This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft File: kY5yieKMGkkiojy1Zb2CG34gphE.mft (raw, json) Hash identifier: AKAlt+CbvfiHIFeAFutZKXrmC+gxxromxjMIf3Kiwm4= Subject key identifier: C3:81:BF:E0:F7:39:2B:17:27:A7:A2:BB:0A:FB:61:E8:33:8A:1B:24 Authority key identifier: 91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 Certificate issuer: /CN=A9171B1A/serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Certificate serial: 0D2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft Manifest number: 0D1D Signing time: Tue 10 Feb 2026 17:48:29 +0000 Manifest this update: Tue 10 Feb 2026 17:48:28 +0000 Manifest next update: Tue 17 Feb 2026 17:48:28 +0000 Files and hashes: 1: kY5yieKMGkkiojy1Zb2CG34gphE.crl (hash: UfN9SE9oJ2ys8g4+x2zjxLMn7Rk7aMZjFdGochp0Wx8=) 2: 6E3B1338F41211E9AAF5924EC4F9AE02.roa (hash: crrlwPJBnOLvYmfJKxmn3crboPF6B78h7qVd3khCwOc=) 3: 6D9433B0F41211E9AAF5924EC4F9AE02.roa (hash: zsrG738sZcXZENVnoH6VOaw0rvAxdfe6+csvxONB1gM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Feb 2026 17:48:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3371 (0xd2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171B1A, serialNumber=918E7289E28C1A4922A23CB565BD821B7E20A611 Validity Not Before: Feb 10 17:48:28 2026 GMT Not After : Feb 17 17:48:28 2026 GMT Subject: CN=698b6f6d-84e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:99:bf:72:6a:84:3d:e5:3e:3d:27:e6:fe:91: 7a:c0:66:8c:92:7e:e3:82:b9:55:b4:07:51:c3:a7: 86:6a:3c:9b:4a:02:54:fa:0c:c4:c9:56:61:fd:a0: bb:3c:55:eb:64:dc:42:9d:2a:9d:89:73:73:12:72: 90:09:19:25:58:89:a6:95:17:69:64:6c:ae:f2:38: 77:dc:41:fe:15:e0:84:2e:b9:2c:6e:38:3a:ae:a9: e4:86:70:77:5b:4c:dd:15:c8:84:1d:e0:93:80:98: e6:53:f1:18:b5:4f:d1:51:01:8b:07:7f:cd:de:b1: 2b:83:05:dc:61:bf:43:b4:ff:4a:ac:d7:45:5d:7c: d0:b0:65:d0:bd:e7:0f:09:37:e5:f7:77:3c:99:18: f8:f5:86:42:59:87:0f:f3:4b:18:9d:10:97:3b:c8: 66:ac:99:a8:28:0d:69:86:e0:80:c5:51:15:c0:c9: 0b:e3:94:80:2e:e2:24:d4:23:93:ce:6a:9e:f7:c6: 4d:b0:d2:3f:9c:40:ea:c8:5d:54:8f:a2:4c:cb:df: a0:83:e7:80:7c:f2:c2:e0:54:c1:16:74:12:c4:94: c3:a9:de:0b:f3:7e:0c:22:ef:90:12:b7:1b:cf:94: ee:1d:90:86:fb:c6:90:97:63:4f:ec:f8:5e:a5:96: fa:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:81:BF:E0:F7:39:2B:17:27:A7:A2:BB:0A:FB:61:E8:33:8A:1B:24 X509v3 Authority Key Identifier: keyid:91:8E:72:89:E2:8C:1A:49:22:A2:3C:B5:65:BD:82:1B:7E:20:A6:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kY5yieKMGkkiojy1Zb2CG34gphE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171B1A/51FFC4E4F41111E9A435B04CC4F9AE02/kY5yieKMGkkiojy1Zb2CG34gphE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:df:3f:d8:22:a8:de:08:ca:ab:55:54:01:f5:91:20:c0:40: 83:49:ff:08:bb:0d:d7:b5:e0:f4:89:69:81:4f:dc:0e:29:c0: e0:3e:90:10:00:8f:64:d4:5a:6f:5f:c9:25:64:eb:23:62:8d: b6:60:43:11:ba:8f:47:1b:80:bf:ee:df:63:c9:cb:b2:96:ec: 94:30:2e:a0:16:67:46:19:1a:0a:3a:48:a4:6a:32:61:d9:bd: f4:0f:9a:73:85:7d:29:47:39:02:ed:84:d8:83:93:58:6d:36: 09:38:6b:a2:1e:ed:41:fc:4c:68:65:e3:d3:e0:6b:3e:5f:1c: 37:fc:65:a8:09:3a:b6:6d:16:46:b3:03:1f:83:35:e5:07:8b: 2f:4f:cb:a7:ef:5c:f3:40:26:b1:c0:0c:f3:06:c3:fa:2c:91: d9:2b:20:c1:ee:5f:a9:cc:3b:b8:58:6f:92:76:fe:f7:fc:57: da:ac:f0:0a:90:63:02:96:d1:01:05:d3:e9:15:6f:14:86:ab: 5f:1c:73:2a:a2:ee:a3:fb:02:53:3e:3c:76:f9:a6:d6:e4:43: 68:2b:f4:7e:80:e4:55:02:c2:61:5a:20:a8:25:bd:1f:55:95: 68:a9:fc:c3:79:98:50:bb:c4:03:65:44:aa:bf:6a:e8:a5:c7: 34:39:fc:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDSswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFCMUExMTAvBgNVBAUTKDkxOEU3Mjg5RTI4QzFBNDkyMkEyM0NCNTY1QkQ4MjFC N0UyMEE2MTEwHhcNMjYwMjEwMTc0ODI4WhcNMjYwMjE3MTc0ODI4WjAYMRYwFAYD VQQDDA02OThiNmY2ZC04NGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoZm/cmqEPeU+PSfm/pF6wGaMkn7jgrlVtAdRw6eGajybSgJU+gzEyVZh/aC7 PFXrZNxCnSqdiXNzEnKQCRklWImmlRdpZGyu8jh33EH+FeCELrksbjg6rqnkhnB3 W0zdFciEHeCTgJjmU/EYtU/RUQGLB3/N3rErgwXcYb9DtP9KrNdFXXzQsGXQvecP CTfl93c8mRj49YZCWYcP80sYnRCXO8hmrJmoKA1phuCAxVEVwMkL45SALuIk1COT zmqe98ZNsNI/nEDqyF1Uj6JMy9+gg+eAfPLC4FTBFnQSxJTDqd4L834MIu+QErcb z5TuHZCG+8aQl2NP7PhepZb6tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMOBv+D3 OSsXJ6eiuwr7YegzihskMB8GA1UdIwQYMBaAFJGOconijBpJIqI8tWW9ght+IKYR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUIxQS81MUZGQzRFNEY0 MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdra2lvankxWmIyQ0czNGdw aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tZNXlpZUtNR2traW9qeTFaYjJDRzM0Z3BoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUIxQS81MUZGQzRFNEY0MTExMUU5QTQzNUIwNENDNEY5QUUwMi9rWTV5aWVLTUdr a2lvankxWmIyQ0czNGdwaEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAh3z/YIqjeCMqrVVQB9ZEgwECDSf8Iuw3XteD0iWmBT9wOKcDgPpAQ AI9k1FpvX8klZOsjYo22YEMRuo9HG4C/7t9jycuyluyUMC6gFmdGGRoKOkikajJh 2b30D5pzhX0pRzkC7YTYg5NYbTYJOGuiHu1B/ExoZePT4Gs+Xxw3/GWoCTq2bRZG swMfgzXlB4svT8un71zzQCaxwAzzBsP6LJHZKyDB7l+pzDu4WG+Sdv73/FfarPAK kGMCltEBBdPpFW8UhqtfHHMqou6j+wJTPjx2+abW5ENoK/R+gORVAsJhWiCoJb0f VZVoqfzDeZhQu8QDZUSqv2ropcc0Ofzf -----END CERTIFICATE-----Generated at Wed Feb 11 18:19:44 2026 by rpki-client