This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft File: Klbs8PH_OfsVFWANEgo0cr4UtzI.mft (raw, json) Hash identifier: hz8D9kB972puoGZMSk19P8DAnI7cvnLpY6wOEf+CMVo= Subject key identifier: 1E:52:D3:90:89:EF:D1:17:6A:61:BA:26:4D:40:AE:C0:9B:11:73:7C Authority key identifier: 2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 Certificate issuer: /CN=A91EA485/serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Certificate serial: 01C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft Manifest number: 01C3 Signing time: Sun 25 Jan 2026 02:17:24 +0000 Manifest this update: Sun 25 Jan 2026 02:17:23 +0000 Manifest next update: Sun 01 Feb 2026 02:17:23 +0000 Files and hashes: 1: Klbs8PH_OfsVFWANEgo0cr4UtzI.crl (hash: Fgbj1ImUoIvICrkqkWJ97h3Ib2jTvVWC0Dyvx6n6pXw=) 2: EF31E31847CE11EEB588375DC4F9AE02.roa (hash: kILGmUlpt7DdHWZSLztcZSmK4D+q9rXXCv0iWxnKi6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 02:17:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 455 (0x1c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA485, serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Validity Not Before: Jan 25 02:17:23 2026 GMT Not After : Feb 1 02:17:23 2026 GMT Subject: CN=69757d33-386a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:49:10:01:90:2c:59:1b:82:51:7b:bd:27:96: e5:e5:7d:9b:cb:8e:70:fb:99:cf:19:5f:84:7b:3f: ce:ee:5f:8a:6c:99:8f:0a:c8:15:69:19:8f:fa:de: d9:c7:86:9e:35:9d:0e:92:57:83:c2:60:a8:06:ac: 00:bd:1f:57:25:e2:35:b3:26:77:0f:77:bc:2d:10: de:d8:b1:dd:88:a7:33:5c:6a:ac:03:ee:a2:e4:f6: 0e:a3:3a:fa:f5:44:31:de:c4:18:62:e4:41:3f:d9: 20:60:fc:73:18:56:38:e9:02:09:b9:1b:5c:66:a7: 7e:a4:dc:0b:2a:78:b2:15:83:6e:be:27:03:57:b9: aa:a1:41:19:f1:69:35:bc:9a:55:d1:b5:4a:d1:87: c3:af:8d:59:35:72:ba:96:59:38:7e:6d:50:b5:31: f5:5b:4f:d9:7e:cf:fb:69:21:ca:c2:03:b4:8c:71: 45:f8:5f:95:01:ba:84:d6:66:23:38:12:20:3c:83: 09:a0:aa:a1:b1:57:71:92:0d:17:3a:07:02:5c:b2: c8:37:82:19:ab:97:bb:52:59:68:0b:9a:56:b3:3d: 2f:e7:05:f5:06:29:1c:7d:dd:a1:3f:74:c8:21:c4: b7:40:4b:98:01:f3:7f:7f:10:47:ca:6c:25:36:c3: 94:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:52:D3:90:89:EF:D1:17:6A:61:BA:26:4D:40:AE:C0:9B:11:73:7C X509v3 Authority Key Identifier: keyid:2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:dc:80:bc:02:02:82:41:0f:c1:b9:5c:a9:25:3f:ee:88:b4: 4d:df:ba:41:cd:d5:f0:f9:e0:d9:3a:c9:80:27:b9:95:ad:f2: 82:9f:b2:b5:36:9a:a6:4a:51:41:76:71:0b:d5:48:6c:5f:95: 24:1e:52:88:dd:98:3f:2c:a0:9d:6c:4a:91:e6:1a:e7:79:f3: c0:56:11:2e:f2:21:6d:24:b7:5c:5b:ae:dd:c7:52:df:a5:ed: 12:a2:94:0b:c1:1a:07:06:be:b8:b5:8d:31:7c:33:59:03:59: 28:a9:a5:d1:54:74:9d:7b:66:fb:c2:e0:c7:52:9e:ee:48:3b: 00:52:8b:38:51:00:81:b5:b7:29:97:e0:e1:25:08:84:0d:33: 5c:05:7c:ee:82:72:c5:b3:c5:2f:3b:9f:72:25:11:54:0d:e5: 00:b2:7b:65:36:31:a9:73:00:a5:68:aa:fa:98:f1:74:35:2b: e7:53:75:a7:0f:48:fd:4a:b9:76:a6:ab:85:ca:b8:a1:58:de: ff:7c:2d:79:92:ae:7c:26:b0:d2:c1:34:6c:e1:9f:2e:ac:1b: b5:30:21:16:aa:92:38:67:a5:19:b1:df:4c:cb:4e:00:8a:c1: b0:df:7e:4a:64:78:df:9b:6d:ea:e9:01:49:b1:90:53:72:89: 6c:31:d4:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0ODUxMTAvBgNVBAUTKDJBNTZFQ0YwRjFGRjM5RkIxNTE1NjAwRDEyMEEzNDcy QkUxNEI3MzIwHhcNMjYwMTI1MDIxNzIzWhcNMjYwMjAxMDIxNzIzWjAYMRYwFAYD VQQDDA02OTc1N2QzMy0zODZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0EkQAZAsWRuCUXu9J5bl5X2by45w+5nPGV+Eez/O7l+KbJmPCsgVaRmP+t7Z x4aeNZ0OkleDwmCoBqwAvR9XJeI1syZ3D3e8LRDe2LHdiKczXGqsA+6i5PYOozr6 9UQx3sQYYuRBP9kgYPxzGFY46QIJuRtcZqd+pNwLKniyFYNuvicDV7mqoUEZ8Wk1 vJpV0bVK0YfDr41ZNXK6llk4fm1QtTH1W0/Zfs/7aSHKwgO0jHFF+F+VAbqE1mYj OBIgPIMJoKqhsVdxkg0XOgcCXLLIN4IZq5e7UlloC5pWsz0v5wX1Bikcfd2hP3TI IcS3QEuYAfN/fxBHymwlNsOU3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB5S05CJ 79EXamG6Jk1ArsCbEXN8MB8GA1UdIwQYMBaAFCpW7PDx/zn7FRVgDRIKNHK+FLcy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQ4NS82MkE5Mjg2NjQ3 Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9LbGJzOFBIX09mc1ZGV0FORWdvMGNyNFV0 ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tsYnM4UEhfT2ZzVkZXQU5FZ28wY3I0VXR6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQ4NS82MkE5Mjg2NjQ3Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9LbGJzOFBIX09m c1ZGV0FORWdvMGNyNFV0ekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA73IC8AgKCQQ/BuVypJT/uiLRN37pBzdXw+eDZOsmAJ7mVrfKCn7K1 NpqmSlFBdnEL1UhsX5UkHlKI3Zg/LKCdbEqR5hrnefPAVhEu8iFtJLdcW67dx1Lf pe0SopQLwRoHBr64tY0xfDNZA1koqaXRVHSde2b7wuDHUp7uSDsAUos4UQCBtbcp l+DhJQiEDTNcBXzugnLFs8UvO59yJRFUDeUAsntlNjGpcwClaKr6mPF0NSvnU3Wn D0j9Srl2pquFyrihWN7/fC15kq58JrDSwTRs4Z8urBu1MCEWqpI4Z6UZsd9My04A isGw335KZHjfm23q6QFJsZBTcolsMdTW -----END CERTIFICATE-----Generated at Sun Jan 25 06:07:17 2026 by rpki-client