This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft File: oKMiStDIKz-aYvNHrKP5RdsI8rA.mft (raw, json) Hash identifier: mncPpiaqepGYnKrbPf7HWtyjRiU6RQH91pvxjV0xh9Q= Subject key identifier: 27:F8:23:D6:20:6F:58:1D:DE:FC:43:CE:D2:D9:4A:1A:B9:3B:70:74 Authority key identifier: A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 Certificate issuer: /CN=A91B80BD/serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Certificate serial: 30D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft Manifest number: 30A3 Signing time: Sat 24 Jan 2026 15:19:24 +0000 Manifest this update: Sat 24 Jan 2026 15:19:23 +0000 Manifest next update: Sat 31 Jan 2026 15:19:23 +0000 Files and hashes: 1: oKMiStDIKz-aYvNHrKP5RdsI8rA.crl (hash: nszu4Ck6J8ilPt+tT/xVKmjKx/UAebtw7ErWHXoAtDw=) 2: 915E51B8F3BE11ED8B9B1450C4F9AE02.roa (hash: Q3pwtlHxQOfBNfjg0rXQ1DaKhtCgPEj+Sbwz9SrcaHA=) 3: 4C72E61CB0EC11E5A6934B42C4F9AE02.roa (hash: wILFdeIGXMZ8VMyQoHGFHEc5EcgVL0MxaSOGHfY+WMQ=) 4: 583C1F6854F611E79DF7E643C4F9AE02.roa (hash: 1eHb69O06VCoxBVFTjIxU1eZxUsYuasvDB2d3Sv1+IY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 15:19:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12500 (0x30d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80BD, serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Validity Not Before: Jan 24 15:19:23 2026 GMT Not After : Jan 31 15:19:23 2026 GMT Subject: CN=6974e2fc-0e9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:82:16:4c:01:e4:8a:3d:ca:2d:60:75:42:9c: e8:d4:2a:42:3a:cf:98:ca:3d:e9:80:89:4d:12:62: 58:ab:6c:17:14:91:ea:54:da:d5:68:56:75:cf:8c: da:b5:df:f1:d5:08:93:6b:9b:28:17:29:1e:9d:3e: 14:fd:f9:c0:18:37:2e:c9:35:bf:a7:a0:09:6a:22: 31:73:08:34:96:ce:46:e9:b6:ff:67:0b:3e:42:17: 5b:43:21:34:e7:26:e5:71:d1:e7:ca:dd:0c:b5:5b: b8:c4:06:7e:7a:16:96:e2:4b:f5:a0:0a:16:d5:df: 80:54:6e:30:85:6b:45:ca:3f:56:4e:a4:61:d0:94: df:15:6b:4c:4f:6e:ed:f1:ea:64:cb:94:0f:37:c2: 3c:ba:1c:57:27:ec:3b:f5:21:b4:c7:14:75:12:ee: b8:00:90:8b:86:c4:c0:b5:eb:97:dd:8e:7e:0a:30: b2:40:a0:17:ae:d8:98:d0:f2:41:b8:76:c0:c2:f5: 17:99:ce:e3:10:6f:98:b0:c1:70:79:22:d4:bb:dc: 83:bc:9e:25:b8:8d:11:0a:25:b4:ee:77:62:07:87: 22:80:a7:f4:e0:ed:a4:43:3b:02:7e:51:1e:a8:2b: 01:31:7b:72:13:cc:e5:ae:fb:b4:d4:a3:98:47:05: 6e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:F8:23:D6:20:6F:58:1D:DE:FC:43:CE:D2:D9:4A:1A:B9:3B:70:74 X509v3 Authority Key Identifier: keyid:A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:e3:c2:e1:6f:53:c0:bb:52:da:d7:69:d8:79:01:58:b3:1b: 06:b0:92:81:3f:7f:83:b3:0c:1b:97:73:f2:d7:69:eb:70:64: 39:e8:cd:be:17:fe:69:dc:0a:b6:30:c4:ed:ea:c2:e6:c8:02: 91:dc:58:50:37:d9:d1:2b:1e:35:d7:e6:a4:65:6e:38:c4:94: a3:76:cb:49:26:a1:1c:2d:77:8e:86:c0:e2:25:39:50:50:c8: 40:6a:5d:b4:6d:aa:0f:d3:38:ac:62:a8:b0:8b:32:cb:95:ec: 65:80:97:bf:62:6b:b6:32:46:d1:47:4a:f4:8f:f7:45:b2:f5: 6c:0a:4d:40:a8:8c:bb:84:08:35:8c:93:bf:d3:dd:f2:2a:20: b7:b0:82:ef:0b:80:34:df:64:0e:6f:72:1c:04:0d:56:77:c2: e1:a0:4f:92:e7:dd:42:eb:fa:93:78:f0:3c:d3:0c:bf:6a:03: e2:e3:20:f8:da:0e:34:a5:ff:1c:b1:8d:42:b3:4f:c9:40:f4: cf:65:84:9e:f9:72:ed:b7:dd:3e:52:94:8f:18:aa:1b:e2:9a: 27:1e:be:7c:88:da:d3:49:c0:d8:e2:a3:3f:38:65:97:e4:45: 64:35:37:81:25:a6:0a:ee:26:bb:6c:32:8d:8e:f6:b5:d6:26: d2:53:a0:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQkQxMTAvBgNVBAUTKEEwQTMyMjRBRDBDODJCM0Y5QTYyRjM0N0FDQTNGOTQ1 REIwOEYyQjAwHhcNMjYwMTI0MTUxOTIzWhcNMjYwMTMxMTUxOTIzWjAYMRYwFAYD VQQDDA02OTc0ZTJmYy0wZTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi4IWTAHkij3KLWB1Qpzo1CpCOs+Yyj3pgIlNEmJYq2wXFJHqVNrVaFZ1z4za td/x1QiTa5soFykenT4U/fnAGDcuyTW/p6AJaiIxcwg0ls5G6bb/Zws+QhdbQyE0 5yblcdHnyt0MtVu4xAZ+ehaW4kv1oAoW1d+AVG4whWtFyj9WTqRh0JTfFWtMT27t 8epky5QPN8I8uhxXJ+w79SG0xxR1Eu64AJCLhsTAteuX3Y5+CjCyQKAXrtiY0PJB uHbAwvUXmc7jEG+YsMFweSLUu9yDvJ4luI0RCiW07ndiB4cigKf04O2kQzsCflEe qCsBMXtyE8zlrvu01KOYRwVu0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCf4I9Yg b1gd3vxDztLZShq5O3B0MB8GA1UdIwQYMBaAFKCjIkrQyCs/mmLzR6yj+UXbCPKw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBCRC9CNUE2MzZEOEZF NUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6LWFZdk5IcktQNVJkc0k4 ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LTWlTdERJS3otYVl2TkhyS1A1UmRzSThyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBCRC9CNUE2MzZEOEZFNUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6 LWFZdk5IcktQNVJkc0k4ckEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCW48Lhb1PAu1La12nYeQFYsxsGsJKBP3+Dswwbl3Py12nrcGQ56M2+ F/5p3Aq2MMTt6sLmyAKR3FhQN9nRKx411+akZW44xJSjdstJJqEcLXeOhsDiJTlQ UMhAal20baoP0zisYqiwizLLlexlgJe/Ymu2MkbRR0r0j/dFsvVsCk1AqIy7hAg1 jJO/093yKiC3sILvC4A032QOb3IcBA1Wd8LhoE+S591C6/qTePA80wy/agPi4yD4 2g40pf8csY1Cs0/JQPTPZYSe+XLtt90+UpSPGKob4ponHr58iNrTScDY4qM/OGWX 5EVkNTeBJaYK7ia7bDKNjva11ibSU6AW -----END CERTIFICATE-----Generated at Sun Jan 25 02:55:00 2026 by rpki-client