMT Not After : Jan 31 18:09:22 2026 GMT Subject: CN=69750ad2-7180 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:56:a4:3f:f9:bd:5d:15:b0:31:48:74:4e:bd: 1e:75:bf:d9:df:5f:c7:21:7c:d8:4d:4e:ae:10:db: bd:c4:38:51:96:89:36:0c:29:e8:d7:4b:b9:76:86: 2a:74:d7:35:37:89:c1:b1:c0:48:02:d7:36:77:fc: db:fc:07:a6:43:b1:ba:f7:7a:d4:e0:a7:59:0b:cc: c9:27:47:22:89:b1:b2:dc:68:8b:5b:a6:a7:7a:e4: d2:94:f8:2b:5b:6d:a2:24:7d:e0:8c:6f:4d:2a:c3: 5e:c4:6a:17:78:10:f5:af:96:3a:d7:c9:a3:d2:d7: 93:a6:30:98:36:b5:72:0d:ea:9a:56:04:52:56:95: c5:53:ff:78:cf:f1:c6:c0:e4:fa:0f:39:a1:b0:60: 86:0b:05:de:17:89:25:15:6b:fc:91:f8:85:db:9a: 30:df:b7:a6:e7:26:69:1b:64:f0:de:90:52:c3:22: 82:07:9b:1c:e7:ca:8d:7e:4b:21:67:7a:d4:2a:58: d9:47:fd:21:81:9a:c5:6a:cb:b7:5a:d3:6f:11:2b: 96:34:9b:d2:28:4a:d5:18:6b:6a:91:c7:d0:aa:b9: 90:4e:1d:3c:47:c5:fc:f2:41:e0:8c:14:1f:67:02: eb:bd:3b:dd:37:be:ca:e0:9c:cf:ba:3b:36:f9:b6: 4a:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:BF:6D:F8:CD:24:1F:EF:3E:7D:2D:6C:D4:01:F9:17:5C:15:37:86 X509v3 Authority Key Identifier: keyid:90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:b3:0f:41:46:e0:9d:36:f0:65:5c:e6:33:01:9f:87:d6:41: bd:4a:b5:72:8d:27:63:9d:e2:b4:4a:2b:d8:2a:e7:0e:b4:a6: ec:21:c7:6c:1f:91:70:75:da:ad:08:82:32:0c:ab:d8:70:15: 68:11:7f:ad:6d:47:cb:69:c7:15:9e:50:86:7b:f0:30:66:8b: 08:05:ea:3e:57:c7:bd:f4:66:a5:7b:d9:a8:16:57:5d:9a:ee: 65:46:59:b5:8c:d9:7b:2b:90:3d:fb:01:f7:f7:c1:f5:81:a2: b8:9f:07:02:87:1b:06:76:43:33:be:5e:5b:9c:40:86:b3:39: c8:aa:94:4b:25:d1:a8:17:02:70:0c:9a:d5:e4:d8:9b:a1:bf: 79:55:bd:86:5e:b4:ff:6d:df:d3:8b:b1:19:33:32:0e:53:fd: 8e:ad:19:7e:38:47:00:8a:99:ee:b4:c3:74:58:32:10:b9:61: e3:b1:c1:05:52:b2:a7:1d:eb:1f:d5:a0:6c:7a:b0:45:f8:a0: be:07:b9:8b:7d:41:1b:57:a8:87:79:6e:de:d4:6b:bd:0e:fc: ac:9c:e0:92:a5:65:a5:66:86:5e:6e:45:43:e7:31:a5:93:96: ec:df:30:15:28:6d:71:8b:ea:d9:70:fc:f7:4f:60:14:4d:a9: c4:49:80:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUEyQ0MxMTAvBgNVBAUTKDkwQTk4NDUwQjlEQTkzODExOEEyRDVBRDUzNEQ4ODI4 RjRCOTQ2MzQwHhcNMjYwMTI0MTgwOTIyWhcNMjYwMTMxMTgwOTIyWjAYMRYwFAYD VQQDDA02OTc1MGFkMi03MTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwVakP/m9XRWwMUh0Tr0edb/Z31/HIXzYTU6uENu9xDhRlok2DCno10u5doYq dNc1N4nBscBIAtc2d/zb/AemQ7G693rU4KdZC8zJJ0ciibGy3GiLW6aneuTSlPgr W22iJH3gjG9NKsNexGoXeBD1r5Y618mj0teTpjCYNrVyDeqaVgRSVpXFU/94z/HG wOT6DzmhsGCGCwXeF4klFWv8kfiF25ow37em5yZpG2Tw3pBSwyKCB5sc58qNfksh Z3rUKljZR/0hgZrFasu3WtNvESuWNJvSKErVGGtqkcfQqrmQTh08R8X88kHgjBQf ZwLrvTvdN77K4JzPujs2+bZKoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEC/bfjN JB/vPn0tbNQB+RdcFTeGMB8GA1UdIwQYMBaAFJCphFC52pOBGKLVrVNNiCj0uUY0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTJDQy9GMjZFMDZDRTEx RjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0RVlvdFd0VTAySUtQUzVS alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tLbUVVTG5hazRFWW90V3RVMDJJS1BTNVJqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTJDQy9GMjZFMDZDRTExRjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0 RVlvdFd0VTAySUtQUzVSalEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArsw9BRuCdNvBlXOYzAZ+H1kG9SrVyjSdjneK0SivYKucOtKbsIcds H5FwddqtCIIyDKvYcBVoEX+tbUfLaccVnlCGe/AwZosIBeo+V8e99Gale9moFldd mu5lRlm1jNl7K5A9+wH398H1gaK4nwcChxsGdkMzvl5bnECGsznIqpRLJdGoFwJw DJrV5Nibob95Vb2GXrT/bd/Ti7EZMzIOU/2OrRl+OEcAipnutMN0WDIQuWHjscEF UrKnHesf1aBserBF+KC+B7mLfUEbV6iHeW7e1Gu9DvysnOCSpWWlZoZebkVD5zGl k5bs3zAVKG1xi+rZcPz3T2AUTanESYDz -----END CERTIFICATE-----Generated at Sun Jan 25 08:04:04 2026 by rpki-client