This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft File: orn_7UcMW3HFLztks7btpBm-E7M.mft (raw, json) Hash identifier: YPLlu8E0Gpr2Fs9dHXOvbjYRnhYU/aZyk7unFs85BaQ= Subject key identifier: CB:B2:1A:BF:F7:1F:9A:2D:40:A2:4A:6F:51:95:0B:92:74:08:33:A7 Authority key identifier: A2:B9:FF:ED:47:0C:5B:71:C5:2F:3B:64:B3:B6:ED:A4:19:BE:13:B3 Certificate issuer: /CN=A91187C1/serialNumber=A2B9FFED470C5B71C52F3B64B3B6EDA419BE13B3 Certificate serial: 6E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft Manifest number: 6D Signing time: Sun 25 Jan 2026 06:02:19 +0000 Manifest this update: Sun 25 Jan 2026 06:02:19 +0000 Manifest next update: Sun 01 Feb 2026 06:02:19 +0000 Files and hashes: 1: orn_7UcMW3HFLztks7btpBm-E7M.crl (hash: HI+KSjuYdbKT22vCJRrv7bha2UQKd65M16Qt0biSdhs=) 2: C265A63A571211F092B99F2AC4F9AE02.roa (hash: mdIvnywtfDJvKSbbhgc4qSg7/SJGPr319lK/wnjqr9k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.crl rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:58:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91187C1, serialNumber=A2B9FFED470C5B71C52F3B64B3B6EDA419BE13B3 Validity Not Before: Jan 25 06:02:19 2026 GMT Not After : Feb 1 06:02:19 2026 GMT Subject: CN=6975b1eb-a646 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:87:3a:cb:91:a8:39:a9:47:6f:06:e7:c6:cd: ef:5d:63:00:34:e2:32:05:2b:3d:fc:4d:2b:2d:68: cd:ae:bf:cc:ae:8f:43:f8:6e:5e:30:67:1a:7e:f0: 83:67:36:1a:a9:ac:55:dc:c0:aa:17:25:0a:aa:33: 1d:a9:15:04:cd:72:a6:bb:3e:87:fb:61:a7:4a:68: bf:96:5f:90:0d:ad:c8:29:9b:ec:3b:95:79:36:8d: 8c:df:4e:48:4d:79:41:89:64:11:6e:8f:92:8a:df: 08:05:b2:0e:83:df:43:8e:91:22:aa:73:90:f2:4f: bd:a5:f2:45:b1:07:bc:b1:1b:d5:22:97:56:71:d3: c3:e2:aa:7b:3c:5f:8e:68:0d:de:35:73:22:e1:79: 32:51:9d:d6:4f:36:1b:4a:2e:6a:63:d7:a4:55:91: 21:cc:00:71:e6:51:fd:7f:c1:72:3f:dd:92:6c:66: bd:f1:04:6e:36:fe:5e:e5:ed:a7:b5:b6:79:12:29: d2:dd:36:6b:d3:c9:df:8b:ac:a6:f9:67:79:83:03: 6e:93:2d:ee:06:b2:c2:a8:b8:3c:54:69:42:23:10: 0d:e2:32:8d:ca:eb:40:8f:86:26:c0:07:e9:34:fd: 95:68:d8:67:cc:1a:8d:be:be:23:9e:f4:55:0f:05: 32:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:B2:1A:BF:F7:1F:9A:2D:40:A2:4A:6F:51:95:0B:92:74:08:33:A7 X509v3 Authority Key Identifier: keyid:A2:B9:FF:ED:47:0C:5B:71:C5:2F:3B:64:B3:B6:ED:A4:19:BE:13:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:17:41:87:60:9b:bb:ef:85:34:57:88:32:91:e0:64:eb:c7: 7a:eb:f0:3f:8c:26:09:ba:75:68:5f:7c:36:08:26:3c:30:f6: 3a:fd:2c:42:84:d3:69:c8:69:8d:c6:0e:b2:97:f2:98:87:a2: 8c:6b:38:4d:37:af:25:14:d3:bd:ab:88:f2:bf:04:4f:32:97: f8:cf:86:5f:32:c8:5c:44:05:20:ff:ce:2d:f3:93:17:4e:07: c4:95:b2:d2:fb:96:75:c7:6a:7f:ea:0e:f5:ba:2e:7e:d8:ed: b3:e1:31:8e:fc:df:2d:98:a6:c8:9e:19:e2:6f:2d:a9:31:44: 25:d8:38:e9:8e:d8:ec:e3:4e:1f:f2:08:4b:ac:68:90:44:de: a3:16:e0:1f:8d:92:24:56:e5:00:6b:b0:2d:50:f5:9e:95:5d: f8:6d:91:b8:8a:60:bc:41:75:64:99:0b:1d:1d:70:da:33:e8: 71:2d:43:48:5d:1c:10:ae:54:25:f5:88:05:6a:7f:04:6c:8c: b6:de:3e:f5:a9:c3:8f:ed:9f:56:a5:5b:81:49:35:33:5c:21: 93:4a:ff:50:7b:a9:eb:c4:f2:03:ae:86:0f:99:49:2f:47:03: b9:99:b9:0d:5a:ed:80:cd:d4:ed:b9:65:79:a0:8c:c0:ce:9b: 1b:e6:90:9b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx ODdDMTExMC8GA1UEBRMoQTJCOUZGRUQ0NzBDNUI3MUM1MkYzQjY0QjNCNkVEQTQx OUJFMTNCMzAeFw0yNjAxMjUwNjAyMTlaFw0yNjAyMDEwNjAyMTlaMBgxFjAUBgNV BAMMDTY5NzViMWViLWE2NDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0hzrLkag5qUdvBufGze9dYwA04jIFKz38TSstaM2uv8yuj0P4bl4wZxp+8INn NhqprFXcwKoXJQqqMx2pFQTNcqa7Pof7YadKaL+WX5ANrcgpm+w7lXk2jYzfTkhN eUGJZBFuj5KK3wgFsg6D30OOkSKqc5DyT72l8kWxB7yxG9Uil1Zx08Piqns8X45o Dd41cyLheTJRndZPNhtKLmpj16RVkSHMAHHmUf1/wXI/3ZJsZr3xBG42/l7l7ae1 tnkSKdLdNmvTyd+LrKb5Z3mDA26TLe4GssKouDxUaUIjEA3iMo3K60CPhibAB+k0 /ZVo2GfMGo2+viOe9FUPBTK9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUy7Iav/cf mi1AokpvUZULknQIM6cwHwYDVR0jBBgwFoAUorn/7UcMW3HFLztks7btpBm+E7Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4N0MxLzI2MzFDOEI0NTcw QTExRjBCNTM4Q0Y2NUM0RjlBRTAyL29ybl83VWNNVzNIRkx6dGtzN2J0cEJtLUU3 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvb3JuXzdVY01XM0hGTHp0a3M3YnRwQm0tRTdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4 N0MxLzI2MzFDOEI0NTcwQTExRjBCNTM4Q0Y2NUM0RjlBRTAyL29ybl83VWNNVzNI Rkx6dGtzN2J0cEJtLUU3TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFUXQYdgm7vvhTRXiDKR4GTrx3rr8D+MJgm6dWhffDYIJjww9jr9LEKE 02nIaY3GDrKX8piHooxrOE03ryUU072riPK/BE8yl/jPhl8yyFxEBSD/zi3zkxdO B8SVstL7lnXHan/qDvW6Ln7Y7bPhMY783y2YpsieGeJvLakxRCXYOOmO2OzjTh/y CEusaJBE3qMW4B+NkiRW5QBrsC1Q9Z6VXfhtkbiKYLxBdWSZCx0dcNoz6HEtQ0hd HBCuVCX1iAVqfwRsjLbePvWpw4/tn1alW4FJNTNcIZNK/1B7qevE8gOuhg+ZSS9H A7mZuQ1a7YDN1O25ZXmgjMDOmxvmkJs= -----END CERTIFICATE-----Generated at Sun Jan 25 12:41:14 2026 by rpki-client