This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft File: oRHoHEs-J72m4nEkl_bbugz7CCY.mft (raw, json) Hash identifier: rNsseiVWE8QoZcqMtZlehKahGQHxgi6Ke6OO1dgT21E= Subject key identifier: C2:11:B2:47:03:3E:C9:0F:CA:3C:B4:62:D5:8F:21:3B:5F:EC:A2:47 Authority key identifier: A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 Certificate issuer: /CN=A91C1DB8/serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Certificate serial: 13E0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft Manifest number: 13D4 Signing time: Sat 24 Jan 2026 16:40:44 +0000 Manifest this update: Sat 24 Jan 2026 16:40:44 +0000 Manifest next update: Sat 31 Jan 2026 16:40:44 +0000 Files and hashes: 1: oRHoHEs-J72m4nEkl_bbugz7CCY.crl (hash: 5HbGxSvvOECkrIIcx34vjYn46KQEB5VE7pV88PmCQ/E=) 2: 6D6692CAAA0211EEAADA3D32C4F9AE02.roa (hash: Lfw4Pf1U5kN1CyHW4zjiGH94Ozpr6hL2Iw69vgHFnZ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 16:40:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5088 (0x13e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1DB8, serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Validity Not Before: Jan 24 16:40:44 2026 GMT Not After : Jan 31 16:40:44 2026 GMT Subject: CN=6974f60c-9e10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:2a:c5:36:20:b0:20:2e:ff:6c:3c:a4:8d:59: b0:cf:b1:78:c0:d2:bd:1a:ae:07:d9:f2:a5:bd:5f: 45:c1:b8:75:69:7f:5b:41:19:4f:db:7a:df:ed:af: d1:41:ed:c7:0c:99:c8:c5:ec:94:19:2a:86:cf:5c: 51:d7:33:27:31:95:64:21:cb:bc:34:aa:85:2c:9d: af:4a:25:9d:5b:6e:ad:14:c2:5b:10:88:90:ef:9a: 48:0d:68:65:ba:90:de:96:24:c9:78:e5:61:9b:22: 24:84:13:ba:1a:59:16:4a:5f:77:e3:c4:90:8b:d0: e4:e2:ea:b9:f1:fe:3d:b5:78:9c:c9:ef:96:56:69: c7:26:33:c1:3c:c9:be:4d:97:90:2b:73:17:f7:e2: 94:bf:d9:69:a6:bc:6b:06:a4:a6:a5:7e:14:fb:77: e5:01:f2:f5:41:d1:10:04:b1:33:3d:97:18:e9:f3: fb:c8:41:32:80:56:78:1c:b9:c0:00:be:88:d7:e7: 60:7b:83:fb:d5:61:7e:e6:02:2b:b8:3b:51:46:b4: 47:40:f2:09:af:cb:cb:57:8e:34:49:b9:49:c4:f0: 3a:d5:9e:f4:a4:06:03:be:51:95:ec:d2:bb:78:7d: 37:12:9b:c4:e2:7c:3b:f3:c4:f6:14:e8:22:9b:33: 8e:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:11:B2:47:03:3E:C9:0F:CA:3C:B4:62:D5:8F:21:3B:5F:EC:A2:47 X509v3 Authority Key Identifier: keyid:A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:08:c2:a5:04:4f:21:ff:6b:11:ef:cb:3e:bb:b1:a9:39:06: 3a:2f:55:a0:38:ee:08:8c:61:bd:8e:ce:d3:21:08:f8:8d:57: 85:3b:4b:00:ef:42:63:12:68:48:9f:fe:d0:05:f3:4f:0b:67: df:9f:cd:b4:d5:5d:d4:a6:45:62:b2:62:59:f4:36:4b:94:8f: ca:1b:47:c9:93:ab:63:50:d8:d0:6d:34:89:f0:1e:73:8b:ad: ad:c1:d5:61:75:fa:b0:6b:f1:3e:e8:4c:6e:90:8f:b4:b9:df: 20:69:36:f5:a2:c6:bf:f5:8b:46:0e:b2:ad:81:ba:b9:22:fe: fc:82:da:9f:74:d5:81:db:ea:e3:8a:f0:43:b0:3c:74:a1:14: 62:7a:12:f5:7c:9d:92:0a:36:e5:c3:22:d9:e5:ac:81:c1:a9: 55:eb:c2:df:7d:57:d9:35:c2:c5:72:34:96:8b:2d:6f:c2:ac: cb:c7:60:74:29:c1:70:8e:1d:f9:94:47:9a:de:12:9b:69:b0: 92:e6:60:8a:72:e5:9c:53:ea:80:49:20:fc:c3:9d:5e:e9:20: 35:e3:09:8f:52:fa:11:af:7c:9c:54:b3:96:dd:77:83:aa:87: 13:24:b5:7d:49:aa:e6:a5:a2:bd:3c:1c:5b:d8:86:89:16:75: 50:a4:5e:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE+AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFEQjgxMTAvBgNVBAUTKEExMTFFODFDNEIzRTI3QkRBNkUyNzEyNDk3RjZEQkJB MENGQjA4MjYwHhcNMjYwMTI0MTY0MDQ0WhcNMjYwMTMxMTY0MDQ0WjAYMRYwFAYD VQQDDA02OTc0ZjYwYy05ZTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1irFNiCwIC7/bDykjVmwz7F4wNK9Gq4H2fKlvV9Fwbh1aX9bQRlP23rf7a/R Qe3HDJnIxeyUGSqGz1xR1zMnMZVkIcu8NKqFLJ2vSiWdW26tFMJbEIiQ75pIDWhl upDeliTJeOVhmyIkhBO6GlkWSl9348SQi9Dk4uq58f49tXicye+WVmnHJjPBPMm+ TZeQK3MX9+KUv9lpprxrBqSmpX4U+3flAfL1QdEQBLEzPZcY6fP7yEEygFZ4HLnA AL6I1+dge4P71WF+5gIruDtRRrRHQPIJr8vLV440SblJxPA61Z70pAYDvlGV7NK7 eH03EpvE4nw788T2FOgimzOOMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMIRskcD PskPyjy0YtWPITtf7KJHMB8GA1UdIwQYMBaAFKER6BxLPie9puJxJJf227oM+wgm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMURCOC8wRDk5MzFCQUEx MUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3Mm00bkVrbF9iYnVnejdD Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29SSG9IRXMtSjcybTRuRWtsX2JidWd6N0NDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MURCOC8wRDk5MzFCQUExMUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3 Mm00bkVrbF9iYnVnejdDQ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDCMKlBE8h/2sR78s+u7GpOQY6L1WgOO4IjGG9js7TIQj4jVeFO0sA 70JjEmhIn/7QBfNPC2ffn8201V3UpkVismJZ9DZLlI/KG0fJk6tjUNjQbTSJ8B5z i62twdVhdfqwa/E+6ExukI+0ud8gaTb1osa/9YtGDrKtgbq5Iv78gtqfdNWB2+rj ivBDsDx0oRRiehL1fJ2SCjblwyLZ5ayBwalV68LffVfZNcLFcjSWiy1vwqzLx2B0 KcFwjh35lEea3hKbabCS5mCKcuWcU+qASSD8w51e6SA14wmPUvoRr3ycVLOW3XeD qocTJLV9SarmpaK9PBxb2IaJFnVQpF7i -----END CERTIFICATE-----Generated at Sun Jan 25 13:57:59 2026 by rpki-client