This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft File: -iKAHFKuKl_EkbfL6-aO_KLI0dk.mft (raw, json) Hash identifier: maPs6u/F6O+ZOMWTiC30Pjljq7jFlM/qDTtfuQ2CI8I= Subject key identifier: 68:B5:2C:E6:7A:C2:55:73:0B:A3:77:D5:85:DA:40:FB:2B:D4:ED:D4 Authority key identifier: FA:22:80:1C:52:AE:2A:5F:C4:91:B7:CB:EB:E6:8E:FC:A2:C8:D1:D9 Certificate issuer: /CN=A91D837B/serialNumber=FA22801C52AE2A5FC491B7CBEBE68EFCA2C8D1D9 Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-iKAHFKuKl_EkbfL6-aO_KLI0dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft Manifest number: CA Signing time: Wed 07 Jan 2026 05:00:24 +0000 Manifest this update: Wed 07 Jan 2026 05:00:23 +0000 Manifest next update: Wed 14 Jan 2026 05:00:23 +0000 Files and hashes: 1: -iKAHFKuKl_EkbfL6-aO_KLI0dk.crl (hash: Y9ZEZKer4Qlh4WFqUTj6hhjnby37wcP4swFcViYwnZs=) 2: 8F7DFE66C96E11EF98B64E15C4F9AE02.roa (hash: Vr8pXD8G4eSp3CxAKl8qQ0s6JHPMaTbvSElZhIh+h1I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.crl rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-iKAHFKuKl_EkbfL6-aO_KLI0dk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 Jan 2026 05:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D837B, serialNumber=FA22801C52AE2A5FC491B7CBEBE68EFCA2C8D1D9 Validity Not Before: Jan 7 05:00:23 2026 GMT Not After : Jan 14 05:00:23 2026 GMT Subject: CN=695de868-feb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:63:e4:a2:bc:39:dc:b0:1e:c7:0d:0c:55:a9: 93:e8:c1:2d:b3:62:90:80:77:cc:f4:2f:75:b2:df: ba:5f:9a:c4:e5:ca:f8:6c:21:0b:11:cd:03:24:d4: fa:03:30:a4:5e:c2:96:22:05:a2:66:90:ae:94:2f: c3:d5:a5:5b:0d:7c:f8:25:4a:70:65:e4:9e:a7:9b: 07:b1:a8:ba:c3:1b:cd:98:ec:d9:82:15:1f:31:3c: 55:4f:e5:96:2f:b0:62:81:13:f8:0c:f4:b6:74:c3: 73:85:57:47:79:eb:24:92:1e:6c:2b:89:f2:7d:53: 12:bb:60:3f:34:9a:fb:5f:45:1a:cb:a1:d2:60:41: ef:ee:fd:65:9c:72:ab:7d:da:e5:2c:23:a8:15:50: 0b:bc:64:e0:f3:ce:00:c6:57:06:bf:38:30:e9:f6: 20:42:b6:45:d3:64:d9:a7:28:75:5c:92:70:d4:a5: bd:d2:d3:d2:ed:6d:ad:9b:fa:5a:ce:f1:9e:31:77: 65:df:34:48:bb:11:bc:a3:0a:8b:15:de:ec:00:4d: 5f:eb:bd:25:49:7e:79:dd:a1:ba:8a:11:53:49:75: 3b:0c:57:a4:47:48:29:b0:51:b3:97:9d:38:d3:50: d8:81:1b:e1:50:01:01:3d:d4:48:2c:16:f5:cb:87: a0:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:B5:2C:E6:7A:C2:55:73:0B:A3:77:D5:85:DA:40:FB:2B:D4:ED:D4 X509v3 Authority Key Identifier: keyid:FA:22:80:1C:52:AE:2A:5F:C4:91:B7:CB:EB:E6:8E:FC:A2:C8:D1:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-iKAHFKuKl_EkbfL6-aO_KLI0dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:45:37:86:15:e1:1b:e7:2a:d1:c8:d8:4e:4a:2d:29:f5:b7: 15:d0:16:2b:ad:2c:cd:92:78:94:ff:1b:b5:93:ab:d1:3f:e2: a7:c1:c0:de:4b:ec:ce:e3:fa:70:95:95:e7:4d:15:d7:45:ec: 26:8e:c1:e2:65:c2:cc:80:c3:e7:e6:ae:6e:6c:bd:01:ba:2e: 44:ac:5d:d9:33:c1:31:9c:96:62:37:03:0f:fe:55:a2:bb:cc: 4b:ed:91:13:af:6b:b3:3c:bf:ca:31:34:3a:8c:9c:a3:c7:11: e0:09:09:e3:08:8c:b8:c2:9a:6a:88:6d:06:2c:9c:81:d4:08: 7e:6b:24:a2:aa:2d:79:92:c9:2c:33:18:e6:89:e1:af:fe:40: 9e:d7:22:bc:98:4e:4f:49:fa:c1:eb:ec:e0:d7:46:30:4f:7a: 23:23:53:ce:7e:68:fa:b3:37:2d:72:e9:fc:7a:48:f8:57:af: 6f:0e:74:b3:f7:05:4d:3d:dc:69:de:f3:b2:0f:7b:ba:81:27: 6e:78:40:f5:aa:fc:d1:15:d8:9d:20:42:29:52:e7:3e:72:d7: 58:70:d6:ed:9c:62:36:99:59:06:35:7b:43:06:91:c2:82:af: 6f:67:7e:d9:45:2a:35:9a:0b:5f:e8:aa:2b:64:0e:1e:d7:9f: e5:ba:db:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RDgzN0IxMTAvBgNVBAUTKEZBMjI4MDFDNTJBRTJBNUZDNDkxQjdDQkVCRTY4RUZD QTJDOEQxRDkwHhcNMjYwMTA3MDUwMDIzWhcNMjYwMTE0MDUwMDIzWjAYMRYwFAYD VQQDDA02OTVkZTg2OC1mZWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAgmPkorw53LAexw0MVamT6MEts2KQgHfM9C91st+6X5rE5cr4bCELEc0DJNT6 AzCkXsKWIgWiZpCulC/D1aVbDXz4JUpwZeSep5sHsai6wxvNmOzZghUfMTxVT+WW L7BigRP4DPS2dMNzhVdHeeskkh5sK4nyfVMSu2A/NJr7X0Uay6HSYEHv7v1lnHKr fdrlLCOoFVALvGTg884AxlcGvzgw6fYgQrZF02TZpyh1XJJw1KW90tPS7W2tm/pa zvGeMXdl3zRIuxG8owqLFd7sAE1f670lSX553aG6ihFTSXU7DFekR0gpsFGzl504 01DYgRvhUAEBPdRILBb1y4egtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGi1LOZ6 wlVzC6N31YXaQPsr1O3UMB8GA1UdIwQYMBaAFPoigBxSripfxJG3y+vmjvyiyNHZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODM3Qi8xNThEN0YzQ0I5 OUMxMUVGOTYzOEY3NjlDNEY5QUUwMi8taUtBSEZLdUtsX0VrYmZMNi1hT19LTEkw ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1pS0FIRkt1S2xfRWtiZkw2LWFPX0tMSTBkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODM3Qi8xNThEN0YzQ0I5OUMxMUVGOTYzOEY3NjlDNEY5QUUwMi8taUtBSEZLdUts X0VrYmZMNi1hT19LTEkwZGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVRTeGFeEb5yrRyNhOSi0p9bcV0BYrrSzNkniU/xu1k6vRP+KnwcDe S+zO4/pwlZXnTRXXRewmjsHiZcLMgMPn5q5ubL0Bui5ErF3ZM8ExnJZiNwMP/lWi u8xL7ZETr2uzPL/KMTQ6jJyjxxHgCQnjCIy4wppqiG0GLJyB1Ah+aySiqi15ksks MxjmieGv/kCe1yK8mE5PSfrB6+zg10YwT3ojI1POfmj6szctcun8ekj4V69vDnSz 9wVNPdxp3vOyD3u6gSdueED1qvzRFdidIEIpUuc+ctdYcNbtnGI2mVkGNXtDBpHC gq9vZ37ZRSo1mgtf6KorZA4e15/lutsj -----END CERTIFICATE-----Generated at Thu Jan 8 23:50:26 2026 by rpki-client