This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft File: KmvwVK0j6tLbOVMbZGcmypRaxJI.mft (raw, json) Hash identifier: 3EqALnUbBj+wBzrlUYrv52uK0wJMS7mNq/qib3n2I28= Subject key identifier: 96:F1:E0:DE:52:9B:7A:BA:83:8D:C9:10:23:B4:FF:3B:B8:6A:C0:21 Authority key identifier: 2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 Certificate issuer: /CN=A918AB7E/serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Certificate serial: 97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft Manifest number: 96 Signing time: Sun 11 Jan 2026 05:36:54 +0000 Manifest this update: Sun 11 Jan 2026 05:36:54 +0000 Manifest next update: Sun 18 Jan 2026 05:36:54 +0000 Files and hashes: 1: KmvwVK0j6tLbOVMbZGcmypRaxJI.crl (hash: zf4iYvXt3Ysmcuh4/9mJE7kXL3TIL4cXWm8cUlK9PLk=) 2: 3CF5A86C088211F0BB90C23EC4F9AE02.roa (hash: WjhNkxKHghzjWbpSoIkFccSDxcFZFh5y2Re0ypkmeM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 Jan 2026 05:36:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AB7E, serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Validity Not Before: Jan 11 05:36:54 2026 GMT Not After : Jan 18 05:36:54 2026 GMT Subject: CN=696336f6-d69e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7b:50:a2:fa:fb:21:fa:2b:7f:87:55:56:97: e6:da:14:3e:56:83:81:d7:a0:4f:a7:e7:f5:84:e7: f6:bb:58:19:f6:3e:2b:e0:c6:6a:cf:52:de:8e:a9: 30:4d:3c:1c:b3:af:e5:eb:12:74:c6:33:3b:ec:8e: 35:09:9d:b2:3c:17:9f:14:d3:03:cb:d9:b0:fd:ba: f6:c3:3c:3a:60:92:e1:1b:ca:3f:31:c0:4b:7d:eb: f0:f8:58:b2:cc:98:ab:55:8d:6c:8d:07:db:e1:a8: e3:ff:03:b9:3c:ba:49:97:dc:79:f4:e5:ae:a3:70: 2f:fd:0f:81:4f:cb:1c:0e:cb:a3:aa:ea:db:57:60: 4f:f9:f0:50:78:81:92:b4:ed:94:3e:e3:da:07:67: 0b:15:60:76:8e:72:c0:08:14:d5:ef:3f:b8:c7:b0: ee:8d:78:2e:cf:c0:72:d3:8a:fc:52:8b:a5:b7:fd: 72:7f:63:0d:86:6c:af:0a:c4:de:b8:a9:d1:1e:95: 67:d5:b5:dc:5d:87:6e:d1:5f:da:bd:9d:19:2b:27: fe:54:1b:0d:fc:78:cd:39:12:bf:fd:0f:dc:de:dd: e2:8b:4b:09:04:01:a0:a3:e0:f0:03:1e:8f:0f:fb: 0f:50:dd:3d:7d:af:58:ff:fa:30:6b:26:0c:cd:f6: bb:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:F1:E0:DE:52:9B:7A:BA:83:8D:C9:10:23:B4:FF:3B:B8:6A:C0:21 X509v3 Authority Key Identifier: keyid:2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:d7:96:5e:56:c4:e1:dd:f0:99:d6:b7:ad:0d:19:53:e0:c9: 85:a8:50:0b:f0:1a:db:82:9b:fc:0f:f6:27:81:b2:55:02:b0: 41:0d:dc:da:8b:9f:69:fc:03:5f:7c:df:f5:90:89:5a:f7:5a: ab:83:d5:6d:88:71:c7:75:92:e9:8b:e2:db:06:ba:97:86:62: 48:6f:be:14:2a:45:fa:0e:fc:68:61:88:e8:49:12:d3:0e:69: 08:dc:44:cd:64:a6:c2:07:18:9c:ff:40:71:d6:17:85:bf:ea: 5d:b8:1a:41:8a:c5:11:ac:3b:4a:ed:b4:91:6b:b6:c9:93:84: e3:10:91:f7:41:1a:cb:e3:47:3a:74:2a:7d:a1:14:ab:fd:b9: 90:be:a4:4e:80:81:93:39:68:71:8d:1c:ed:41:ee:54:cd:a3: 26:94:62:d0:ea:6d:86:a4:2e:aa:15:bb:8d:6b:78:2a:33:84: 01:5d:89:02:11:b6:8f:52:4a:9b:e0:b6:0a:a5:4a:16:ae:74: 06:9d:4c:4f:c0:c3:c1:07:72:36:e7:1f:72:8a:69:8b:d1:f5: 44:01:9e:83:54:59:ba:4f:b8:5c:72:25:bb:9e:f3:28:1d:b9: 17:86:84:15:67:66:ae:b0:dc:b3:23:af:bf:97:68:b2:62:86: 67:8f:4e:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFCN0UxMTAvBgNVBAUTKDJBNkJGMDU0QUQyM0VBRDJEQjM5NTMxQjY0NjcyNkNB OTQ1QUM0OTIwHhcNMjYwMTExMDUzNjU0WhcNMjYwMTE4MDUzNjU0WjAYMRYwFAYD VQQDDA02OTYzMzZmNi1kNjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuntQovr7Iforf4dVVpfm2hQ+VoOB16BPp+f1hOf2u1gZ9j4r4MZqz1Lejqkw TTwcs6/l6xJ0xjM77I41CZ2yPBefFNMDy9mw/br2wzw6YJLhG8o/McBLfevw+Fiy zJirVY1sjQfb4ajj/wO5PLpJl9x59OWuo3Av/Q+BT8scDsujqurbV2BP+fBQeIGS tO2UPuPaB2cLFWB2jnLACBTV7z+4x7DujXguz8By04r8Uoult/1yf2MNhmyvCsTe uKnRHpVn1bXcXYdu0V/avZ0ZKyf+VBsN/HjNORK//Q/c3t3ii0sJBAGgo+DwAx6P D/sPUN09fa9Y//owayYMzfa76QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJbx4N5S m3q6g43JECO0/zu4asAhMB8GA1UdIwQYMBaAFCpr8FStI+rS2zlTG2RnJsqUWsSS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUI3RS9GNzU5Nzk2RTA4 ODExMUYwQkFDMzQxM0VDNEY5QUUwMi9LbXZ3VkswajZ0TGJPVk1iWkdjbXlwUmF4 SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttdndWSzBqNnRMYk9WTWJaR2NteXBSYXhKSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUI3RS9GNzU5Nzk2RTA4ODExMUYwQkFDMzQxM0VDNEY5QUUwMi9LbXZ3VkswajZ0 TGJPVk1iWkdjbXlwUmF4SkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAN15ZeVsTh3fCZ1retDRlT4MmFqFAL8Brbgpv8D/YngbJVArBBDdza i59p/ANffN/1kIla91qrg9VtiHHHdZLpi+LbBrqXhmJIb74UKkX6DvxoYYjoSRLT DmkI3ETNZKbCBxic/0Bx1heFv+pduBpBisURrDtK7bSRa7bJk4TjEJH3QRrL40c6 dCp9oRSr/bmQvqROgIGTOWhxjRztQe5UzaMmlGLQ6m2GpC6qFbuNa3gqM4QBXYkC EbaPUkqb4LYKpUoWrnQGnUxPwMPBB3I25x9yimmL0fVEAZ6DVFm6T7hcciW7nvMo HbkXhoQVZ2ausNyzI6+/l2iyYoZnj068 -----END CERTIFICATE-----Generated at Mon Jan 12 07:38:12 2026 by rpki-client