This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft File: _ONoVUVgesO8wzQNA5shaIJxJ74.mft (raw, json) Hash identifier: 9wLEMBgFl7SCx5u5GNELUg48CB36BIs4/zshMyaZHEc= Subject key identifier: 75:5E:65:C4:AD:BE:5B:60:74:06:79:3C:3B:00:45:94:D1:C0:C8:1B Authority key identifier: FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE Certificate issuer: /CN=A9198D02/serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Certificate serial: 08B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft Manifest number: 089D Signing time: Sat 24 Jan 2026 19:55:55 +0000 Manifest this update: Sat 24 Jan 2026 19:55:55 +0000 Manifest next update: Sat 31 Jan 2026 19:55:55 +0000 Files and hashes: 1: _ONoVUVgesO8wzQNA5shaIJxJ74.crl (hash: ynIUf1w/i11TPCLszhAXg0lkJ7kDIvah67X6Ypf8R/w=) 2: 3BF0A4D868F511ECAB15DE18C4F9AE02.roa (hash: Wvwkw2qq7X3gm9ipfWCc3BGdmbxdjnrv9dxFhs0Hnp4=) 3: 51A7E3C28EB711EBB8A7B01DC4F9AE02.roa (hash: DAWoyEN2Fc3h4hex7mVD7U45759qmKwV9gi2n6Era6M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:55:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2230 (0x8b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D02, serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Validity Not Before: Jan 24 19:55:55 2026 GMT Not After : Jan 31 19:55:55 2026 GMT Subject: CN=697523cb-ff8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:df:ad:ac:0d:4e:26:bf:ad:6a:3d:8d:e0:2f: 77:94:05:fb:69:c4:99:b5:1e:74:99:0e:30:45:a3: fd:d9:b4:5f:14:44:37:98:04:01:86:f0:71:10:72: b8:b0:8b:ad:9f:05:3e:9f:38:82:02:c6:3c:29:6f: 0b:52:23:2f:d3:42:62:ee:12:51:2b:3b:f9:85:2b: e2:fc:9a:ef:fb:7c:38:33:d9:0d:82:68:74:46:d4: 40:2c:47:a0:ac:20:62:fc:66:64:c1:43:63:03:35: 34:59:b8:87:73:31:ed:4e:59:42:a6:6a:83:62:ba: 9a:4d:37:95:c3:8b:b2:2f:c4:b0:52:59:8f:25:8c: 59:a1:c7:68:8f:b2:a5:bc:84:38:41:e0:90:4f:d9: e2:22:cc:96:05:dd:56:d1:82:d7:b9:96:fc:41:16: ba:88:98:e8:82:26:39:e1:05:a7:ac:2c:44:17:35: 16:56:ed:14:96:f2:99:9b:2e:76:34:05:0f:7a:4a: f0:50:5b:f9:cd:83:1b:ac:33:58:cd:38:25:e8:9c: 6a:fd:bc:72:71:5b:56:35:eb:38:d4:9e:4d:d6:80: 3c:68:76:f8:df:08:f3:00:80:d5:3c:1a:1f:b0:e9: 58:82:3d:56:51:4d:8b:ec:68:3b:a8:e5:4d:03:94: ef:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:5E:65:C4:AD:BE:5B:60:74:06:79:3C:3B:00:45:94:D1:C0:C8:1B X509v3 Authority Key Identifier: keyid:FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:74:55:db:33:13:0d:b6:ad:b8:76:aa:3e:44:68:4b:12:fe: e5:f1:1d:fd:16:6c:d8:9c:04:bb:61:b7:07:19:b9:6b:62:19: 4e:4a:e5:d5:ff:f8:8b:65:ed:43:c2:fb:64:bd:a6:48:9a:30: 12:e1:63:65:f9:d2:ed:e9:e0:4d:73:25:0c:8a:dd:86:2a:4e: 29:75:78:86:31:24:ad:19:59:db:5b:e5:6e:b5:4f:33:78:c9: 60:19:3c:55:d5:7e:ce:07:d8:15:f7:29:7a:e7:5b:7e:1a:5c: b5:f5:dc:a9:95:86:99:4f:bb:0d:fe:c8:4c:9b:a4:31:22:75: 09:ca:91:9e:99:6e:79:83:d1:b6:2c:03:23:b0:07:de:5e:2f: f8:f3:b4:1d:37:63:44:0b:16:c3:2e:06:59:f5:44:de:44:15: 61:9c:c8:a2:95:a4:b0:87:4b:37:d4:b7:45:62:e2:31:95:9c: 6c:3f:55:dd:3e:86:dc:e9:e7:4f:19:0c:25:84:7e:0d:6e:ce: 68:e4:81:3a:24:7e:44:b8:29:b6:16:b6:70:85:db:a0:fd:75: 4f:41:4c:d0:e0:d4:cd:cc:ce:a8:9e:3e:08:77:e3:b0:f4:9d: 5e:60:fe:b9:ff:81:f6:08:b6:2f:f9:a1:d6:9d:6e:fd:8c:f0: 5f:96:8c:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEMDIxMTAvBgNVBAUTKEZDRTM2ODU1NDU2MDdBQzNCQ0MzMzQwRDAzOUIyMTY4 ODI3MTI3QkUwHhcNMjYwMTI0MTk1NTU1WhcNMjYwMTMxMTk1NTU1WjAYMRYwFAYD VQQDDA02OTc1MjNjYi1mZjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo9+trA1OJr+taj2N4C93lAX7acSZtR50mQ4wRaP92bRfFEQ3mAQBhvBxEHK4 sIutnwU+nziCAsY8KW8LUiMv00Ji7hJRKzv5hSvi/Jrv+3w4M9kNgmh0RtRALEeg rCBi/GZkwUNjAzU0WbiHczHtTllCpmqDYrqaTTeVw4uyL8SwUlmPJYxZocdoj7Kl vIQ4QeCQT9niIsyWBd1W0YLXuZb8QRa6iJjogiY54QWnrCxEFzUWVu0UlvKZmy52 NAUPekrwUFv5zYMbrDNYzTgl6Jxq/bxycVtWNes41J5N1oA8aHb43wjzAIDVPBof sOlYgj1WUU2L7Gg7qOVNA5TvewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHVeZcSt vltgdAZ5PDsARZTRwMgbMB8GA1UdIwQYMBaAFPzjaFVFYHrDvMM0DQObIWiCcSe+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQwMi8yOEE1MDZGQUQ4 NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2VzTzh3elFOQTVzaGFJSnhK NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19PTm9WVVZnZXNPOHd6UU5BNXNoYUlKeEo3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQwMi8yOEE1MDZGQUQ4NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2Vz Tzh3elFOQTVzaGFJSnhKNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOdFXbMxMNtq24dqo+RGhLEv7l8R39FmzYnAS7YbcHGblrYhlOSuXV //iLZe1DwvtkvaZImjAS4WNl+dLt6eBNcyUMit2GKk4pdXiGMSStGVnbW+VutU8z eMlgGTxV1X7OB9gV9yl651t+Gly19dyplYaZT7sN/shMm6QxInUJypGemW55g9G2 LAMjsAfeXi/487QdN2NECxbDLgZZ9UTeRBVhnMiilaSwh0s31LdFYuIxlZxsP1Xd Pobc6edPGQwlhH4Nbs5o5IE6JH5EuCm2FrZwhdug/XVPQUzQ4NTNzM6onj4Id+Ow 9J1eYP65/4H2CLYv+aHWnW79jPBflowT -----END CERTIFICATE-----Generated at Sun Jan 25 09:50:16 2026 by rpki-client