This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft File: OIes3fccvvSnUh2EUe7LrrJRnv0.mft (raw, json) Hash identifier: qcduFWy4fN9jWP5PKgcnXZ//nNx9sfGuDYLdvF2tBX0= Subject key identifier: 0C:5B:20:27:0E:E7:2B:A1:17:C6:E0:06:3E:DC:80:9A:0F:BE:C2:9B Authority key identifier: 38:87:AC:DD:F7:1C:BE:F4:A7:52:1D:84:51:EE:CB:AE:B2:51:9E:FD Certificate issuer: /CN=A91778D4/serialNumber=3887ACDDF71CBEF4A7521D8451EECBAEB2519EFD Certificate serial: 0436 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft Manifest number: 0431 Signing time: Sat 24 Jan 2026 23:30:48 +0000 Manifest this update: Sat 24 Jan 2026 23:30:47 +0000 Manifest next update: Sat 31 Jan 2026 23:30:47 +0000 Files and hashes: 1: OIes3fccvvSnUh2EUe7LrrJRnv0.crl (hash: e6GQ6LqPAVeQgxW8SEqV82q80qersMi35rU155IK+KY=) 2: 13F9F650905511EC9A978D19C4F9AE02.roa (hash: LsezswxbsYTDkD8XmvSpL4OSBTZlfRn5UeJiOefMqvA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.crl rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 23:30:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1078 (0x436) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91778D4, serialNumber=3887ACDDF71CBEF4A7521D8451EECBAEB2519EFD Validity Not Before: Jan 24 23:30:47 2026 GMT Not After : Jan 31 23:30:47 2026 GMT Subject: CN=69755627-7d5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4e:a7:ea:70:ba:29:a6:9f:2e:55:25:98:c4: 18:af:45:d2:3b:5a:ec:3c:14:ab:eb:4c:2f:58:d6: 84:f9:12:7b:db:81:43:59:77:9b:fa:6d:88:03:9d: 5c:b1:d8:36:9d:e1:8e:75:46:d5:78:e0:57:18:2f: 27:95:9e:dd:4d:03:01:d0:b5:87:fe:96:3e:d8:54: 61:8f:7e:0c:6a:7a:d4:7e:aa:bb:71:e9:11:f6:c5: 04:e5:2c:82:e2:e7:3d:14:35:ba:fa:99:da:45:f8: f9:dd:11:1e:39:ac:e5:0e:d1:9a:e5:72:a4:42:34: 5a:30:f1:e2:f2:cd:a8:cf:5e:5e:40:93:8e:09:d8: ec:65:18:b8:d5:18:74:2b:05:d6:01:b3:cd:88:42: cd:2b:5b:19:f9:b4:0e:af:34:ac:6b:6e:ad:96:2a: e1:14:e2:d5:96:7b:89:ac:47:ec:9f:1d:71:43:25: 7e:e8:2d:ba:1a:b3:db:3a:da:80:b0:21:92:78:9e: 66:8e:d0:8b:75:cd:91:41:cb:74:a5:f8:6e:31:3d: 6e:df:bf:14:ae:87:b3:f6:e5:00:61:3c:96:bd:8a: b7:af:79:77:c3:60:7d:63:57:27:a5:fb:f4:63:f4: 6a:9a:d8:3b:c7:5b:04:1f:e2:ca:ab:25:30:e7:1a: ce:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:5B:20:27:0E:E7:2B:A1:17:C6:E0:06:3E:DC:80:9A:0F:BE:C2:9B X509v3 Authority Key Identifier: keyid:38:87:AC:DD:F7:1C:BE:F4:A7:52:1D:84:51:EE:CB:AE:B2:51:9E:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:1c:d6:0e:1c:4f:2c:4e:e1:6c:af:ae:0e:29:02:fd:16:49: a0:5c:77:ea:55:01:d8:76:a5:51:91:24:86:79:f3:0f:12:82: 1f:d2:74:0f:36:d4:3e:2c:9c:1d:a2:21:80:c1:b6:ce:4e:f1: 8d:45:c6:f2:5b:a0:9b:b9:3b:59:1c:75:4a:4a:c7:84:a0:e8: 5c:45:4c:5e:3b:74:be:70:3c:f2:92:8c:25:8b:32:85:a8:a9: af:ac:9b:4e:4f:12:c0:3c:00:c5:88:d2:c0:d5:e5:b9:77:b8: bb:e6:52:97:50:41:29:63:0c:43:24:42:c8:2b:d4:1b:a0:8b: 24:17:a8:1c:d3:c5:96:5f:b7:d5:e6:43:7a:81:1c:fe:86:e9: f5:60:be:23:83:cd:71:1c:7b:32:e6:33:ec:92:cd:c7:c7:18: 24:c5:c9:cc:84:e1:4b:12:2e:de:52:e6:43:d4:32:39:2b:24: ec:62:7b:ed:4c:88:6e:c9:97:41:f0:5c:69:ed:c6:86:ed:26: cc:53:4d:46:1c:52:31:02:58:0d:f6:35:b0:a4:c0:c7:0d:ee: e6:fd:b7:e4:f1:2b:83:30:fd:c4:10:0c:80:62:79:4e:9d:47: 0f:21:21:9c:af:bc:84:15:a6:b8:3c:fe:a4:36:b2:82:d5:d6: 31:ea:5d:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc4RDQxMTAvBgNVBAUTKDM4ODdBQ0RERjcxQ0JFRjRBNzUyMUQ4NDUxRUVDQkFF QjI1MTlFRkQwHhcNMjYwMTI0MjMzMDQ3WhcNMjYwMTMxMjMzMDQ3WjAYMRYwFAYD VQQDDA02OTc1NTYyNy03ZDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0E6n6nC6KaafLlUlmMQYr0XSO1rsPBSr60wvWNaE+RJ724FDWXeb+m2IA51c sdg2neGOdUbVeOBXGC8nlZ7dTQMB0LWH/pY+2FRhj34ManrUfqq7cekR9sUE5SyC 4uc9FDW6+pnaRfj53REeOazlDtGa5XKkQjRaMPHi8s2oz15eQJOOCdjsZRi41Rh0 KwXWAbPNiELNK1sZ+bQOrzSsa26tlirhFOLVlnuJrEfsnx1xQyV+6C26GrPbOtqA sCGSeJ5mjtCLdc2RQct0pfhuMT1u378Uroez9uUAYTyWvYq3r3l3w2B9Y1cnpfv0 Y/Rqmtg7x1sEH+LKqyUw5xrOzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAxbICcO 5yuhF8bgBj7cgJoPvsKbMB8GA1UdIwQYMBaAFDiHrN33HL70p1IdhFHuy66yUZ79 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzhENC9EOUQ1NjkzQTkw NTExMUVDQTM2OTk2MTVDNEY5QUUwMi9PSWVzM2ZjY3Z2U25VaDJFVWU3THJySlJu djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09JZXMzZmNjdnZTblVoMkVVZTdMcnJKUm52MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzhENC9EOUQ1NjkzQTkwNTExMUVDQTM2OTk2MTVDNEY5QUUwMi9PSWVzM2ZjY3Z2 U25VaDJFVWU3THJySlJudjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKHNYOHE8sTuFsr64OKQL9FkmgXHfqVQHYdqVRkSSGefMPEoIf0nQP NtQ+LJwdoiGAwbbOTvGNRcbyW6CbuTtZHHVKSseEoOhcRUxeO3S+cDzykowlizKF qKmvrJtOTxLAPADFiNLA1eW5d7i75lKXUEEpYwxDJELIK9QboIskF6gc08WWX7fV 5kN6gRz+hun1YL4jg81xHHsy5jPsks3HxxgkxcnMhOFLEi7eUuZD1DI5KyTsYnvt TIhuyZdB8Fxp7caG7SbMU01GHFIxAlgN9jWwpMDHDe7m/bfk8SuDMP3EEAyAYnlO nUcPISGcr7yEFaa4PP6kNrKC1dYx6l15 -----END CERTIFICATE-----Generated at Sun Jan 25 15:34:28 2026 by rpki-client