This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft File: oktqYgRLcAZfBQY4hGDkry8X8_8.mft (raw, json) Hash identifier: +tfxXRQH71/IKi7pEic6Yb5Yp97z2cPdWomfNm2Un6c= Subject key identifier: 56:CC:04:1B:B9:4A:05:1B:E4:92:D5:35:AE:DF:95:92:64:F1:1D:DA Authority key identifier: A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF Certificate issuer: /CN=A918F550/serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Certificate serial: 35FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft Manifest number: 3577 Signing time: Sat 24 Jan 2026 14:24:55 +0000 Manifest this update: Sat 24 Jan 2026 14:24:55 +0000 Manifest next update: Sat 31 Jan 2026 14:24:55 +0000 Files and hashes: 1: oktqYgRLcAZfBQY4hGDkry8X8_8.crl (hash: V2ArPbSHWfVq+BzQMjnsUlSelKRf7rG1p6b3fj4UAK8=) 2: CC23ED70990811F08BF0CB55C4F9AE02.roa (hash: Wb0omWMGDcuIWJtZzO5aYUeXeBS3PzZ1jDUa5EAiIV0=) 3: 6C1B853CB93811F09BBA425FC4F9AE02.roa (hash: Uy1brxvBZUOgYCz25E+l8hAge6tUCO1Wj1Oolb03hHo=) 4: 02C97520985011F083EA2077C4F9AE02.roa (hash: iDndSBoFAc9uhUgvXQuDJ/5b7tXkUPKhNkfuD+XgWIQ=) 5: 72378020EE2A11F0BE1A1CA2486F56BC.roa (hash: 1BgAAovkYb1AJSpU1SPJu/hRuo7VBc+isEUKAmqAK38=) 6: DFC15BFCEE2A11F08F37AFA2486F56BC.roa (hash: 2cUDNv3hrrgYqWPFe+1g+j6W4a5daevt2vyg7mc5Jv0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:24:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13818 (0x35fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F550, serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Validity Not Before: Jan 24 14:24:55 2026 GMT Not After : Jan 31 14:24:55 2026 GMT Subject: CN=6974d637-a8e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:00:23:fe:1c:e6:6b:3f:25:49:5a:48:56:87: 2d:e2:e3:d8:26:6b:d0:af:3b:fe:13:a0:9a:73:7b: 35:be:b0:29:be:cb:c3:6f:ff:85:9f:69:ed:d9:8f: b1:d4:d3:25:91:ba:a2:91:00:97:de:12:fb:a7:72: 68:d0:06:17:b5:7a:83:0c:87:cc:74:c4:2c:14:02: f3:a5:c4:9b:db:55:c5:81:2a:75:f9:22:55:2e:ec: a8:bb:e6:81:01:a2:07:d2:db:82:e8:00:25:43:81: e1:e1:2b:ef:5c:7f:8d:db:3a:d5:78:32:56:7e:26: b9:8a:e5:1a:0d:ae:8d:70:25:69:2c:ab:ec:b8:fc: 57:d2:46:a5:ca:90:23:3d:b0:dd:a4:c7:30:c0:fc: 87:60:6e:b0:45:96:df:15:2b:0a:90:71:c4:3d:01: 01:4e:1d:34:c1:69:34:e1:1b:cf:96:7e:fd:64:12: 58:5e:b0:98:85:6d:89:15:96:c2:d2:08:8c:f2:82: 4d:4c:17:fd:b1:1b:60:fb:a2:96:3d:1b:61:69:7c: 46:39:e1:56:be:a5:7b:da:52:5b:b0:2a:92:8f:ba: d7:ff:0a:fe:d4:dd:d1:da:99:22:05:5a:57:af:6e: f9:bb:f5:ad:46:ce:10:d0:21:4e:d0:05:15:92:78: 5c:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:CC:04:1B:B9:4A:05:1B:E4:92:D5:35:AE:DF:95:92:64:F1:1D:DA X509v3 Authority Key Identifier: keyid:A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:53:a7:48:8d:1b:0e:bc:0a:d9:b6:4a:0f:55:cc:b7:4e:e3: 5c:6d:8e:83:68:46:b5:a6:32:b9:2c:0f:61:bb:28:15:a8:e8: 1d:8a:4a:fd:11:d3:46:cc:45:81:ac:0f:80:bb:7d:42:1d:cb: f9:1d:45:ea:53:1b:9f:38:46:eb:88:27:fd:e7:56:f1:40:d2: c8:1a:73:51:d4:7e:f7:94:51:65:d0:e2:fa:d5:ce:e1:e3:83: 80:fd:e5:25:cf:15:3e:cc:8c:c7:33:c9:b4:8c:e0:4f:e3:cc: bf:74:77:54:31:83:df:8f:f2:cc:07:98:3a:12:5c:d6:54:17: 76:69:11:68:2d:09:8b:b9:1d:e6:68:af:ef:1d:01:9e:73:6d: 7a:9d:e4:6e:60:68:7d:e7:3b:b1:45:b3:9c:00:6e:76:38:10: 58:bc:3b:a5:7d:32:79:ab:51:94:19:b8:c9:4a:aa:95:b4:61: 22:a6:1d:7f:34:99:06:c0:a2:68:7e:95:2d:df:9d:df:9a:b8: af:be:2a:1d:bf:d7:c1:14:8f:06:d4:f3:03:b3:8b:f9:02:63: 64:91:e0:e1:b3:9b:b4:db:75:5c:c7:6c:57:ae:d4:4e:7c:3f: 7a:d6:dd:32:15:4e:e0:09:02:6d:b3:3b:e9:c8:2d:10:a0:70: 18:d3:24:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx OEY1NTAxMTAvBgNVBAUTKEEyNEI2QTYyMDQ0QjcwMDY1RjA1MDYzODg0NjBFNEFG MkYxN0YzRkYwHhcNMjYwMTI0MTQyNDU1WhcNMjYwMTMxMTQyNDU1WjAYMRYwFAYD VQQDDA02OTc0ZDYzNy1hOGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwgAj/hzmaz8lSVpIVoct4uPYJmvQrzv+E6Cac3s1vrApvsvDb/+Fn2nt2Y+x 1NMlkbqikQCX3hL7p3Jo0AYXtXqDDIfMdMQsFALzpcSb21XFgSp1+SJVLuyou+aB AaIH0tuC6AAlQ4Hh4SvvXH+N2zrVeDJWfia5iuUaDa6NcCVpLKvsuPxX0kalypAj PbDdpMcwwPyHYG6wRZbfFSsKkHHEPQEBTh00wWk04RvPln79ZBJYXrCYhW2JFZbC 0giM8oJNTBf9sRtg+6KWPRthaXxGOeFWvqV72lJbsCqSj7rX/wr+1N3R2pkiBVpX r275u/WtRs4Q0CFO0AUVknhcwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFbMBBu5 SgUb5JLVNa7flZJk8R3aMB8GA1UdIwQYMBaAFKJLamIES3AGXwUGOIRg5K8vF/P/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjU1MC84QjlCRDIwMjFE ODUxMUUyQjQxMjMwREMwOEIwMkNEMi9va3RxWWdSTGNBWmZCUVk0aEdEa3J5OFg4 XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29rdHFZZ1JMY0FaZkJRWTRoR0Rrcnk4WDhfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjU1MC84QjlCRDIwMjFEODUxMUUyQjQxMjMwREMwOEIwMkNEMi9va3RxWWdSTGNB WmZCUVk0aEdEa3J5OFg4XzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvU6dIjRsOvArZtkoPVcy3TuNcbY6DaEa1pjK5LA9huygVqOgdikr9 EdNGzEWBrA+Au31CHcv5HUXqUxufOEbriCf951bxQNLIGnNR1H73lFFl0OL61c7h 44OA/eUlzxU+zIzHM8m0jOBP48y/dHdUMYPfj/LMB5g6ElzWVBd2aRFoLQmLuR3m aK/vHQGec216neRuYGh95zuxRbOcAG52OBBYvDulfTJ5q1GUGbjJSqqVtGEiph1/ NJkGwKJofpUt353fmrivviodv9fBFI8G1PMDs4v5AmNkkeDhs5u023Vcx2xXrtRO fD961t0yFU7gCQJtszvpyC0QoHAY0yQQ -----END CERTIFICATE-----Generated at Sun Jan 25 04:36:11 2026 by rpki-client