This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9C05/E9D9A0221DAA11E28C98DBA608B02CD2/kN_cE0DUTo_iVh19jeSe71QGEII.mft File: kN_cE0DUTo_iVh19jeSe71QGEII.mft (raw, json) Hash identifier: bsANktWJAudtTTjw42B1+3rScql74RIQ1Y0EImqp7po= Subject key identifier: BB:43:30:20:1A:F9:E8:62:DE:7E:8E:84:3F:68:B6:27:96:95:60:85 Authority key identifier: 90:DF:DC:13:40:D4:4E:8F:E2:56:1D:7D:8D:E4:9E:EF:54:06:10:82 Certificate issuer: /CN=A91C9C05/serialNumber=90DFDC1340D44E8FE2561D7D8DE49EEF54061082 Certificate serial: 34F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kN_cE0DUTo_iVh19jeSe71QGEII.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9C05/E9D9A0221DAA11E28C98DBA608B02CD2/kN_cE0DUTo_iVh19jeSe71QGEII.mft Manifest number: 34F6 Signing time: Sat 10 Jan 2026 15:10:39 +0000 Manifest this update: Sat 10 Jan 2026 15:10:38 +0000 Manifest next update: Sat 17 Jan 2026 15:10:38 +0000 Files and hashes: 1: kN_cE0DUTo_iVh19jeSe71QGEII.crl (hash: 8BHKFr4LaZ79fQgIH6dAqi0uA+8YCiJxvnn0JgIrTQk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9C05/E9D9A0221DAA11E28C98DBA608B02CD2/kN_cE0DUTo_iVh19jeSe71QGEII.crl rsync://rpki.apnic.net/member_repository/A91C9C05/E9D9A0221DAA11E28C98DBA608B02CD2/kN_cE0DUTo_iVh19jeSe71QGEII.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kN_cE0DUTo_iVh19jeSe71QGEII.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 Jan 2026 15:10:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13560 (0x34f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9C05, serialNumber=90DFDC1340D44E8FE2561D7D8DE49EEF54061082 Validity Not Before: Jan 10 15:10:38 2026 GMT Not After : Jan 17 15:10:38 2026 GMT Subject: CN=69626bef-57e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:05:28:89:cc:7e:db:11:b0:5d:8a:7a:15:6c: 2f:c3:91:09:e2:41:08:da:79:3d:8b:98:2f:8b:eb: 85:c2:1f:40:fb:ef:81:5b:23:66:6f:b6:4b:0b:c3: 83:61:59:05:7f:fc:c8:16:16:4c:61:78:b8:49:a5: 3a:67:a3:24:2a:0a:22:19:69:0e:5a:bd:fd:e0:58: 95:04:b1:74:67:50:b4:1a:8a:cb:f4:f0:c2:72:a3: f3:fe:90:0f:51:b9:05:c1:06:02:64:02:32:ee:a3: fb:ae:da:bf:38:b0:0c:ed:9c:c6:8c:f2:b7:e6:2e: c0:79:75:2a:1e:4e:df:2f:75:5f:df:d7:a6:89:be: 57:c3:f4:b2:5e:c5:b1:a2:93:6f:ce:df:59:8a:20: d9:11:2f:74:7d:1a:54:38:e7:87:03:bf:4e:c9:15: 48:e3:6d:4b:14:7f:21:3c:ed:0f:f6:95:0c:d8:38: a5:fa:33:70:db:88:bd:02:7c:c8:84:7e:9e:db:38: 15:b8:2f:2d:33:dd:b4:49:d3:ac:1b:9a:1a:b2:aa: 43:eb:d1:8e:8c:81:3c:1e:1f:b5:64:d7:ce:ae:8d: 9a:68:23:6a:67:e9:70:68:fb:16:ae:66:25:0a:46: 51:e3:71:d1:1c:23:12:e7:e5:0a:0a:0b:64:83:68: 37:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:43:30:20:1A:F9:E8:62:DE:7E:8E:84:3F:68:B6:27:96:95:60:85 X509v3 Authority Key Identifier: keyid:90:DF:DC:13:40:D4:4E:8F:E2:56:1D:7D:8D:E4:9E:EF:54:06:10:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9C05/E9D9A0221DAA11E28C98DBA608B02CD2/kN_cE0DUTo_iVh19jeSe71QGEII.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kN_cE0DUTo_iVh19jeSe71QGEII.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9C05/E9D9A0221DAA11E28C98DBA608B02CD2/kN_cE0DUTo_iVh19jeSe71QGEII.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:c1:4f:29:e2:b7:b8:f3:07:19:7e:2f:a5:44:ec:a8:35:84: 33:b3:bd:ee:0e:53:7c:bc:92:78:50:6e:3c:ae:57:ee:5b:f7: 89:15:77:d8:9a:13:6a:9c:8c:4a:2f:7e:ef:25:1f:cd:9e:ef: 50:ae:3b:ae:80:7f:40:e6:f5:a9:cf:63:89:24:d8:5b:87:ac: 13:f9:ba:d4:e7:6f:46:04:0e:48:d8:3d:df:47:10:64:5e:97: 21:66:5a:9e:a0:b2:47:a1:d1:39:2c:34:7e:01:fb:a7:73:a3: 9b:f7:ae:66:10:4e:c5:3d:1b:bb:2c:3b:ee:26:76:64:41:38: 91:8d:2b:d7:6b:83:90:c5:a2:90:a7:8b:f2:4e:21:57:76:1d: 39:f4:da:a2:dc:3f:9b:a4:17:77:8e:61:b5:b4:65:f3:a9:26: 01:2b:ed:fe:84:f6:26:b1:49:c0:94:cb:74:39:90:0f:a5:de: 0f:40:97:49:fd:4f:e8:c5:0a:f0:03:00:98:5d:14:27:e9:1a: ff:62:4c:0d:20:cf:df:a5:2a:a7:ec:5f:0f:35:a7:11:1e:92: 1a:85:f1:d4:8a:0b:d1:b8:91:64:6c:98:9e:05:d8:08:3f:3c: 9f:04:95:31:9c:e8:8b:29:13:92:7c:c7:1e:5b:46:44:86:56: 5d:ed:3c:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlDMDUxMTAvBgNVBAUTKDkwREZEQzEzNDBENDRFOEZFMjU2MUQ3RDhERTQ5RUVG NTQwNjEwODIwHhcNMjYwMTEwMTUxMDM4WhcNMjYwMTE3MTUxMDM4WjAYMRYwFAYD VQQDDA02OTYyNmJlZi01N2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAogUoicx+2xGwXYp6FWwvw5EJ4kEI2nk9i5gvi+uFwh9A+++BWyNmb7ZLC8OD YVkFf/zIFhZMYXi4SaU6Z6MkKgoiGWkOWr394FiVBLF0Z1C0GorL9PDCcqPz/pAP UbkFwQYCZAIy7qP7rtq/OLAM7ZzGjPK35i7AeXUqHk7fL3Vf39emib5Xw/SyXsWx opNvzt9ZiiDZES90fRpUOOeHA79OyRVI421LFH8hPO0P9pUM2Dil+jNw24i9AnzI hH6e2zgVuC8tM920SdOsG5oasqpD69GOjIE8Hh+1ZNfOro2aaCNqZ+lwaPsWrmYl CkZR43HRHCMS5+UKCgtkg2g3/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLtDMCAa +ehi3n6OhD9otieWlWCFMB8GA1UdIwQYMBaAFJDf3BNA1E6P4lYdfY3knu9UBhCC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUMwNS9FOUQ5QTAyMjFE QUExMUUyOEM5OERCQTYwOEIwMkNEMi9rTl9jRTBEVVRvX2lWaDE5amVTZTcxUUdF SUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tOX2NFMERVVG9faVZoMTlqZVNlNzFRR0VJSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUMwNS9FOUQ5QTAyMjFEQUExMUUyOEM5OERCQTYwOEIwMkNEMi9rTl9jRTBEVVRv X2lWaDE5amVTZTcxUUdFSUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSwU8p4re48wcZfi+lROyoNYQzs73uDlN8vJJ4UG48rlfuW/eJFXfY mhNqnIxKL37vJR/Nnu9QrjuugH9A5vWpz2OJJNhbh6wT+brU529GBA5I2D3fRxBk XpchZlqeoLJHodE5LDR+Afunc6Ob965mEE7FPRu7LDvuJnZkQTiRjSvXa4OQxaKQ p4vyTiFXdh059Nqi3D+bpBd3jmG1tGXzqSYBK+3+hPYmsUnAlMt0OZAPpd4PQJdJ /U/oxQrwAwCYXRQn6Rr/YkwNIM/fpSqn7F8PNacRHpIahfHUigvRuJFkbJieBdgI PzyfBJUxnOiLKROSfMceW0ZEhlZd7Tz5 -----END CERTIFICATE-----Generated at Mon Jan 12 13:45:34 2026 by rpki-client