This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft File: km2a3G-4c9dlu0EicoDB8RhG7hc.mft (raw, json) Hash identifier: IHu2fAkZC3Ai+yle8LMzAAmS7Mb8sap2+T/WqhlSHB0= Subject key identifier: 59:6C:98:AC:C7:BE:78:80:7C:5D:7B:E8:F6:E9:A2:47:0F:B7:AF:FE Authority key identifier: 92:6D:9A:DC:6F:B8:73:D7:65:BB:41:22:72:80:C1:F1:18:46:EE:17 Certificate issuer: /CN=A91EBA0E/serialNumber=926D9ADC6FB873D765BB41227280C1F11846EE17 Certificate serial: 0233 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft Manifest number: 0228 Signing time: Sun 25 Jan 2026 01:29:14 +0000 Manifest this update: Sun 25 Jan 2026 01:29:14 +0000 Manifest next update: Sun 01 Feb 2026 01:29:14 +0000 Files and hashes: 1: km2a3G-4c9dlu0EicoDB8RhG7hc.crl (hash: Z3tNsvzqQ31B8H2wiIX3k5JNxOrDCEjPUGfpRX6oEf8=) 2: 1B5E26228FA911EF90043A7CC4F9AE02.roa (hash: B6AplExmLrIT4R5ziT3lWEDw+OK86D2hSg+6JuEpzR0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.crl rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 01:29:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 563 (0x233) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBA0E, serialNumber=926D9ADC6FB873D765BB41227280C1F11846EE17 Validity Not Before: Jan 25 01:29:14 2026 GMT Not After : Feb 1 01:29:14 2026 GMT Subject: CN=697571ea-ea4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:fe:1f:a5:f2:d8:07:96:de:14:e8:f7:c3:81: f7:0c:ad:96:89:66:b4:8e:89:db:2e:04:10:de:dc: 57:eb:cd:09:c3:b9:f7:d4:00:9c:70:83:82:8f:55: 44:b6:69:da:df:84:be:ae:b2:08:de:79:cb:6b:2c: 5c:90:67:6e:63:36:05:b3:23:69:4c:8f:ba:ed:14: 7f:1d:1a:05:14:68:54:bc:db:d9:35:a0:ce:64:f4: 02:36:bd:1c:cd:f9:cd:77:fe:2a:7d:aa:65:a4:ce: f9:c2:31:dc:16:d9:24:99:41:cc:64:bd:85:0d:37: c3:16:93:85:8a:da:06:37:22:62:04:7b:a3:5e:f7: 1a:04:51:ee:00:fb:01:2c:92:46:5c:94:74:32:a2: 30:60:f4:c0:37:42:30:3c:18:47:9d:0c:f9:59:b5: a3:d9:11:62:58:db:67:83:e2:e6:b9:ac:ab:80:cf: b2:12:18:c6:b4:98:03:38:57:af:23:fb:29:08:2f: 62:79:1b:0f:94:f8:28:34:1f:fd:74:c9:28:f2:91: df:4d:00:16:91:71:9a:cd:7c:43:6c:cb:d4:c1:9d: bb:96:22:de:79:ce:9c:50:b6:ba:b8:5c:b1:ac:56: f4:09:ad:a8:84:f2:60:e2:fb:96:04:26:09:ac:d2: e7:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:6C:98:AC:C7:BE:78:80:7C:5D:7B:E8:F6:E9:A2:47:0F:B7:AF:FE X509v3 Authority Key Identifier: keyid:92:6D:9A:DC:6F:B8:73:D7:65:BB:41:22:72:80:C1:F1:18:46:EE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:a4:f7:de:aa:7d:c7:63:63:77:11:83:ea:a0:19:b3:28:7e: b7:ae:99:64:fb:98:b8:7b:0f:65:1d:bc:d5:73:d3:4e:f0:7b: 92:36:80:4f:1c:7f:98:2f:a4:ab:b6:a4:5b:fd:a5:5a:7e:d0: 93:95:6f:ca:63:b3:05:62:21:49:a1:1b:b8:53:c5:dc:b2:12: 13:3d:ee:60:b2:7b:3e:6a:9b:e1:6e:70:96:3e:b8:80:e9:1c: 84:4a:ff:99:f4:0c:86:cb:0f:73:5e:ac:15:99:63:b9:a0:17: 7e:3a:35:aa:87:98:74:c6:f1:4f:fa:34:90:91:8c:22:06:f4: f4:8f:c4:67:e0:76:cb:ab:11:4e:b5:15:3b:d0:8a:17:0b:0a: b3:8e:47:ba:35:7e:a1:1b:e8:2b:3a:eb:75:89:a8:54:03:c9: 7e:97:eb:2d:65:45:ee:71:9c:29:65:39:89:b3:6b:a6:78:45: eb:97:33:e8:1a:b3:84:a6:97:0a:b3:cc:00:e6:01:4f:f7:b7: de:41:08:27:fe:fd:54:e4:22:44:11:72:71:c8:34:4a:77:b7: ee:48:49:5e:45:1d:f7:34:98:6f:f4:70:bc:55:ab:7f:08:f3: c8:08:8b:03:97:ce:07:a4:6e:eb:85:e4:ce:cb:d5:0b:ad:c1: 9c:98:f0:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJBMEUxMTAvBgNVBAUTKDkyNkQ5QURDNkZCODczRDc2NUJCNDEyMjcyODBDMUYx MTg0NkVFMTcwHhcNMjYwMTI1MDEyOTE0WhcNMjYwMjAxMDEyOTE0WjAYMRYwFAYD VQQDDA02OTc1NzFlYS1lYTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo/4fpfLYB5beFOj3w4H3DK2WiWa0jonbLgQQ3txX680Jw7n31ACccIOCj1VE tmna34S+rrII3nnLayxckGduYzYFsyNpTI+67RR/HRoFFGhUvNvZNaDOZPQCNr0c zfnNd/4qfaplpM75wjHcFtkkmUHMZL2FDTfDFpOFitoGNyJiBHujXvcaBFHuAPsB LJJGXJR0MqIwYPTAN0IwPBhHnQz5WbWj2RFiWNtng+LmuayrgM+yEhjGtJgDOFev I/spCC9ieRsPlPgoNB/9dMko8pHfTQAWkXGazXxDbMvUwZ27liLeec6cULa6uFyx rFb0Ca2ohPJg4vuWBCYJrNLnJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFlsmKzH vniAfF176PbpokcPt6/+MB8GA1UdIwQYMBaAFJJtmtxvuHPXZbtBInKAwfEYRu4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkEwRS9EQkJFRDIwNkMw MDUxMUVEQTI1NUZBMTBDNEY5QUUwMi9rbTJhM0ctNGM5ZGx1MEVpY29EQjhSaEc3 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ttMmEzRy00YzlkbHUwRWljb0RCOFJoRzdoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkEwRS9EQkJFRDIwNkMwMDUxMUVEQTI1NUZBMTBDNEY5QUUwMi9rbTJhM0ctNGM5 ZGx1MEVpY29EQjhSaEc3aGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwpPfeqn3HY2N3EYPqoBmzKH63rplk+5i4ew9lHbzVc9NO8HuSNoBP HH+YL6SrtqRb/aVaftCTlW/KY7MFYiFJoRu4U8XcshITPe5gsns+apvhbnCWPriA 6RyESv+Z9AyGyw9zXqwVmWO5oBd+OjWqh5h0xvFP+jSQkYwiBvT0j8Rn4HbLqxFO tRU70IoXCwqzjke6NX6hG+grOut1iahUA8l+l+stZUXucZwpZTmJs2umeEXrlzPo GrOEppcKs8wA5gFP97feQQgn/v1U5CJEEXJxyDRKd7fuSEleRR33NJhv9HC8Vat/ CPPICIsDl84HpG7rheTOy9ULrcGcmPDK -----END CERTIFICATE-----Generated at Sun Jan 25 07:48:08 2026 by rpki-client