This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft File: OT6njk2TI25QcfuK_61B1iQmql0.mft (raw, json) Hash identifier: 9yb2tqPT9EQrhrVVQQfjkJ24HOgNc8pZXGDWgJVBYQg= Subject key identifier: F2:62:8A:05:42:46:1D:3F:E9:A1:14:CE:1C:DB:96:0C:B6:5D:D0:CF Authority key identifier: 39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D Certificate issuer: /CN=A917B520/serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft Manifest number: D7 Signing time: Sun 25 Jan 2026 01:41:39 +0000 Manifest this update: Sun 25 Jan 2026 01:41:39 +0000 Manifest next update: Sun 01 Feb 2026 01:41:39 +0000 Files and hashes: 1: OT6njk2TI25QcfuK_61B1iQmql0.crl (hash: mtPwm4xLDeXUNO29jHaf2pWy7IxX/QISJuMa/11QDkc=) 2: 3CFE7680BC5C11EFB951FD4FC4F9AE02.roa (hash: ZZGoLs5i6C2o6YDndsUsPxgi/aWEUfS/++aNSMKH7qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 01:41:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Validity Not Before: Jan 25 01:41:39 2026 GMT Not After : Feb 1 01:41:39 2026 GMT Subject: CN=697574d3-6b30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:23:bc:bd:80:90:45:9d:94:ea:ee:d5:14:3f: 7c:b6:f1:ad:a3:87:c7:e6:d9:a0:bc:a2:ac:c4:69: 79:42:bc:b3:ab:8d:8f:18:39:37:25:ab:6c:65:58: 14:ed:ea:35:8c:d0:23:cb:27:c3:59:10:38:6f:df: d5:08:47:a6:72:29:e8:87:a2:d0:c9:c2:90:6a:f3: 79:f0:bd:75:5d:ed:d1:f7:64:a5:4d:50:a1:56:9c: d2:5d:66:24:79:07:3d:df:63:6f:e1:af:80:4d:ca: 13:a9:31:3f:67:a6:6e:45:ff:4c:2a:55:f9:df:6a: 4c:b2:9d:66:ee:59:0f:cb:e7:7f:7e:86:08:1c:dc: 6a:4b:16:0a:86:1d:96:55:6e:15:75:1a:98:28:e6: 96:4e:40:6e:f7:d1:7b:61:f9:78:60:8e:af:e3:8b: f8:e6:d2:0a:f5:2d:2a:9e:cf:88:64:44:e7:40:f5: ec:d3:3e:b2:97:00:78:2a:8d:af:39:ca:b8:df:3b: 45:c0:03:5e:e6:fc:e5:51:2a:4e:67:13:22:c6:c1: 99:83:1d:04:7a:e0:a7:3a:55:1f:db:1d:5c:0c:f2: 50:40:65:e4:ce:45:70:45:b4:1d:b7:6f:0b:72:61: c9:8e:55:3e:77:e0:d1:a1:11:e0:cf:27:b2:29:a7: 7d:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:62:8A:05:42:46:1D:3F:E9:A1:14:CE:1C:DB:96:0C:B6:5D:D0:CF X509v3 Authority Key Identifier: keyid:39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:d9:37:6b:ba:9a:15:15:d3:34:68:c1:e6:1f:91:af:fd:54: 66:4e:b6:0a:04:9a:1e:7b:38:ff:f1:81:05:b9:ee:d3:2c:da: aa:13:2b:d5:f4:eb:a0:24:3a:9d:34:a7:22:21:66:57:71:98: 25:09:ac:01:dd:67:7e:e2:bd:f2:88:9b:8a:fa:8d:8f:93:bb: cb:41:df:95:99:f9:ea:c3:29:65:7a:6d:18:8c:45:0b:16:c9: a4:a6:57:f5:84:3d:ad:4d:50:14:b6:e7:d4:d6:84:51:73:5e: 1a:f6:28:bd:d8:ba:2a:9c:92:e1:ba:2b:b6:1e:8f:d1:15:af: 8d:11:31:7a:4a:48:48:c5:37:16:83:ab:d2:14:2c:f0:3f:0f: 41:c8:ae:f7:77:3c:e3:33:a8:b1:97:55:e6:cd:0a:3c:2e:04: 86:8f:95:cd:85:c0:e0:34:f2:19:1c:4a:5d:ef:ab:38:44:d1: e4:54:44:7f:75:08:96:8d:76:61:3c:14:af:86:dc:08:d2:c4: f0:5c:38:89:7d:d4:13:06:6b:4c:84:24:e4:27:dc:af:29:79: dc:26:f8:9b:49:6c:cb:45:9c:8f:8d:c7:fb:b6:6c:66:03:31: 2f:b1:91:c2:f4:26:9f:e6:88:e5:cb:15:fb:86:3b:4b:29:96: 2a:42:a2:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDM5M0VBNzhFNEQ5MzIzNkU1MDcxRkI4QUZGQUQ0MUQ2 MjQyNkFBNUQwHhcNMjYwMTI1MDE0MTM5WhcNMjYwMjAxMDE0MTM5WjAYMRYwFAYD VQQDDA02OTc1NzRkMy02YjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4iO8vYCQRZ2U6u7VFD98tvGto4fH5tmgvKKsxGl5Qryzq42PGDk3JatsZVgU 7eo1jNAjyyfDWRA4b9/VCEemcinoh6LQycKQavN58L11Xe3R92SlTVChVpzSXWYk eQc932Nv4a+ATcoTqTE/Z6ZuRf9MKlX532pMsp1m7lkPy+d/foYIHNxqSxYKhh2W VW4VdRqYKOaWTkBu99F7Yfl4YI6v44v45tIK9S0qns+IZETnQPXs0z6ylwB4Ko2v Ocq43ztFwANe5vzlUSpOZxMixsGZgx0EeuCnOlUf2x1cDPJQQGXkzkVwRbQdt28L cmHJjlU+d+DRoRHgzyeyKad9ywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPJiigVC Rh0/6aEUzhzblgy2XdDPMB8GA1UdIwQYMBaAFDk+p45NkyNuUHH7iv+tQdYkJqpd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC80Q0ZDMDhEQUI3 NkMxMUVGQjg3NDI3NkVDNEY5QUUwMi9PVDZuamsyVEkyNVFjZnVLXzYxQjFpUW1x bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL09UNm5qazJUSTI1UWNmdUtfNjFCMWlRbXFsMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC80Q0ZDMDhEQUI3NkMxMUVGQjg3NDI3NkVDNEY5QUUwMi9PVDZuamsyVEky NVFjZnVLXzYxQjFpUW1xbDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB32TdrupoVFdM0aMHmH5Gv/VRmTrYKBJoeezj/8YEFue7TLNqqEyvV 9OugJDqdNKciIWZXcZglCawB3Wd+4r3yiJuK+o2Pk7vLQd+Vmfnqwyllem0YjEUL Fsmkplf1hD2tTVAUtufU1oRRc14a9ii92LoqnJLhuiu2Ho/RFa+NETF6SkhIxTcW g6vSFCzwPw9ByK73dzzjM6ixl1XmzQo8LgSGj5XNhcDgNPIZHEpd76s4RNHkVER/ dQiWjXZhPBSvhtwI0sTwXDiJfdQTBmtMhCTkJ9yvKXncJvibSWzLRZyPjcf7tmxm AzEvsZHC9Caf5ojlyxX7hjtLKZYqQqLO -----END CERTIFICATE-----Generated at Sun Jan 25 22:35:37 2026 by rpki-client