This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.mft File: kKozD4l2v2xASeZzwoIf0pHUO8E.mft (raw, json) Hash identifier: qcIc2eDcaiGIuozWSyke4bWA6xxrSgyi5j1BQGLdolE= Subject key identifier: 3F:11:B4:D4:64:E6:F5:C3:CE:2F:81:01:81:EB:8E:9C:1B:60:78:8A Authority key identifier: 90:AA:33:0F:89:76:BF:6C:40:49:E6:73:C2:82:1F:D2:91:D4:3B:C1 Certificate issuer: /CN=A91AE85E/serialNumber=90AA330F8976BF6C4049E673C2821FD291D43BC1 Certificate serial: 05CC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kKozD4l2v2xASeZzwoIf0pHUO8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.mft Manifest number: 05CC Signing time: Fri 16 Jan 2026 14:17:48 +0000 Manifest this update: Fri 16 Jan 2026 14:17:47 +0000 Manifest next update: Fri 23 Jan 2026 14:17:47 +0000 Files and hashes: 1: kKozD4l2v2xASeZzwoIf0pHUO8E.crl (hash: LJCDN4zHVu72q8Q39ru/NaIz3kg/HXJM7W6nQHlbbcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.crl rsync://rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kKozD4l2v2xASeZzwoIf0pHUO8E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 Jan 2026 14:17:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1484 (0x5cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE85E, serialNumber=90AA330F8976BF6C4049E673C2821FD291D43BC1 Validity Not Before: Jan 16 14:17:47 2026 GMT Not After : Jan 23 14:17:47 2026 GMT Subject: CN=696a488c-461c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f9:42:32:05:b3:4e:8d:12:b3:8f:6a:fb:87: c0:6b:02:3f:78:11:ee:f8:b4:f3:e2:e9:77:f9:44: 77:b2:2d:55:45:5f:d2:27:e4:dd:25:09:fc:e0:d9: d5:a2:95:91:db:9b:5b:d1:8b:c5:68:be:5e:5f:32: 3b:e5:a7:46:4c:0e:16:ce:1e:b6:83:0a:56:f9:4e: a0:bf:6a:71:18:ee:0a:a8:00:59:73:9b:08:52:3f: 66:a0:92:07:14:0d:e3:6d:77:9e:3b:20:f7:97:b9: 71:61:79:f4:93:4f:0c:5c:eb:8b:20:2b:dc:1d:c7: 64:61:bc:14:21:a9:0d:c3:c5:1f:30:02:3a:f9:91: 54:76:da:15:17:e0:bc:97:96:42:ff:ff:25:52:cc: 11:e3:2d:2e:be:52:ea:a7:d0:2d:67:39:c1:56:6d: 68:32:5d:4f:15:9e:c8:0e:98:9b:8c:bb:08:01:40: 2e:12:65:2c:42:e1:4c:a7:c3:a5:1f:55:5c:5f:b9: 2d:24:62:70:04:08:2f:a5:98:45:1b:28:55:45:a1: e2:c7:ac:43:dc:7d:d8:ca:80:f0:50:4f:53:7a:f5: d9:df:76:3a:c9:a9:3a:06:0d:1f:76:44:d3:5c:b3: df:e8:38:de:39:1d:d1:71:81:5d:2a:ed:e5:f2:8c: 4d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:11:B4:D4:64:E6:F5:C3:CE:2F:81:01:81:EB:8E:9C:1B:60:78:8A X509v3 Authority Key Identifier: keyid:90:AA:33:0F:89:76:BF:6C:40:49:E6:73:C2:82:1F:D2:91:D4:3B:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kKozD4l2v2xASeZzwoIf0pHUO8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:92:7e:6b:95:dd:3e:ba:67:73:08:0c:c2:68:28:45:37:c6: 91:1f:a9:fb:f8:5c:ee:cc:c7:33:17:46:cf:7a:63:8b:46:78: 7d:54:40:15:0a:19:f2:ba:ef:83:78:e2:2d:f5:bb:8a:10:b5: 24:9a:33:2f:cf:e8:73:fb:9e:fd:35:2d:6d:18:c4:0f:52:5d: a9:e5:00:38:4c:c7:60:bb:1c:bd:dc:3b:3a:67:15:a7:d6:c5: a6:48:31:af:c9:a9:b4:ae:6c:29:e3:e7:48:b5:f1:ad:c6:69: 6d:e0:47:4e:8a:29:e1:4b:33:6e:46:85:70:72:6b:e8:8f:45: a6:a0:78:8f:86:63:be:22:bb:66:7b:85:07:7a:5c:d0:51:6d: 9f:be:31:06:49:01:4c:f3:0b:62:54:9b:e8:74:bc:c5:48:a3: c4:07:1d:54:9a:3f:72:ac:8e:3a:ed:ff:49:60:31:9b:27:51: e4:48:9c:80:02:9e:11:a4:eb:f9:8e:dc:c9:20:53:2c:07:7c: a2:70:c6:14:84:08:fa:95:c3:da:0b:12:49:5b:61:46:d3:e4: c7:4e:69:64:7d:f6:0e:bf:32:b4:94:35:d9:16:e1:e8:5f:c3: 5c:57:90:85:0b:14:15:59:9b:ef:7d:a2:bb:9f:ec:ea:4b:ce: f6:89:ce:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU4NUUxMTAvBgNVBAUTKDkwQUEzMzBGODk3NkJGNkM0MDQ5RTY3M0MyODIxRkQy OTFENDNCQzEwHhcNMjYwMTE2MTQxNzQ3WhcNMjYwMTIzMTQxNzQ3WjAYMRYwFAYD VQQDDA02OTZhNDg4Yy00NjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0flCMgWzTo0Ss49q+4fAawI/eBHu+LTz4ul3+UR3si1VRV/SJ+TdJQn84NnV opWR25tb0YvFaL5eXzI75adGTA4Wzh62gwpW+U6gv2pxGO4KqABZc5sIUj9moJIH FA3jbXeeOyD3l7lxYXn0k08MXOuLICvcHcdkYbwUIakNw8UfMAI6+ZFUdtoVF+C8 l5ZC//8lUswR4y0uvlLqp9AtZznBVm1oMl1PFZ7IDpibjLsIAUAuEmUsQuFMp8Ol H1VcX7ktJGJwBAgvpZhFGyhVRaHix6xD3H3YyoDwUE9TevXZ33Y6yak6Bg0fdkTT XLPf6DjeOR3RcYFdKu3l8oxNFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD8RtNRk 5vXDzi+BAYHrjpwbYHiKMB8GA1UdIwQYMBaAFJCqMw+Jdr9sQEnmc8KCH9KR1DvB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTg1RS8xQTE2RUI4NkYz RUExMUVCQjI1OEJBN0JDNEY5QUUwMi9rS296RDRsMnYyeEFTZVp6d29JZjBwSFVP OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tLb3pENGwydjJ4QVNlWnp3b0lmMHBIVU84RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTg1RS8xQTE2RUI4NkYzRUExMUVCQjI1OEJBN0JDNEY5QUUwMi9rS296RDRsMnYy eEFTZVp6d29JZjBwSFVPOEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMkn5rld0+umdzCAzCaChFN8aRH6n7+FzuzMczF0bPemOLRnh9VEAV Chnyuu+DeOIt9buKELUkmjMvz+hz+579NS1tGMQPUl2p5QA4TMdguxy93Ds6ZxWn 1sWmSDGvyam0rmwp4+dItfGtxmlt4EdOiinhSzNuRoVwcmvoj0WmoHiPhmO+Irtm e4UHelzQUW2fvjEGSQFM8wtiVJvodLzFSKPEBx1Umj9yrI467f9JYDGbJ1HkSJyA Ap4RpOv5jtzJIFMsB3yicMYUhAj6lcPaCxJJW2FG0+THTmlkffYOvzK0lDXZFuHo X8NcV5CFCxQVWZvvfaK7n+zqS872ic4E -----END CERTIFICATE-----Generated at Sun Jan 18 03:15:25 2026 by rpki-client