This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft File: Klm5bDClX71h0iMDc864nR2wGos.mft (raw, json) Hash identifier: /Q5t9LA8Bfq61XzzAEXbOuS7yBmNBY+hfHUZHBRYv3s= Subject key identifier: E4:D9:4C:DE:01:E5:B2:47:11:0B:74:E1:84:BD:FF:4B:1A:18:02:57 Authority key identifier: 2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B Certificate issuer: /CN=A91F523F/serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft Manifest number: D8 Signing time: Sun 25 Jan 2026 04:52:00 +0000 Manifest this update: Sun 25 Jan 2026 04:51:59 +0000 Manifest next update: Sun 01 Feb 2026 04:51:59 +0000 Files and hashes: 1: Klm5bDClX71h0iMDc864nR2wGos.crl (hash: GfGkBzRv9XwJ/w68CTIgw/RI/AE+OxBrYvaOcMR7dYQ=) 2: 607B5F6AB05411EF84C8DC74C4F9AE02.roa (hash: CDlWFm2LtxVmYaaBC5EKvKez8sI4jo8CXca3FR8eDpc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:51:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F523F, serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B Validity Not Before: Jan 25 04:51:59 2026 GMT Not After : Feb 1 04:51:59 2026 GMT Subject: CN=6975a16f-e017 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:04:8e:f7:66:69:ac:a9:aa:5d:67:72:e0:e4: 96:06:b9:4a:c4:e9:f6:f3:d0:9a:58:b1:50:ae:8c: 17:4f:b1:d3:7f:06:25:96:01:c8:d6:26:cf:74:67: 26:af:ff:77:4b:87:87:b2:a2:23:a7:b9:ef:1e:14: 30:62:3c:64:77:3e:30:fe:19:f7:69:fc:c3:94:d5: 10:3f:ab:dd:a4:3f:66:ef:a3:71:ac:e2:ac:bf:b5: 49:6c:27:5c:88:52:81:8d:6f:8b:b2:6e:25:1b:d6: ce:c7:48:56:1c:18:82:4a:f8:2f:2d:84:cd:5f:be: 76:1c:ac:4d:ac:9a:c0:63:26:aa:e5:76:55:28:90: 30:dc:bf:c6:0c:b7:c5:f4:61:3a:36:30:a7:21:74: 4b:a8:64:96:1e:32:05:66:d9:dd:0c:81:9a:f9:df: 40:46:82:d7:d0:fd:d5:9f:4d:f2:57:15:0d:c5:3c: 44:4d:13:e0:be:ad:54:cf:4c:9b:e0:70:3e:c4:51: 4d:29:b3:ff:58:ca:92:9b:d5:57:21:be:de:21:64: 93:a0:19:3f:26:6f:b4:e7:e9:ce:3e:b9:ee:58:c0: 94:66:6f:5e:06:39:7b:98:34:e3:7a:44:1c:47:29: d4:fb:51:2f:a5:e5:51:c6:cf:69:be:cb:2a:6b:72: 2a:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:D9:4C:DE:01:E5:B2:47:11:0B:74:E1:84:BD:FF:4B:1A:18:02:57 X509v3 Authority Key Identifier: keyid:2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:fe:bc:5c:78:c0:cc:33:bf:7a:1d:20:7a:4d:10:d8:71:1a: 49:f6:ce:75:fc:97:04:64:37:37:67:d4:6e:c2:39:1d:dc:b9: 1a:b6:27:a6:19:2b:6f:ca:03:ff:2f:ad:53:3f:1c:2f:6d:5e: ec:f0:42:81:77:6d:ed:01:0d:13:57:a6:55:ce:40:63:43:12: 6a:26:75:95:c6:f1:36:b0:e9:9f:23:34:60:5c:dd:56:04:78: 1c:86:68:1f:84:6e:4b:69:70:b9:62:9b:e8:f8:83:32:3a:22: 96:d1:3e:a6:b6:7e:6d:aa:ce:b8:ed:02:49:20:31:c5:dd:a6: 0b:36:3e:20:66:e9:82:bc:22:9b:7a:f6:d3:b9:87:a7:6e:0e: 4d:f3:60:2f:1d:77:8e:25:00:c7:6a:b4:59:fb:35:eb:33:77: b0:ca:f2:5e:a1:9c:7e:c9:3d:68:55:c3:1a:c4:26:2b:21:c4: 2a:d2:b7:6a:79:0b:e5:e7:03:8c:9c:cb:7e:e4:ca:d2:c2:46: 4e:48:48:2e:2d:de:0a:50:d6:f0:17:5e:3d:3e:f9:ff:00:4d: 3d:67:9a:8a:ce:06:ef:53:81:f7:69:b2:2d:2d:86:d7:1c:db: 09:62:b3:a1:48:3e:a9:af:e5:3e:9b:bb:ed:67:83:4f:5f:3d: b2:5e:9e:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyM0YxMTAvBgNVBAUTKDJBNTlCOTZDMzBBNTVGQkQ2MUQyMjMwMzczQ0VCODlE MURCMDFBOEIwHhcNMjYwMTI1MDQ1MTU5WhcNMjYwMjAxMDQ1MTU5WjAYMRYwFAYD VQQDDA02OTc1YTE2Zi1lMDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArwSO92ZprKmqXWdy4OSWBrlKxOn289CaWLFQrowXT7HTfwYllgHI1ibPdGcm r/93S4eHsqIjp7nvHhQwYjxkdz4w/hn3afzDlNUQP6vdpD9m76NxrOKsv7VJbCdc iFKBjW+Lsm4lG9bOx0hWHBiCSvgvLYTNX752HKxNrJrAYyaq5XZVKJAw3L/GDLfF 9GE6NjCnIXRLqGSWHjIFZtndDIGa+d9ARoLX0P3Vn03yVxUNxTxETRPgvq1Uz0yb 4HA+xFFNKbP/WMqSm9VXIb7eIWSToBk/Jm+05+nOPrnuWMCUZm9eBjl7mDTjekQc RynU+1EvpeVRxs9pvssqa3Iq2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOTZTN4B 5bJHEQt04YS9/0saGAJXMB8GA1UdIwQYMBaAFCpZuWwwpV+9YdIjA3POuJ0dsBqL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTIzRi80RUJBNkIzMkIw NTMxMUVGOUMyQjhEM0ZDNEY5QUUwMi9LbG01YkRDbFg3MWgwaU1EYzg2NG5SMndH b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tsbTViRENsWDcxaDBpTURjODY0blIyd0dvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTIzRi80RUJBNkIzMkIwNTMxMUVGOUMyQjhEM0ZDNEY5QUUwMi9LbG01YkRDbFg3 MWgwaU1EYzg2NG5SMndHb3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBE/rxceMDMM796HSB6TRDYcRpJ9s51/JcEZDc3Z9Ruwjkd3Lkatiem GStvygP/L61TPxwvbV7s8EKBd23tAQ0TV6ZVzkBjQxJqJnWVxvE2sOmfIzRgXN1W BHgchmgfhG5LaXC5Ypvo+IMyOiKW0T6mtn5tqs647QJJIDHF3aYLNj4gZumCvCKb evbTuYenbg5N82AvHXeOJQDHarRZ+zXrM3ewyvJeoZx+yT1oVcMaxCYrIcQq0rdq eQvl5wOMnMt+5MrSwkZOSEguLd4KUNbwF149Pvn/AE09Z5qKzgbvU4H3abItLYbX HNsJYrOhSD6pr+U+m7vtZ4NPXz2yXp76 -----END CERTIFICATE-----Generated at Sun Jan 25 18:33:26 2026 by rpki-client