This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft File: OhbEBL_tNHJEowpa__ZuSZKqKCE.mft (raw, json) Hash identifier: tvOzKPQu4CO8ZvkCYIrx0Vg96+jwuMn9ZaoT0J5x3s0= Subject key identifier: 5D:9A:A3:C4:BE:01:36:76:98:3D:39:56:C4:2D:56:BD:D6:4E:9A:42 Authority key identifier: 3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21 Certificate issuer: /CN=A91A65C4/serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821 Certificate serial: 04C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft Manifest number: 04BE Signing time: Sat 24 Jan 2026 23:07:18 +0000 Manifest this update: Sat 24 Jan 2026 23:07:17 +0000 Manifest next update: Sat 31 Jan 2026 23:07:17 +0000 Files and hashes: 1: OhbEBL_tNHJEowpa__ZuSZKqKCE.crl (hash: 69ei3LjOmuF4HVMK0KFiwdmi4Pu0fi0nvN9g4dXVsOo=) 2: 9D77DCA4599A11ECA574BF52C4F9AE02.roa (hash: OULy8AteTWM2ruRqPX3BP5aZJPVwl5Zhsr9cGcGL5GI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.crl rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 23:07:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1221 (0x4c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A65C4, serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821 Validity Not Before: Jan 24 23:07:17 2026 GMT Not After : Jan 31 23:07:17 2026 GMT Subject: CN=697550a6-a08a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:1b:12:fd:62:6f:64:9f:d3:c4:c3:a2:2c:cf: 0d:a6:f0:71:40:af:a6:64:d2:8b:c6:0c:3b:77:f2: ef:da:18:50:6b:c6:c2:91:a5:b3:0e:21:7d:d8:b1: 3f:ce:73:cc:84:c3:bc:90:cf:ea:ad:40:d9:36:e6: 6c:35:f2:d0:ed:e3:f4:e2:6c:10:61:9a:f0:4e:92: 14:fc:1c:60:7b:ff:ae:d6:93:b8:b6:6c:86:11:85: fb:9c:0d:af:14:ea:20:c4:ca:f0:b0:32:b5:40:5d: be:7b:97:ae:f2:e9:61:91:02:f8:41:8a:72:ce:ba: 19:57:c6:1a:0e:ab:14:04:21:d7:a6:18:54:bf:28: f3:f6:6c:9a:f0:07:88:2a:c1:fe:5f:09:07:90:2e: ac:f4:9e:f3:b0:fd:cc:eb:08:44:97:b5:3e:7d:59: 79:61:9b:e7:47:44:da:0d:2c:a4:d3:ab:6d:fb:56: f1:5c:06:e8:2f:f0:f5:5f:29:87:a1:22:53:ef:1c: 1b:6b:09:5c:bf:47:f3:f5:72:22:b9:e1:2c:ca:e3: 29:66:21:12:48:1b:1b:5a:d2:be:bd:6e:d5:cc:77: a2:62:58:f4:4a:f0:8a:9e:fe:1e:2d:fa:c1:a1:56: 0c:12:e9:f0:8a:44:83:e5:b7:ec:52:6a:be:31:69: a3:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:9A:A3:C4:BE:01:36:76:98:3D:39:56:C4:2D:56:BD:D6:4E:9A:42 X509v3 Authority Key Identifier: keyid:3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:9f:fb:c1:f8:a0:00:f9:1c:f2:fb:22:86:8f:c9:da:6e:97: 8b:bb:61:b6:f5:06:8e:cc:d0:47:57:3e:24:a2:ba:1b:d4:a1: 5c:90:a9:47:28:a8:04:e9:08:ca:43:75:53:ca:b9:fd:e3:d7: 0d:8e:bb:72:dc:10:8d:a0:00:6f:da:ee:3d:99:04:7b:2a:a1: c2:f5:2c:4c:d9:21:91:c8:11:b5:de:70:e2:2b:c8:9a:09:a5: e4:a6:2b:29:75:42:a0:a2:04:98:91:b4:03:b9:80:1a:22:4a: c0:76:c2:41:a6:ad:f4:c9:04:b6:8c:15:ed:ca:c0:2b:0a:b1: 6f:f9:30:ac:09:93:ec:49:ec:87:b9:99:82:cd:b0:9b:57:36: cf:62:db:31:ef:b4:7c:20:02:87:13:06:a4:2f:80:19:be:b4: b2:13:d6:bc:70:1a:b9:06:4c:46:75:8a:69:5e:e1:50:73:8c: 9e:ab:c3:61:90:e2:ff:d5:d7:21:7b:e9:b3:76:be:53:29:f3: 6e:f6:0e:93:06:80:88:fc:a1:10:9a:90:8c:b8:5d:d1:30:8a: 18:c6:81:03:35:ca:fa:13:bd:88:10:03:0b:9b:cd:f1:9e:25: 1a:ef:a0:60:dc:29:58:18:86:d1:06:aa:8c:62:20:bd:e1:a4: dd:73:d1:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QTY1QzQxMTAvBgNVBAUTKDNBMTZDNDA0QkZFRDM0NzI0NEEzMEE1QUZGRjY2RTQ5 OTJBQTI4MjEwHhcNMjYwMTI0MjMwNzE3WhcNMjYwMTMxMjMwNzE3WjAYMRYwFAYD VQQDDA02OTc1NTBhNi1hMDhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzBsS/WJvZJ/TxMOiLM8NpvBxQK+mZNKLxgw7d/Lv2hhQa8bCkaWzDiF92LE/ znPMhMO8kM/qrUDZNuZsNfLQ7eP04mwQYZrwTpIU/Bxge/+u1pO4tmyGEYX7nA2v FOogxMrwsDK1QF2+e5eu8ulhkQL4QYpyzroZV8YaDqsUBCHXphhUvyjz9mya8AeI KsH+XwkHkC6s9J7zsP3M6whEl7U+fVl5YZvnR0TaDSyk06tt+1bxXAboL/D1XymH oSJT7xwbawlcv0fz9XIiueEsyuMpZiESSBsbWtK+vW7VzHeiYlj0SvCKnv4eLfrB oVYMEunwikSD5bfsUmq+MWmjLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF2ao8S+ ATZ2mD05VsQtVr3WTppCMB8GA1UdIwQYMBaAFDoWxAS/7TRyRKMKWv/2bkmSqigh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjVDNC8zRTNBNTUwMjU5 OTgxMUVDOTM5MUQ1NTBDNEY5QUUwMi9PaGJFQkxfdE5ISkVvd3BhX19adVNaS3FL Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09oYkVCTF90TkhKRW93cGFfX1p1U1pLcUtDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjVDNC8zRTNBNTUwMjU5OTgxMUVDOTM5MUQ1NTBDNEY5QUUwMi9PaGJFQkxfdE5I SkVvd3BhX19adVNaS3FLQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtn/vB+KAA+Rzy+yKGj8nabpeLu2G29QaOzNBHVz4korob1KFckKlH KKgE6QjKQ3VTyrn949cNjrty3BCNoABv2u49mQR7KqHC9SxM2SGRyBG13nDiK8ia CaXkpispdUKgogSYkbQDuYAaIkrAdsJBpq30yQS2jBXtysArCrFv+TCsCZPsSeyH uZmCzbCbVzbPYtsx77R8IAKHEwakL4AZvrSyE9a8cBq5BkxGdYppXuFQc4yeq8Nh kOL/1dche+mzdr5TKfNu9g6TBoCI/KEQmpCMuF3RMIoYxoEDNcr6E72IEAMLm83x niUa76Bg3ClYGIbRBqqMYiC94aTdc9HT -----END CERTIFICATE-----Generated at Sun Jan 25 15:50:38 2026 by rpki-client