This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft File: -iKAHFKuKl_EkbfL6-aO_KLI0dk.mft (raw, json) Hash identifier: CTAfj6EO/aW4GEyVQVsVmuHtpiOpYpdFz7Iv8rKXgh0= Subject key identifier: AD:D3:F4:CD:0C:9D:CE:77:DE:1C:92:94:5A:37:D0:C9:D9:75:E3:E3 Authority key identifier: FA:22:80:1C:52:AE:2A:5F:C4:91:B7:CB:EB:E6:8E:FC:A2:C8:D1:D9 Certificate issuer: /CN=A91D837B/serialNumber=FA22801C52AE2A5FC491B7CBEBE68EFCA2C8D1D9 Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-iKAHFKuKl_EkbfL6-aO_KLI0dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft Manifest number: D8 Signing time: Tue 03 Feb 2026 05:30:41 +0000 Manifest this update: Tue 03 Feb 2026 05:30:40 +0000 Manifest next update: Tue 10 Feb 2026 05:30:40 +0000 Files and hashes: 1: -iKAHFKuKl_EkbfL6-aO_KLI0dk.crl (hash: v1S1kVHnv0w05Nuw/qW+7RtBAHcTbGP5/lfh53JT5Zs=) 2: 8F7DFE66C96E11EF98B64E15C4F9AE02.roa (hash: Vr8pXD8G4eSp3CxAKl8qQ0s6JHPMaTbvSElZhIh+h1I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.crl rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-iKAHFKuKl_EkbfL6-aO_KLI0dk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Feb 2026 05:30:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D837B, serialNumber=FA22801C52AE2A5FC491B7CBEBE68EFCA2C8D1D9 Validity Not Before: Feb 3 05:30:40 2026 GMT Not After : Feb 10 05:30:40 2026 GMT Subject: CN=69818800-232b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:70:dd:5a:42:64:79:b2:e1:36:fe:f0:8f:c2: 40:1e:64:75:98:0b:3e:dd:2e:79:0a:85:e0:2e:fd: 56:fd:8f:f4:29:73:4e:37:a8:2b:ca:10:00:85:8a: 48:a4:1f:47:1c:b1:45:eb:c1:9b:47:07:ae:8f:c6: 07:44:79:4e:9c:84:ec:f1:0a:74:23:a5:b4:75:f5: e2:32:94:ab:b5:62:7d:c4:33:2c:19:64:a2:69:82: 50:51:49:2d:a7:ce:bb:b5:23:75:ab:88:15:67:8a: 34:5f:f7:20:8a:98:53:8b:75:fa:cd:24:e1:b2:b6: d2:38:f4:d4:01:46:9a:67:bf:ea:55:62:6c:e8:05: 5e:92:7c:d0:14:87:b7:5f:ff:23:81:f0:80:b0:79: 29:29:8e:95:2f:b5:ec:8a:d2:ba:eb:68:ef:f7:7e: 4c:2b:41:46:95:6b:72:8e:14:b4:5b:9a:dc:b1:02: c9:a8:36:12:c2:61:95:73:e6:90:00:cd:19:7b:24: db:1b:0a:b6:19:eb:6b:8d:58:3e:90:c8:0a:28:6e: 13:9b:de:2a:e6:1f:48:73:95:dc:d2:44:f7:1f:3c: a4:50:7f:2d:2c:e8:f6:63:da:5f:37:ad:dc:47:01: e6:2c:90:fd:ee:14:4f:24:0f:7c:b8:75:45:9b:61: 69:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:D3:F4:CD:0C:9D:CE:77:DE:1C:92:94:5A:37:D0:C9:D9:75:E3:E3 X509v3 Authority Key Identifier: keyid:FA:22:80:1C:52:AE:2A:5F:C4:91:B7:CB:EB:E6:8E:FC:A2:C8:D1:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-iKAHFKuKl_EkbfL6-aO_KLI0dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:8c:bf:1c:e2:f1:32:ff:ef:39:d9:5b:ce:25:2d:d0:7a:06: a2:41:80:13:04:14:d7:ce:ba:01:ba:b3:b5:20:ed:8d:0c:7b: be:94:f4:be:d9:72:1b:7a:4d:a0:2c:9f:a3:b2:b2:6a:c7:bc: 48:64:b1:43:75:8e:27:4f:33:20:83:61:87:2a:cf:23:c8:32: 96:23:89:b4:d4:72:e0:a8:09:52:48:0d:94:1d:47:94:59:9a: 6a:d9:53:28:8b:d6:9a:be:53:34:55:fd:75:a1:b7:4c:33:b3: 7d:09:1f:f4:0b:d6:ac:61:f7:64:da:8d:3a:32:06:b2:1b:cf: f1:a7:bb:53:d2:f1:9f:60:f8:ac:c0:fb:d4:26:04:dc:c7:bb: c8:9b:26:3c:fc:ac:e9:e4:3b:8a:bc:43:f2:6b:14:0b:69:04: 85:03:14:20:28:e3:e5:65:54:50:5c:a0:37:53:08:1b:7d:1b: 26:bb:93:47:f5:5d:c1:d9:21:cb:8c:ed:75:bb:09:1e:68:af: 00:b6:66:52:91:25:0e:e9:d8:7c:e4:78:b4:8e:1a:67:c1:30: 78:c7:0d:fc:45:e0:60:53:5d:91:a5:bd:b8:0a:5b:a4:03:7a: bf:6b:b2:5f:26:c0:f2:90:20:87:1d:27:c2:7b:a6:2b:94:b5: 5b:e3:f0:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RDgzN0IxMTAvBgNVBAUTKEZBMjI4MDFDNTJBRTJBNUZDNDkxQjdDQkVCRTY4RUZD QTJDOEQxRDkwHhcNMjYwMjAzMDUzMDQwWhcNMjYwMjEwMDUzMDQwWjAYMRYwFAYD VQQDDA02OTgxODgwMC0yMzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi3DdWkJkebLhNv7wj8JAHmR1mAs+3S55CoXgLv1W/Y/0KXNON6gryhAAhYpI pB9HHLFF68GbRweuj8YHRHlOnITs8Qp0I6W0dfXiMpSrtWJ9xDMsGWSiaYJQUUkt p867tSN1q4gVZ4o0X/cgiphTi3X6zSThsrbSOPTUAUaaZ7/qVWJs6AVeknzQFIe3 X/8jgfCAsHkpKY6VL7XsitK662jv935MK0FGlWtyjhS0W5rcsQLJqDYSwmGVc+aQ AM0ZeyTbGwq2GetrjVg+kMgKKG4Tm94q5h9Ic5Xc0kT3HzykUH8tLOj2Y9pfN63c RwHmLJD97hRPJA98uHVFm2FpxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK3T9M0M nc533hySlFo30MnZdePjMB8GA1UdIwQYMBaAFPoigBxSripfxJG3y+vmjvyiyNHZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODM3Qi8xNThEN0YzQ0I5 OUMxMUVGOTYzOEY3NjlDNEY5QUUwMi8taUtBSEZLdUtsX0VrYmZMNi1hT19LTEkw ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1pS0FIRkt1S2xfRWtiZkw2LWFPX0tMSTBkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODM3Qi8xNThEN0YzQ0I5OUMxMUVGOTYzOEY3NjlDNEY5QUUwMi8taUtBSEZLdUts X0VrYmZMNi1hT19LTEkwZGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUjL8c4vEy/+852VvOJS3QegaiQYATBBTXzroBurO1IO2NDHu+lPS+ 2XIbek2gLJ+jsrJqx7xIZLFDdY4nTzMgg2GHKs8jyDKWI4m01HLgqAlSSA2UHUeU WZpq2VMoi9aavlM0Vf11obdMM7N9CR/0C9asYfdk2o06MgayG8/xp7tT0vGfYPis wPvUJgTcx7vImyY8/Kzp5DuKvEPyaxQLaQSFAxQgKOPlZVRQXKA3UwgbfRsmu5NH 9V3B2SHLjO11uwkeaK8AtmZSkSUO6dh85Hi0jhpnwTB4xw38ReBgU12Rpb24Cluk A3q/a7JfJsDykCCHHSfCe6YrlLVb4/Ct -----END CERTIFICATE-----Generated at Thu Feb 5 12:26:37 2026 by rpki-client