This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft File: kXkVGVyXGrRB_d7eb_PNNy51TLU.mft (raw, json) Hash identifier: tz1AVPXib6trZoLnve7Sbm47Fcc0T2Nz2vzixstUUHc= Subject key identifier: 29:C1:A0:7E:26:39:7A:4C:81:6F:0E:F4:FB:AC:5E:01:C0:36:A1:4C Authority key identifier: 91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5 Certificate issuer: /CN=A91795CA/serialNumber=917915195C971AB441FDDEDE6FF3CD372E754CB5 Certificate serial: 06AA Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft Manifest number: 06A4 Signing time: Tue 20 Jan 2026 21:26:26 +0000 Manifest this update: Tue 20 Jan 2026 21:26:26 +0000 Manifest next update: Tue 27 Jan 2026 21:26:26 +0000 Files and hashes: 1: kXkVGVyXGrRB_d7eb_PNNy51TLU.crl (hash: dbRjDGM42hPSZmj5grYaRShSVl390BZZLTVpKjeJuK8=) 2: 2B8D76AE9BB711EBBB7BA02BC4F9AE02.roa (hash: aHkHq3prWV8PYM6R/1n0/cS3AolHN3tQt/aLI9yRoNU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.crl rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 21:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1706 (0x6aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91795CA, serialNumber=917915195C971AB441FDDEDE6FF3CD372E754CB5 Validity Not Before: Jan 20 21:26:26 2026 GMT Not After : Jan 27 21:26:26 2026 GMT Subject: CN=696ff302-9df4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:53:f5:6d:af:cf:bd:e2:c9:43:72:4e:4b:eb: 85:01:6f:66:78:95:09:cf:1a:f1:b4:57:28:a3:c9: 76:cb:4d:cf:c4:da:69:6f:92:64:5e:a7:03:1b:e4: 12:b2:e2:50:58:3c:5b:42:d5:65:bc:43:e4:02:fb: 33:70:ed:81:65:c6:28:70:0e:24:30:65:3f:59:52: a0:50:9e:6e:79:f4:c3:c0:96:03:10:93:61:57:e6: ab:a6:c3:92:88:ea:66:ed:cb:2f:7d:d9:4a:6d:43: e4:1e:35:bd:ac:13:72:5a:35:1a:51:30:46:75:1c: 1e:c6:e0:e6:4b:49:94:a0:1b:ab:21:d1:03:96:d1: d0:31:ea:e1:99:b4:e6:2c:b8:ba:2c:06:70:62:c0: 3e:40:58:a8:51:75:f8:2f:e6:32:c0:6a:7d:eb:e6: 2a:fc:66:63:70:74:f7:74:46:6d:43:04:95:a2:22: 34:83:6f:74:2f:4c:5d:d0:2d:fe:82:19:fa:5b:be: 02:21:db:33:87:68:76:f2:5f:56:56:fd:21:a6:55: b9:3b:ac:50:9d:4b:f5:c6:a6:0f:3c:be:54:eb:c8: 53:b3:42:af:d9:07:32:0e:cf:bd:ce:e0:95:5a:21: eb:f1:75:01:94:ef:1c:35:5b:4a:2b:a3:ad:dc:c2: 63:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:C1:A0:7E:26:39:7A:4C:81:6F:0E:F4:FB:AC:5E:01:C0:36:A1:4C X509v3 Authority Key Identifier: keyid:91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:8c:c5:90:9c:84:cb:78:09:f8:53:19:12:b0:04:46:dc:d4: b1:1a:ef:dd:4a:32:80:3c:9c:ac:eb:b9:40:97:07:68:a6:5d: b8:2d:6f:6c:b7:8a:0e:cf:65:6a:7b:66:8b:7c:89:c7:49:ee: b6:5e:04:6e:8c:9a:fa:98:b1:0d:0e:80:37:79:27:43:df:37: b0:4b:41:dc:de:63:39:bf:1a:5e:92:22:77:62:57:3f:db:96: 82:c5:20:fa:cf:6c:9a:bb:12:60:31:61:71:52:1e:41:3d:d5: a3:1b:07:f9:c2:70:89:88:1c:17:da:4d:8d:52:84:77:8a:ca: 09:19:93:84:60:22:99:8d:c2:88:36:e4:c9:99:73:3b:b2:71: 64:b2:19:13:79:f1:31:14:68:97:09:80:6b:7b:c7:33:8e:5e: 3e:93:a1:58:07:5c:6c:00:ff:db:78:d2:32:5b:ac:92:7c:7f: 14:73:da:2e:57:ed:58:0b:be:0d:94:8e:f7:53:b7:b0:b9:1e: 1a:53:9f:b4:bc:9c:be:53:99:98:fb:0c:aa:ea:67:6d:e5:00: 26:95:b2:1e:b8:1f:41:e0:75:8f:25:42:a8:25:2e:45:64:16: 28:a2:2e:9d:3a:dd:47:cf:66:ae:64:54:d8:8b:ab:68:b9:4d: 35:40:f8:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk1Q0ExMTAvBgNVBAUTKDkxNzkxNTE5NUM5NzFBQjQ0MUZEREVERTZGRjNDRDM3 MkU3NTRDQjUwHhcNMjYwMTIwMjEyNjI2WhcNMjYwMTI3MjEyNjI2WjAYMRYwFAYD VQQDDA02OTZmZjMwMi05ZGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6FP1ba/PveLJQ3JOS+uFAW9meJUJzxrxtFcoo8l2y03PxNppb5JkXqcDG+QS suJQWDxbQtVlvEPkAvszcO2BZcYocA4kMGU/WVKgUJ5uefTDwJYDEJNhV+arpsOS iOpm7csvfdlKbUPkHjW9rBNyWjUaUTBGdRwexuDmS0mUoBurIdEDltHQMerhmbTm LLi6LAZwYsA+QFioUXX4L+YywGp96+Yq/GZjcHT3dEZtQwSVoiI0g290L0xd0C3+ ghn6W74CIdszh2h28l9WVv0hplW5O6xQnUv1xqYPPL5U68hTs0Kv2QcyDs+9zuCV WiHr8XUBlO8cNVtKK6Ot3MJj5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCnBoH4m OXpMgW8O9PusXgHANqFMMB8GA1UdIwQYMBaAFJF5FRlclxq0Qf3e3m/zzTcudUy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTVDQS82MzQ3Mzc1Njk4 MDYxMUVCQTg3RTI3NjVDNEY5QUUwMi9rWGtWR1Z5WEdyUkJfZDdlYl9QTk55NTFU TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2tYa1ZHVnlYR3JSQl9kN2ViX1BOTnk1MVRMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTVDQS82MzQ3Mzc1Njk4MDYxMUVCQTg3RTI3NjVDNEY5QUUwMi9rWGtWR1Z5WEdy UkJfZDdlYl9QTk55NTFUTFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSjMWQnITLeAn4UxkSsARG3NSxGu/dSjKAPJys67lAlwdopl24LW9s t4oOz2Vqe2aLfInHSe62XgRujJr6mLENDoA3eSdD3zewS0Hc3mM5vxpekiJ3Ylc/ 25aCxSD6z2yauxJgMWFxUh5BPdWjGwf5wnCJiBwX2k2NUoR3isoJGZOEYCKZjcKI NuTJmXM7snFkshkTefExFGiXCYBre8czjl4+k6FYB1xsAP/beNIyW6ySfH8Uc9ou V+1YC74NlI73U7ewuR4aU5+0vJy+U5mY+wyq6mdt5QAmlbIeuB9B4HWPJUKoJS5F ZBYooi6dOt1Hz2auZFTYi6touU01QPi+ -----END CERTIFICATE-----Generated at Wed Jan 21 07:51:07 2026 by rpki-client