This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft File: KOAXfHClckcH27FJ7VV8D4FW4Ok.mft (raw, json) Hash identifier: kjw2MGV3q/f5T4Nzbtp98CiToM6EOzkazyXgse0S1vw= Subject key identifier: 3B:E1:29:75:CE:42:DF:D2:7E:48:14:0C:3D:D4:03:56:DA:B7:AC:16 Authority key identifier: 28:E0:17:7C:70:A5:72:47:07:DB:B1:49:ED:55:7C:0F:81:56:E0:E9 Certificate issuer: /CN=A9136109/serialNumber=28E0177C70A5724707DBB149ED557C0F8156E0E9 Certificate serial: 0658 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft Manifest number: 0649 Signing time: Sat 31 Jan 2026 22:04:55 +0000 Manifest this update: Sat 31 Jan 2026 22:04:55 +0000 Manifest next update: Sat 07 Feb 2026 22:04:55 +0000 Files and hashes: 1: KOAXfHClckcH27FJ7VV8D4FW4Ok.crl (hash: d6Rh1YO9e1k8fBef1SAonbTDfj+YatEouh6NLMJSFDs=) 2: 590697D6465611EE8128031BC4F9AE02.roa (hash: D/6BYkGqlNOLOYOgY8KQs7LafMiP8Rro2RlyCrKrnhM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.crl rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Feb 2026 22:04:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1624 (0x658) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136109, serialNumber=28E0177C70A5724707DBB149ED557C0F8156E0E9 Validity Not Before: Jan 31 22:04:55 2026 GMT Not After : Feb 7 22:04:55 2026 GMT Subject: CN=697e7c87-34bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ef:6c:90:46:5f:e3:ca:3f:f6:47:c0:9f:bd: 20:de:a1:dd:5d:63:a1:b6:59:98:83:8a:aa:45:be: 00:e1:98:25:17:bd:77:56:9d:63:ee:25:b5:24:7f: 77:3d:98:b0:4e:3e:ff:b5:09:49:7a:36:22:f1:70: 2e:dc:76:0f:98:4d:d1:14:1e:58:4e:b8:1d:7c:86: d0:24:78:49:e4:d8:f6:0d:24:f4:07:bc:7e:b8:6f: a1:9c:65:7e:4b:6e:36:6f:20:af:65:20:7b:43:ed: e1:38:a2:29:44:aa:3c:fe:76:14:00:f5:28:43:4d: 4b:1e:0a:aa:85:2c:eb:72:df:cb:70:99:89:16:33: cc:83:86:92:c6:7e:48:8d:24:b1:3d:f3:77:b3:5c: 9a:6e:ca:02:f2:bb:88:9c:47:29:2f:05:e7:b3:3f: 4d:1f:b6:1d:76:4d:6e:9d:60:a8:a4:16:29:9e:c3: 47:68:2e:40:69:ac:e5:fa:3d:ce:22:98:1f:6b:ef: f6:a0:94:5d:c0:98:3a:d6:ec:00:bb:09:b0:fb:12: 6b:5c:fb:72:c8:db:df:78:74:8b:61:19:59:70:2b: bb:9c:1d:a0:22:63:29:78:e0:3c:97:b0:e9:9a:8d: 7f:f6:25:ab:15:b2:42:bd:46:bd:7e:a3:1e:d4:5a: 04:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:E1:29:75:CE:42:DF:D2:7E:48:14:0C:3D:D4:03:56:DA:B7:AC:16 X509v3 Authority Key Identifier: keyid:28:E0:17:7C:70:A5:72:47:07:DB:B1:49:ED:55:7C:0F:81:56:E0:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOAXfHClckcH27FJ7VV8D4FW4Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136109/C8207212C50D11EB9AAEE87BC4F9AE02/KOAXfHClckcH27FJ7VV8D4FW4Ok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:c1:fb:e9:b1:44:ae:56:06:f0:5d:02:52:a3:75:32:47:eb: 35:4d:79:eb:cc:d3:f0:bc:79:96:f9:ab:9d:fa:da:b4:3e:00: 44:f0:5e:f4:63:26:eb:39:f1:b0:c1:f4:a1:2e:89:aa:f3:f1: 32:64:10:7a:f2:f7:58:c9:a5:00:59:09:ea:7c:8d:1b:fd:49: ba:9e:04:aa:4c:96:85:d1:9b:b9:91:50:d7:22:2c:f7:32:91: e0:fe:b2:1f:85:82:eb:34:ad:c4:5e:2d:b8:cf:ab:3a:e0:e7: 58:f7:ce:33:7d:eb:d0:38:5c:85:5c:04:25:45:a0:0c:5d:ca: 71:ed:f5:d1:a1:ee:af:d9:34:63:22:50:b7:6d:4f:d0:69:78: 4a:82:bd:f9:59:0b:c5:21:ef:f9:6c:08:a2:47:f0:02:76:b9: 4d:d1:36:d1:35:35:01:03:94:c6:b7:a5:62:49:08:f6:3c:61: 93:7e:f6:b0:3a:88:7f:88:af:85:6d:aa:dd:65:8d:97:71:1f: 07:74:f3:97:19:69:53:b5:3a:57:23:87:2f:cd:d7:54:b0:bc: 46:1a:c4:a6:3d:c7:a8:71:27:e3:1d:a4:03:a2:ed:cd:d3:21: 1c:99:93:cb:2c:ea:71:14:48:80:b3:9a:cd:36:2c:ae:88:03: 08:e7:ce:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzYxMDkxMTAvBgNVBAUTKDI4RTAxNzdDNzBBNTcyNDcwN0RCQjE0OUVENTU3QzBG ODE1NkUwRTkwHhcNMjYwMTMxMjIwNDU1WhcNMjYwMjA3MjIwNDU1WjAYMRYwFAYD VQQDDA02OTdlN2M4Ny0zNGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2e9skEZf48o/9kfAn70g3qHdXWOhtlmYg4qqRb4A4ZglF713Vp1j7iW1JH93 PZiwTj7/tQlJejYi8XAu3HYPmE3RFB5YTrgdfIbQJHhJ5Nj2DST0B7x+uG+hnGV+ S242byCvZSB7Q+3hOKIpRKo8/nYUAPUoQ01LHgqqhSzrct/LcJmJFjPMg4aSxn5I jSSxPfN3s1yabsoC8ruInEcpLwXnsz9NH7Yddk1unWCopBYpnsNHaC5Aaazl+j3O Ipgfa+/2oJRdwJg61uwAuwmw+xJrXPtyyNvfeHSLYRlZcCu7nB2gImMpeOA8l7Dp mo1/9iWrFbJCvUa9fqMe1FoEsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDvhKXXO Qt/SfkgUDD3UA1bat6wWMB8GA1UdIwQYMBaAFCjgF3xwpXJHB9uxSe1VfA+BVuDp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjEwOS9DODIwNzIxMkM1 MEQxMUVCOUFBRUU4N0JDNEY5QUUwMi9LT0FYZkhDbGNrY0gyN0ZKN1ZWOEQ0Rlc0 T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPQVhmSENsY2tjSDI3Rko3VlY4RDRGVzRPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjEwOS9DODIwNzIxMkM1MEQxMUVCOUFBRUU4N0JDNEY5QUUwMi9LT0FYZkhDbGNr Y0gyN0ZKN1ZWOEQ0Rlc0T2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6wfvpsUSuVgbwXQJSo3UyR+s1TXnrzNPwvHmW+aud+tq0PgBE8F70 YybrOfGwwfShLomq8/EyZBB68vdYyaUAWQnqfI0b/Um6ngSqTJaF0Zu5kVDXIiz3 MpHg/rIfhYLrNK3EXi24z6s64OdY984zfevQOFyFXAQlRaAMXcpx7fXRoe6v2TRj IlC3bU/QaXhKgr35WQvFIe/5bAiiR/ACdrlN0TbRNTUBA5TGt6ViSQj2PGGTfvaw Ooh/iK+FbardZY2XcR8HdPOXGWlTtTpXI4cvzddUsLxGGsSmPceocSfjHaQDou3N 0yEcmZPLLOpxFEiAs5rNNiyuiAMI587b -----END CERTIFICATE-----Generated at Mon Feb 2 09:43:24 2026 by rpki-client