This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft File: Ok9ILhJcCNuDBRbVGkot8eCqiso.mft (raw, json) Hash identifier: qWTJVZWiUvcjSzQ8f4WLCNaifk09zG6OH/mMxQqIdLc= Subject key identifier: F2:22:3F:D0:0A:22:55:09:09:A3:17:4F:98:B8:D6:5F:13:6D:33:62 Authority key identifier: 3A:4F:48:2E:12:5C:08:DB:83:05:16:D5:1A:4A:2D:F1:E0:AA:8A:CA Certificate issuer: /CN=A918C158/serialNumber=3A4F482E125C08DB830516D51A4A2DF1E0AA8ACA Certificate serial: 0ACE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft Manifest number: 0AC8 Signing time: Sat 24 Jan 2026 18:57:13 +0000 Manifest this update: Sat 24 Jan 2026 18:57:13 +0000 Manifest next update: Sat 31 Jan 2026 18:57:13 +0000 Files and hashes: 1: Ok9ILhJcCNuDBRbVGkot8eCqiso.crl (hash: ltxw8yC/CLRU/B6P6WDJ1Yi4m9hLD6IfMK9erFiIMKU=) 2: F25A6266796A11EB82E0EE24C4F9AE02.roa (hash: O/F4TEeQrnUUSKYZMDqIO0+JzSXznAo+/sHQLTeUsVk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.crl rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 18:57:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2766 (0xace) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C158, serialNumber=3A4F482E125C08DB830516D51A4A2DF1E0AA8ACA Validity Not Before: Jan 24 18:57:13 2026 GMT Not After : Jan 31 18:57:13 2026 GMT Subject: CN=69751609-8e0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:86:ef:f3:7e:84:de:57:72:8b:aa:c6:a4:eb: 60:41:55:c6:cc:b7:0a:3a:0d:a8:b7:71:73:27:43: d5:99:cf:e9:0d:a3:18:03:bd:2a:37:68:db:54:ca: 6e:22:8d:b8:95:3e:32:2a:eb:fb:be:ca:9d:c0:0f: 48:77:de:aa:6d:c0:fc:7f:2b:9a:f1:01:c6:f2:44: f1:42:d4:c4:06:a2:14:a2:c6:59:73:66:fc:71:1a: 55:90:6e:ce:63:bb:1c:33:51:bd:d6:bd:0e:59:e6: 17:f8:1a:50:92:39:11:fc:b2:64:d4:af:17:e3:69: c5:b6:bd:0b:36:06:ea:d9:e4:f1:98:86:ef:1c:a2: f2:e3:75:1c:a9:ac:cf:e5:ea:f7:93:62:bb:3c:7f: 7d:2a:c2:8e:dd:4b:3e:fb:ed:55:05:2c:a0:5a:25: 3e:0e:26:ce:95:de:82:5c:5a:20:0b:ee:49:26:fc: d0:a3:b8:e4:b4:14:ed:0c:be:c6:a5:de:0f:69:c2: 98:92:ae:5d:dd:a2:e4:e1:51:38:f7:8f:f2:5a:ee: 04:85:46:fc:40:c2:dc:85:1e:72:92:7d:d3:cd:b9: f9:49:6a:e6:d8:f2:52:62:f1:dc:54:52:ef:68:44: 94:7d:80:42:55:6f:25:d3:c9:10:93:ad:c6:f6:26: 04:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:22:3F:D0:0A:22:55:09:09:A3:17:4F:98:B8:D6:5F:13:6D:33:62 X509v3 Authority Key Identifier: keyid:3A:4F:48:2E:12:5C:08:DB:83:05:16:D5:1A:4A:2D:F1:E0:AA:8A:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:ae:b9:46:40:8e:42:54:c4:e9:cf:ff:84:c8:c3:25:2a:e6: 0e:d9:a8:c5:2c:7a:97:b6:85:1c:c6:0f:8d:a4:6e:f0:4f:2d: 31:e1:25:f8:34:ea:33:38:d1:57:1f:78:f9:5e:6b:1e:0c:f1: 36:55:9b:63:6a:2e:14:fe:c1:e1:66:e1:02:b2:d2:70:45:73: 95:99:af:89:c8:32:a8:86:31:df:6a:0b:aa:de:b9:31:36:44: 31:d8:54:d2:03:b1:cf:99:78:73:27:27:cf:63:37:5f:17:43: 1c:77:05:dd:e6:b9:2d:05:7b:52:50:7f:b8:e0:5d:f9:20:a8: 7e:a4:d8:ab:11:94:8f:28:5d:32:a1:b4:33:89:8e:7c:71:24: 23:82:c3:49:5b:b7:11:c0:d1:e6:81:4e:55:5d:20:5d:cc:3f: df:40:57:bb:dc:a4:17:44:05:30:5e:63:5d:fd:8e:3f:e9:2f: 78:64:7b:7b:08:82:bb:af:0e:ca:b7:f4:4f:ec:22:d0:cf:31: d0:00:22:ca:e9:c5:16:13:67:c9:85:4c:ba:11:4e:8b:9e:17: 80:19:b3:36:e1:d3:25:e1:ff:85:b8:99:d8:4a:f9:f6:76:6a: c2:cf:dd:0a:5e:17:f5:2b:82:9e:77:bf:ca:35:70:50:d8:08: b1:8e:f2:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMxNTgxMTAvBgNVBAUTKDNBNEY0ODJFMTI1QzA4REI4MzA1MTZENTFBNEEyREYx RTBBQThBQ0EwHhcNMjYwMTI0MTg1NzEzWhcNMjYwMTMxMTg1NzEzWjAYMRYwFAYD VQQDDA02OTc1MTYwOS04ZTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzobv836E3ldyi6rGpOtgQVXGzLcKOg2ot3FzJ0PVmc/pDaMYA70qN2jbVMpu Io24lT4yKuv7vsqdwA9Id96qbcD8fyua8QHG8kTxQtTEBqIUosZZc2b8cRpVkG7O Y7scM1G91r0OWeYX+BpQkjkR/LJk1K8X42nFtr0LNgbq2eTxmIbvHKLy43UcqazP 5er3k2K7PH99KsKO3Us+++1VBSygWiU+DibOld6CXFogC+5JJvzQo7jktBTtDL7G pd4PacKYkq5d3aLk4VE494/yWu4EhUb8QMLchR5ykn3Tzbn5SWrm2PJSYvHcVFLv aESUfYBCVW8l08kQk63G9iYEPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPIiP9AK IlUJCaMXT5i41l8TbTNiMB8GA1UdIwQYMBaAFDpPSC4SXAjbgwUW1RpKLfHgqorK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzE1OC9BRTUxRDgwMjY3 M0IxMUVBOTlCMkU1NTZDNEY5QUUwMi9PazlJTGhKY0NOdURCUmJWR2tvdDhlQ3Fp c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rOUlMaEpjQ051REJSYlZHa290OGVDcWlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzE1OC9BRTUxRDgwMjY3M0IxMUVBOTlCMkU1NTZDNEY5QUUwMi9PazlJTGhKY0NO dURCUmJWR2tvdDhlQ3Fpc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCErrlGQI5CVMTpz/+EyMMlKuYO2ajFLHqXtoUcxg+NpG7wTy0x4SX4 NOozONFXH3j5XmseDPE2VZtjai4U/sHhZuECstJwRXOVma+JyDKohjHfaguq3rkx NkQx2FTSA7HPmXhzJyfPYzdfF0McdwXd5rktBXtSUH+44F35IKh+pNirEZSPKF0y obQziY58cSQjgsNJW7cRwNHmgU5VXSBdzD/fQFe73KQXRAUwXmNd/Y4/6S94ZHt7 CIK7rw7Kt/RP7CLQzzHQACLK6cUWE2fJhUy6EU6LnheAGbM24dMl4f+FuJnYSvn2 dmrCz90KXhf1K4Ked7/KNXBQ2AixjvIw -----END CERTIFICATE-----Generated at Sun Jan 25 02:51:39 2026 by rpki-client