This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft File: oCcZWkgg89cmSk1X7pqdTCoQySM.mft (raw, json) Hash identifier: 0kD7RfMJXm+Q5crX78DHGRSsxKK7bmMWY0oGML9AM6k= Subject key identifier: C7:1C:62:13:BC:EF:27:D0:22:B6:F5:38:B3:FD:CC:47:06:91:DE:BF Authority key identifier: A0:27:19:5A:48:20:F3:D7:26:4A:4D:57:EE:9A:9D:4C:2A:10:C9:23 Certificate issuer: /CN=A91C1621/serialNumber=A027195A4820F3D7264A4D57EE9A9D4C2A10C923 Certificate serial: CE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft Manifest number: CA Signing time: Sat 24 Jan 2026 14:16:15 +0000 Manifest this update: Sat 24 Jan 2026 14:16:14 +0000 Manifest next update: Sat 31 Jan 2026 14:16:14 +0000 Files and hashes: 1: oCcZWkgg89cmSk1X7pqdTCoQySM.crl (hash: /YxKc0r/7OMV4dNmykG/8rkgeetnDqUQFnT2hSJbsBM=) 2: 8AE793B2E9E311F0A43C19FF656F56BC.roa (hash: +D9ta68UqOf0mI1P55Q22PhToE48yax/TkcASp/oTO0=) 3: 81E4D4A2053011F09C73001FC4F9AE02.roa (hash: BG8Qcl3ND1x5a+MIHh/xpmjjxkGhO2Fu+dtsOmd2KRo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.crl rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:16:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1621, serialNumber=A027195A4820F3D7264A4D57EE9A9D4C2A10C923 Validity Not Before: Jan 24 14:16:14 2026 GMT Not After : Jan 31 14:16:14 2026 GMT Subject: CN=6974d42e-c219 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d9:2f:29:7d:5d:b8:aa:98:e2:b4:23:b2:03: 1c:c8:9e:75:a1:59:dc:74:9f:2d:07:54:cb:61:7d: cc:84:bc:74:3b:dc:f0:f4:cf:9a:ba:f4:8a:1a:97: da:ed:17:a5:24:74:fb:bf:c9:b9:e7:30:e1:94:11: 29:7b:62:48:5a:6d:e7:02:d5:95:92:38:a1:8a:ba: c3:d0:31:00:84:8b:7b:89:1b:fd:c4:ae:bf:fa:59: 61:bc:23:51:91:fc:f7:7c:71:91:19:c8:b5:27:06: 22:42:6e:59:3e:61:f0:53:ad:f9:f3:f7:41:7a:c5: 3c:3d:88:5d:12:15:2b:6c:62:22:f1:6b:00:6b:da: 08:d9:d8:b0:8e:3b:10:94:76:c3:4f:4e:d6:f3:4d: 4d:e0:d3:fd:a8:b2:e2:16:df:f1:99:d9:40:75:9f: 78:e7:a4:ae:0b:3c:92:8e:40:9e:72:3e:33:91:39: aa:a0:d9:58:4e:4f:87:04:75:cb:30:00:53:eb:4c: fe:3a:71:31:10:fa:b9:40:cf:1d:07:1c:e3:ac:a4: 1d:57:24:1c:bd:1f:0d:aa:40:37:8f:b1:24:23:be: 28:9b:b4:59:b4:c7:9e:25:4d:a5:f2:1a:d3:bc:54: 1e:f8:6c:ad:cf:85:66:9b:cc:0c:31:bf:e8:0c:c9: a5:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:1C:62:13:BC:EF:27:D0:22:B6:F5:38:B3:FD:CC:47:06:91:DE:BF X509v3 Authority Key Identifier: keyid:A0:27:19:5A:48:20:F3:D7:26:4A:4D:57:EE:9A:9D:4C:2A:10:C9:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:b7:9f:e4:81:43:49:65:88:d1:6d:fe:26:5e:95:e6:99:58: 9b:34:27:b9:0d:50:1f:1a:32:bb:c4:25:3f:11:a6:f5:f0:27: 59:cf:70:f8:3b:26:50:cf:fd:63:2c:54:19:98:33:ce:a4:00: 60:ed:09:b2:ea:80:cb:69:f9:e4:fa:7d:12:17:3a:08:c0:dc: f2:92:f7:08:3c:5f:75:71:e2:21:10:a5:c3:98:b0:a4:74:f2: 34:c3:02:bf:f9:82:d6:ac:81:d0:c0:e0:00:7b:57:6a:82:44: 64:a4:a2:de:f4:5b:0f:cf:34:77:0b:2a:92:e2:6e:e1:19:5e: 74:41:c7:5a:65:45:e9:f3:b5:4f:b2:dd:c1:72:b2:08:f3:5f: e8:49:a0:2f:ce:fb:a6:f8:92:96:7e:31:c9:79:e5:51:cb:91: f6:85:cc:fb:66:ba:0f:25:5d:f4:23:df:27:f5:e8:c8:0d:6f: 9e:12:18:60:89:ef:e6:8d:b9:53:1f:a7:1d:cf:d1:45:7c:d6: c0:04:55:ee:50:9c:70:09:8a:e0:8c:91:4c:a0:23:0f:12:9e: f0:9b:de:7d:30:d2:58:92:86:15:0c:ef:f7:88:e8:f9:44:63: 6f:3e:01:91:41:96:67:43:9e:24:dc:12:04:14:92:da:77:d2: 46:e1:0c:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE2MjExMTAvBgNVBAUTKEEwMjcxOTVBNDgyMEYzRDcyNjRBNEQ1N0VFOUE5RDRD MkExMEM5MjMwHhcNMjYwMTI0MTQxNjE0WhcNMjYwMTMxMTQxNjE0WjAYMRYwFAYD VQQDDA02OTc0ZDQyZS1jMjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9kvKX1duKqY4rQjsgMcyJ51oVncdJ8tB1TLYX3MhLx0O9zw9M+auvSKGpfa 7RelJHT7v8m55zDhlBEpe2JIWm3nAtWVkjihirrD0DEAhIt7iRv9xK6/+llhvCNR kfz3fHGRGci1JwYiQm5ZPmHwU6358/dBesU8PYhdEhUrbGIi8WsAa9oI2diwjjsQ lHbDT07W801N4NP9qLLiFt/xmdlAdZ9456SuCzySjkCecj4zkTmqoNlYTk+HBHXL MABT60z+OnExEPq5QM8dBxzjrKQdVyQcvR8NqkA3j7EkI74om7RZtMeeJU2l8hrT vFQe+Gytz4Vmm8wMMb/oDMmlmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMccYhO8 7yfQIrb1OLP9zEcGkd6/MB8GA1UdIwQYMBaAFKAnGVpIIPPXJkpNV+6anUwqEMkj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTYyMS8zNUVEQTkyRUNG MEQxMUVGOTJGMUVDMzZDNEY5QUUwMi9vQ2NaV2tnZzg5Y21TazFYN3BxZFRDb1F5 U00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29DY1pXa2dnODljbVNrMVg3cHFkVENvUXlTTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTYyMS8zNUVEQTkyRUNGMEQxMUVGOTJGMUVDMzZDNEY5QUUwMi9vQ2NaV2tnZzg5 Y21TazFYN3BxZFRDb1F5U00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdt5/kgUNJZYjRbf4mXpXmmVibNCe5DVAfGjK7xCU/Eab18CdZz3D4 OyZQz/1jLFQZmDPOpABg7Qmy6oDLafnk+n0SFzoIwNzykvcIPF91ceIhEKXDmLCk dPI0wwK/+YLWrIHQwOAAe1dqgkRkpKLe9FsPzzR3CyqS4m7hGV50QcdaZUXp87VP st3BcrII81/oSaAvzvum+JKWfjHJeeVRy5H2hcz7ZroPJV30I98n9ejIDW+eEhhg ie/mjblTH6cdz9FFfNbABFXuUJxwCYrgjJFMoCMPEp7wm959MNJYkoYVDO/3iOj5 RGNvPgGRQZZnQ54k3BIEFJLad9JG4QxI -----END CERTIFICATE-----Generated at Sun Jan 25 21:45:09 2026 by rpki-client