This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft File: KFO9oWOMWZqEwwlTEOab_SYKqXg.mft (raw, json) Hash identifier: 8nWyUHSW9lvwBhMVfU/iFUiiJqemVckBR5DEykrcvWU= Subject key identifier: 93:37:6D:38:9E:06:F1:7F:37:94:16:C3:7E:DD:2D:9A:04:26:C4:99 Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 0492 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft Manifest number: 0411 Signing time: Tue 20 Jan 2026 23:50:14 +0000 Manifest this update: Tue 20 Jan 2026 23:50:13 +0000 Manifest next update: Tue 27 Jan 2026 23:50:13 +0000 Files and hashes: 1: KFO9oWOMWZqEwwlTEOab_SYKqXg.crl (hash: qACVb8lIuc2moqzFs527fr35Zrhjk8n8WFbb24yKkbY=) 2: 14000EECD46811EEBDB9C07CC4F9AE02.roa (hash: 7jeiGelpitVZJ2SDM97NQyDQ054WKrwcVFs2fiL9rR4=) 3: A336FE62609111EFB751B771C4F9AE02.roa (hash: MFUO2Vwggul03zb8VthB8JTwYiWWzEcIazSxBfoGylk=) 4: 02734B6624D611F0B50DE20BC4F9AE02.roa (hash: UWjsDTna3xN8UXBvUtn5RQ4vzV2naXa6iAAtPOuRpNA=) 5: 57A7394C4B0E11EE8682CD4CC4F9AE02.roa (hash: 0aUzLo+tj0STYntnMy41IKYzEm935Bzt+cazcmTnPgc=) 6: 2F24736869C111EF92B54060C4F9AE02.roa (hash: Miqja/vpKVAaF/vnRgSmVQ18Av7Df4WDRSV+aGQxo+c=) 7: 07D38A6669C011EF90EADF5CC4F9AE02.roa (hash: x/fURVgHMxeoAlarve9A+lF6P60f2bclShA/wwrURkM=) 8: 1F89C5C22CB511F08A1A9242C4F9AE02.roa (hash: /x1NixuQhNxLXo/3apZddriClLaw/KTmbAeb4wF5saI=) 9: 69738B14E8AD11F09A679225586F56BC.roa (hash: PcMWgbTomfVmzOPfyw5PbMrfv3lqV9Tx72HMdZAnfm0=) 10: 11BD8780E8AD11F0B4C8CA81576F56BC.roa (hash: V/oKRNRfbJinqpBjkqvJ5o6sCG+SkzmNR18bmVNkN0o=) 11: 1DBF3F2E69BF11EF9B52775AC4F9AE02.roa (hash: xFISd+ttEAQblHfttx8rPYImOsDbFXxuc1pYVxxc5iM=) 12: 458AC21A684111EEA6632877C4F9AE02.roa (hash: 0etHP0vNjZ0wS7deZi50YLUT1cDycXszc/epOvXick4=) 13: 45BC5258C6F711ED9BD6E476C4F9AE02.roa (hash: otwHNOckyf1ytn1Apq/1BeR1CNk021GVJMzJD9T7ctY=) 14: 69E7D456E8AD11F09A679225586F56BC.roa (hash: QLNDsByG1QX2WiXvNzlSdD44sYckrLeaORLSQtsZWZ8=) 15: F7D72D3E23E211EFA47D6C68C4F9AE02.roa (hash: cmDbt6+hgVAuc68D0QOLjv6gRVfjKRHOGDZYET5JrIM=) 16: 79AA61622C8711EFBDD6F672C4F9AE02.roa (hash: TriCCnFo4mOMKJL+HVNMjRDt9bPh+YF5+Eq+SLW5G8k=) 17: F83786F4030011F0984B974FC4F9AE02.roa (hash: NnqzdhTneChMcHeCwKuKEbMTRZZZ4OZecUCnjJ6o38A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 23:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1170 (0x492) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B, serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: Jan 20 23:50:13 2026 GMT Not After : Jan 27 23:50:13 2026 GMT Subject: CN=697014b6-96dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ef:77:97:69:a3:ec:23:3f:a7:93:3f:f5:d8: 16:3d:27:75:1c:5d:ee:c7:89:26:81:87:d7:40:5f: 93:55:41:59:0d:c6:7a:b1:3f:92:b8:5f:e1:b3:46: 75:52:e5:45:e7:f6:e5:f4:55:bd:49:ee:42:eb:3a: a5:31:ef:ed:9f:05:25:7c:a0:6f:85:4f:0c:2b:83: 30:9d:4f:3f:8a:7e:eb:27:4a:53:27:f0:9a:e9:56: 64:68:d4:b9:ad:1c:ee:c4:6e:91:d2:df:83:ce:5f: db:f3:cf:23:35:75:0d:47:f6:cf:cb:12:ae:c9:bd: d4:f5:0c:39:5c:f5:d8:a3:90:e8:87:1e:69:47:45: 1b:4f:04:cb:9a:5f:aa:c6:3c:af:a8:af:02:20:b5: e8:84:fc:7d:69:b5:0a:87:3d:e8:c9:05:03:70:2b: 5c:34:6c:8a:63:4c:f4:1b:cc:a2:86:6b:2e:e3:f9: bd:b2:61:75:a8:1e:22:25:69:5e:f2:e9:41:2b:b6: 28:88:41:54:28:be:8b:a2:8e:24:d1:8a:a7:62:1e: c7:dc:cd:6d:08:2a:b9:1d:26:38:b0:6a:46:39:b1: 88:30:b8:37:0b:74:47:6c:77:7f:15:81:5d:6d:b9: b1:f1:fd:e6:98:d2:39:4b:13:c1:c1:b5:f8:f8:fb: 29:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:37:6D:38:9E:06:F1:7F:37:94:16:C3:7E:DD:2D:9A:04:26:C4:99 X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:55:d0:e6:9a:66:08:ef:e6:d3:df:72:b3:78:10:19:57:6d: 63:7b:6c:82:e8:c2:8a:ee:93:19:45:eb:a2:b2:72:5c:45:82: 45:e5:0f:3a:16:8e:80:36:1e:8b:94:22:a8:70:de:8a:35:69: c0:0b:fb:ef:1f:a4:91:cd:2a:1e:fe:14:31:8f:3a:50:41:d9: 04:d8:14:07:b5:fb:a2:fc:81:03:87:90:46:81:37:1c:8f:11: 20:f0:fe:83:df:b6:38:61:7a:97:a4:49:96:38:c7:2c:4f:47: 74:2c:66:b7:75:50:74:fd:b2:d2:68:3c:c8:68:15:64:d5:0b: 03:e5:c8:da:71:3a:68:02:4a:18:17:59:4a:2f:09:50:f2:29: 6d:bf:34:b0:64:10:1d:65:32:33:06:df:5d:da:4c:32:1f:f1: 4a:5a:2b:5d:aa:f6:7c:33:c5:05:25:38:34:ca:06:57:a0:a9: 3e:7d:3d:c7:ed:f6:76:61:3d:c5:bb:9c:4e:c2:2c:59:dc:53: 5e:20:9f:fe:82:2e:89:77:f2:ca:36:69:9d:c4:43:f0:21:9b: 5c:65:06:47:0f:41:c5:6e:5d:a6:c9:41:59:4e:49:a4:cd:ae: 32:78:bd:4c:eb:3e:c7:39:9d:e6:bb:26:1c:8a:bc:cb:5c:39: b0:35:00:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjYwMTIwMjM1MDEzWhcNMjYwMTI3MjM1MDEzWjAYMRYwFAYD VQQDDA02OTcwMTRiNi05NmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn+93l2mj7CM/p5M/9dgWPSd1HF3ux4kmgYfXQF+TVUFZDcZ6sT+SuF/hs0Z1 UuVF5/bl9FW9Se5C6zqlMe/tnwUlfKBvhU8MK4MwnU8/in7rJ0pTJ/Ca6VZkaNS5 rRzuxG6R0t+Dzl/b888jNXUNR/bPyxKuyb3U9Qw5XPXYo5Dohx5pR0UbTwTLml+q xjyvqK8CILXohPx9abUKhz3oyQUDcCtcNGyKY0z0G8yihmsu4/m9smF1qB4iJWle 8ulBK7YoiEFUKL6Loo4k0YqnYh7H3M1tCCq5HSY4sGpGObGIMLg3C3RHbHd/FYFd bbmx8f3mmNI5SxPBwbX4+Psp7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJM3bTie BvF/N5QWw37dLZoEJsSZMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU3Qi84REE3MjY0MEMxRkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVda cUV3d2xURU9hYl9TWUtxWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpVdDmmmYI7+bT33KzeBAZV21je2yC6MKK7pMZReuisnJcRYJF5Q86 Fo6ANh6LlCKocN6KNWnAC/vvH6SRzSoe/hQxjzpQQdkE2BQHtfui/IEDh5BGgTcc jxEg8P6D37Y4YXqXpEmWOMcsT0d0LGa3dVB0/bLSaDzIaBVk1QsD5cjacTpoAkoY F1lKLwlQ8iltvzSwZBAdZTIzBt9d2kwyH/FKWitdqvZ8M8UFJTg0ygZXoKk+fT3H 7fZ2YT3Fu5xOwixZ3FNeIJ/+gi6Jd/LKNmmdxEPwIZtcZQZHD0HFbl2myUFZTkmk za4yeL1M6z7HOZ3muyYcirzLXDmwNQB4 -----END CERTIFICATE-----Generated at Thu Jan 22 10:57:04 2026 by rpki-client