This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft File: ofrVQukeAX0lfVGxT_XDW4lCnvU.mft (raw, json) Hash identifier: EJbvBAHetB298uQ0+qdYL3tHSXwZVlwEQj4NNMH7acw= Subject key identifier: 4B:B7:B1:E5:C2:E6:9E:C3:53:FD:EA:3D:2B:7A:BB:F7:6E:0D:89:AC Authority key identifier: A1:FA:D5:42:E9:1E:01:7D:25:7D:51:B1:4F:F5:C3:5B:89:42:9E:F5 Certificate issuer: /CN=A918377D/serialNumber=A1FAD542E91E017D257D51B14FF5C35B89429EF5 Certificate serial: 0179 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft Manifest number: 0179 Signing time: Sun 25 Jan 2026 03:00:54 +0000 Manifest this update: Sun 25 Jan 2026 03:00:53 +0000 Manifest next update: Sun 01 Feb 2026 03:00:53 +0000 Files and hashes: 1: ofrVQukeAX0lfVGxT_XDW4lCnvU.crl (hash: MewGtwyE2vLhGwnQVDrI0QxKtpE3bwgJEzu/5vmXzso=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.crl rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 377 (0x179) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918377D, serialNumber=A1FAD542E91E017D257D51B14FF5C35B89429EF5 Validity Not Before: Jan 25 03:00:53 2026 GMT Not After : Feb 1 03:00:53 2026 GMT Subject: CN=69758766-2fbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:39:a8:f0:5e:dc:72:2a:3c:86:ef:05:c7:2d: 5f:1f:72:cf:0a:b4:da:9d:8f:3d:c5:07:0e:8c:7e: d2:5f:de:ac:c4:c0:4b:11:c2:64:ef:fb:f9:6a:de: df:bd:a3:63:32:66:fe:c1:3a:a9:dc:fc:31:c7:a0: ec:c1:cc:57:f2:27:66:63:11:a5:a5:ea:dd:77:b1: e0:89:ed:07:0e:54:2e:34:82:da:8c:ff:fc:4e:85: 8e:02:3b:c6:1e:87:08:c4:d5:a5:2a:c9:0f:08:2f: 7e:2d:e2:fa:19:34:50:27:6b:dd:09:f5:ee:f5:86: 57:89:50:0e:5c:b6:71:e9:ff:ac:e7:dc:5a:39:38: a9:54:e3:c4:a7:6b:ea:2f:9d:4a:79:4f:ff:96:28: 01:a5:41:62:ba:78:c5:bf:7b:89:08:24:6a:a9:21: 6a:9d:e2:c3:5f:71:76:32:e4:d5:e7:42:c8:ac:ee: 49:7c:5b:bd:54:51:dc:0f:58:e0:f2:58:a5:56:b8: 6b:ea:dc:df:40:fb:d9:f7:bc:7e:d9:58:1c:d0:5b: 6d:a2:80:18:0c:e2:fe:17:e2:c2:4e:47:36:79:f1: 32:25:2e:b7:d9:8c:93:8f:a4:73:25:6c:00:75:d8: 13:80:5d:e4:1e:5a:44:ff:d0:26:9e:ea:49:93:11: f0:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:B7:B1:E5:C2:E6:9E:C3:53:FD:EA:3D:2B:7A:BB:F7:6E:0D:89:AC X509v3 Authority Key Identifier: keyid:A1:FA:D5:42:E9:1E:01:7D:25:7D:51:B1:4F:F5:C3:5B:89:42:9E:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:16:65:63:eb:89:94:e5:64:a6:42:ce:02:2a:4c:ad:81:2d: d1:26:e1:4f:e8:0d:ed:7c:2e:37:49:2a:b5:7f:cc:09:8f:61: b3:50:00:3e:93:fa:53:58:fe:4d:9b:99:1d:6d:f0:96:29:65: 28:33:0b:6e:c5:b6:58:38:01:d6:d6:52:c2:65:bd:78:6a:4e: e2:4e:55:1a:af:cd:62:ed:dc:c5:77:36:ec:ad:75:f4:03:d1: 5c:f6:51:76:f4:76:1f:89:40:6b:ae:e1:fd:b4:be:6a:99:4a: 11:6e:59:78:fc:3c:e7:f8:31:09:29:d2:2b:d6:fc:97:36:1c: 15:db:57:14:cb:ea:a3:66:c5:29:47:d7:55:66:31:b8:14:9d: 71:dd:c9:eb:8b:6c:43:b0:69:b4:d2:fa:ff:b2:ab:b4:3a:78: 57:91:28:ef:f8:0f:84:c6:52:a5:23:de:71:2e:99:63:fc:10: ab:3f:cf:dc:6d:d2:1d:4d:5a:94:a4:93:54:47:b0:e6:37:fe: 01:5e:64:c2:b0:ef:78:53:13:13:80:bb:61:4e:ff:55:bc:b0: c1:63:76:ea:ff:f0:a7:54:db:66:cc:70:a7:5c:ef:5f:be:14: 52:0c:b3:6f:ab:b5:ba:74:af:9a:6d:97:fc:1d:ae:30:2b:b3: 2f:61:d3:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM3N0QxMTAvBgNVBAUTKEExRkFENTQyRTkxRTAxN0QyNTdENTFCMTRGRjVDMzVC ODk0MjlFRjUwHhcNMjYwMTI1MDMwMDUzWhcNMjYwMjAxMDMwMDUzWjAYMRYwFAYD VQQDDA02OTc1ODc2Ni0yZmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAszmo8F7ccio8hu8Fxy1fH3LPCrTanY89xQcOjH7SX96sxMBLEcJk7/v5at7f vaNjMmb+wTqp3Pwxx6DswcxX8idmYxGlperdd7Hgie0HDlQuNILajP/8ToWOAjvG HocIxNWlKskPCC9+LeL6GTRQJ2vdCfXu9YZXiVAOXLZx6f+s59xaOTipVOPEp2vq L51KeU//ligBpUFiunjFv3uJCCRqqSFqneLDX3F2MuTV50LIrO5JfFu9VFHcD1jg 8lilVrhr6tzfQPvZ97x+2Vgc0FttooAYDOL+F+LCTkc2efEyJS632YyTj6RzJWwA ddgTgF3kHlpE/9AmnupJkxHwoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEu3seXC 5p7DU/3qPSt6u/duDYmsMB8GA1UdIwQYMBaAFKH61ULpHgF9JX1RsU/1w1uJQp71 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Mzc3RC85RjdDODE1MkI0 QjExMUVFQjBBREUzNTJDNEY5QUUwMi9vZnJWUXVrZUFYMGxmVkd4VF9YRFc0bENu dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29mclZRdWtlQVgwbGZWR3hUX1hEVzRsQ252VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Mzc3RC85RjdDODE1MkI0QjExMUVFQjBBREUzNTJDNEY5QUUwMi9vZnJWUXVrZUFY MGxmVkd4VF9YRFc0bENudlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6FmVj64mU5WSmQs4CKkytgS3RJuFP6A3tfC43SSq1f8wJj2GzUAA+ k/pTWP5Nm5kdbfCWKWUoMwtuxbZYOAHW1lLCZb14ak7iTlUar81i7dzFdzbsrXX0 A9Fc9lF29HYfiUBrruH9tL5qmUoRbll4/Dzn+DEJKdIr1vyXNhwV21cUy+qjZsUp R9dVZjG4FJ1x3cnri2xDsGm00vr/squ0OnhXkSjv+A+ExlKlI95xLplj/BCrP8/c bdIdTVqUpJNUR7DmN/4BXmTCsO94UxMTgLthTv9VvLDBY3bq//CnVNtmzHCnXO9f vhRSDLNvq7W6dK+abZf8Ha4wK7MvYdP/ -----END CERTIFICATE-----Generated at Sun Jan 25 07:44:46 2026 by rpki-client