This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft File: mke_QL1Ih-IkFTMnnn8dfypfb7s.mft (raw, json) Hash identifier: wnZCBe/YeU8KmuBCHD0qvPZi9mIc8lRM9u1k6Uw5ZkE= Subject key identifier: 23:AC:0F:52:22:9E:0B:AB:0E:71:5F:3F:5F:76:DD:B8:3A:54:3A:D4 Authority key identifier: 9A:47:BF:40:BD:48:87:E2:24:15:33:27:9E:7F:1D:7F:2A:5F:6F:BB Certificate issuer: /CN=A91F3989/serialNumber=9A47BF40BD4887E2241533279E7F1D7F2A5F6FBB Certificate serial: 0157 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft Manifest number: 0153 Signing time: Sat 17 Jan 2026 03:22:26 +0000 Manifest this update: Sat 17 Jan 2026 03:22:25 +0000 Manifest next update: Sat 24 Jan 2026 03:22:25 +0000 Files and hashes: 1: mke_QL1Ih-IkFTMnnn8dfypfb7s.crl (hash: IHX2T/NOCRH/PySv1gi83dhYdj+4nckrQdoW0vENBP8=) 2: A146F2C2ECD011EE8891034AC4F9AE02.roa (hash: GmCMvjggTyREWsN9zghyP/K3sWSTqD1LSQ/qEU2884A=) 3: 56C9937C28C911F086331776C4F9AE02.roa (hash: sWZ/9dCaz3v4S72MvDmq/CPoi7rGClA8JUEmnKlDJLA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.crl rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 03:22:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 343 (0x157) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3989, serialNumber=9A47BF40BD4887E2241533279E7F1D7F2A5F6FBB Validity Not Before: Jan 17 03:22:25 2026 GMT Not After : Jan 24 03:22:25 2026 GMT Subject: CN=696b0072-4bf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:55:56:f9:14:3c:79:94:ef:d7:cb:58:d0:7b: 8f:20:18:fa:32:d6:5b:41:ac:db:60:b9:c3:b5:f3: 24:85:bc:83:b8:d4:35:e1:b0:d0:02:7c:16:cd:57: 5f:9c:3e:df:0d:45:01:aa:ff:20:84:07:59:53:bc: d5:37:ff:a1:37:37:40:01:a4:45:a0:49:70:06:cf: b8:50:c5:95:77:68:a8:4d:68:79:65:0f:68:3e:d8: 32:31:30:30:0f:00:69:ba:3f:92:63:f6:30:a5:f9: 14:96:90:7a:a4:f0:c8:5b:01:b0:19:5e:b6:6e:76: 2b:14:2c:e1:64:98:bf:73:1a:31:36:cd:27:e8:d1: 26:9c:9b:d1:3b:32:79:3a:64:6c:65:78:eb:83:cb: cb:82:d9:81:89:28:89:07:be:11:1c:bc:22:b7:8f: 8e:c7:47:fb:77:fa:31:c1:fe:c3:7e:ff:b0:21:01: 42:ce:25:4a:e8:f7:8c:73:cf:8d:ce:41:53:51:0f: 5c:cb:98:b5:41:ae:52:88:97:93:cf:d3:51:47:8b: 58:38:c5:97:68:80:41:62:21:6d:7e:d8:6c:f4:d7: b8:71:0c:97:bb:66:02:99:ce:5c:54:9b:b2:5b:df: 3f:d8:2b:86:7f:94:6a:41:24:6b:0d:42:2b:e6:f3: a1:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:AC:0F:52:22:9E:0B:AB:0E:71:5F:3F:5F:76:DD:B8:3A:54:3A:D4 X509v3 Authority Key Identifier: keyid:9A:47:BF:40:BD:48:87:E2:24:15:33:27:9E:7F:1D:7F:2A:5F:6F:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mke_QL1Ih-IkFTMnnn8dfypfb7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3989/3161C37EECD011EE8A224D49C4F9AE02/mke_QL1Ih-IkFTMnnn8dfypfb7s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:57:03:66:46:b6:8a:42:22:f8:9e:06:a7:09:70:b3:51:05: 6a:a6:77:f4:f5:96:cb:48:40:cf:26:a5:77:f0:e8:fe:6f:3b: 5d:88:cd:de:74:d7:a4:a5:ec:53:1a:b5:86:e6:48:f1:92:40: 49:3d:b2:86:ba:86:23:bc:7c:11:c1:19:2d:43:04:2b:2a:77: 1e:d3:8e:97:04:41:20:39:23:d4:51:f8:f8:df:09:81:2c:5c: 8a:ee:91:03:6b:49:9e:98:76:a5:bb:8b:32:f5:dd:85:aa:71: 67:72:da:c8:13:d6:ff:07:a3:92:83:d6:11:43:55:10:4d:14: 2a:6c:5f:9b:03:c5:63:70:f8:48:10:2e:df:cf:61:93:4d:26: 08:7b:15:29:5d:3e:25:4a:f3:80:8d:13:4a:c9:2c:3b:1d:e5: 2e:c0:8e:b7:73:d3:be:11:5b:6d:0b:3d:86:a8:54:f9:99:e9: a2:1a:02:2b:fc:56:28:35:bd:3b:00:33:2a:bd:98:59:c5:5a: 40:c5:6e:f3:9f:cc:03:84:12:5e:08:bc:ab:ab:2a:41:f6:85: 0c:63:6c:e5:68:5a:88:c0:78:55:a0:15:3f:ba:d0:f9:56:a8: 88:d3:b1:bf:6a:51:2e:c7:1c:f5:7e:02:b1:da:74:69:ad:ac: a0:18:c2:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM5ODkxMTAvBgNVBAUTKDlBNDdCRjQwQkQ0ODg3RTIyNDE1MzMyNzlFN0YxRDdG MkE1RjZGQkIwHhcNMjYwMTE3MDMyMjI1WhcNMjYwMTI0MDMyMjI1WjAYMRYwFAYD VQQDDA02OTZiMDA3Mi00YmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuFVW+RQ8eZTv18tY0HuPIBj6MtZbQazbYLnDtfMkhbyDuNQ14bDQAnwWzVdf nD7fDUUBqv8ghAdZU7zVN/+hNzdAAaRFoElwBs+4UMWVd2ioTWh5ZQ9oPtgyMTAw DwBpuj+SY/YwpfkUlpB6pPDIWwGwGV62bnYrFCzhZJi/cxoxNs0n6NEmnJvROzJ5 OmRsZXjrg8vLgtmBiSiJB74RHLwit4+Ox0f7d/oxwf7Dfv+wIQFCziVK6PeMc8+N zkFTUQ9cy5i1Qa5SiJeTz9NRR4tYOMWXaIBBYiFtfths9Ne4cQyXu2YCmc5cVJuy W98/2CuGf5RqQSRrDUIr5vOhnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCOsD1Ii ngurDnFfP1923bg6VDrUMB8GA1UdIwQYMBaAFJpHv0C9SIfiJBUzJ55/HX8qX2+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzk4OS8zMTYxQzM3RUVD RDAxMUVFOEEyMjRENDlDNEY5QUUwMi9ta2VfUUwxSWgtSWtGVE1ubm44ZGZ5cGZi N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21rZV9RTDFJaC1Ja0ZUTW5ubjhkZnlwZmI3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Mzk4OS8zMTYxQzM3RUVDRDAxMUVFOEEyMjRENDlDNEY5QUUwMi9ta2VfUUwxSWgt SWtGVE1ubm44ZGZ5cGZiN3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfVwNmRraKQiL4nganCXCzUQVqpnf09ZbLSEDPJqV38Oj+bztdiM3e dNekpexTGrWG5kjxkkBJPbKGuoYjvHwRwRktQwQrKnce046XBEEgOSPUUfj43wmB LFyK7pEDa0memHalu4sy9d2FqnFnctrIE9b/B6OSg9YRQ1UQTRQqbF+bA8VjcPhI EC7fz2GTTSYIexUpXT4lSvOAjRNKySw7HeUuwI63c9O+EVttCz2GqFT5memiGgIr /FYoNb07ADMqvZhZxVpAxW7zn8wDhBJeCLyrqypB9oUMY2zlaFqIwHhVoBU/utD5 VqiI07G/alEuxxz1fgKx2nRpraygGML1 -----END CERTIFICATE-----Generated at Sun Jan 18 03:15:14 2026 by rpki-client