This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft File: oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft (raw, json) Hash identifier: nBgREs7S3LQyqlvIB1eJK5EjOw/xAE+9ZsThNmojfl4= Subject key identifier: 80:94:73:2A:1E:9E:DE:AE:96:58:E0:0C:A1:AC:6E:6E:77:A2:3F:BA Authority key identifier: A2:DA:36:37:D3:25:3F:89:97:D8:8D:0B:D8:DA:95:98:F7:83:F9:91 Certificate issuer: /CN=A918AAA1/serialNumber=A2DA3637D3253F8997D88D0BD8DA9598F783F991 Certificate serial: 01C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft Manifest number: 01C0 Signing time: Sun 25 Jan 2026 02:17:30 +0000 Manifest this update: Sun 25 Jan 2026 02:17:30 +0000 Manifest next update: Sun 01 Feb 2026 02:17:30 +0000 Files and hashes: 1: oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl (hash: waEe2J6q+dV+Cr03/FuX8rBfNi8UypjCrOaeiTj46Vc=) 2: E6EB2B10486E11EEB4D5FF2DC4F9AE02.roa (hash: 5JFgGi1zcqLdr4l1Ei+0uqRhphNnP2rP0bMb+qfmJXM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 02:17:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 451 (0x1c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AAA1, serialNumber=A2DA3637D3253F8997D88D0BD8DA9598F783F991 Validity Not Before: Jan 25 02:17:30 2026 GMT Not After : Feb 1 02:17:30 2026 GMT Subject: CN=69757d3a-512c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3f:d5:57:d5:8b:4f:93:64:1d:9d:52:85:58: 07:65:0b:fb:35:3d:f1:52:53:06:24:39:e7:0b:8e: 10:a5:7c:0e:c2:c5:8d:b7:bb:9b:a7:80:2d:87:45: be:68:06:41:7b:c0:c2:88:34:7a:45:e5:3a:a4:32: 66:ce:8d:d2:8a:fa:54:0c:96:e6:62:89:54:8c:47: 45:55:11:cf:8e:df:a1:79:0c:a5:e9:12:48:4f:c9: 31:f5:1c:e8:c5:84:ef:e0:00:92:fc:d8:a3:e7:52: b9:39:e5:b3:ba:38:d2:8f:7d:27:a1:88:e8:b9:62: 65:1a:44:fc:f6:8e:a5:6f:e3:a7:31:d0:96:e8:7d: 60:df:c7:2b:e2:f5:ab:6b:a2:51:0e:af:1e:3e:16: 0d:0a:5d:2f:ef:b3:ea:cc:41:05:38:53:94:dc:e2: 8d:47:f3:f0:69:3c:65:b6:b4:f0:e4:54:12:de:60: c6:4a:6a:2a:73:a6:d7:ac:cc:11:33:78:8c:6f:17: 3d:7c:0b:83:72:c8:86:34:bf:2e:80:65:dd:91:eb: cb:ab:c9:97:6c:01:48:aa:68:5d:00:fb:02:cf:da: ee:22:a2:e6:11:25:1f:18:2f:7a:58:24:a9:b1:9f: 55:84:a7:84:59:c3:86:b1:ea:15:bd:bb:db:b2:15: 64:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:94:73:2A:1E:9E:DE:AE:96:58:E0:0C:A1:AC:6E:6E:77:A2:3F:BA X509v3 Authority Key Identifier: keyid:A2:DA:36:37:D3:25:3F:89:97:D8:8D:0B:D8:DA:95:98:F7:83:F9:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:77:cc:d2:43:91:1c:31:ae:3f:14:04:4e:c5:35:e4:a7:d2: c7:92:50:2b:32:e2:c3:48:5c:32:be:8f:ac:e7:11:66:a9:88: 4e:0b:62:f0:68:05:5e:b1:28:c0:84:a2:a9:d9:66:cc:05:47: b5:c6:1b:e6:60:2d:0f:0a:14:7f:d2:c0:f8:db:79:a8:f5:3c: de:65:4c:dc:ce:6d:c8:e8:41:d0:8a:5c:1a:c1:ae:8a:ca:e0: bc:7e:53:97:af:e9:3c:79:29:bc:c3:e5:f8:fc:4a:cf:d9:ca: f4:02:2f:7c:a9:9e:3f:31:ac:cd:0c:1c:c2:3e:71:0f:39:5a: f9:18:3a:92:94:6c:38:c8:3d:a6:f4:ef:4e:dc:c7:ea:39:e2: 14:6f:8c:da:7b:7c:f3:84:03:a6:7b:5a:49:b7:5a:36:4a:ea: d4:d6:02:7b:8d:11:b4:b1:f8:01:ce:d7:6e:a8:90:c1:55:83: b1:0c:a8:99:ff:40:6a:fc:df:9d:5e:ce:00:40:70:98:7e:e4: 74:76:6f:da:4f:5d:9a:8c:ea:50:e2:58:06:78:ee:9b:fa:0b: b7:0b:9d:0b:9e:f6:c9:7b:2f:54:64:49:78:39:e9:a6:b0:7f: d4:8c:3e:63:d0:5f:65:ed:54:fe:90:23:ca:b8:7c:4c:f7:c5: 05:d5:6c:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFBQTExMTAvBgNVBAUTKEEyREEzNjM3RDMyNTNGODk5N0Q4OEQwQkQ4REE5NTk4 Rjc4M0Y5OTEwHhcNMjYwMTI1MDIxNzMwWhcNMjYwMjAxMDIxNzMwWjAYMRYwFAYD VQQDDA02OTc1N2QzYS01MTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqj/VV9WLT5NkHZ1ShVgHZQv7NT3xUlMGJDnnC44QpXwOwsWNt7ubp4Ath0W+ aAZBe8DCiDR6ReU6pDJmzo3SivpUDJbmYolUjEdFVRHPjt+heQyl6RJIT8kx9Rzo xYTv4ACS/Nij51K5OeWzujjSj30noYjouWJlGkT89o6lb+OnMdCW6H1g38cr4vWr a6JRDq8ePhYNCl0v77PqzEEFOFOU3OKNR/PwaTxltrTw5FQS3mDGSmoqc6bXrMwR M3iMbxc9fAuDcsiGNL8ugGXdkevLq8mXbAFIqmhdAPsCz9ruIqLmESUfGC96WCSp sZ9VhKeEWcOGseoVvbvbshVktQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFICUcyoe nt6ulljgDKGsbm53oj+6MB8GA1UdIwQYMBaAFKLaNjfTJT+Jl9iNC9jalZj3g/mR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUFBMS84MTE0Qzc5QzQ4 NkUxMUVFQTk2MDk0MkNDNEY5QUUwMi9vdG8yTjlNbFA0bVgySTBMMk5xVm1QZUQt WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL290bzJOOU1sUDRtWDJJMEwyTnFWbVBlRC1aRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUFBMS84MTE0Qzc5QzQ4NkUxMUVFQTk2MDk0MkNDNEY5QUUwMi9vdG8yTjlNbFA0 bVgySTBMMk5xVm1QZUQtWkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8d8zSQ5EcMa4/FAROxTXkp9LHklArMuLDSFwyvo+s5xFmqYhOC2Lw aAVesSjAhKKp2WbMBUe1xhvmYC0PChR/0sD423mo9TzeZUzczm3I6EHQilwawa6K yuC8flOXr+k8eSm8w+X4/ErP2cr0Ai98qZ4/MazNDBzCPnEPOVr5GDqSlGw4yD2m 9O9O3MfqOeIUb4zae3zzhAOme1pJt1o2SurU1gJ7jRG0sfgBztduqJDBVYOxDKiZ /0Bq/N+dXs4AQHCYfuR0dm/aT12ajOpQ4lgGeO6b+gu3C50LnvbJey9UZEl4Oemm sH/UjD5j0F9l7VT+kCPKuHxM98UF1Wzo -----END CERTIFICATE-----Generated at Sun Jan 25 15:46:49 2026 by rpki-client