This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft File: RiOppNLqhemPtaEaDSywgDiHjw8.mft (raw, json) Hash identifier: oeUqdRmoUxoAhWP2w8ohBxlGobklgAXFjaTmKpG4GzE= Subject key identifier: D4:76:01:5D:7F:77:52:DE:6F:7F:B7:B7:E4:F0:32:E8:ED:8B:FC:86 Authority key identifier: 46:23:A9:A4:D2:EA:85:E9:8F:B5:A1:1A:0D:2C:B0:80:38:87:8F:0F Certificate issuer: /CN=A9128DE9/serialNumber=4623A9A4D2EA85E98FB5A11A0D2CB08038878F0F Certificate serial: 0C50 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft Manifest number: 0C49 Signing time: Sat 24 Jan 2026 18:15:29 +0000 Manifest this update: Sat 24 Jan 2026 18:15:28 +0000 Manifest next update: Sat 31 Jan 2026 18:15:28 +0000 Files and hashes: 1: RiOppNLqhemPtaEaDSywgDiHjw8.crl (hash: rcY7vw/TneQGZ5eT2hwMzLylp/rSLlVh0nuJsW4z03k=) 2: 75E6DD481BDA11EAB3F45D44C4F9AE02.roa (hash: CqtlIV8oyS/ltG/c7wrvUbZ8dS3VADjXiEg/AjA1Uu4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.crl rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 18:15:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3152 (0xc50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128DE9, serialNumber=4623A9A4D2EA85E98FB5A11A0D2CB08038878F0F Validity Not Before: Jan 24 18:15:28 2026 GMT Not After : Jan 31 18:15:28 2026 GMT Subject: CN=69750c41-b776 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:11:fb:b2:9a:91:2d:73:37:47:80:d9:dc:d8: 02:5d:40:6f:4b:8d:32:29:e3:ee:03:1b:5e:17:54: 06:f1:e6:f3:8b:61:39:9b:c1:9d:ea:c0:05:8f:87: 5e:b4:21:0b:05:1c:62:e9:77:15:c7:23:c9:53:b6: 36:17:ec:ac:91:97:7f:65:83:7d:da:d8:a4:6c:62: 12:79:cf:fc:4d:6e:33:e3:e7:ad:b5:55:73:79:7f: b1:f3:ea:c7:92:62:fc:73:76:aa:62:1e:24:c8:f6: d5:45:aa:d4:63:33:8d:b6:e7:0b:7e:fe:13:ef:df: 81:16:c3:aa:a4:07:5a:a9:43:46:04:80:1e:f4:85: 0b:d6:68:d2:af:0e:4c:5b:5b:1f:c6:13:60:bc:00: 7c:72:69:be:fd:43:b8:35:11:51:51:6f:a4:8a:40: bb:43:ba:1b:ba:83:a2:26:76:24:4d:05:73:fe:cc: cd:e7:22:3a:32:4c:6f:ac:f9:ca:de:40:ad:e8:3d: 68:5b:a5:5d:03:69:bd:03:9f:b0:8b:94:36:dc:87: 16:17:53:65:04:a5:65:77:2d:de:14:b1:b0:fa:54: 4b:67:1a:da:23:2a:54:2a:50:54:32:f6:c9:09:52: 0c:09:96:4b:09:2f:78:2a:3a:c2:c0:17:8b:ef:de: 0b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:76:01:5D:7F:77:52:DE:6F:7F:B7:B7:E4:F0:32:E8:ED:8B:FC:86 X509v3 Authority Key Identifier: keyid:46:23:A9:A4:D2:EA:85:E9:8F:B5:A1:1A:0D:2C:B0:80:38:87:8F:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:a1:45:d6:1e:69:a5:a5:18:5e:e4:b7:29:96:f9:89:09:db: 38:a0:1e:e2:7b:95:d9:93:88:a0:50:44:a1:8d:aa:3b:dd:35: 21:30:21:d6:d6:42:ab:6e:84:72:4a:f9:48:ea:50:2e:e0:d7: 18:0d:b0:ba:2b:cc:9d:3c:a6:db:3f:09:e4:72:a0:01:69:96: 71:f6:df:05:97:ee:f9:72:a6:5c:e7:00:0c:6f:aa:af:7e:ac: a8:fc:93:da:6c:c4:d0:a7:5c:67:14:31:ca:c7:fc:86:a3:e4: b9:be:ff:3e:8a:27:9c:e5:8a:e0:af:78:28:d3:c3:c5:e3:81: c4:28:1f:9d:cb:b9:80:11:43:b5:ac:ef:ab:61:90:90:a0:04: 77:37:86:c5:af:53:ee:f0:6d:5a:fa:47:d3:c4:3d:1f:22:f0: 96:07:03:37:a1:ef:72:6b:db:3a:78:66:71:55:f5:60:de:4a: bf:22:15:de:fc:d9:7c:2f:ca:9f:4a:87:d1:d1:2f:83:69:8f: 94:7b:35:91:05:fe:4f:36:1e:aa:dc:92:76:7b:96:f4:5e:de: e4:1a:17:49:87:8c:10:b1:51:a6:35:19:13:50:e4:58:5f:4b: d2:7c:8d:45:6d:7a:4a:bc:67:c3:fd:b7:0d:c9:60:2a:cd:3f: 52:b7:ba:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhERTkxMTAvBgNVBAUTKDQ2MjNBOUE0RDJFQTg1RTk4RkI1QTExQTBEMkNCMDgw Mzg4NzhGMEYwHhcNMjYwMTI0MTgxNTI4WhcNMjYwMTMxMTgxNTI4WjAYMRYwFAYD VQQDDA02OTc1MGM0MS1iNzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmRH7spqRLXM3R4DZ3NgCXUBvS40yKePuAxteF1QG8ebzi2E5m8Gd6sAFj4de tCELBRxi6XcVxyPJU7Y2F+yskZd/ZYN92tikbGISec/8TW4z4+ettVVzeX+x8+rH kmL8c3aqYh4kyPbVRarUYzONtucLfv4T79+BFsOqpAdaqUNGBIAe9IUL1mjSrw5M W1sfxhNgvAB8cmm+/UO4NRFRUW+kikC7Q7obuoOiJnYkTQVz/szN5yI6MkxvrPnK 3kCt6D1oW6VdA2m9A5+wi5Q23IcWF1NlBKVldy3eFLGw+lRLZxraIypUKlBUMvbJ CVIMCZZLCS94KjrCwBeL794LmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNR2AV1/ d1Leb3+3t+TwMujti/yGMB8GA1UdIwQYMBaAFEYjqaTS6oXpj7WhGg0ssIA4h48P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOERFOS9EMDA0OUY4NjFC RDUxMUVBODBDQkNGMzZDNEY5QUUwMi9SaU9wcE5McWhlbVB0YUVhRFN5d2dEaUhq dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JpT3BwTkxxaGVtUHRhRWFEU3l3Z0RpSGp3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OERFOS9EMDA0OUY4NjFCRDUxMUVBODBDQkNGMzZDNEY5QUUwMi9SaU9wcE5McWhl bVB0YUVhRFN5d2dEaUhqdzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/oUXWHmmlpRhe5LcplvmJCds4oB7ie5XZk4igUEShjao73TUhMCHW 1kKrboRySvlI6lAu4NcYDbC6K8ydPKbbPwnkcqABaZZx9t8Fl+75cqZc5wAMb6qv fqyo/JPabMTQp1xnFDHKx/yGo+S5vv8+iiec5Yrgr3go08PF44HEKB+dy7mAEUO1 rO+rYZCQoAR3N4bFr1Pu8G1a+kfTxD0fIvCWBwM3oe9ya9s6eGZxVfVg3kq/IhXe /Nl8L8qfSofR0S+DaY+UezWRBf5PNh6q3JJ2e5b0Xt7kGhdJh4wQsVGmNRkTUORY X0vSfI1FbXpKvGfD/bcNyWAqzT9St7o7 -----END CERTIFICATE-----Generated at Sun Jan 25 18:48:39 2026 by rpki-client