This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft File: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft (raw, json) Hash identifier: cNwSrFR3n5w8IF9Q9wKcAYENBRNp03LdzW5F+9c9e90= Subject key identifier: AB:40:EB:9E:08:97:A7:C5:D1:01:E7:DD:8B:8A:E3:ED:74:D8:7A:4B Authority key identifier: 46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 Certificate issuer: /CN=A91964B3/serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Certificate serial: 10A2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft Manifest number: 108F Signing time: Wed 28 Jan 2026 14:24:12 +0000 Manifest this update: Wed 28 Jan 2026 14:24:11 +0000 Manifest next update: Wed 04 Feb 2026 14:24:11 +0000 Files and hashes: 1: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl (hash: jlLUOzjkokb1UqXTvuD4SJffE2wuJ6RMC50Blwr+dvI=) 2: 5D563164AF3411EFB5B51A57C4F9AE02.roa (hash: M/OFgQ6xRIHxm29OUey7KQ5wO/TqLXD5eexAyZK2n9E=) 3: 1396434EC90A11EF8577744AC4F9AE02.roa (hash: fLlyE3LJrhh8ya4Oq+tnhgHyRuITK+KcYoYKKgQsyk8=) 4: 23B68638C5DD11EABC58FD24C4F9AE02.roa (hash: AYQIu9Eeq3w4uZey92roMZqlDNb462bN17eV3lDVv+c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Feb 2026 14:24:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4258 (0x10a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3, serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Validity Not Before: Jan 28 14:24:11 2026 GMT Not After : Feb 4 14:24:11 2026 GMT Subject: CN=697a1c0b-1d09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:67:14:a8:77:10:39:eb:5c:f6:60:cb:7d:37: 94:ef:06:37:1c:cb:ac:46:83:db:35:04:3d:45:61: e5:81:14:a0:c6:30:7c:f8:ef:b8:d6:38:bf:27:22: 3f:20:93:24:54:c2:50:96:4b:7f:a5:df:4a:c4:2d: 23:98:00:75:6c:f5:34:33:6c:26:54:42:96:44:be: 26:46:db:62:6f:70:6b:f7:c5:e7:c0:14:43:7a:62: b7:97:13:bf:85:ba:f5:fb:5f:91:1e:90:4f:7c:f4: 28:9e:c7:d4:e2:c0:d6:f6:fd:bf:6e:62:26:cf:b3: 35:fa:4d:cc:55:5c:32:c8:6d:4f:62:f3:aa:f5:34: 1b:d3:cc:56:d9:b8:6b:f9:f0:ed:9d:34:aa:02:3f: af:47:87:6d:c0:5c:f4:cb:9d:71:86:7f:7c:9d:8d: b6:fc:42:07:7f:1e:af:94:5d:58:4c:ee:95:fe:01: 18:fa:02:a2:19:04:74:71:e0:b5:4f:13:f5:23:10: ca:39:4e:a2:e3:83:92:99:53:b7:cc:3e:c6:9e:01: 26:e3:03:02:df:c9:65:7a:d2:c5:db:b8:48:d2:a5: 33:3e:a0:37:6b:f9:f4:15:62:ea:d7:6d:41:fe:8a: 1a:fe:79:f8:de:7b:02:08:15:5e:c6:b1:f3:23:93: ae:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:40:EB:9E:08:97:A7:C5:D1:01:E7:DD:8B:8A:E3:ED:74:D8:7A:4B X509v3 Authority Key Identifier: keyid:46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:60:25:cd:dc:9f:a2:a9:23:cc:d2:94:27:74:78:c9:30:0e: eb:c1:c7:43:1b:ac:a7:ed:0e:5c:a9:7c:00:55:a2:1b:3f:e9: 9e:ae:f6:62:1c:50:d3:17:45:c2:36:7f:9a:6e:fa:a5:7e:5a: 6b:47:06:fe:4b:9d:d7:6a:4c:72:d4:c7:f1:9e:2e:e7:ef:b5: 57:89:a9:84:ea:83:c2:72:ff:e8:dd:13:54:44:13:55:3b:45: 2a:4b:1b:f4:b8:59:90:57:55:f0:68:0f:a0:1d:f7:9d:67:f3: c7:29:9c:c8:8b:fd:29:c2:19:51:87:56:f5:15:36:59:61:6c: cf:01:f6:75:12:c8:d1:de:5b:eb:67:94:01:c9:68:91:b9:8c: c5:ba:c4:5c:2c:3a:32:1b:ab:b2:11:e9:fa:a5:dc:85:ac:1e: c4:60:92:39:ad:ab:e9:ba:e8:0b:84:ba:fc:c8:2f:aa:3d:37: fd:88:d2:a1:07:3e:93:d3:bc:55:62:84:16:e3:fc:a5:9a:04: 7f:26:f3:74:41:32:8a:e0:68:28:69:f4:20:20:7b:c5:04:ce: 9f:ac:6e:89:e2:d8:cb:76:88:d0:44:72:e6:cf:71:f3:9e:b5: 54:9e:ec:65:2d:2f:7b:a0:d1:3c:60:5c:6e:b6:20:f0:0a:ca: b7:4b:19:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx OTY0QjMxMTAvBgNVBAUTKDQ2NDg1NEZCNTBBOTkwM0M1MjUzNDE4QzU4M0QwRjMx Qjg0MUQ1OTcwHhcNMjYwMTI4MTQyNDExWhcNMjYwMjA0MTQyNDExWjAYMRYwFAYD VQQDDA02OTdhMWMwYi0xZDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0GcUqHcQOetc9mDLfTeU7wY3HMusRoPbNQQ9RWHlgRSgxjB8+O+41ji/JyI/ IJMkVMJQlkt/pd9KxC0jmAB1bPU0M2wmVEKWRL4mRttib3Br98XnwBRDemK3lxO/ hbr1+1+RHpBPfPQonsfU4sDW9v2/bmImz7M1+k3MVVwyyG1PYvOq9TQb08xW2bhr +fDtnTSqAj+vR4dtwFz0y51xhn98nY22/EIHfx6vlF1YTO6V/gEY+gKiGQR0ceC1 TxP1IxDKOU6i44OSmVO3zD7GngEm4wMC38lletLF27hI0qUzPqA3a/n0FWLq121B /ooa/nn43nsCCBVexrHzI5OuZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKtA654I l6fF0QHn3YuK4+102HpLMB8GA1UdIwQYMBaAFEZIVPtQqZA8UlNBjFg9DzG4QdWX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy8yQTU5NDBGMjRC QjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtEeFNVMEdNV0QwUE1iaEIx WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JraFUtMUNwa0R4U1UwR01XRDBQTWJoQjFaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjRCMy8yQTU5NDBGMjRCQjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtE eFNVMEdNV0QwUE1iaEIxWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGYCXN3J+iqSPM0pQndHjJMA7rwcdDG6yn7Q5cqXwAVaIbP+mervZi HFDTF0XCNn+abvqlflprRwb+S53Xakxy1Mfxni7n77VXiamE6oPCcv/o3RNURBNV O0UqSxv0uFmQV1XwaA+gHfedZ/PHKZzIi/0pwhlRh1b1FTZZYWzPAfZ1EsjR3lvr Z5QByWiRuYzFusRcLDoyG6uyEen6pdyFrB7EYJI5ravpuugLhLr8yC+qPTf9iNKh Bz6T07xVYoQW4/ylmgR/JvN0QTKK4GgoafQgIHvFBM6frG6J4tjLdojQRHLmz3Hz nrVUnuxlLS97oNE8YFxutiDwCsq3SxkQ -----END CERTIFICATE-----Generated at Thu Jan 29 01:21:56 2026 by rpki-client