This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft File: Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft (raw, json) Hash identifier: U04zaQCF8vaxw4QAc2kWc/Hbpw8MlfVAwp1Du40GOnI= Subject key identifier: 0E:6D:1E:D8:7B:79:AC:CC:25:35:74:53:09:34:73:EE:D1:61:EE:2F Authority key identifier: 3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C Certificate issuer: /CN=A91ACD4D/serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Certificate serial: 16B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft Manifest number: 169E Signing time: Sat 24 Jan 2026 16:25:38 +0000 Manifest this update: Sat 24 Jan 2026 16:25:37 +0000 Manifest next update: Sat 31 Jan 2026 16:25:37 +0000 Files and hashes: 1: Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl (hash: b8hjFpMGbyEIEsWcj6UehFRas/dhXXAc0MH2/1crje0=) 2: 268ECB3ED5BD11E894FFC250C4F9AE02.roa (hash: sJz6G/xstqw6p4gPUJK4gZEDHHsTgFb0oSV9wpMQ7es=) 3: 3DE1DBC4D81011EC892E8A79C4F9AE02.roa (hash: bW1tXZTK5POt+zZDGbG4YDsox5kPeg50QnLxOuLANNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 16:25:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5808 (0x16b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD4D, serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Validity Not Before: Jan 24 16:25:37 2026 GMT Not After : Jan 31 16:25:37 2026 GMT Subject: CN=6974f281-ad26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3e:3c:e6:df:29:95:73:c6:b8:a2:4f:71:cd: ad:d6:61:25:98:2b:82:6d:10:88:d0:f8:b2:fb:66: 0f:2e:99:d6:d6:24:1b:7d:1a:1e:20:47:a6:ee:a4: d3:44:eb:de:10:ce:ec:c1:ec:ab:ed:80:fd:7a:5f: 7e:7b:1b:7e:ea:92:20:59:39:8c:1f:ac:f5:b3:1a: 9c:ef:1e:34:c3:cc:63:29:83:b3:37:0b:54:23:99: 7a:c0:6c:46:bb:4d:da:78:8c:20:b5:c1:d1:28:dc: fc:ef:59:6b:0e:4d:93:e6:ad:56:fa:28:73:b3:46: c6:da:2b:7e:4a:15:23:f4:4d:cf:f1:4a:78:11:51: 09:74:5e:39:8d:cd:46:df:1b:52:20:be:f8:8d:b2: 0b:63:ae:88:08:03:b2:80:73:5e:ae:12:c9:d8:4b: 2c:5d:ec:05:41:f2:e6:de:8c:c6:5e:0f:82:81:b9: a5:25:3b:1a:1a:91:88:46:68:7e:60:d6:17:e3:aa: 98:11:e3:17:26:b6:d2:27:32:97:a9:fe:ad:4c:a5: f2:bc:b9:4f:6c:6e:1a:93:c6:30:86:bf:e9:e3:d5: a9:77:50:db:57:32:86:af:91:50:f8:72:ed:22:f5: ac:b3:ed:0b:f8:5d:e9:82:1f:61:b3:8a:7d:ae:8a: 00:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:6D:1E:D8:7B:79:AC:CC:25:35:74:53:09:34:73:EE:D1:61:EE:2F X509v3 Authority Key Identifier: keyid:3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:8e:3a:d7:e3:75:82:49:0b:ce:29:72:db:24:98:64:9c:7b: 2e:37:00:30:32:ab:7d:42:ba:3b:8e:bc:1c:99:41:fc:dd:0e: 39:33:02:c8:23:3a:70:52:5f:98:94:bc:5e:13:a8:a0:95:c6: 3e:60:c0:e3:71:0d:e2:73:40:3d:aa:86:ae:68:cb:aa:83:78: 13:39:bf:d2:13:4e:5f:b1:2b:d9:9b:4a:4c:58:53:76:13:07: 3e:97:03:2d:53:ed:84:03:23:84:4b:8e:1d:f3:00:2f:d4:55: f7:b2:84:32:3f:a1:77:2a:90:23:36:39:58:b0:d9:4b:1f:7e: 4b:e0:c9:41:b0:ec:91:c5:26:e7:69:d6:b6:fd:5d:4b:e1:4f: ca:a4:6e:d7:8c:31:9a:52:b6:95:10:51:7c:48:72:c7:77:0c: 17:d9:26:bd:b0:5f:f8:c0:fc:29:39:c8:4d:8a:b5:27:a2:d4: b0:3b:0a:72:d2:b5:d4:cf:97:55:12:ff:32:52:6a:ec:2b:ba: a6:70:cd:5e:d5:a0:cb:ee:8c:57:6b:6c:6f:60:3d:3e:80:8e: d9:33:cc:1c:30:42:f5:0d:29:81:88:16:34:0e:c7:3b:df:51: 1f:69:8b:65:c0:4d:24:1b:6c:f5:52:4a:61:97:1e:e4:52:57: 21:89:b4:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFrAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENEQxMTAvBgNVBAUTKDNBNDZGQjBGNDBGNjlENUUxREI3NUQyODUxRjA0MEMx OUY2NkYyMkMwHhcNMjYwMTI0MTYyNTM3WhcNMjYwMTMxMTYyNTM3WjAYMRYwFAYD VQQDDA02OTc0ZjI4MS1hZDI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyT485t8plXPGuKJPcc2t1mElmCuCbRCI0Piy+2YPLpnW1iQbfRoeIEem7qTT ROveEM7sweyr7YD9el9+ext+6pIgWTmMH6z1sxqc7x40w8xjKYOzNwtUI5l6wGxG u03aeIwgtcHRKNz871lrDk2T5q1W+ihzs0bG2it+ShUj9E3P8Up4EVEJdF45jc1G 3xtSIL74jbILY66ICAOygHNerhLJ2EssXewFQfLm3ozGXg+CgbmlJTsaGpGIRmh+ YNYX46qYEeMXJrbSJzKXqf6tTKXyvLlPbG4ak8Ywhr/p49Wpd1DbVzKGr5FQ+HLt IvWss+0L+F3pgh9hs4p9rooAYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA5tHth7 eazMJTV0Uwk0c+7RYe4vMB8GA1UdIwQYMBaAFDpG+w9A9p1eHbddKFHwQMGfZvIs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q0RC8xMzdEMDBENDE2 MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5WNGR0MTBvVWZCQXdaOW04 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rYjdEMEQyblY0ZHQxMG9VZkJBd1o5bThpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0Q0RC8xMzdEMDBENDE2MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5W NGR0MTBvVWZCQXdaOW04aXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBejjrX43WCSQvOKXLbJJhknHsuNwAwMqt9Qro7jrwcmUH83Q45MwLI IzpwUl+YlLxeE6iglcY+YMDjcQ3ic0A9qoauaMuqg3gTOb/SE05fsSvZm0pMWFN2 Ewc+lwMtU+2EAyOES44d8wAv1FX3soQyP6F3KpAjNjlYsNlLH35L4MlBsOyRxSbn ada2/V1L4U/KpG7XjDGaUraVEFF8SHLHdwwX2Sa9sF/4wPwpOchNirUnotSwOwpy 0rXUz5dVEv8yUmrsK7qmcM1e1aDL7oxXa2xvYD0+gI7ZM8wcMEL1DSmBiBY0Dsc7 31EfaYtlwE0kG2z1Ukphlx7kUlchibQX -----END CERTIFICATE-----Generated at Sun Jan 25 04:34:53 2026 by rpki-client