This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft File: OxaIpfe3JKr754IKLGPZey6o5SI.mft (raw, json) Hash identifier: 0tLndaa38nzLBfQZafBq9IpqKmRZU0v5oAnbHHhLjJE= Subject key identifier: 41:D6:C4:46:CA:C5:77:12:F5:2C:3A:F5:BE:43:B4:BF:89:C9:16:18 Authority key identifier: 3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 Certificate issuer: /CN=A91772FA/serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Certificate serial: 039C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft Manifest number: 0394 Signing time: Sat 24 Jan 2026 23:57:32 +0000 Manifest this update: Sat 24 Jan 2026 23:57:32 +0000 Manifest next update: Sat 31 Jan 2026 23:57:32 +0000 Files and hashes: 1: OxaIpfe3JKr754IKLGPZey6o5SI.crl (hash: Vrg/xic4ZWMu3ZZufbAtHuTlll7ZD/dJuFPkkSGFr3M=) 2: EF8CB49CD78F11EC91680D49C4F9AE02.roa (hash: m1T9GaVF/kOA3y3lDclBiCBdGMqPbCm1SzZbjGctr8o=) 3: 2D613294CD7611EC83259862C4F9AE02.roa (hash: HUqC6JNil8MpabByxXZUWUh1z061818LFUdkHBUaghY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 23:57:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 924 (0x39c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91772FA, serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Validity Not Before: Jan 24 23:57:32 2026 GMT Not After : Jan 31 23:57:32 2026 GMT Subject: CN=69755c6c-47c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:15:c5:cf:bc:d1:a7:70:1c:d5:27:0d:17:b7: 1f:50:ea:ce:8b:fc:1f:cd:d9:25:71:ad:2f:2b:80: 53:03:42:82:48:c9:6f:ff:70:cf:68:bc:e5:d2:ac: bf:a0:88:ed:6a:84:89:46:e2:e9:be:55:13:2e:da: 0d:4a:63:14:b1:39:0b:6f:e1:7b:e2:3e:67:8d:45: a2:31:df:cb:a2:7b:39:8f:e9:7f:79:4a:07:28:f2: 77:de:fd:9b:0e:32:38:ea:4c:2e:bc:2a:d2:e0:30: df:b1:f6:9c:e9:d8:e5:96:f2:ef:56:2f:88:7f:e8: 30:3e:69:b2:d2:bd:5c:c9:50:f2:bc:ca:2f:5b:87: fe:c4:d3:35:f4:8a:0d:89:0a:09:a3:58:9b:39:0f: 8a:9d:4a:4f:af:8c:85:7d:02:24:fe:b3:27:e3:b4: eb:0d:11:60:72:16:fe:a5:8d:d8:69:bd:b0:7d:72: fc:a6:ba:b5:2b:1e:ac:c6:38:8f:3a:6a:c1:8a:29: 61:b1:d8:fb:df:45:fd:ae:d2:fd:b1:6d:d9:1b:74: 46:e3:89:13:40:1a:cd:8f:66:27:58:bd:4c:4a:89: 00:4f:a9:eb:2a:cc:b5:e7:dd:fd:8b:5d:ce:a7:56: b0:04:7b:6f:e6:47:bf:b9:bd:3b:57:6b:a0:86:d0: d9:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:D6:C4:46:CA:C5:77:12:F5:2C:3A:F5:BE:43:B4:BF:89:C9:16:18 X509v3 Authority Key Identifier: keyid:3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:6c:c0:66:07:47:ed:5e:57:e9:fa:86:f4:9f:01:77:0a:04: e4:e9:9c:a6:ec:f0:79:f2:cb:f1:54:e9:70:4c:79:09:81:2d: 1f:42:a0:03:a4:b7:a6:ad:60:78:24:7b:7d:0c:1a:4b:2e:70: f6:7a:01:50:2e:e2:52:82:e8:61:3c:02:00:1a:99:67:d3:ba: 95:d6:c1:2b:db:2a:44:62:a2:95:6d:ca:e6:82:34:87:5e:c8: 91:2a:0c:5c:32:7e:de:0f:cd:bf:cc:75:59:39:32:6b:a6:39: 7f:37:ae:14:f5:24:19:dd:05:e9:df:18:e5:4a:01:c1:ff:73: 93:25:cd:50:95:fe:f1:07:c4:c0:29:2c:47:b1:7e:ff:14:b2: 69:b6:4f:83:21:3d:9b:66:b0:59:57:29:37:0a:fe:d3:87:ab: ae:46:85:1f:b7:72:8a:48:5a:51:90:b6:51:82:28:e4:7e:c4: 5c:d1:6e:d6:07:f0:10:e5:86:de:92:d9:8e:a3:81:64:c0:82: ff:53:eb:1e:72:44:dc:a9:92:a3:a4:bc:99:33:c0:1d:57:07: d0:e0:50:05:05:41:7b:a0:8f:10:14:e3:b3:69:b0:b5:6c:f4: f0:ae:77:f3:e0:5e:b3:bc:f0:8d:53:f6:e8:e0:8d:dc:a0:37: f9:f2:f5:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcyRkExMTAvBgNVBAUTKDNCMTY4OEE1RjdCNzI0QUFGQkU3ODIwQTJDNjNEOTdC MkVBOEU1MjIwHhcNMjYwMTI0MjM1NzMyWhcNMjYwMTMxMjM1NzMyWjAYMRYwFAYD VQQDDA02OTc1NWM2Yy00N2M3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtBXFz7zRp3Ac1ScNF7cfUOrOi/wfzdklca0vK4BTA0KCSMlv/3DPaLzl0qy/ oIjtaoSJRuLpvlUTLtoNSmMUsTkLb+F74j5njUWiMd/Lons5j+l/eUoHKPJ33v2b DjI46kwuvCrS4DDfsfac6djllvLvVi+If+gwPmmy0r1cyVDyvMovW4f+xNM19IoN iQoJo1ibOQ+KnUpPr4yFfQIk/rMn47TrDRFgchb+pY3Yab2wfXL8prq1Kx6sxjiP OmrBiilhsdj730X9rtL9sW3ZG3RG44kTQBrNj2YnWL1MSokAT6nrKsy15939i13O p1awBHtv5ke/ub07V2ughtDZQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEHWxEbK xXcS9Sw69b5DtL+JyRYYMB8GA1UdIwQYMBaAFDsWiKX3tySq++eCCixj2XsuqOUi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzJGQS9ENzI0NDU2MkNE NzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pLcjc1NElLTEdQWmV5Nm81 U0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL094YUlwZmUzSktyNzU0SUtMR1BaZXk2bzVTSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzJGQS9ENzI0NDU2MkNENzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pL cjc1NElLTEdQWmV5Nm81U0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6bMBmB0ftXlfp+ob0nwF3CgTk6Zym7PB58svxVOlwTHkJgS0fQqAD pLemrWB4JHt9DBpLLnD2egFQLuJSguhhPAIAGpln07qV1sEr2ypEYqKVbcrmgjSH XsiRKgxcMn7eD82/zHVZOTJrpjl/N64U9SQZ3QXp3xjlSgHB/3OTJc1Qlf7xB8TA KSxHsX7/FLJptk+DIT2bZrBZVyk3Cv7Th6uuRoUft3KKSFpRkLZRgijkfsRc0W7W B/AQ5YbektmOo4FkwIL/U+seckTcqZKjpLyZM8AdVwfQ4FAFBUF7oI8QFOOzabC1 bPTwrnfz4F6zvPCNU/bo4I3coDf58vW7 -----END CERTIFICATE-----Generated at Sun Jan 25 06:15:05 2026 by rpki-client