This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft File: O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft (raw, json) Hash identifier: WRvrORRUWGl8OxRvuNDOa3yaAv91ubuXafMls3U0gkc= Subject key identifier: 2C:06:9F:75:BD:0B:B2:DC:87:1E:E6:C6:CF:53:F0:A5:80:A4:0E:13 Authority key identifier: 3B:83:58:53:5B:C6:28:56:4A:F5:6F:31:D8:75:86:48:E1:D0:43:04 Certificate issuer: /CN=A911750B/serialNumber=3B8358535BC628564AF56F31D8758648E1D04304 Certificate serial: 77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft Manifest number: 76 Signing time: Sun 25 Jan 2026 05:56:41 +0000 Manifest this update: Sun 25 Jan 2026 05:56:41 +0000 Manifest next update: Sun 01 Feb 2026 05:56:41 +0000 Files and hashes: 1: O4NYU1vGKFZK9W8x2HWGSOHQQwQ.crl (hash: L8YnvLDs5GtMJg5OLKKElHxBuuD64Bn1J/emDfJi3XE=) 2: D922E45E468D11F0B5D0835EC4F9AE02.roa (hash: RqRFm0koAI1zOC0qjZBwbHn7EgeV9Uebi2RR1Lc++cg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.crl rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911750B, serialNumber=3B8358535BC628564AF56F31D8758648E1D04304 Validity Not Before: Jan 25 05:56:41 2026 GMT Not After : Feb 1 05:56:41 2026 GMT Subject: CN=6975b099-781c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:f9:0f:a5:b6:f6:8b:26:8c:f1:be:b1:69:a8: 9f:c5:17:ae:fd:22:17:6b:a0:86:6b:62:90:04:2c: 66:7b:f7:a8:ee:b2:a0:1e:00:5e:aa:cb:59:31:ef: 3c:9e:b4:83:65:e3:c6:39:bb:79:1b:ec:45:cd:bc: 53:7f:a4:5a:04:5e:6f:1c:31:26:65:19:9c:21:de: 8c:8d:20:a3:4b:ca:44:20:1d:ec:e4:83:23:34:49: 10:dd:e4:c4:86:68:25:fa:f8:2c:a4:0b:da:89:f6: b7:b6:80:99:b5:14:5b:e5:5b:47:06:df:8b:f4:9b: 84:a1:51:25:da:b0:2f:40:40:ad:a5:cb:bd:2e:95: 16:f0:0e:8c:8a:50:98:37:97:fb:aa:39:a6:10:26: b2:24:b2:9b:d4:71:5e:73:ca:9c:8a:02:31:fa:b4: 45:c4:e0:3c:64:9c:fb:79:0b:be:ea:cb:98:00:cb: 08:0e:bd:f3:a0:e4:4c:d7:d1:da:bc:32:98:e0:68: 2a:71:6a:9e:02:82:30:47:b1:99:b4:e3:3d:4d:ad: 04:7d:f0:0c:bb:b6:36:80:33:de:cd:79:1a:c7:a7: 44:f0:5f:95:78:14:43:3a:e6:ba:84:37:f5:c4:1c: 51:27:dc:0e:12:70:f5:45:74:53:d9:46:72:67:7f: c7:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:06:9F:75:BD:0B:B2:DC:87:1E:E6:C6:CF:53:F0:A5:80:A4:0E:13 X509v3 Authority Key Identifier: keyid:3B:83:58:53:5B:C6:28:56:4A:F5:6F:31:D8:75:86:48:E1:D0:43:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:fa:7a:7b:9e:d1:f1:22:19:fd:88:68:1d:1e:e4:ca:bb:d9: 3b:36:9a:f6:d9:77:ef:4b:d8:cf:de:a5:01:f2:7a:f6:99:eb: 90:d0:58:24:24:e4:1b:3b:85:79:14:52:f1:87:9f:a8:0a:3a: 80:b0:2a:50:64:fd:73:5f:1b:86:4f:a8:d6:e9:c1:08:6b:0e: 74:94:c4:04:fb:b9:94:84:78:42:89:b7:3b:6f:43:a0:16:0e: 8c:4e:96:f3:72:be:3c:7d:e7:ef:6d:36:0b:69:18:9a:b0:39: bc:a7:c4:b9:1b:f5:0a:99:ec:be:b3:98:5a:a9:c7:be:b7:98: 9f:01:04:d8:e0:a6:11:4f:cd:46:39:95:91:fa:d7:a6:7e:f2: ce:cd:cf:b1:0d:00:97:ff:6b:ea:f1:e4:fc:6d:b4:7f:60:97: a5:1d:a4:2a:23:f3:de:93:ab:14:56:7b:e7:67:a8:24:4e:cf: 13:36:0d:35:e6:80:e0:c7:ac:3d:38:d0:95:fb:31:5c:a4:73: 1c:b4:d6:de:0e:0b:ea:a2:eb:eb:65:4f:c5:64:43:d7:57:eb: f3:3a:5b:3d:ce:9a:b1:ae:b8:8c:3a:de:bb:94:3e:37:fc:ab: 52:a1:a9:e4:60:dd:e2:21:3f:69:b2:58:fc:d3:21:16:7c:a1: 03:c1:4b:b1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NzUwQjExMC8GA1UEBRMoM0I4MzU4NTM1QkM2Mjg1NjRBRjU2RjMxRDg3NTg2NDhF MUQwNDMwNDAeFw0yNjAxMjUwNTU2NDFaFw0yNjAyMDEwNTU2NDFaMBgxFjAUBgNV BAMMDTY5NzViMDk5LTc4MWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDU+Q+ltvaLJozxvrFpqJ/FF679IhdroIZrYpAELGZ796jusqAeAF6qy1kx7zye tINl48Y5u3kb7EXNvFN/pFoEXm8cMSZlGZwh3oyNIKNLykQgHezkgyM0SRDd5MSG aCX6+CykC9qJ9re2gJm1FFvlW0cG34v0m4ShUSXasC9AQK2ly70ulRbwDoyKUJg3 l/uqOaYQJrIkspvUcV5zypyKAjH6tEXE4DxknPt5C77qy5gAywgOvfOg5EzX0dq8 MpjgaCpxap4CgjBHsZm04z1NrQR98Ay7tjaAM97NeRrHp0TwX5V4FEM65rqEN/XE HFEn3A4ScPVFdFPZRnJnf8eNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQULAafdb0L styHHubGz1PwpYCkDhMwHwYDVR0jBBgwFoAUO4NYU1vGKFZK9W8x2HWGSOHQQwQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3NTBCLzY0RDA3NzQ4NDY4 QzExRjA4NEI2QTUzOUM0RjlBRTAyL080TllVMXZHS0ZaSzlXOHgySFdHU09IUVF3 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTzROWVUxdkdLRlpLOVc4eDJIV0dTT0hRUXdRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3 NTBCLzY0RDA3NzQ4NDY4QzExRjA4NEI2QTUzOUM0RjlBRTAyL080TllVMXZHS0Za SzlXOHgySFdHU09IUVF3US5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADb6enue0fEiGf2IaB0e5Mq72Ts2mvbZd+9L2M/epQHyevaZ65DQWCQk 5Bs7hXkUUvGHn6gKOoCwKlBk/XNfG4ZPqNbpwQhrDnSUxAT7uZSEeEKJtztvQ6AW DoxOlvNyvjx95+9tNgtpGJqwObynxLkb9QqZ7L6zmFqpx763mJ8BBNjgphFPzUY5 lZH616Z+8s7Nz7ENAJf/a+rx5PxttH9gl6UdpCoj896TqxRWe+dnqCROzxM2DTXm gODHrD040JX7MVykcxy01t4OC+qi6+tlT8VkQ9dX6/M6Wz3OmrGuuIw63ruUPjf8 q1KhqeRg3eIhP2myWPzTIRZ8oQPBS7E= -----END CERTIFICATE-----Generated at Sun Jan 25 09:55:25 2026 by rpki-client