This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft File: OtjA2kteE0OjhFRLZEARiFJg_wc.mft (raw, json) Hash identifier: 4yKxYoWwX2dPLBVjON4coFZMF6u8KIYUapZl4vmdsZM= Subject key identifier: BF:42:17:E0:72:AD:3F:83:ED:4B:37:8F:26:1B:58:BF:5A:6E:21:F9 Authority key identifier: 3A:D8:C0:DA:4B:5E:13:43:A3:84:54:4B:64:40:11:88:52:60:FF:07 Certificate issuer: /CN=A916022F/serialNumber=3AD8C0DA4B5E1343A384544B644011885260FF07 Certificate serial: 139A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OtjA2kteE0OjhFRLZEARiFJg_wc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft Manifest number: 24CC Signing time: Sat 24 Jan 2026 16:42:07 +0000 Manifest this update: Sat 24 Jan 2026 16:42:06 +0000 Manifest next update: Sat 31 Jan 2026 16:42:06 +0000 Files and hashes: 1: OtjA2kteE0OjhFRLZEARiFJg_wc.crl (hash: 9W1BZmPjR9TQG0KxnI3pF6ZCXL17Y4ZOfu/S+yWPPqQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.crl rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OtjA2kteE0OjhFRLZEARiFJg_wc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 16:42:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5018 (0x139a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916022F, serialNumber=3AD8C0DA4B5E1343A384544B644011885260FF07 Validity Not Before: Jan 24 16:42:06 2026 GMT Not After : Jan 31 16:42:06 2026 GMT Subject: CN=6974f65e-0f67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:46:fc:2a:69:0b:f1:c6:b6:a5:3e:46:2f:0a: df:da:fc:7e:b6:a5:fd:8e:f4:2b:b5:07:8e:95:5d: 3c:2c:84:1a:15:64:dc:70:d9:9e:68:dd:1b:20:36: 44:1b:fb:41:a3:e5:bb:93:a5:e3:b3:14:da:85:98: bd:e3:a9:5f:42:d0:7a:4a:da:a8:d1:c8:79:43:5f: 47:0c:0c:c9:a8:1e:77:b6:37:b8:9f:0e:3f:a2:d9: 27:3a:41:02:65:33:e9:09:f4:3c:b7:a0:54:a0:93: c2:05:14:d3:b9:28:9b:89:84:ce:b8:90:e1:b2:bb: 75:9d:49:2e:b3:7f:d3:26:ad:c8:e9:c7:44:f8:b8: 82:56:72:b9:39:8b:8b:9b:46:5d:18:0e:66:40:d3: b6:2a:e0:6e:df:1e:3a:15:bc:54:44:cd:0e:ca:3f: 5f:4d:9b:57:af:02:10:8d:53:87:bb:5b:e3:8f:59: e5:23:91:c7:15:9b:0a:4d:c0:10:da:b4:22:0d:11: 46:3d:f1:11:4a:ab:b0:9a:04:46:22:ee:e1:df:1e: 51:7f:a4:dd:81:77:76:e4:8f:f6:c6:c5:db:d5:50: 3e:fc:6b:28:ad:10:49:f9:db:2e:05:e3:33:84:99: 90:06:9d:26:f5:57:22:cb:bd:75:ac:3b:d1:61:43: 24:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:42:17:E0:72:AD:3F:83:ED:4B:37:8F:26:1B:58:BF:5A:6E:21:F9 X509v3 Authority Key Identifier: keyid:3A:D8:C0:DA:4B:5E:13:43:A3:84:54:4B:64:40:11:88:52:60:FF:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OtjA2kteE0OjhFRLZEARiFJg_wc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:c9:56:e4:f6:63:92:a4:06:d3:8a:71:ae:46:dd:59:cf:dd: 51:89:67:03:19:9f:bc:8f:db:dd:ec:39:95:d5:b6:93:f5:a8: bd:90:b9:23:e6:9c:6e:a4:db:b1:1c:0f:2b:1a:a1:93:af:87: 5f:44:ab:ea:9a:ce:4e:5d:0c:08:fd:f8:a0:5e:ed:6f:29:6b: c0:4f:63:fe:a3:58:2c:a2:c9:78:dd:07:75:02:d0:53:3c:25: c3:61:a9:bb:e2:0d:83:b6:fe:8d:e2:62:9f:4c:fb:db:f6:c4: 00:70:dc:f7:1d:80:c0:9b:d5:2e:27:90:1f:77:22:26:b9:76: fa:fc:8a:de:64:41:62:14:3f:c6:0e:89:03:fb:9b:ba:ac:78: a0:a6:ec:54:15:b3:2e:f6:ce:99:5c:4f:11:dc:af:31:dd:d4: 05:63:bc:22:7f:dd:ea:8a:25:11:bd:fa:d2:e0:fe:12:f7:f2: 2b:ab:74:12:05:ef:65:ea:33:1e:b0:37:c7:94:15:b3:0b:88: 09:26:1f:b5:fb:0d:f6:b0:de:26:bd:29:6f:8e:47:74:b2:68: 99:9d:c0:76:be:28:fe:06:75:74:d6:56:8c:8b:7a:67:03:c6: be:4b:4a:2c:5e:52:21:8f:ab:98:12:c9:4d:d2:5a:67:06:14: cd:1a:a7:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE5owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyMkYxMTAvBgNVBAUTKDNBRDhDMERBNEI1RTEzNDNBMzg0NTQ0QjY0NDAxMTg4 NTI2MEZGMDcwHhcNMjYwMTI0MTY0MjA2WhcNMjYwMTMxMTY0MjA2WjAYMRYwFAYD VQQDDA02OTc0ZjY1ZS0wZjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxEb8KmkL8ca2pT5GLwrf2vx+tqX9jvQrtQeOlV08LIQaFWTccNmeaN0bIDZE G/tBo+W7k6XjsxTahZi946lfQtB6Stqo0ch5Q19HDAzJqB53tje4nw4/otknOkEC ZTPpCfQ8t6BUoJPCBRTTuSibiYTOuJDhsrt1nUkus3/TJq3I6cdE+LiCVnK5OYuL m0ZdGA5mQNO2KuBu3x46FbxURM0Oyj9fTZtXrwIQjVOHu1vjj1nlI5HHFZsKTcAQ 2rQiDRFGPfERSquwmgRGIu7h3x5Rf6TdgXd25I/2xsXb1VA+/GsorRBJ+dsuBeMz hJmQBp0m9Vciy711rDvRYUMkPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL9CF+By rT+D7Us3jyYbWL9abiH5MB8GA1UdIwQYMBaAFDrYwNpLXhNDo4RUS2RAEYhSYP8H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDIyRi85RUM3QUZCNEFB N0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9PdGpBMmt0ZUUwT2poRlJMWkVBUmlGSmdf d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL090akEya3RlRTBPamhGUkxaRUFSaUZKZ193Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDIyRi85RUM3QUZCNEFBN0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9PdGpBMmt0ZUUw T2poRlJMWkVBUmlGSmdfd2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2yVbk9mOSpAbTinGuRt1Zz91RiWcDGZ+8j9vd7DmV1baT9ai9kLkj 5pxupNuxHA8rGqGTr4dfRKvqms5OXQwI/figXu1vKWvAT2P+o1gsosl43Qd1AtBT PCXDYam74g2Dtv6N4mKfTPvb9sQAcNz3HYDAm9UuJ5AfdyImuXb6/IreZEFiFD/G DokD+5u6rHigpuxUFbMu9s6ZXE8R3K8x3dQFY7wif93qiiURvfrS4P4S9/Irq3QS Be9l6jMesDfHlBWzC4gJJh+1+w32sN4mvSlvjkd0smiZncB2vij+BnV01laMi3pn A8a+S0osXlIhj6uYEslN0lpnBhTNGqdt -----END CERTIFICATE-----Generated at Sun Jan 25 15:39:13 2026 by rpki-client