This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.mft File: KoE65dYVKWBF2z4sQsuPzaxq0gw.mft (raw, json) Hash identifier: JZxbv3lbiOWS7VEhC2S+Pf9DdLLalhC4JIIQ5V0D7+c= Subject key identifier: C4:B1:F5:13:F3:A5:06:BB:D7:E6:EC:A5:19:64:82:2D:0E:A5:9C:6E Authority key identifier: 2A:81:3A:E5:D6:15:29:60:45:DB:3E:2C:42:CB:8F:CD:AC:6A:D2:0C Certificate issuer: /CN=A9193BF8/serialNumber=2A813AE5D615296045DB3E2C42CB8FCDAC6AD20C Certificate serial: 0204 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KoE65dYVKWBF2z4sQsuPzaxq0gw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.mft Manifest number: 0200 Signing time: Sun 11 Jan 2026 01:42:15 +0000 Manifest this update: Sun 11 Jan 2026 01:42:14 +0000 Manifest next update: Sun 18 Jan 2026 01:42:14 +0000 Files and hashes: 1: KoE65dYVKWBF2z4sQsuPzaxq0gw.crl (hash: Zr3nySwkmhGZ1q94oCnGB2A/g45s5FHVojZPd+1lzjE=) 2: B8F3C5B4E01811ED8385DA62C4F9AE02.roa (hash: KmbLnAg6ov5pbSc4GHHtI4bgompHpB3w8fab5eJbYog=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.crl rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KoE65dYVKWBF2z4sQsuPzaxq0gw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 Jan 2026 01:42:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 516 (0x204) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193BF8, serialNumber=2A813AE5D615296045DB3E2C42CB8FCDAC6AD20C Validity Not Before: Jan 11 01:42:14 2026 GMT Not After : Jan 18 01:42:14 2026 GMT Subject: CN=6962fff6-6a80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b7:f9:1f:71:cd:fb:02:0d:92:86:cc:29:53: aa:6c:f7:d7:7b:6b:8b:61:1e:66:b1:4c:e9:94:30: af:11:3f:70:9a:22:99:4b:e9:a8:11:43:62:ed:34: f9:1c:bf:4e:fc:68:ea:df:41:55:31:9e:1a:ad:b6: e6:b1:41:31:b1:15:44:9b:aa:12:02:57:9b:c1:92: 80:16:89:1c:75:30:e7:ab:9c:9c:f6:5b:3c:53:24: fc:1a:a1:27:1c:bb:7f:bf:19:1b:f5:e2:d9:50:f1: 64:07:14:92:ca:ff:19:06:30:85:8a:03:c9:b7:78: 11:71:1a:8f:80:22:3e:05:b6:61:29:c5:ba:16:8e: 48:af:0c:97:7c:03:96:5e:71:80:b9:46:55:80:d4: 88:05:f8:e2:6d:71:a8:af:79:8d:b5:d9:d0:0c:32: f7:9c:6d:28:fd:f8:d9:41:6c:e9:cf:0d:6b:d3:ba: 60:48:88:7c:df:cd:77:1d:f8:4d:03:c5:c3:c6:df: 42:45:6b:17:90:af:c5:ca:86:71:2a:61:77:d1:9e: d9:83:9f:cf:1a:b4:f6:f4:2e:21:f7:94:f9:5c:86: 14:c5:77:bc:4d:f4:ea:55:49:8c:3d:bb:f4:6c:0a: f7:7f:d2:f8:7b:86:e9:e6:7e:31:4a:92:85:3d:ba: ae:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:B1:F5:13:F3:A5:06:BB:D7:E6:EC:A5:19:64:82:2D:0E:A5:9C:6E X509v3 Authority Key Identifier: keyid:2A:81:3A:E5:D6:15:29:60:45:DB:3E:2C:42:CB:8F:CD:AC:6A:D2:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KoE65dYVKWBF2z4sQsuPzaxq0gw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:d5:94:5e:ed:fb:80:9c:1b:29:3d:82:1f:40:c1:b1:75:47: 1d:98:29:1c:3c:b6:fe:2b:e8:24:17:40:79:d3:99:16:46:99: 53:e2:55:6c:89:ef:cd:5e:f3:0b:8c:09:07:98:d4:e5:e6:76: ae:bc:d5:e8:d8:62:df:27:c0:e7:5d:36:f9:88:bd:99:9b:61: c0:32:7b:b1:d2:a6:07:4e:73:19:d1:9e:8f:dd:f1:38:b6:e5: 7d:c8:09:53:31:75:67:42:c3:ce:56:48:27:ab:b0:96:d4:d4: 59:9e:c4:53:cc:38:ec:49:e3:fa:a3:f7:d0:b3:29:9a:b3:f9: 23:5d:83:61:7c:fb:e9:31:64:c5:80:ab:73:50:b7:4c:59:7b: 06:c6:78:2e:c0:84:52:6f:e0:52:89:e0:8d:ed:35:89:b0:d3: c4:2d:c6:b7:09:17:3e:9d:61:f4:4f:91:7f:c2:dd:0e:8b:74: f0:ac:01:de:c3:de:55:18:93:0c:5e:86:ae:5a:0c:07:48:54: 2b:c1:95:ab:95:a4:7e:f3:68:5e:47:46:29:11:8f:4e:f0:0e: bd:4a:d0:a8:2c:f4:9d:f3:7e:33:87:3c:f9:b0:e7:d4:13:62: 87:fc:c8:69:00:c7:71:d5:6f:0a:f1:57:a0:53:ab:5d:8d:f5: 17:9f:67:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTNCRjgxMTAvBgNVBAUTKDJBODEzQUU1RDYxNTI5NjA0NURCM0UyQzQyQ0I4RkNE QUM2QUQyMEMwHhcNMjYwMTExMDE0MjE0WhcNMjYwMTE4MDE0MjE0WjAYMRYwFAYD VQQDDA02OTYyZmZmNi02YTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrf5H3HN+wINkobMKVOqbPfXe2uLYR5msUzplDCvET9wmiKZS+moEUNi7TT5 HL9O/Gjq30FVMZ4arbbmsUExsRVEm6oSAlebwZKAFokcdTDnq5yc9ls8UyT8GqEn HLt/vxkb9eLZUPFkBxSSyv8ZBjCFigPJt3gRcRqPgCI+BbZhKcW6Fo5IrwyXfAOW XnGAuUZVgNSIBfjibXGor3mNtdnQDDL3nG0o/fjZQWzpzw1r07pgSIh83813HfhN A8XDxt9CRWsXkK/FyoZxKmF30Z7Zg5/PGrT29C4h95T5XIYUxXe8TfTqVUmMPbv0 bAr3f9L4e4bp5n4xSpKFPbquEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMSx9RPz pQa71+bspRlkgi0OpZxuMB8GA1UdIwQYMBaAFCqBOuXWFSlgRds+LELLj82satIM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5M0JGOC9BMjJCRDE1OEUw MTUxMUVEQjE2NjY5NjFDNEY5QUUwMi9Lb0U2NWRZVktXQkYyejRzUXN1UHpheHEw Z3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tvRTY1ZFlWS1dCRjJ6NHNRc3VQemF4cTBndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 M0JGOC9BMjJCRDE1OEUwMTUxMUVEQjE2NjY5NjFDNEY5QUUwMi9Lb0U2NWRZVktX QkYyejRzUXN1UHpheHEwZ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBX1ZRe7fuAnBspPYIfQMGxdUcdmCkcPLb+K+gkF0B505kWRplT4lVs ie/NXvMLjAkHmNTl5nauvNXo2GLfJ8DnXTb5iL2Zm2HAMnux0qYHTnMZ0Z6P3fE4 tuV9yAlTMXVnQsPOVkgnq7CW1NRZnsRTzDjsSeP6o/fQsymas/kjXYNhfPvpMWTF gKtzULdMWXsGxnguwIRSb+BSieCN7TWJsNPELca3CRc+nWH0T5F/wt0Oi3TwrAHe w95VGJMMXoauWgwHSFQrwZWrlaR+82heR0YpEY9O8A69StCoLPSd834zhzz5sOfU E2KH/MhpAMdx1W8K8VegU6tdjfUXn2c6 -----END CERTIFICATE-----Generated at Mon Jan 12 17:37:44 2026 by rpki-client