This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft File: oqIX1KQS-1OPXJGjSzbOcYed22U.mft (raw, json) Hash identifier: IAdfIXOVLgzatbmMsawSwSKTVxv4X10KeG6DfK/oP3k= Subject key identifier: 14:2B:D2:44:7A:49:BA:7E:4B:64:BF:90:D2:EF:A1:C0:72:A4:EF:FC Authority key identifier: A2:A2:17:D4:A4:12:FB:53:8F:5C:91:A3:4B:36:CE:71:87:9D:DB:65 Certificate issuer: /CN=A91CF9B0/serialNumber=A2A217D4A412FB538F5C91A34B36CE71879DDB65 Certificate serial: 01AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft Manifest number: 019A Signing time: Sun 25 Jan 2026 02:53:46 +0000 Manifest this update: Sun 25 Jan 2026 02:53:45 +0000 Manifest next update: Sun 01 Feb 2026 02:53:45 +0000 Files and hashes: 1: oqIX1KQS-1OPXJGjSzbOcYed22U.crl (hash: 2FtontGX4TLwof/4G0Am+H6V020kK+JUsPZbV9viDmI=) 2: 84D917FC9F4911EEA0C5C856C4F9AE02.roa (hash: JtIhXGAWkzgayXs+NwavZWcl/FfRGvmLWt7QneAbREc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.crl rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 02:53:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 426 (0x1aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF9B0, serialNumber=A2A217D4A412FB538F5C91A34B36CE71879DDB65 Validity Not Before: Jan 25 02:53:45 2026 GMT Not After : Feb 1 02:53:45 2026 GMT Subject: CN=697585ba-f8d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:a5:c5:c2:79:10:4b:73:7a:0a:70:13:45:42: 39:1f:c6:84:f0:20:1b:92:e5:dc:28:a1:de:d4:bf: 1e:64:82:39:fd:32:0f:09:54:10:61:58:aa:b6:d9: c0:7a:85:f0:87:f2:90:9f:b0:f4:00:45:a2:c3:3c: 12:a9:af:05:ef:2c:d2:87:22:da:3b:8e:4f:89:41: 3c:c9:e0:33:d5:83:3f:5b:3c:00:fd:70:62:c9:8f: 4c:40:cf:73:9c:5e:31:4f:e9:15:fe:c7:70:27:88: 6d:3d:13:2f:bf:bd:4c:28:23:ee:c2:7a:14:71:4f: 0d:ac:82:8d:73:18:47:55:b7:8c:58:f4:98:7f:98: fc:c5:fc:4e:ce:07:8e:b1:b6:91:00:42:43:15:bd: f7:01:0f:29:67:62:c3:09:4f:bd:f6:0d:c9:7c:41: 91:95:c7:d1:a0:e1:04:ab:2a:10:17:b8:fc:e8:89: d6:50:f2:9c:83:23:05:0f:06:51:cc:6c:0d:82:6c: d4:70:66:f8:a8:9c:75:6d:8e:2b:c5:8e:ea:27:1b: 83:0c:8f:65:1a:bb:53:fb:66:5c:52:6e:0a:e4:87: 77:4b:01:cb:a7:16:95:33:18:d5:bd:0c:b1:25:98: da:f0:f5:76:c2:57:fb:41:84:92:04:f4:70:4e:a0: c8:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:2B:D2:44:7A:49:BA:7E:4B:64:BF:90:D2:EF:A1:C0:72:A4:EF:FC X509v3 Authority Key Identifier: keyid:A2:A2:17:D4:A4:12:FB:53:8F:5C:91:A3:4B:36:CE:71:87:9D:DB:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:15:8b:ba:6e:1c:6a:be:f5:5f:06:35:68:07:1c:e2:1d:cf: 6e:9c:1d:48:10:a9:74:23:50:61:03:f6:ea:51:5f:6e:27:6f: 7f:47:c8:7d:c9:53:3d:3d:17:76:b2:92:68:19:3b:cb:ed:eb: e9:f6:bf:b8:cc:dd:b6:68:44:4b:a3:a2:7e:44:19:1b:67:e3: 88:f4:c1:e7:33:0a:72:3f:39:98:10:ec:09:87:a4:c2:44:aa: 74:e8:25:54:d7:d2:c2:26:c1:66:6a:66:9d:7f:25:9e:d0:92: 01:6a:32:cb:00:42:08:f3:85:cb:a2:51:0f:1f:1c:60:5a:53: 26:1f:09:6f:40:3b:bd:cd:0c:a9:a8:de:da:fc:21:81:7f:96: 4c:b2:93:bc:d2:f6:ef:b7:18:df:2f:0f:2f:fd:6a:8c:89:9d: 9a:f3:20:71:56:39:de:02:00:d7:04:01:aa:39:0a:a2:4d:e7: 0d:d9:61:a5:81:cb:b0:6e:ff:17:b5:b1:e1:36:98:43:0a:0b: 38:87:c0:b3:89:6c:e0:6b:22:4a:7e:c5:00:64:76:96:87:24: 4b:4e:f8:21:4a:d7:e4:23:37:dc:4f:2b:aa:ed:10:5e:eb:30: 50:ac:37:18:4e:69:15:b8:83:72:27:fa:8d:b5:e7:24:67:f7: eb:b9:fe:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx Q0Y5QjAxMTAvBgNVBAUTKEEyQTIxN0Q0QTQxMkZCNTM4RjVDOTFBMzRCMzZDRTcx ODc5RERCNjUwHhcNMjYwMTI1MDI1MzQ1WhcNMjYwMjAxMDI1MzQ1WjAYMRYwFAYD VQQDDA02OTc1ODViYS1mOGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiKXFwnkQS3N6CnATRUI5H8aE8CAbkuXcKKHe1L8eZII5/TIPCVQQYViqttnA eoXwh/KQn7D0AEWiwzwSqa8F7yzShyLaO45PiUE8yeAz1YM/WzwA/XBiyY9MQM9z nF4xT+kV/sdwJ4htPRMvv71MKCPuwnoUcU8NrIKNcxhHVbeMWPSYf5j8xfxOzgeO sbaRAEJDFb33AQ8pZ2LDCU+99g3JfEGRlcfRoOEEqyoQF7j86InWUPKcgyMFDwZR zGwNgmzUcGb4qJx1bY4rxY7qJxuDDI9lGrtT+2ZcUm4K5Id3SwHLpxaVMxjVvQyx JZja8PV2wlf7QYSSBPRwTqDIQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBQr0kR6 Sbp+S2S/kNLvocBypO/8MB8GA1UdIwQYMBaAFKKiF9SkEvtTj1yRo0s2znGHndtl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjlCMC8xNEM5NDk2RTlG M0YxMUVFODAxQjFENjJDNEY5QUUwMi9vcUlYMUtRUy0xT1BYSkdqU3piT2NZZWQy MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29xSVgxS1FTLTFPUFhKR2pTemJPY1llZDIyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjlCMC8xNEM5NDk2RTlGM0YxMUVFODAxQjFENjJDNEY5QUUwMi9vcUlYMUtRUy0x T1BYSkdqU3piT2NZZWQyMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5FYu6bhxqvvVfBjVoBxziHc9unB1IEKl0I1BhA/bqUV9uJ29/R8h9 yVM9PRd2spJoGTvL7evp9r+4zN22aERLo6J+RBkbZ+OI9MHnMwpyPzmYEOwJh6TC RKp06CVU19LCJsFmamadfyWe0JIBajLLAEII84XLolEPHxxgWlMmHwlvQDu9zQyp qN7a/CGBf5ZMspO80vbvtxjfLw8v/WqMiZ2a8yBxVjneAgDXBAGqOQqiTecN2WGl gcuwbv8XtbHhNphDCgs4h8CziWzgayJKfsUAZHaWhyRLTvghStfkIzfcTyuq7RBe 6zBQrDcYTmkVuINyJ/qNteckZ/fruf62 -----END CERTIFICATE-----Generated at Sun Jan 25 18:32:07 2026 by rpki-client