This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.mft File: KKyX2Zh-eNvuncufA3NcKDvOGGI.mft (raw, json) Hash identifier: MzBR+vubxXIqzW+p3QugsA7aBzx9eG7ysA2v+NCk1yE= Subject key identifier: 34:F4:06:FB:34:6F:F9:0B:2C:74:57:0D:56:D2:D5:B9:6C:67:F2:7D Authority key identifier: 28:AC:97:D9:98:7E:78:DB:EE:9D:CB:9F:03:73:5C:28:3B:CE:18:62 Certificate issuer: /CN=A9157BC3/serialNumber=28AC97D9987E78DBEE9DCB9F03735C283BCE1862 Certificate serial: 0232 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KKyX2Zh-eNvuncufA3NcKDvOGGI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.mft Manifest number: 022F Signing time: Sun 11 Jan 2026 01:16:44 +0000 Manifest this update: Sun 11 Jan 2026 01:16:43 +0000 Manifest next update: Sun 18 Jan 2026 01:16:43 +0000 Files and hashes: 1: KKyX2Zh-eNvuncufA3NcKDvOGGI.crl (hash: 2/9zO+HrgzH7mgEt2E3nCMuZVtQ8eT7XKiwp4KNMkrc=) 2: 1FCD9DE2926611EDA99A9419C4F9AE02.roa (hash: RqBWzz5uXzyQ1KueU4cHYCTj7govMSTdgiL2egEdolc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.crl rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KKyX2Zh-eNvuncufA3NcKDvOGGI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 Jan 2026 01:16:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 562 (0x232) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157BC3, serialNumber=28AC97D9987E78DBEE9DCB9F03735C283BCE1862 Validity Not Before: Jan 11 01:16:43 2026 GMT Not After : Jan 18 01:16:43 2026 GMT Subject: CN=6962f9fc-e7ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:81:76:97:71:40:f3:57:db:dc:02:9e:2a:c1: 6d:d4:00:d7:a4:30:d0:65:2d:b0:6c:2d:2a:a4:f8: 15:81:b1:31:a8:43:2f:96:e6:3c:f8:4b:f2:ae:91: fc:a9:9d:60:63:7a:bf:1f:7a:29:b5:c6:76:84:a2: 77:3b:3c:4c:8f:7c:77:45:f1:5e:55:15:4f:84:34: 26:ab:44:10:8a:b0:99:05:92:41:a3:17:02:b1:fa: 21:c6:53:33:01:a7:c9:4f:45:51:41:e7:7b:1b:84: 28:af:de:f5:b2:ca:a8:ac:71:01:db:4b:79:7e:d1: 3f:88:be:e3:2b:7c:35:de:72:54:d7:d8:3d:98:7b: 8e:72:03:06:13:a2:37:72:04:b1:14:b4:db:e6:57: a7:bc:ba:f7:4c:b3:d8:c1:81:3f:da:f9:09:04:9d: 3e:ab:5d:83:d7:5b:5f:ab:aa:5b:65:4b:cd:4e:78: bf:4c:ea:e2:d4:83:2f:8a:48:5a:de:c0:51:47:23: e9:45:24:6e:b7:f1:61:e0:a8:46:6f:45:dc:85:f3: 95:12:07:b0:90:92:5d:07:b3:50:48:7e:dc:89:03: b1:c5:1c:80:f4:27:31:c6:ff:be:a4:6e:d9:04:68: 5d:3a:2e:0a:37:24:9d:74:fc:90:0d:5e:90:d1:a1: e5:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:F4:06:FB:34:6F:F9:0B:2C:74:57:0D:56:D2:D5:B9:6C:67:F2:7D X509v3 Authority Key Identifier: keyid:28:AC:97:D9:98:7E:78:DB:EE:9D:CB:9F:03:73:5C:28:3B:CE:18:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KKyX2Zh-eNvuncufA3NcKDvOGGI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:dd:80:d8:98:cb:49:9e:0a:6f:32:ce:b2:8d:09:05:63:99: d6:f3:1f:fe:fb:32:b6:4b:b0:23:46:6d:3b:65:66:4d:e7:4d: 25:28:39:29:27:d0:8f:5d:9f:b3:64:58:64:f3:73:59:7b:a4: c1:7f:f4:2f:76:b9:3c:a6:a5:a1:b4:61:d9:32:2a:fc:a8:d3: d3:2a:14:ef:54:1b:40:69:0a:7c:99:7c:ae:f2:00:a4:a4:8c: d7:bb:c3:71:ed:74:f8:20:30:ad:c0:e2:6a:4b:21:be:06:d4: 83:00:1a:87:11:9d:a4:91:f8:78:2d:fb:0f:37:81:5b:6b:57: a1:68:ca:ba:9c:46:e5:7b:5a:a3:36:99:26:9b:55:20:07:97: b6:4c:f4:5e:94:41:68:d4:1c:ce:59:6d:a7:ed:2e:27:ad:59: 3d:db:dd:b4:f1:57:59:e7:e9:99:4d:74:dd:7b:63:08:3c:c3: cc:06:96:4e:36:dc:c5:bd:33:ac:15:e9:35:56:20:cc:7e:dd: 25:e0:77:d3:3b:e1:14:86:72:c8:c2:fc:15:b9:35:a3:5c:c7: 42:98:39:07:47:aa:34:3d:8c:e8:f0:6f:82:19:ea:71:d2:f3: 0a:e7:83:80:c2:86:6c:de:a6:74:7c:03:ed:86:de:63:5a:e8: 76:ed:4a:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCQzMxMTAvBgNVBAUTKDI4QUM5N0Q5OTg3RTc4REJFRTlEQ0I5RjAzNzM1QzI4 M0JDRTE4NjIwHhcNMjYwMTExMDExNjQzWhcNMjYwMTE4MDExNjQzWjAYMRYwFAYD VQQDDA02OTYyZjlmYy1lN2JhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArIF2l3FA81fb3AKeKsFt1ADXpDDQZS2wbC0qpPgVgbExqEMvluY8+EvyrpH8 qZ1gY3q/H3optcZ2hKJ3OzxMj3x3RfFeVRVPhDQmq0QQirCZBZJBoxcCsfohxlMz AafJT0VRQed7G4Qor971ssqorHEB20t5ftE/iL7jK3w13nJU19g9mHuOcgMGE6I3 cgSxFLTb5lenvLr3TLPYwYE/2vkJBJ0+q12D11tfq6pbZUvNTni/TOri1IMvikha 3sBRRyPpRSRut/Fh4KhGb0XchfOVEgewkJJdB7NQSH7ciQOxxRyA9Ccxxv++pG7Z BGhdOi4KNySddPyQDV6Q0aHl+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDT0Bvs0 b/kLLHRXDVbS1blsZ/J9MB8GA1UdIwQYMBaAFCisl9mYfnjb7p3LnwNzXCg7zhhi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0JDMy83MDhFNkY2ODky NjExMUVEQTUyMDRFNjRDNEY5QUUwMi9LS3lYMlpoLWVOdnVuY3VmQTNOY0tEdk9H R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tLeVgyWmgtZU52dW5jdWZBM05jS0R2T0dHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0JDMy83MDhFNkY2ODkyNjExMUVEQTUyMDRFNjRDNEY5QUUwMi9LS3lYMlpoLWVO dnVuY3VmQTNOY0tEdk9HR0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBx3YDYmMtJngpvMs6yjQkFY5nW8x/++zK2S7AjRm07ZWZN500lKDkp J9CPXZ+zZFhk83NZe6TBf/Qvdrk8pqWhtGHZMir8qNPTKhTvVBtAaQp8mXyu8gCk pIzXu8Nx7XT4IDCtwOJqSyG+BtSDABqHEZ2kkfh4LfsPN4Fba1ehaMq6nEble1qj Npkmm1UgB5e2TPRelEFo1BzOWW2n7S4nrVk929208VdZ5+mZTXTde2MIPMPMBpZO NtzFvTOsFek1ViDMft0l4HfTO+EUhnLIwvwVuTWjXMdCmDkHR6o0PYzo8G+CGepx 0vMK54OAwoZs3qZ0fAPtht5jWuh27UoB -----END CERTIFICATE-----Generated at Sun Jan 11 23:39:48 2026 by rpki-client