This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft File: BKm4kZsiD18-q9D03YXi9b28VQA.mft (raw, json) Hash identifier: OShWppSCdYyRrpwouIj+4tINnU0wEttdh9GYLA80R+w= Subject key identifier: 81:8B:9D:26:2E:FF:96:8D:C6:63:C7:3D:79:71:DC:C7:09:A9:45:CB Authority key identifier: 04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 Certificate issuer: /CN=A913837F/serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Certificate serial: 01C8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft Manifest number: 01C4 Signing time: Sun 25 Jan 2026 02:16:38 +0000 Manifest this update: Sun 25 Jan 2026 02:16:38 +0000 Manifest next update: Sun 01 Feb 2026 02:16:38 +0000 Files and hashes: 1: BKm4kZsiD18-q9D03YXi9b28VQA.crl (hash: aBZiRJ0i1soNGocfN6/0zcjSND0ShxPirDk+mM5iKgg=) 2: 3D83357646E411EE82ED8843C4F9AE02.roa (hash: 34LR4muDkvBv1o97MuicPyBMy45vufYYnTs0rk2DkdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 02:16:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 456 (0x1c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913837F, serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Validity Not Before: Jan 25 02:16:38 2026 GMT Not After : Feb 1 02:16:38 2026 GMT Subject: CN=69757d06-d6ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e7:12:15:b0:1c:14:e4:56:05:67:78:41:c0: 50:3c:0d:63:1f:02:1a:98:b5:6e:45:6d:0f:a2:5b: 3b:65:d1:8d:ac:b6:df:41:76:91:7c:59:ca:42:5f: c0:ad:61:99:25:6e:60:43:5b:cc:ef:1d:20:84:0a: aa:82:bb:d7:2e:6f:9a:8f:30:73:5b:ce:7f:71:c0: ad:e4:da:0c:76:ff:3c:08:bc:1f:4f:2f:6d:28:7b: bc:2c:7c:95:39:9a:f8:5b:ae:50:a0:e3:66:57:cf: 8d:75:cb:52:38:67:b5:b6:77:38:5b:70:fd:e3:ac: d6:64:de:51:f5:0f:82:3b:7a:2d:fa:88:03:28:fc: fc:b5:dc:b7:97:a0:de:e3:96:a8:8c:ff:44:21:24: 9e:91:f2:4c:70:23:b5:d6:62:75:e6:b1:f9:85:ff: b4:22:4a:d2:5b:1b:5b:d0:8b:9a:5e:a5:40:6e:22: 40:51:71:de:31:77:72:1f:b2:39:b7:27:5e:23:74: 5f:eb:f4:41:c9:5b:f9:7d:5d:d9:a7:3b:59:1f:8d: 70:f2:25:c9:2f:33:e7:0c:4d:2b:6c:6b:9a:e6:30: 36:8d:b7:f6:83:63:f9:04:e9:4b:bc:8d:d3:34:bc: dd:54:35:48:25:53:4f:99:b1:ac:5a:68:c5:ed:8d: 12:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:8B:9D:26:2E:FF:96:8D:C6:63:C7:3D:79:71:DC:C7:09:A9:45:CB X509v3 Authority Key Identifier: keyid:04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:0a:3e:8f:d5:3c:08:94:02:c5:33:ed:fb:4d:08:ea:06:5f: 9b:73:be:4d:bd:60:59:a3:58:d0:ae:b1:b7:45:95:71:67:e4: e5:43:cb:f0:8e:55:3b:a6:25:36:10:89:d2:a0:16:e4:96:c3: b9:d2:1c:8b:ed:38:7a:4c:11:30:6b:d2:8e:32:f8:5a:b0:a1: d6:1f:7f:d9:7f:e9:6e:5d:27:5c:98:4d:d1:ca:73:68:c9:f9: b1:25:cc:34:3b:25:52:0e:a3:f2:c8:c5:f7:e7:d3:0b:76:e4: 18:de:bf:85:ce:5c:87:8f:bd:ca:92:1a:77:28:50:ab:95:db: f4:93:8b:e5:af:8a:a7:b1:d9:69:57:53:9f:8d:8a:54:ad:a5: 48:5c:20:93:ad:af:35:16:d5:90:dc:96:ce:3b:1f:18:26:9d: 50:98:23:e7:af:08:98:e8:b8:60:19:c1:54:f3:63:36:79:91: ff:22:a5:68:d4:61:69:5f:6c:f0:c6:56:05:6f:7f:cd:75:87: df:81:69:29:cd:24:25:bf:b4:f8:06:17:45:cd:cf:9c:29:3d: ae:4a:95:55:a9:f0:78:0c:ea:bf:bb:be:ea:a7:2e:b0:7d:e8: 9d:b4:4a:9a:13:db:22:44:f9:e7:66:82:e4:8f:b1:bb:90:b8: c3:d9:91:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzN0YxMTAvBgNVBAUTKDA0QTlCODkxOUIyMjBGNUYzRUFCRDBGNEREODVFMkY1 QkRCQzU1MDAwHhcNMjYwMTI1MDIxNjM4WhcNMjYwMjAxMDIxNjM4WjAYMRYwFAYD VQQDDA02OTc1N2QwNi1kNmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ucSFbAcFORWBWd4QcBQPA1jHwIamLVuRW0Pols7ZdGNrLbfQXaRfFnKQl/A rWGZJW5gQ1vM7x0ghAqqgrvXLm+ajzBzW85/ccCt5NoMdv88CLwfTy9tKHu8LHyV OZr4W65QoONmV8+NdctSOGe1tnc4W3D946zWZN5R9Q+CO3ot+ogDKPz8tdy3l6De 45aojP9EISSekfJMcCO11mJ15rH5hf+0IkrSWxtb0IuaXqVAbiJAUXHeMXdyH7I5 tydeI3Rf6/RByVv5fV3ZpztZH41w8iXJLzPnDE0rbGua5jA2jbf2g2P5BOlLvI3T NLzdVDVIJVNPmbGsWmjF7Y0SwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIGLnSYu /5aNxmPHPXlx3McJqUXLMB8GA1UdIwQYMBaAFASpuJGbIg9fPqvQ9N2F4vW9vFUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODM3Ri82NDU5MEMxMjQ2 RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQxOC1xOUQwM1lYaTliMjhW UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JLbTRrWnNpRDE4LXE5RDAzWVhpOWIyOFZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODM3Ri82NDU5MEMxMjQ2RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQx OC1xOUQwM1lYaTliMjhWUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMCj6P1TwIlALFM+37TQjqBl+bc75NvWBZo1jQrrG3RZVxZ+TlQ8vw jlU7piU2EInSoBbklsO50hyL7Th6TBEwa9KOMvhasKHWH3/Zf+luXSdcmE3RynNo yfmxJcw0OyVSDqPyyMX359MLduQY3r+FzlyHj73Kkhp3KFCrldv0k4vlr4qnsdlp V1OfjYpUraVIXCCTra81FtWQ3JbOOx8YJp1QmCPnrwiY6LhgGcFU82M2eZH/IqVo 1GFpX2zwxlYFb3/NdYffgWkpzSQlv7T4BhdFzc+cKT2uSpVVqfB4DOq/u77qpy6w feidtEqaE9siRPnnZoLkj7G7kLjD2ZGk -----END CERTIFICATE-----Generated at Tue Jan 27 02:53:27 2026 by rpki-client