This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft File: bOklSpy_oHBCJDc13OT79-VGEWY.mft (raw, json) Hash identifier: W1WADs2G/X2zjKAYUkLVLm+Eli5+xCUGXZIiRGL33gc= Subject key identifier: 3A:0F:C9:4B:C8:47:24:39:AB:3F:4C:AE:2B:4A:1A:F7:BA:F9:88:7C Authority key identifier: 6C:E9:25:4A:9C:BF:A0:70:42:24:37:35:DC:E4:FB:F7:E5:46:11:66 Certificate issuer: /CN=A91454F3/serialNumber=6CE9254A9CBFA07042243735DCE4FBF7E5461166 Certificate serial: 0CBF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOklSpy_oHBCJDc13OT79-VGEWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft Manifest number: 0CB8 Signing time: Sat 24 Jan 2026 17:55:47 +0000 Manifest this update: Sat 24 Jan 2026 17:55:46 +0000 Manifest next update: Sat 31 Jan 2026 17:55:46 +0000 Files and hashes: 1: bOklSpy_oHBCJDc13OT79-VGEWY.crl (hash: O+OYp7SmK9+pvPZ4myWGul0yxISJTtc0kNX1O2IoG6s=) 2: 9DDA09EC05DC11EA9B6B0560C4F9AE02.roa (hash: zg4ngSvDnII0EgnGozN5wPgIbLHYCQwnbwFPTUFG8lU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.crl rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOklSpy_oHBCJDc13OT79-VGEWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 17:55:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3263 (0xcbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91454F3, serialNumber=6CE9254A9CBFA07042243735DCE4FBF7E5461166 Validity Not Before: Jan 24 17:55:46 2026 GMT Not After : Jan 31 17:55:46 2026 GMT Subject: CN=697507a3-90ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:04:4d:1f:c8:f6:0e:a2:b1:f3:73:13:55:19: 2b:61:b1:b1:fa:bc:ab:d4:ec:41:b5:f3:8d:c6:4a: 9c:70:51:f6:41:99:94:9f:89:65:66:11:57:27:b1: bd:ba:e2:eb:57:c7:37:e6:66:d9:cc:6c:14:7b:fd: a8:cf:ce:ca:f2:4d:af:ae:6c:df:84:b0:66:a0:26: ac:fd:ab:d7:aa:40:d2:77:cc:62:1c:0b:da:60:36: 71:99:e5:20:96:32:d0:30:df:9d:3c:a1:ab:86:ff: c3:6e:e4:ac:57:58:a2:1c:e3:a5:5c:bf:4f:3a:55: 36:71:1a:4b:83:96:c6:ae:16:e5:cb:aa:11:d9:00: 27:7a:8c:61:43:ab:cb:8e:9a:ad:0f:dc:14:d1:b6: 4f:4e:05:38:b9:4b:24:11:08:44:b9:c1:6e:08:be: 93:a3:05:b4:f6:47:12:9f:ab:c4:12:88:25:0f:df: 93:d7:fe:76:75:ea:54:12:ee:10:a8:93:5b:89:9f: da:56:51:9c:a2:0d:c5:15:96:9c:fc:69:f5:7e:6e: f5:78:35:23:9c:91:4a:9f:96:c8:ed:97:53:77:f8: 58:c6:79:4b:f8:90:81:70:6e:21:40:8f:87:29:86: 06:61:91:15:3e:a2:19:86:39:1f:26:eb:20:2c:4f: 8d:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:0F:C9:4B:C8:47:24:39:AB:3F:4C:AE:2B:4A:1A:F7:BA:F9:88:7C X509v3 Authority Key Identifier: keyid:6C:E9:25:4A:9C:BF:A0:70:42:24:37:35:DC:E4:FB:F7:E5:46:11:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOklSpy_oHBCJDc13OT79-VGEWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:76:df:fb:70:d4:5e:84:c5:29:20:fc:8e:b6:b9:74:aa:5f: 8c:47:4d:c2:f5:be:52:f0:fe:c9:40:e2:73:50:13:98:0f:5f: ea:cc:75:6e:09:b2:a6:0a:bb:06:94:8c:5e:a5:1d:00:5e:9f: 82:df:f5:90:f9:0d:b1:d5:7d:87:b7:a9:ae:a1:58:39:dc:1d: ca:58:be:53:c8:9c:40:42:7d:7e:d9:63:da:1f:fc:be:43:96: d3:2b:52:13:79:9a:be:02:d4:3e:72:28:4f:4f:46:94:85:2c: 21:5c:dd:97:12:2b:bf:74:0c:5c:a0:07:4a:eb:e1:b5:52:44: b3:b5:9c:90:ae:2d:59:e8:2d:44:d9:d0:0d:c3:b3:34:42:5b: 64:ca:76:0f:41:c3:32:7f:20:7f:b4:15:05:e1:3b:60:98:2a: c9:f2:e0:42:96:b7:a3:cb:cc:4f:41:3d:1d:3b:6e:2a:a1:d6: fb:3a:c5:2f:da:39:19:d4:f3:36:40:ad:f0:16:e5:24:a6:13: ab:5b:a9:16:0a:11:97:46:3e:7f:eb:24:a5:c9:fd:ba:3f:be: 39:bd:9a:1b:97:97:e4:97:20:57:35:75:71:76:38:cf:82:25: fe:7c:54:e4:db:6a:8f:9a:f3:3c:54:7d:e5:5e:5d:94:6d:05: b9:37:eb:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0RjMxMTAvBgNVBAUTKDZDRTkyNTRBOUNCRkEwNzA0MjI0MzczNURDRTRGQkY3 RTU0NjExNjYwHhcNMjYwMTI0MTc1NTQ2WhcNMjYwMTMxMTc1NTQ2WjAYMRYwFAYD VQQDDA02OTc1MDdhMy05MGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1QRNH8j2DqKx83MTVRkrYbGx+ryr1OxBtfONxkqccFH2QZmUn4llZhFXJ7G9 uuLrV8c35mbZzGwUe/2oz87K8k2vrmzfhLBmoCas/avXqkDSd8xiHAvaYDZxmeUg ljLQMN+dPKGrhv/DbuSsV1iiHOOlXL9POlU2cRpLg5bGrhbly6oR2QAneoxhQ6vL jpqtD9wU0bZPTgU4uUskEQhEucFuCL6TowW09kcSn6vEEoglD9+T1/52depUEu4Q qJNbiZ/aVlGcog3FFZac/Gn1fm71eDUjnJFKn5bI7ZdTd/hYxnlL+JCBcG4hQI+H KYYGYZEVPqIZhjkfJusgLE+NEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDoPyUvI RyQ5qz9MritKGve6+Yh8MB8GA1UdIwQYMBaAFGzpJUqcv6BwQiQ3Ndzk+/flRhFm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTRGMy8xRUY3ODY2ODA1 REMxMUVBOTc0M0JBNUZDNEY5QUUwMi9iT2tsU3B5X29IQkNKRGMxM09UNzktVkdF V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JPa2xTcHlfb0hCQ0pEYzEzT1Q3OS1WR0VXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTRGMy8xRUY3ODY2ODA1REMxMUVBOTc0M0JBNUZDNEY5QUUwMi9iT2tsU3B5X29I QkNKRGMxM09UNzktVkdFV1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSdt/7cNRehMUpIPyOtrl0ql+MR03C9b5S8P7JQOJzUBOYD1/qzHVu CbKmCrsGlIxepR0AXp+C3/WQ+Q2x1X2Ht6muoVg53B3KWL5TyJxAQn1+2WPaH/y+ Q5bTK1ITeZq+AtQ+cihPT0aUhSwhXN2XEiu/dAxcoAdK6+G1UkSztZyQri1Z6C1E 2dANw7M0QltkynYPQcMyfyB/tBUF4TtgmCrJ8uBClrejy8xPQT0dO24qodb7OsUv 2jkZ1PM2QK3wFuUkphOrW6kWChGXRj5/6ySlyf26P745vZobl5fklyBXNXVxdjjP giX+fFTk22qPmvM8VH3lXl2UbQW5N+va -----END CERTIFICATE-----Generated at Sun Jan 25 09:24:49 2026 by rpki-client