This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft File: OHvc-OlHoaBOL0OH-99wZUpE0b0.mft (raw, json) Hash identifier: aJMD07wDnqo8psmJmhkDJ5e570NyqQiq2VGLwLBS6to= Subject key identifier: 93:9C:16:B2:F4:B8:BB:36:BF:90:B1:2A:6C:7C:1F:16:A8:49:E9:B1 Authority key identifier: 38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD Certificate issuer: /CN=A913ACF4/serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Certificate serial: 09CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft Manifest number: 09C6 Signing time: Sat 24 Jan 2026 19:24:13 +0000 Manifest this update: Sat 24 Jan 2026 19:24:12 +0000 Manifest next update: Sat 31 Jan 2026 19:24:12 +0000 Files and hashes: 1: OHvc-OlHoaBOL0OH-99wZUpE0b0.crl (hash: 20uK905vZCFlZL71FkMK6FkmlX+TzFQK2zJYIAZbeyo=) 2: 25E6E72899FE11EAB3E30513C4F9AE02.roa (hash: 4BWVgnvRS1hSka6Qhg4Wf4N7URq8ah7iwCcvkt/Guc8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:24:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2510 (0x9ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913ACF4, serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Validity Not Before: Jan 24 19:24:12 2026 GMT Not After : Jan 31 19:24:12 2026 GMT Subject: CN=69751c5d-124a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:50:d9:1a:39:71:4c:8d:1c:92:b5:0f:a6:b5: 2a:79:43:53:81:5d:7d:74:4c:03:f3:56:f1:3c:77: 6f:71:b1:71:cb:b1:75:01:fc:89:aa:91:28:21:23: 1d:5b:2f:be:26:22:8a:46:9a:57:c3:e0:b2:00:02: 99:3a:d8:57:91:e8:a6:7f:24:a5:ff:e6:03:7e:98: a1:53:02:45:86:f2:90:3d:06:fa:3d:e9:0f:c8:9f: 7a:6f:d9:03:ec:d7:be:44:f3:f6:b2:38:11:7e:a8: 58:2b:fd:3a:b2:56:c3:b5:7b:fb:08:52:1e:cb:21: cd:71:38:1a:f5:ab:3d:b6:e2:e7:7a:fe:3f:0d:bf: 0c:3a:3e:00:5f:bb:83:71:b7:44:86:24:f8:2e:08: e0:d8:9c:91:0c:2f:30:37:ad:87:83:08:19:0e:f8: 34:99:d6:37:29:e7:8c:cd:15:c5:43:0a:e8:81:2c: 28:1f:ef:00:a0:73:86:2b:7f:de:d1:7b:6e:7f:8f: 69:5e:78:65:96:07:9f:f6:45:16:f6:bc:c2:8c:a8: 0a:11:ac:04:59:8a:b3:cd:79:3a:28:54:64:9f:05: 77:25:dc:de:62:53:7e:d6:22:89:05:45:64:50:f9: ad:a6:ff:97:b5:dc:da:11:92:b3:6a:82:11:cf:b0: 5f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:9C:16:B2:F4:B8:BB:36:BF:90:B1:2A:6C:7C:1F:16:A8:49:E9:B1 X509v3 Authority Key Identifier: keyid:38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:2c:05:a7:e3:6c:4f:11:bb:63:17:79:ae:8c:17:a2:fc:0f: 48:b9:9f:54:1a:1d:d3:e0:b5:3e:35:17:5f:1d:0f:84:2f:cc: ea:3a:50:d7:66:ac:4d:2f:e5:99:dd:c2:c4:b6:c1:c4:5c:3f: b8:21:d2:9f:20:ba:bd:4b:f6:7f:4a:af:d3:7d:90:52:ec:2d: 42:a8:cd:83:97:04:a8:9b:58:28:9f:7d:c3:00:ef:42:8c:a9: 2f:56:87:75:6a:c8:02:bd:14:0e:1f:42:f7:32:0c:9f:c8:da: 99:71:6b:b6:8c:74:13:ec:ce:82:68:72:e8:53:d4:f0:9c:8d: 1d:6a:d0:e4:20:5c:f5:37:d9:e5:a5:17:da:e3:9e:b9:44:5a: 86:84:e0:c3:f6:31:36:04:3f:6d:3e:03:d6:22:1b:58:e4:1d: 07:b8:33:3e:a7:d8:c2:ea:60:c9:50:3a:7b:29:44:44:dc:e1: 72:76:1a:7b:b1:09:6a:3a:62:d4:be:d4:10:4f:2b:33:10:35: 7f:75:6c:2c:28:f6:18:a3:01:79:11:c5:53:d7:89:75:71:e7: 7f:e7:2d:be:74:4b:ba:a2:62:23:d6:13:62:e4:21:17:3b:86: 0c:45:a3:09:d9:16:46:12:a2:b7:e6:cf:be:f7:3c:4b:63:54: dc:ee:c0:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx M0FDRjQxMTAvBgNVBAUTKDM4N0JEQ0Y4RTk0N0ExQTA0RTJGNDM4N0ZCREY3MDY1 NEE0NEQxQkQwHhcNMjYwMTI0MTkyNDEyWhcNMjYwMTMxMTkyNDEyWjAYMRYwFAYD VQQDDA02OTc1MWM1ZC0xMjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqVDZGjlxTI0ckrUPprUqeUNTgV19dEwD81bxPHdvcbFxy7F1AfyJqpEoISMd Wy++JiKKRppXw+CyAAKZOthXkeimfySl/+YDfpihUwJFhvKQPQb6PekPyJ96b9kD 7Ne+RPP2sjgRfqhYK/06slbDtXv7CFIeyyHNcTga9as9tuLnev4/Db8MOj4AX7uD cbdEhiT4Lgjg2JyRDC8wN62HgwgZDvg0mdY3KeeMzRXFQwrogSwoH+8AoHOGK3/e 0Xtuf49pXnhllgef9kUW9rzCjKgKEawEWYqzzXk6KFRknwV3JdzeYlN+1iKJBUVk UPmtpv+XtdzaEZKzaoIRz7BfEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJOcFrL0 uLs2v5CxKmx8HxaoSemxMB8GA1UdIwQYMBaAFDh73PjpR6GgTi9Dh/vfcGVKRNG9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUNGNC83MEUzMDM2Qzk5 RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9hQk9MME9ILTk5d1pVcEUw YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09IdmMtT2xIb2FCT0wwT0gtOTl3WlVwRTBiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUNGNC83MEUzMDM2Qzk5RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9h Qk9MME9ILTk5d1pVcEUwYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6LAWn42xPEbtjF3mujBei/A9IuZ9UGh3T4LU+NRdfHQ+EL8zqOlDX ZqxNL+WZ3cLEtsHEXD+4IdKfILq9S/Z/Sq/TfZBS7C1CqM2DlwSom1gon33DAO9C jKkvVod1asgCvRQOH0L3MgyfyNqZcWu2jHQT7M6CaHLoU9TwnI0datDkIFz1N9nl pRfa4565RFqGhODD9jE2BD9tPgPWIhtY5B0HuDM+p9jC6mDJUDp7KURE3OFydhp7 sQlqOmLUvtQQTyszEDV/dWwsKPYYowF5EcVT14l1ced/5y2+dEu6omIj1hNi5CEX O4YMRaMJ2RZGEqK35s++9zxLY1Tc7sDs -----END CERTIFICATE-----Generated at Sun Jan 25 06:17:39 2026 by rpki-client