This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft File: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft (raw, json) Hash identifier: uKKSsn8JW0MoIlJfG5cJJh6QodrHN+AjdU66mK41aHw= Subject key identifier: 5A:34:F2:D6:02:A2:80:B7:B2:5E:35:CB:A2:3E:57:D1:1B:AC:6A:5A Authority key identifier: D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B Certificate issuer: /CN=A9197277/serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Certificate serial: 018A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft Manifest number: 017E Signing time: Sun 25 Jan 2026 03:01:25 +0000 Manifest this update: Sun 25 Jan 2026 03:01:24 +0000 Manifest next update: Sun 01 Feb 2026 03:01:24 +0000 Files and hashes: 1: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl (hash: SrLjiwQSNWLnTFKe9lWgjgM4AlUKQfDxNu4Oe4ASbGs=) 2: 2E31B8FCB57211EEBB68526DC4F9AE02.roa (hash: sp0oN6M3b0vKQWiSIdTtVM/z4x+pZK5BNETB2TbgZ2E=) 3: 2DCC0688B57211EEBB68526DC4F9AE02.roa (hash: 3pfVChkV7zELWja+oHQv3Km6INJzdWSQS1Y4XK0gQXg=) 4: 6F5F30B8B56111EE91C72951C4F9AE02.roa (hash: ipvSSCsuIB7+MwYDiVzzG4/g5ky54F8EF1XYBBpIM6E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 394 (0x18a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197277, serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Validity Not Before: Jan 25 03:01:24 2026 GMT Not After : Feb 1 03:01:24 2026 GMT Subject: CN=69758785-d001 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:9f:37:e1:b3:07:2e:57:d0:3d:1c:ca:e3:2c: 7f:ef:8b:7c:63:d3:50:b0:79:12:02:3c:51:b2:d2: bb:bb:29:80:34:89:e2:1b:f4:dc:7a:19:d4:d9:34: de:0b:ca:51:b0:a5:99:51:9b:b8:17:e8:38:51:39: 57:46:5a:40:59:34:45:6d:5c:72:db:bf:14:f6:f1: 75:00:2c:24:8d:39:c1:a4:68:34:76:17:4b:8b:08: 34:81:9e:ad:0b:f8:7a:b0:d0:c1:79:aa:45:42:11: 8a:97:f3:7c:1b:32:cb:31:37:f1:37:df:b3:71:a4: 19:d9:65:43:32:7e:2a:49:57:53:40:66:85:cb:c1: a4:12:82:13:c5:7a:df:59:72:0b:ce:c1:25:98:4b: 19:52:81:da:9a:86:32:f2:9f:21:ff:af:15:06:e2: 50:3d:ac:9d:f4:76:f6:83:5b:8e:ea:eb:13:c5:be: 5d:67:a9:12:f2:78:25:38:ff:17:56:04:11:4e:e5: a8:dc:2e:38:81:30:41:cb:df:e8:47:d5:29:3c:3c: 77:f9:3f:49:03:15:7e:35:38:65:be:86:17:ba:25: 00:9d:35:f4:51:8f:15:4e:0f:ec:19:3c:b5:bc:eb: 3f:c8:0a:c4:cd:a2:ea:8f:b2:96:1f:89:e3:41:c2: c6:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:34:F2:D6:02:A2:80:B7:B2:5E:35:CB:A2:3E:57:D1:1B:AC:6A:5A X509v3 Authority Key Identifier: keyid:D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:b1:c6:25:b8:43:99:f5:ba:0e:8e:52:8c:98:43:0b:4e:be: 99:e9:1e:77:14:9a:59:8b:ee:f4:bf:11:d4:73:6d:0f:73:ba: 0e:04:ba:56:49:3d:ed:ca:62:71:ab:2f:0b:2c:92:ce:9f:52: 8d:7a:a2:e7:4b:e5:8a:5f:72:0a:67:69:85:a6:3b:7c:09:0d: c4:11:20:f1:9a:76:98:82:b3:de:42:26:76:2d:6f:ac:dc:4b: 3d:db:35:8d:35:c7:42:ad:f1:5e:78:5a:4a:9e:1a:82:86:70: d9:75:d2:f6:af:59:4b:28:20:0f:7e:39:b9:ac:cf:ed:41:3e: 42:1d:e7:3c:eb:b0:ba:34:c1:99:f0:37:7c:86:94:78:5e:14: 5e:74:0b:42:e1:78:9e:8e:25:91:01:47:4b:74:36:53:d6:05: a5:1a:a8:23:30:07:49:f3:e3:72:aa:47:c9:92:b4:bd:10:b8: 99:97:87:58:17:55:1a:a6:ce:5d:30:27:1e:65:24:0b:7b:77: 8d:08:24:a1:61:9a:d4:09:4e:1f:86:10:7f:e3:6b:2c:56:97: aa:17:58:39:4e:28:07:63:90:70:e8:18:a8:49:6a:65:00:f8: 02:e4:b4:0b:5c:41:ba:25:0b:64:e7:24:68:a4:95:c6:59:08: 5b:5e:be:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyNzcxMTAvBgNVBAUTKEQ4M0I5M0UzMUU5Mzk5MzdEOENCMTVGRTM5Q0E1RTZF OEZFQUZBOUIwHhcNMjYwMTI1MDMwMTI0WhcNMjYwMjAxMDMwMTI0WjAYMRYwFAYD VQQDDA02OTc1ODc4NS1kMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr5834bMHLlfQPRzK4yx/74t8Y9NQsHkSAjxRstK7uymANIniG/TcehnU2TTe C8pRsKWZUZu4F+g4UTlXRlpAWTRFbVxy278U9vF1ACwkjTnBpGg0dhdLiwg0gZ6t C/h6sNDBeapFQhGKl/N8GzLLMTfxN9+zcaQZ2WVDMn4qSVdTQGaFy8GkEoITxXrf WXILzsElmEsZUoHamoYy8p8h/68VBuJQPayd9Hb2g1uO6usTxb5dZ6kS8nglOP8X VgQRTuWo3C44gTBBy9/oR9UpPDx3+T9JAxV+NThlvoYXuiUAnTX0UY8VTg/sGTy1 vOs/yArEzaLqj7KWH4njQcLGmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFo08tYC ooC3sl41y6I+V9EbrGpaMB8GA1UdIwQYMBaAFNg7k+Mek5k32MsV/jnKXm6P6vqb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzI3Ny80M0E3RTg5NEI1 NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1UZll5eFgtT2NwZWJvX3Et cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJEdVQ0eDZUbVRmWXl4WC1PY3BlYm9fcS1wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzI3Ny80M0E3RTg5NEI1NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1U Zll5eFgtT2NwZWJvX3EtcHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCascYluEOZ9boOjlKMmEMLTr6Z6R53FJpZi+70vxHUc20Pc7oOBLpW ST3tymJxqy8LLJLOn1KNeqLnS+WKX3IKZ2mFpjt8CQ3EESDxmnaYgrPeQiZ2LW+s 3Es92zWNNcdCrfFeeFpKnhqChnDZddL2r1lLKCAPfjm5rM/tQT5CHec867C6NMGZ 8Dd8hpR4XhRedAtC4XiejiWRAUdLdDZT1gWlGqgjMAdJ8+NyqkfJkrS9ELiZl4dY F1Uaps5dMCceZSQLe3eNCCShYZrUCU4fhhB/42ssVpeqF1g5TigHY5Bw6BioSWpl APgC5LQLXEG6JQtk5yRopJXGWQhbXr6g -----END CERTIFICATE-----Generated at Sun Jan 25 15:46:48 2026 by rpki-client