This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft File: K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft (raw, json) Hash identifier: qFRqrG8JZrNh5xJyUSaxCrCDwZgI7FvWmbjSdr1w1no= Subject key identifier: A4:52:0F:AB:6B:E0:1E:88:84:94:2E:8D:8F:9B:40:E6:07:D2:C4:5E Authority key identifier: 2B:CA:12:D4:6D:46:11:ED:6E:F1:88:6F:36:44:68:DF:3D:02:ED:E5 Certificate issuer: /CN=A91AE25A/serialNumber=2BCA12D46D4611ED6EF1886F364468DF3D02EDE5 Certificate serial: 01C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft Manifest number: 01C0 Signing time: Sun 11 Jan 2026 02:16:27 +0000 Manifest this update: Sun 11 Jan 2026 02:16:27 +0000 Manifest next update: Sun 18 Jan 2026 02:16:27 +0000 Files and hashes: 1: K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl (hash: AavC5evH1MGv04SWEGnkTtUuWm5i8fx0+qmo5CcqHCQ=) 2: AB366D1C409611EE92C55F40C4F9AE02.roa (hash: bUZufHm2YUJjKX7UE+iKB/iI+xqEJZ46mEmd8NCr+x8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 Jan 2026 02:16:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 451 (0x1c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE25A, serialNumber=2BCA12D46D4611ED6EF1886F364468DF3D02EDE5 Validity Not Before: Jan 11 02:16:27 2026 GMT Not After : Jan 18 02:16:27 2026 GMT Subject: CN=696307fb-b26f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:68:b0:1c:85:97:45:67:d3:84:af:38:d3:d7: d2:0e:9a:5f:a7:ac:f9:88:04:d5:d9:9d:d3:1e:56: c3:d8:8f:2b:58:f8:92:90:c8:33:ec:db:f4:23:8e: 05:60:a9:82:28:a4:47:01:47:f3:cc:35:6c:bc:e0: 21:ac:4a:75:b4:fc:2e:28:6c:c1:cd:31:1e:a4:2c: 69:f3:4f:b7:71:9f:9a:77:6f:bf:8d:5f:33:91:ef: 8b:bb:ba:c1:d8:ab:61:bd:34:82:14:8d:fd:c0:7c: 03:f0:57:d0:1e:71:8f:fd:af:76:96:51:5d:77:c9: 5e:86:0c:7a:bb:4a:71:02:6e:6b:53:29:1a:b8:8e: 18:00:09:2a:f2:c7:83:7c:a4:5e:10:cc:ac:58:e0: a9:1a:52:46:4e:29:2b:2f:d7:5d:c6:2f:a2:b8:81: 5b:7d:e7:1f:a6:20:4b:95:ec:15:6c:f5:08:6d:5f: 8b:d3:03:9b:43:9e:4f:72:69:f1:86:02:4b:e9:fb: 87:e6:f8:93:ec:9a:ea:68:50:e8:91:b1:57:e2:2d: 9f:0e:26:0f:82:b3:f8:19:3a:38:14:42:f2:f1:13: 0b:dc:7c:bf:d2:be:2b:7b:68:76:b3:c0:a0:bc:a6: 86:b8:7d:fb:a4:f5:59:31:ef:bb:0d:e1:29:ac:01: 84:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:52:0F:AB:6B:E0:1E:88:84:94:2E:8D:8F:9B:40:E6:07:D2:C4:5E X509v3 Authority Key Identifier: keyid:2B:CA:12:D4:6D:46:11:ED:6E:F1:88:6F:36:44:68:DF:3D:02:ED:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:19:df:24:d3:4c:3a:c8:cb:b1:38:0c:f6:67:db:6c:f7:a2: bd:85:45:99:f5:5c:d0:c9:78:98:6b:4a:86:cf:51:4b:5a:91: ac:25:92:a2:f2:bd:6f:d6:6d:a4:fb:51:53:05:42:27:e3:3e: a5:a3:b9:c5:a3:38:48:b4:0d:12:c7:ab:92:03:8b:8f:c3:a9: bc:2e:89:91:1f:4f:4e:e9:5f:e0:cc:c0:ca:3a:48:d6:60:e5: 9c:e3:9d:de:e6:b4:78:83:2d:4f:8b:53:42:c1:b8:e5:10:e4: 02:7e:cf:9e:98:d5:d7:8e:c0:46:f4:7f:b8:3e:fe:2b:e0:66: 41:d2:42:e1:e8:73:e1:96:f4:cf:4a:9c:60:f2:19:24:d3:13: e8:12:1d:bf:a1:59:13:18:3d:e4:4c:a6:4e:39:af:82:fb:32: 9a:93:65:60:ad:9a:d8:0f:7e:da:31:86:75:0d:21:57:62:f7: 1d:c1:79:9f:b4:a6:13:07:82:e3:db:ee:78:00:8a:b8:4b:17: f2:26:4c:6f:ce:a7:06:88:2e:79:4c:c6:11:b6:0b:bf:1c:a2: 9e:7c:f9:27:b0:70:b8:23:62:f3:28:e0:b8:5b:39:84:a1:62: 13:bd:0a:51:21:2e:5a:23:11:72:61:22:19:23:06:0f:90:10: 61:c9:67:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUyNUExMTAvBgNVBAUTKDJCQ0ExMkQ0NkQ0NjExRUQ2RUYxODg2RjM2NDQ2OERG M0QwMkVERTUwHhcNMjYwMTExMDIxNjI3WhcNMjYwMTE4MDIxNjI3WjAYMRYwFAYD VQQDDA02OTYzMDdmYi1iMjZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA52iwHIWXRWfThK8409fSDppfp6z5iATV2Z3THlbD2I8rWPiSkMgz7Nv0I44F YKmCKKRHAUfzzDVsvOAhrEp1tPwuKGzBzTEepCxp80+3cZ+ad2+/jV8zke+Lu7rB 2KthvTSCFI39wHwD8FfQHnGP/a92llFdd8lehgx6u0pxAm5rUykauI4YAAkq8seD fKReEMysWOCpGlJGTikrL9ddxi+iuIFbfecfpiBLlewVbPUIbV+L0wObQ55Pcmnx hgJL6fuH5viT7JrqaFDokbFX4i2fDiYPgrP4GTo4FELy8RML3Hy/0r4re2h2s8Cg vKaGuH37pPVZMe+7DeEprAGERwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKRSD6tr 4B6IhJQujY+bQOYH0sReMB8GA1UdIwQYMBaAFCvKEtRtRhHtbvGIbzZEaN89Au3l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTI1QS8yQzk2RjUwODQw OTYxMUVFQjQ2RTZGM0ZDNEY5QUUwMi9LOG9TMUcxR0VlMXU4WWh2TmtSbzN6MEM3 ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s4b1MxRzFHRWUxdThZaHZOa1JvM3owQzdlVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTI1QS8yQzk2RjUwODQwOTYxMUVFQjQ2RTZGM0ZDNEY5QUUwMi9LOG9TMUcxR0Vl MXU4WWh2TmtSbzN6MEM3ZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbGd8k00w6yMuxOAz2Z9ts96K9hUWZ9VzQyXiYa0qGz1FLWpGsJZKi 8r1v1m2k+1FTBUIn4z6lo7nFozhItA0Sx6uSA4uPw6m8LomRH09O6V/gzMDKOkjW YOWc453e5rR4gy1Pi1NCwbjlEOQCfs+emNXXjsBG9H+4Pv4r4GZB0kLh6HPhlvTP Spxg8hkk0xPoEh2/oVkTGD3kTKZOOa+C+zKak2VgrZrYD37aMYZ1DSFXYvcdwXmf tKYTB4Lj2+54AIq4SxfyJkxvzqcGiC55TMYRtgu/HKKefPknsHC4I2LzKOC4WzmE oWITvQpRIS5aIxFyYSIZIwYPkBBhyWfY -----END CERTIFICATE-----Generated at Sun Jan 11 07:37:11 2026 by rpki-client