This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft File: KO2nuV1ejUVip1l0xt19pkwqKoY.mft (raw, json) Hash identifier: utjwvZ1vDO1JS0KZYGn25pc2e+36whCH7MxpwWka7u8= Subject key identifier: DE:41:C5:AC:3B:68:16:A1:1E:A7:1F:86:20:8E:74:DB:7C:B3:EC:09 Authority key identifier: 28:ED:A7:B9:5D:5E:8D:45:62:A7:59:74:C6:DD:7D:A6:4C:2A:2A:86 Certificate issuer: /CN=A9142E1E/serialNumber=28EDA7B95D5E8D4562A75974C6DD7DA64C2A2A86 Certificate serial: BF Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft Manifest number: BF Signing time: Wed 21 Jan 2026 04:28:25 +0000 Manifest this update: Wed 21 Jan 2026 04:28:25 +0000 Manifest next update: Wed 28 Jan 2026 04:28:25 +0000 Files and hashes: 1: KO2nuV1ejUVip1l0xt19pkwqKoY.crl (hash: DuhdpveOxXmCAaclZZTBZ2wRaqM12ZX24keWHS1XApg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.crl rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 02:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142E1E, serialNumber=28EDA7B95D5E8D4562A75974C6DD7DA64C2A2A86 Validity Not Before: Jan 21 04:28:25 2026 GMT Not After : Jan 28 04:28:25 2026 GMT Subject: CN=697055e9-6b31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:db:cc:05:30:50:2b:c4:b4:3a:c5:a0:ed:1f: 7a:7f:66:88:14:ec:14:89:f9:74:e2:56:53:bf:7d: fa:f9:bf:cf:42:0b:e8:02:1b:f5:2a:e9:a0:98:a8: 57:19:f8:ed:ef:d8:cf:bd:22:62:c4:1c:d1:7d:bd: a6:ff:ae:04:35:cb:18:f9:24:aa:d6:b1:a4:38:d8: 36:e6:fc:ac:a0:91:71:f2:f3:b4:17:7f:fa:25:96: bc:ec:6e:ba:58:85:f5:64:0c:8f:44:be:f1:4e:38: 34:6f:ee:16:e0:1e:c5:07:a8:6e:97:90:e9:8d:bb: 66:fe:0e:09:8a:f4:e6:bd:9c:4f:39:75:5b:bb:c5: 2f:be:ed:86:b4:bf:d3:f1:01:02:93:09:83:c9:1c: 87:cc:2b:d6:34:2c:83:9e:ed:bc:47:71:d0:90:f8: ac:e0:3d:c2:b4:1f:fe:75:f1:5a:84:e5:7d:83:34: 20:61:5f:94:9c:d7:29:ec:21:34:95:be:81:29:f3: 78:a8:5a:6b:f7:41:cc:a0:d0:3e:da:3a:62:b4:58: 7c:e5:14:80:d4:14:9c:ca:d6:fc:76:62:e9:e3:5d: e3:16:50:c9:1e:e6:58:f6:d9:ab:8d:3c:2d:dc:ef: 7b:38:d1:07:1f:5d:69:f3:75:03:8f:0a:ca:eb:e3: 67:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:41:C5:AC:3B:68:16:A1:1E:A7:1F:86:20:8E:74:DB:7C:B3:EC:09 X509v3 Authority Key Identifier: keyid:28:ED:A7:B9:5D:5E:8D:45:62:A7:59:74:C6:DD:7D:A6:4C:2A:2A:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:2b:54:04:53:9a:ab:5a:4d:1f:43:db:0f:24:30:37:8a:ad: 97:bd:90:58:59:7c:92:1b:3d:d6:52:e4:82:a5:d0:5a:eb:b9: 28:0a:7d:9f:11:8e:b7:fb:53:33:71:b1:c7:18:c4:d9:61:23: 80:60:5b:ce:1a:dd:9f:28:b7:7a:2e:32:82:03:6c:cc:c5:9f: a6:fa:c2:92:d4:94:74:4d:da:2b:49:8f:70:d9:2c:23:1e:36: 22:a8:88:b5:9b:97:92:10:bd:6c:a6:0e:ab:4f:fc:90:d4:f9: 8e:50:c6:6b:d9:64:f6:cc:64:84:7e:ce:6e:be:d3:08:66:d7: 63:d8:bc:45:92:3b:4f:0c:55:b9:e5:a5:7d:29:70:0b:c4:4b: f3:de:18:3a:d7:19:44:9f:c1:c5:0c:ff:9b:dd:7a:14:0e:f7: 55:99:5e:49:e1:e7:fe:cf:61:aa:f3:fd:37:02:da:06:7d:46: c6:39:65:9f:20:de:da:5e:93:3e:73:0f:29:ca:25:c3:a9:2e: d2:86:cf:2c:a5:e7:79:18:9b:85:2f:73:85:a2:ad:11:cc:d0: e3:7b:ae:bb:f8:9e:a5:db:fd:c8:0e:89:95:ac:4f:0a:6f:c9: 05:51:06:85:1c:a6:3d:d2:d2:2c:cf:d8:43:a5:de:d2:41:98: d7:95:58:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJFMUUxMTAvBgNVBAUTKDI4RURBN0I5NUQ1RThENDU2MkE3NTk3NEM2REQ3REE2 NEMyQTJBODYwHhcNMjYwMTIxMDQyODI1WhcNMjYwMTI4MDQyODI1WjAYMRYwFAYD VQQDDA02OTcwNTVlOS02YjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2dvMBTBQK8S0OsWg7R96f2aIFOwUifl04lZTv336+b/PQgvoAhv1KumgmKhX Gfjt79jPvSJixBzRfb2m/64ENcsY+SSq1rGkONg25vysoJFx8vO0F3/6JZa87G66 WIX1ZAyPRL7xTjg0b+4W4B7FB6hul5Dpjbtm/g4JivTmvZxPOXVbu8Uvvu2GtL/T 8QECkwmDyRyHzCvWNCyDnu28R3HQkPis4D3CtB/+dfFahOV9gzQgYV+UnNcp7CE0 lb6BKfN4qFpr90HMoNA+2jpitFh85RSA1BScytb8dmLp413jFlDJHuZY9tmrjTwt 3O97ONEHH11p83UDjwrK6+NnnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN5Bxaw7 aBahHqcfhiCOdNt8s+wJMB8GA1UdIwQYMBaAFCjtp7ldXo1FYqdZdMbdfaZMKiqG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkUxRS9ENDA5RjgyQUQx NjkxMUVGQjc2RkI1MjBDNEY5QUUwMi9LTzJudVYxZWpVVmlwMWwweHQxOXBrd3FL b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0tPMm51VjFlalVWaXAxbDB4dDE5cGt3cUtvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkUxRS9ENDA5RjgyQUQxNjkxMUVGQjc2RkI1MjBDNEY5QUUwMi9LTzJudVYxZWpV VmlwMWwweHQxOXBrd3FLb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJK1QEU5qrWk0fQ9sPJDA3iq2XvZBYWXySGz3WUuSCpdBa67koCn2f EY63+1MzcbHHGMTZYSOAYFvOGt2fKLd6LjKCA2zMxZ+m+sKS1JR0TdorSY9w2Swj HjYiqIi1m5eSEL1spg6rT/yQ1PmOUMZr2WT2zGSEfs5uvtMIZtdj2LxFkjtPDFW5 5aV9KXALxEvz3hg61xlEn8HFDP+b3XoUDvdVmV5J4ef+z2Gq8/03AtoGfUbGOWWf IN7aXpM+cw8pyiXDqS7Shs8sped5GJuFL3OFoq0RzNDje667+J6l2/3IDomVrE8K b8kFUQaFHKY90tIsz9hDpd7SQZjXlVgN -----END CERTIFICATE-----Generated at Wed Jan 21 07:52:05 2026 by rpki-client