This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft File: Klm5bDClX71h0iMDc864nR2wGos.mft (raw, json) Hash identifier: UYuES2ulZ23m3aAC3U6BN6OhQMaF1T+ngLlfg5EYv5g= Subject key identifier: C0:A1:A8:4C:1A:C8:6A:B9:46:12:DC:8C:15:BA:52:68:D8:B6:02:7C Authority key identifier: 2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B Certificate issuer: /CN=A91F523F/serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B Certificate serial: D6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft Manifest number: D4 Signing time: Sat 17 Jan 2026 04:50:23 +0000 Manifest this update: Sat 17 Jan 2026 04:50:22 +0000 Manifest next update: Sat 24 Jan 2026 04:50:22 +0000 Files and hashes: 1: Klm5bDClX71h0iMDc864nR2wGos.crl (hash: phwmvLzbGbIb4wJbF585v5U9MwWl8/+97SKEdAg+irU=) 2: 607B5F6AB05411EF84C8DC74C4F9AE02.roa (hash: CDlWFm2LtxVmYaaBC5EKvKez8sI4jo8CXca3FR8eDpc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 04:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F523F, serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B Validity Not Before: Jan 17 04:50:22 2026 GMT Not After : Jan 24 04:50:22 2026 GMT Subject: CN=696b150f-b8f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a4:ca:28:7a:15:51:f9:33:e2:88:84:ce:e2: 37:b2:20:7d:fe:30:14:02:4d:14:70:e0:18:ed:0b: a5:5f:df:ff:48:09:42:21:32:d1:b7:c9:93:a5:e3: 35:a1:d6:55:c7:3c:bc:01:ae:64:15:2b:e1:91:dd: b7:5f:d8:40:9f:77:f3:8e:ba:6e:fa:8d:0f:7a:7f: a7:4f:85:19:3b:51:74:04:80:22:b6:dc:e7:e5:e3: b2:52:7f:1c:3c:45:de:db:8b:08:97:d9:54:7f:19: b8:55:4d:75:e0:58:48:45:3a:26:7d:f1:40:a5:53: ff:b0:b9:64:f4:56:f5:e8:19:b1:f2:96:69:0e:05: 4a:20:52:39:2e:ea:fc:4e:d1:b9:41:6e:0c:1c:b6: 7b:d5:db:e1:1b:f8:24:92:99:bc:3b:82:d2:25:81: ad:55:88:90:30:b0:20:eb:4f:7d:14:46:15:1d:6f: 00:b9:e1:70:5d:7d:7a:8d:85:dc:18:a1:10:32:88: 37:27:56:3a:4a:bb:22:a1:38:7a:c1:0c:89:2d:f4: 35:9d:cb:2b:8d:e3:13:e5:4f:0f:4c:25:ca:35:53: c4:75:07:d0:3b:df:02:9e:52:3e:28:33:c7:b9:58: 4a:5b:6c:ae:c0:bf:74:8b:df:5d:ee:1d:72:c4:50: 6d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:A1:A8:4C:1A:C8:6A:B9:46:12:DC:8C:15:BA:52:68:D8:B6:02:7C X509v3 Authority Key Identifier: keyid:2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:13:20:a4:82:69:85:65:46:dd:37:25:21:3b:78:28:07:e5: 7f:71:3e:bf:58:28:33:3d:5b:31:2c:89:db:a4:64:89:5b:94: 4b:78:2a:ef:d3:d2:4e:69:fa:8d:81:24:5e:bd:01:66:31:05: 00:0b:d8:57:d9:ea:35:ea:d3:83:95:c9:24:e5:d6:96:d4:23: e8:64:14:2a:5d:da:fe:27:fa:a8:da:ad:98:08:f0:15:25:43: 63:ff:f1:ba:eb:f0:76:a8:40:5a:14:5f:9f:ba:a1:96:ba:0e: f0:9e:b1:34:49:e1:51:a7:1d:09:e9:74:f0:f2:01:d0:ed:fa: f2:7a:c5:d6:d3:64:98:de:8b:38:56:60:fa:19:64:72:6f:7a: 93:2a:f0:82:9a:db:0b:28:3e:c4:49:b2:d2:9f:21:d0:b1:20: a5:35:7b:2a:f6:5c:81:cf:ec:1d:37:05:b7:bc:1b:ba:0e:8e: a3:b8:a1:69:38:5e:d1:9e:91:39:96:6a:12:fb:b5:b2:6f:27: dd:af:bc:54:d6:d2:09:95:a8:fb:0b:45:b4:4b:53:a3:f0:66: 74:d0:07:2e:7f:a8:84:35:ff:cf:c4:be:03:56:42:a1:0a:f1: 9d:5c:fb:2e:3b:5f:97:4c:c0:3e:e4:09:9a:5b:36:1d:16:ed: b0:db:67:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyM0YxMTAvBgNVBAUTKDJBNTlCOTZDMzBBNTVGQkQ2MUQyMjMwMzczQ0VCODlE MURCMDFBOEIwHhcNMjYwMTE3MDQ1MDIyWhcNMjYwMTI0MDQ1MDIyWjAYMRYwFAYD VQQDDA02OTZiMTUwZi1iOGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1aTKKHoVUfkz4oiEzuI3siB9/jAUAk0UcOAY7QulX9//SAlCITLRt8mTpeM1 odZVxzy8Aa5kFSvhkd23X9hAn3fzjrpu+o0Pen+nT4UZO1F0BIAittzn5eOyUn8c PEXe24sIl9lUfxm4VU114FhIRTomffFApVP/sLlk9Fb16Bmx8pZpDgVKIFI5Lur8 TtG5QW4MHLZ71dvhG/gkkpm8O4LSJYGtVYiQMLAg6099FEYVHW8AueFwXX16jYXc GKEQMog3J1Y6SrsioTh6wQyJLfQ1ncsrjeMT5U8PTCXKNVPEdQfQO98CnlI+KDPH uVhKW2yuwL90i99d7h1yxFBtLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMChqEwa yGq5RhLcjBW6UmjYtgJ8MB8GA1UdIwQYMBaAFCpZuWwwpV+9YdIjA3POuJ0dsBqL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTIzRi80RUJBNkIzMkIw NTMxMUVGOUMyQjhEM0ZDNEY5QUUwMi9LbG01YkRDbFg3MWgwaU1EYzg2NG5SMndH b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tsbTViRENsWDcxaDBpTURjODY0blIyd0dvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTIzRi80RUJBNkIzMkIwNTMxMUVGOUMyQjhEM0ZDNEY5QUUwMi9LbG01YkRDbFg3 MWgwaU1EYzg2NG5SMndHb3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiEyCkgmmFZUbdNyUhO3goB+V/cT6/WCgzPVsxLInbpGSJW5RLeCrv 09JOafqNgSRevQFmMQUAC9hX2eo16tODlckk5daW1CPoZBQqXdr+J/qo2q2YCPAV JUNj//G66/B2qEBaFF+fuqGWug7wnrE0SeFRpx0J6XTw8gHQ7fryesXW02SY3os4 VmD6GWRyb3qTKvCCmtsLKD7ESbLSnyHQsSClNXsq9lyBz+wdNwW3vBu6Do6juKFp OF7RnpE5lmoS+7Wybyfdr7xU1tIJlaj7C0W0S1Oj8GZ00Acuf6iENf/PxL4DVkKh CvGdXPsuO1+XTMA+5AmaWzYdFu2w22d3 -----END CERTIFICATE-----Generated at Sun Jan 18 03:16:33 2026 by rpki-client