This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft File: D-jKZIcKPWORHI0tZRuinKztDso.mft (raw, json) Hash identifier: PD+LZ2x/hR5AYpHqVX0XDBRciB2vqulAw5SfaDBadRs= Subject key identifier: 04:BC:8B:94:C3:2C:1C:8D:07:1B:2F:19:F1:09:62:0C:89:EF:E4:24 Authority key identifier: 0F:E8:CA:64:87:0A:3D:63:91:1C:8D:2D:65:1B:A2:9C:AC:ED:0E:CA Certificate issuer: /CN=A91B428B/serialNumber=0FE8CA64870A3D63911C8D2D651BA29CACED0ECA Certificate serial: 0A2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-jKZIcKPWORHI0tZRuinKztDso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft Manifest number: 0A28 Signing time: Sat 10 Jan 2026 19:13:32 +0000 Manifest this update: Sat 10 Jan 2026 19:13:31 +0000 Manifest next update: Sat 17 Jan 2026 19:13:31 +0000 Files and hashes: 1: D-jKZIcKPWORHI0tZRuinKztDso.crl (hash: /Sc4lRYQliC2qfTHWfp86ebKzZBMWeZ0zzoHSW97mEI=) 2: 319DF660847811EA8EE07E81C4F9AE02.roa (hash: ZlFR2HTwg3fDW4lClQanT4TaI4rdoCBr8+QBrXHDB9w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.crl rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-jKZIcKPWORHI0tZRuinKztDso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 Jan 2026 19:13:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2607 (0xa2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B428B, serialNumber=0FE8CA64870A3D63911C8D2D651BA29CACED0ECA Validity Not Before: Jan 10 19:13:31 2026 GMT Not After : Jan 17 19:13:31 2026 GMT Subject: CN=6962a4dc-1037 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:26:d1:2a:24:53:c8:64:fc:62:7c:4f:34:32: 41:29:b9:2e:9c:28:93:4a:9d:f7:e7:cc:83:e8:38: df:fa:e5:0e:35:5a:61:6b:68:ad:f0:67:87:d4:5d: 41:6d:d2:94:ea:1b:d1:5a:5b:84:bc:2d:c2:14:2f: 17:d4:e0:b0:c3:1c:ff:70:85:6f:61:ad:20:b7:c1: 4c:ae:73:93:ed:ec:5a:88:d3:d1:af:aa:32:69:b6: 09:41:e0:20:36:b5:e8:f5:2c:ca:27:cf:35:24:46: 9f:18:ab:4f:38:e1:2f:c4:0d:5b:24:7f:76:02:01: 07:38:4a:4d:5a:b3:2f:5b:bd:35:09:7b:68:8f:8c: ab:3d:f7:66:fa:b8:be:a3:6f:9b:72:02:75:03:de: 25:cc:8b:b9:a9:6b:d6:78:08:6b:44:df:b9:6f:c9: 1f:9b:45:ae:d3:ee:8c:a8:e4:62:22:78:c6:e5:38: 12:fb:f1:0a:80:ef:54:fb:4a:fa:9e:e7:e1:62:21: f9:07:74:13:00:e4:67:1d:cd:af:82:86:7f:b6:15: 61:60:61:47:d9:c2:34:08:df:2c:73:16:91:c1:a0: e2:75:e0:7e:e4:55:7a:37:18:d0:7f:28:81:da:46: cc:33:80:e2:db:10:b2:f6:f6:60:95:4c:e0:d8:fb: 05:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:BC:8B:94:C3:2C:1C:8D:07:1B:2F:19:F1:09:62:0C:89:EF:E4:24 X509v3 Authority Key Identifier: keyid:0F:E8:CA:64:87:0A:3D:63:91:1C:8D:2D:65:1B:A2:9C:AC:ED:0E:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-jKZIcKPWORHI0tZRuinKztDso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:56:7e:ad:d6:e5:5b:ae:5a:b6:2f:c4:c1:0d:82:fe:d9:e5: 8a:89:ce:7f:3e:ad:6f:02:dc:06:1b:c9:27:ef:69:55:df:fb: 27:7f:37:8e:29:89:46:05:54:3e:04:37:dc:11:ea:07:49:5d: 47:a1:3f:45:f6:fc:15:36:f9:0d:5a:17:93:f0:c1:49:92:9f: d4:f8:18:d7:e7:78:06:7e:08:f2:68:0d:73:fa:a8:bb:1a:b8: 13:e6:83:a9:88:65:08:94:6a:e8:78:17:14:94:1a:c8:a8:6a: a3:0e:9a:ad:b5:b9:86:37:d9:9d:b8:a6:68:93:9f:db:31:e1: cc:88:4c:5d:c8:b0:89:59:de:cb:1d:39:5b:ce:fb:04:1d:60: b6:77:0e:09:3a:d6:2c:59:ad:98:05:60:1f:89:b3:04:fb:79: 68:03:e8:13:17:5a:2f:0d:f2:64:08:3e:9d:4f:7b:14:e7:72: c4:b9:ae:80:00:6f:23:17:85:8c:7f:2f:7e:dd:99:25:e5:d3: ff:ae:9c:c4:73:23:ac:fa:42:7c:86:ee:28:9e:2d:01:18:40: b4:5e:51:49:53:df:13:d2:aa:34:65:82:a1:19:2d:cd:5e:a2: 80:22:8a:74:2c:e7:6c:d6:e4:42:7f:db:f6:8a:a4:18:fb:7a: 64:71:02:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyOEIxMTAvBgNVBAUTKDBGRThDQTY0ODcwQTNENjM5MTFDOEQyRDY1MUJBMjlD QUNFRDBFQ0EwHhcNMjYwMTEwMTkxMzMxWhcNMjYwMTE3MTkxMzMxWjAYMRYwFAYD VQQDDA02OTYyYTRkYy0xMDM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ibRKiRTyGT8YnxPNDJBKbkunCiTSp3358yD6Djf+uUONVpha2it8GeH1F1B bdKU6hvRWluEvC3CFC8X1OCwwxz/cIVvYa0gt8FMrnOT7exaiNPRr6oyabYJQeAg NrXo9SzKJ881JEafGKtPOOEvxA1bJH92AgEHOEpNWrMvW701CXtoj4yrPfdm+ri+ o2+bcgJ1A94lzIu5qWvWeAhrRN+5b8kfm0Wu0+6MqORiInjG5TgS+/EKgO9U+0r6 nufhYiH5B3QTAORnHc2vgoZ/thVhYGFH2cI0CN8scxaRwaDideB+5FV6NxjQfyiB 2kbMM4Di2xCy9vZglUzg2PsFMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAS8i5TD LByNBxsvGfEJYgyJ7+QkMB8GA1UdIwQYMBaAFA/oymSHCj1jkRyNLWUbopys7Q7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDI4Qi8zQTBCNkMwQzg0 NzcxMUVBQjNCNDM2ODBDNEY5QUUwMi9ELWpLWkljS1BXT1JISTB0WlJ1aW5LenRE c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QtaktaSWNLUFdPUkhJMHRaUnVpbkt6dERzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDI4Qi8zQTBCNkMwQzg0NzcxMUVBQjNCNDM2ODBDNEY5QUUwMi9ELWpLWkljS1BX T1JISTB0WlJ1aW5LenREc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyVn6t1uVbrlq2L8TBDYL+2eWKic5/Pq1vAtwGG8kn72lV3/snfzeO KYlGBVQ+BDfcEeoHSV1HoT9F9vwVNvkNWheT8MFJkp/U+BjX53gGfgjyaA1z+qi7 GrgT5oOpiGUIlGroeBcUlBrIqGqjDpqttbmGN9mduKZok5/bMeHMiExdyLCJWd7L HTlbzvsEHWC2dw4JOtYsWa2YBWAfibME+3loA+gTF1ovDfJkCD6dT3sU53LEua6A AG8jF4WMfy9+3Zkl5dP/rpzEcyOs+kJ8hu4oni0BGEC0XlFJU98T0qo0ZYKhGS3N XqKAIop0LOds1uRCf9v2iqQY+3pkcQI1 -----END CERTIFICATE-----Generated at Mon Jan 12 10:01:18 2026 by rpki-client