This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft File: Kz24XvlSI40ZLc8XDua-scjbA6k.mft (raw, json) Hash identifier: Jp/qkqYHR3iZfCgrSnQrB59qLfNuIlCYWWyY5zV1UJ4= Subject key identifier: 5A:02:5E:E0:FC:3E:6B:86:38:8E:E0:64:F9:06:2C:27:E1:E4:37:02 Authority key identifier: 2B:3D:B8:5E:F9:52:23:8D:19:2D:CF:17:0E:E6:BE:B1:C8:DB:03:A9 Certificate issuer: /CN=A919F525/serialNumber=2B3DB85EF952238D192DCF170EE6BEB1C8DB03A9 Certificate serial: F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft Manifest number: F5 Signing time: Sat 17 Jan 2026 04:27:06 +0000 Manifest this update: Sat 17 Jan 2026 04:27:06 +0000 Manifest next update: Sat 24 Jan 2026 04:27:06 +0000 Files and hashes: 1: Kz24XvlSI40ZLc8XDua-scjbA6k.crl (hash: W6CVAYnlMmVv6U4keeAOdBCQqCPOzzRzaOMLwA1iCB4=) 2: 4AFF817484EF11EFBDCD721DC4F9AE02.roa (hash: VYuqdxkeY8VDCaP9z9fc7NoqICt3B9Gb1p23SFkZpM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.crl rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 04:27:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 249 (0xf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F525, serialNumber=2B3DB85EF952238D192DCF170EE6BEB1C8DB03A9 Validity Not Before: Jan 17 04:27:06 2026 GMT Not After : Jan 24 04:27:06 2026 GMT Subject: CN=696b0f9a-c2b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5f:4b:6a:19:8b:f2:d1:6c:b6:75:c0:2c:67: 31:4d:5e:b0:75:f4:0e:e2:dc:85:e3:0a:93:a0:b6: c6:07:92:e0:ae:35:c6:a6:60:b3:2b:f3:70:77:f6: 91:9d:72:af:78:a5:bf:b6:f7:90:6a:d0:11:22:df: 6b:0c:f2:fd:1e:80:bc:90:88:2d:38:34:b1:7d:0a: f9:03:97:c4:fb:d8:b0:4f:3c:46:e4:67:90:d0:af: 80:66:93:1d:e1:76:c9:ab:46:bf:0e:e4:dc:9a:89: e8:2c:5e:de:05:a7:a6:69:f7:ef:03:f8:e4:06:79: 39:eb:f5:31:a2:85:63:eb:71:e4:1a:f8:2d:db:4d: 24:45:bb:6e:ce:20:9d:81:68:f0:bc:4e:0c:62:ff: 55:e8:1a:4d:75:dc:7b:5d:13:03:95:39:f5:3a:16: 5d:c9:1c:66:40:f7:e5:e7:a0:7c:6c:85:c0:ee:ca: 04:e0:20:80:e6:32:d7:df:cc:fd:17:76:a3:83:4b: cc:94:a5:f7:db:a8:e7:5d:8f:24:05:65:8e:fe:1f: 3c:f3:c9:3a:5e:42:2d:5d:d1:f0:1c:c9:cd:84:8c: 57:bd:97:19:f6:05:91:28:19:c7:e9:0f:42:fc:97: 1c:af:e7:8b:1b:7c:bb:d5:94:c5:e8:1f:47:5a:1c: 01:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:02:5E:E0:FC:3E:6B:86:38:8E:E0:64:F9:06:2C:27:E1:E4:37:02 X509v3 Authority Key Identifier: keyid:2B:3D:B8:5E:F9:52:23:8D:19:2D:CF:17:0E:E6:BE:B1:C8:DB:03:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:36:46:e9:f6:b0:ed:59:a6:d6:77:65:dd:2f:4f:c9:38:ce: 75:dd:8e:4b:b6:87:28:a3:18:51:7c:cd:e2:1e:5d:28:69:e4: 72:5d:12:1c:a8:45:34:cb:e4:34:5c:84:8d:de:9a:e2:4f:35: 25:c7:f8:cb:f3:2a:5d:c1:03:4a:4d:09:ae:45:71:26:e6:1e: 41:b2:10:b6:2a:62:1b:cd:48:2e:74:6e:89:c0:33:a3:fd:5e: d5:03:fc:c7:28:b9:83:69:ea:b0:7e:2b:80:dc:bf:51:3a:13: fd:36:c3:12:5a:b4:d6:77:e6:65:07:bb:0e:1b:74:f5:ca:18: 5b:07:8f:06:51:11:ac:d0:ae:44:fc:13:43:89:f8:c2:f6:1f: 00:98:41:a1:0a:65:f7:b0:d7:83:29:15:98:f5:db:7f:7a:a0: 7b:e3:4a:44:cc:1d:12:ef:38:0c:e7:2e:3f:ce:9d:23:ce:cd: 8a:a8:c8:b7:3f:2e:c6:f8:31:9d:85:ac:b9:2e:2e:53:3a:86: b7:20:e6:4d:10:6e:0f:79:53:50:4f:52:12:89:35:c6:56:f4: e3:4c:ce:a1:be:51:4e:b2:e4:8b:c5:ee:d2:31:c4:e7:65:c6: 37:36:c6:1d:d8:0b:d6:78:37:9e:30:52:dc:78:4c:7a:8d:8a: 0f:1f:3d:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUY1MjUxMTAvBgNVBAUTKDJCM0RCODVFRjk1MjIzOEQxOTJEQ0YxNzBFRTZCRUIx QzhEQjAzQTkwHhcNMjYwMTE3MDQyNzA2WhcNMjYwMTI0MDQyNzA2WjAYMRYwFAYD VQQDDA02OTZiMGY5YS1jMmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAul9LahmL8tFstnXALGcxTV6wdfQO4tyF4wqToLbGB5LgrjXGpmCzK/Nwd/aR nXKveKW/tveQatARIt9rDPL9HoC8kIgtODSxfQr5A5fE+9iwTzxG5GeQ0K+AZpMd 4XbJq0a/DuTcmonoLF7eBaemaffvA/jkBnk56/UxooVj63HkGvgt200kRbtuziCd gWjwvE4MYv9V6BpNddx7XRMDlTn1OhZdyRxmQPfl56B8bIXA7soE4CCA5jLX38z9 F3ajg0vMlKX326jnXY8kBWWO/h8888k6XkItXdHwHMnNhIxXvZcZ9gWRKBnH6Q9C /Jccr+eLG3y71ZTF6B9HWhwBuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFoCXuD8 PmuGOI7gZPkGLCfh5DcCMB8GA1UdIwQYMBaAFCs9uF75UiONGS3PFw7mvrHI2wOp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjUyNS9FMTg3MTc3Njg0 RUQxMUVGQjlGRjJENUFDNEY5QUUwMi9LejI0WHZsU0k0MFpMYzhYRHVhLXNjamJB NmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t6MjRYdmxTSTQwWkxjOFhEdWEtc2NqYkE2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjUyNS9FMTg3MTc3Njg0RUQxMUVGQjlGRjJENUFDNEY5QUUwMi9LejI0WHZsU0k0 MFpMYzhYRHVhLXNjamJBNmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyNkbp9rDtWabWd2XdL0/JOM513Y5LtocooxhRfM3iHl0oaeRyXRIc qEU0y+Q0XISN3priTzUlx/jL8ypdwQNKTQmuRXEm5h5BshC2KmIbzUgudG6JwDOj /V7VA/zHKLmDaeqwfiuA3L9ROhP9NsMSWrTWd+ZlB7sOG3T1yhhbB48GURGs0K5E /BNDifjC9h8AmEGhCmX3sNeDKRWY9dt/eqB740pEzB0S7zgM5y4/zp0jzs2KqMi3 Py7G+DGdhay5Li5TOoa3IOZNEG4PeVNQT1ISiTXGVvTjTM6hvlFOsuSLxe7SMcTn ZcY3NsYd2AvWeDeeMFLceEx6jYoPHz2o -----END CERTIFICATE-----Generated at Sun Jan 18 03:17:14 2026 by rpki-client