This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft File: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft (raw, json) Hash identifier: 3Kx2VDGb8YDBLUvNvrUnyYXcHY0ujcyCf+KLW3occWg= Subject key identifier: 4B:43:06:9D:00:FD:FE:82:99:33:2C:EE:9A:48:A7:4F:34:56:C3:02 Authority key identifier: 28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD Certificate issuer: /CN=A91ACC22/serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Certificate serial: 1074 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft Manifest number: 1063 Signing time: Sun 04 Jan 2026 17:03:29 +0000 Manifest this update: Sun 04 Jan 2026 17:03:29 +0000 Manifest next update: Sun 11 Jan 2026 17:03:29 +0000 Files and hashes: 1: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl (hash: oHBK3E269p5aPe3A4jLUdefOWKMgtjRoI51l79YwUM4=) 2: EF66DDE4E46A11EB9552D31BC4F9AE02.roa (hash: ucL3j8TnFmy+7V5qbIqZDaLy79WcFoXLeH1a5In6i8E=) 3: 2A3D8B5EA97D11EABA31B843C4F9AE02.roa (hash: fPoBgkYnMh4IMhrB/TA39+M1O1OAHZFrtUEJDkMooUg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 Jan 2026 17:03:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4212 (0x1074) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACC22, serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Validity Not Before: Jan 4 17:03:29 2026 GMT Not After : Jan 11 17:03:29 2026 GMT Subject: CN=695a9d61-9a7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:4e:a9:29:5c:e9:c9:de:0c:4e:f5:30:37:12: 7b:2c:04:78:e3:24:dd:54:45:7b:f0:dd:7c:6f:49: 43:f3:e4:b6:f2:23:28:92:33:89:78:ac:b9:3f:21: 77:9d:c6:f4:47:ec:2e:d9:38:a5:4b:e3:6c:7d:31: 61:68:44:a6:b2:2a:15:8b:44:e5:4d:c9:46:f7:19: 71:4f:ce:3e:38:2c:0e:16:ff:ca:7b:bc:94:50:e1: 4f:e6:d8:ee:f6:6a:5d:dc:a0:d3:86:be:c6:2f:01: 96:71:43:59:08:66:16:97:9b:42:aa:ea:b6:29:1d: 25:13:8d:58:4c:96:7a:cf:3a:b4:b3:be:31:27:4b: 5e:d9:13:f6:7a:8e:04:b8:ff:d8:3f:48:eb:d7:d5: 2f:00:51:c4:19:ed:e5:1f:16:4b:26:f0:5a:bf:95: 7e:56:14:70:9f:83:b2:4a:10:08:4f:94:0c:b0:56: f4:58:46:38:5b:f4:22:03:a9:af:95:82:c4:ca:fd: 24:36:8d:78:45:e4:f5:d8:4c:fc:19:78:25:48:7b: 33:c1:01:b2:d3:2b:5f:4e:69:f1:20:09:a4:fc:8a: b8:00:51:d4:53:5b:93:9b:dc:0f:89:89:1d:97:69: 6f:24:95:d4:0f:35:33:a3:77:65:1b:02:0d:86:92: ab:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:43:06:9D:00:FD:FE:82:99:33:2C:EE:9A:48:A7:4F:34:56:C3:02 X509v3 Authority Key Identifier: keyid:28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:3b:41:28:46:d7:55:f3:f5:f6:8f:3a:32:2d:fb:b5:54:f8: 8c:d0:49:22:88:4d:1d:d9:06:ff:e5:0c:94:fe:3a:1a:d3:86: 1b:3e:ba:97:f1:8e:8b:3e:5f:d7:43:da:ee:5d:23:b6:52:93: 2e:2c:0c:bc:0e:64:53:fa:f3:dc:ef:30:9f:67:b1:3a:53:b3: ec:0c:51:4a:31:a4:9b:ff:55:07:e8:40:94:8b:b8:ef:6a:96: 21:29:43:b7:74:2f:ec:4b:ee:a3:d1:a9:db:4c:0c:08:dd:68: 2f:c9:0b:a9:48:9b:a1:29:9a:7a:81:0e:51:cf:5e:d9:b0:de: 7a:56:87:e3:34:2f:ae:b3:2a:fd:34:74:cc:af:fb:66:fc:68: 9d:c2:f0:9d:ac:8a:fa:1c:b7:27:14:37:06:e7:00:0a:54:a1: aa:84:b8:ae:24:e6:f7:05:63:db:34:f0:11:5f:09:33:0d:a4: 75:8d:7a:bc:54:57:cc:da:21:bc:93:47:19:76:9c:9d:c9:15: 0d:c9:9e:96:4a:d3:0d:0a:58:a4:3a:7d:26:72:02:da:47:83: 61:c3:12:59:b4:eb:58:7c:9c:a5:da:c2:54:da:0b:8d:ba:86: 7a:af:28:f0:d7:53:cc:fd:6c:cf:94:21:49:f2:62:ee:d7:65: e2:97:75:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEHQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNDMjIxMTAvBgNVBAUTKDI4RjVFNjVENzUwNTk2MURDNTUwQTk0OTI0REJDRUZC QjY3Njk0QkQwHhcNMjYwMTA0MTcwMzI5WhcNMjYwMTExMTcwMzI5WjAYMRYwFAYD VQQDDA02OTVhOWQ2MS05YTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArk6pKVzpyd4MTvUwNxJ7LAR44yTdVEV78N18b0lD8+S28iMokjOJeKy5PyF3 ncb0R+wu2TilS+NsfTFhaESmsioVi0TlTclG9xlxT84+OCwOFv/Ke7yUUOFP5tju 9mpd3KDThr7GLwGWcUNZCGYWl5tCquq2KR0lE41YTJZ6zzq0s74xJ0te2RP2eo4E uP/YP0jr19UvAFHEGe3lHxZLJvBav5V+VhRwn4OyShAIT5QMsFb0WEY4W/QiA6mv lYLEyv0kNo14ReT12Ez8GXglSHszwQGy0ytfTmnxIAmk/Iq4AFHUU1uTm9wPiYkd l2lvJJXUDzUzo3dlGwINhpKrMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEtDBp0A /f6CmTMs7ppIp080VsMCMB8GA1UdIwQYMBaAFCj15l11BZYdxVCpSSTbzvu2dpS9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0MyMi82OTA2QzZGQTRD NzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxoM0ZVS2xKSk52Ty03WjJs TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQWG1YWFVGbGgzRlVLbEpKTnZPLTdaMmxMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0MyMi82OTA2QzZGQTRDNzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxo M0ZVS2xKSk52Ty03WjJsTDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5O0EoRtdV8/X2jzoyLfu1VPiM0EkiiE0d2Qb/5QyU/joa04YbPrqX 8Y6LPl/XQ9ruXSO2UpMuLAy8DmRT+vPc7zCfZ7E6U7PsDFFKMaSb/1UH6ECUi7jv apYhKUO3dC/sS+6j0anbTAwI3WgvyQupSJuhKZp6gQ5Rz17ZsN56VofjNC+usyr9 NHTMr/tm/GidwvCdrIr6HLcnFDcG5wAKVKGqhLiuJOb3BWPbNPARXwkzDaR1jXq8 VFfM2iG8k0cZdpydyRUNyZ6WStMNClikOn0mcgLaR4NhwxJZtOtYfJyl2sJU2guN uoZ6ryjw11PM/WzPlCFJ8mLu12Xil3Uy -----END CERTIFICATE-----Generated at Tue Jan 6 04:41:47 2026 by rpki-client