This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft File: ok2WODNZy0lmoVuakGkT61RWZXs.mft (raw, json) Hash identifier: RT3zhb05BnO6Vm8jGnTtaSqftNCYKqeiEZY0Mcsrb+c= Subject key identifier: 70:35:47:D9:51:58:AF:39:00:E8:95:1F:54:BD:96:59:F5:E3:71:D2 Authority key identifier: A2:4D:96:38:33:59:CB:49:66:A1:5B:9A:90:69:13:EB:54:56:65:7B Certificate issuer: /CN=A91C9C03/serialNumber=A24D96383359CB4966A15B9A906913EB5456657B Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft Manifest number: 84 Signing time: Fri 23 Jan 2026 05:49:02 +0000 Manifest this update: Fri 23 Jan 2026 05:49:01 +0000 Manifest next update: Fri 30 Jan 2026 05:49:01 +0000 Files and hashes: 1: ok2WODNZy0lmoVuakGkT61RWZXs.crl (hash: 8xk2e6V5VVDNKMV8N1VSCxCTcJilM/T5KQUFzCXIAbk=) 2: 19088D04716211F0A531A51FC4F9AE02.roa (hash: UYhhmkQaI1q3+QjYEo/76mR50UYMRxm9p33lOpn/bSs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.crl rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 05:49:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9C03, serialNumber=A24D96383359CB4966A15B9A906913EB5456657B Validity Not Before: Jan 23 05:49:01 2026 GMT Not After : Jan 30 05:49:01 2026 GMT Subject: CN=69730bce-237d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:84:7d:80:20:a2:bd:91:51:b5:c7:47:a2:6c: 53:a6:62:7e:67:78:c4:83:2a:fa:4b:43:a6:80:b4: 50:90:81:08:0a:ef:bd:7d:96:49:b8:de:5a:c6:ba: 1f:ab:04:ad:95:48:12:95:80:8d:e7:33:52:30:79: 70:bc:46:6f:ff:a7:45:81:11:23:2f:94:33:2c:57: 5d:48:da:bf:9d:32:a4:d5:26:41:a3:70:cd:04:0a: ab:d2:49:aa:ae:88:10:51:58:85:86:9f:e7:f8:15: af:99:be:ce:47:5b:d6:28:f3:59:ab:df:c1:db:14: 9b:52:c9:91:51:e1:b0:8e:e1:dd:92:46:9d:7f:53: d0:d9:cf:f4:4e:f0:98:39:c5:ae:14:63:e9:65:10: e6:b6:33:68:6d:44:15:f4:b2:33:a6:0d:3b:01:ba: 23:65:4e:f6:e6:47:59:59:fb:c9:f3:00:ae:a2:8c: c5:23:75:e5:38:33:43:b7:19:b2:15:97:11:47:01: 64:c9:5f:02:bb:cf:f4:ce:b8:a8:8d:9a:3e:28:f4: e6:f4:89:e8:48:b3:d8:37:be:d0:ba:5e:d3:c9:64: 3f:a8:d2:0a:82:d0:5a:fb:a3:68:3d:68:3c:73:ce: 14:c2:8e:cd:87:df:db:c1:13:68:b5:03:1b:3b:63: b2:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:35:47:D9:51:58:AF:39:00:E8:95:1F:54:BD:96:59:F5:E3:71:D2 X509v3 Authority Key Identifier: keyid:A2:4D:96:38:33:59:CB:49:66:A1:5B:9A:90:69:13:EB:54:56:65:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:1b:0a:24:fc:63:09:e8:e2:fd:d8:a3:9c:66:a5:ad:3a:40: 20:43:06:f4:e3:a7:11:2b:ec:3e:09:6a:4c:5f:db:ae:ef:f8: ca:02:c3:4d:7c:50:e5:90:e4:cb:fa:9a:c5:5c:a6:12:2b:aa: 38:3f:b2:cc:0c:6c:31:be:f9:e3:70:82:e3:59:c8:f5:24:64: d4:96:bd:52:ac:e3:00:82:98:f0:d3:d7:04:e4:c1:9b:19:42: ac:92:b7:05:dd:22:54:e0:0c:2a:dd:39:9e:04:f3:a9:8c:e8: 90:ab:35:46:bf:4c:f9:d1:43:d4:00:7b:a0:ea:13:9d:e5:69: 1c:0a:9b:8a:b8:4e:fb:59:50:87:b0:c6:5c:bd:d3:b2:71:a2: 0d:4e:76:b1:98:c1:2c:35:63:e3:89:65:2b:ed:1d:3e:01:47: d5:e8:b3:7c:d5:69:46:e2:ec:e8:db:f9:a7:b8:56:b0:06:78: de:93:5a:9e:ce:e1:89:d5:bb:47:ea:8d:03:95:2e:64:2f:79: d5:4c:bf:f5:43:98:ba:1a:61:79:58:d8:14:46:b2:5e:58:37: ba:a3:f8:d6:1a:66:df:55:53:9f:0d:56:89:b9:f3:3d:f8:46: 42:9d:b7:ab:aa:ef:61:86:ad:9c:55:5e:fc:9e:88:e2:27:e1: ef:35:5c:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlDMDMxMTAvBgNVBAUTKEEyNEQ5NjM4MzM1OUNCNDk2NkExNUI5QTkwNjkxM0VC NTQ1NjY1N0IwHhcNMjYwMTIzMDU0OTAxWhcNMjYwMTMwMDU0OTAxWjAYMRYwFAYD VQQDDA02OTczMGJjZS0yMzdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqYR9gCCivZFRtcdHomxTpmJ+Z3jEgyr6S0OmgLRQkIEICu+9fZZJuN5axrof qwStlUgSlYCN5zNSMHlwvEZv/6dFgREjL5QzLFddSNq/nTKk1SZBo3DNBAqr0kmq rogQUViFhp/n+BWvmb7OR1vWKPNZq9/B2xSbUsmRUeGwjuHdkkadf1PQ2c/0TvCY OcWuFGPpZRDmtjNobUQV9LIzpg07AbojZU725kdZWfvJ8wCuoozFI3XlODNDtxmy FZcRRwFkyV8Cu8/0zriojZo+KPTm9InoSLPYN77Qul7TyWQ/qNIKgtBa+6NoPWg8 c84Uwo7Nh9/bwRNotQMbO2OykQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHA1R9lR WK85AOiVH1S9lln143HSMB8GA1UdIwQYMBaAFKJNljgzWctJZqFbmpBpE+tUVmV7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUMwMy8zN0QxOEExNjM5 QTMxMUYwQkFENzJDM0NDNEY5QUUwMi9vazJXT0ROWnkwbG1vVnVha0drVDYxUlda WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29rMldPRE5aeTBsbW9WdWFrR2tUNjFSV1pYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUMwMy8zN0QxOEExNjM5QTMxMUYwQkFENzJDM0NDNEY5QUUwMi9vazJXT0ROWnkw bG1vVnVha0drVDYxUldaWHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZGwok/GMJ6OL92KOcZqWtOkAgQwb046cRK+w+CWpMX9uu7/jKAsNN fFDlkOTL+prFXKYSK6o4P7LMDGwxvvnjcILjWcj1JGTUlr1SrOMAgpjw09cE5MGb GUKskrcF3SJU4Awq3TmeBPOpjOiQqzVGv0z50UPUAHug6hOd5WkcCpuKuE77WVCH sMZcvdOycaINTnaxmMEsNWPjiWUr7R0+AUfV6LN81WlG4uzo2/mnuFawBnjek1qe zuGJ1btH6o0DlS5kL3nVTL/1Q5i6GmF5WNgURrJeWDe6o/jWGmbfVVOfDVaJufM9 +EZCnberqu9hhq2cVV78nojiJ+HvNVwV -----END CERTIFICATE-----Generated at Sun Jan 25 02:53:17 2026 by rpki-client