This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft File: onKsr-j6pPKpcApvwRQlkIx0PUs.mft (raw, json) Hash identifier: GIfNm5/gfy3cj3ErJF59tfwMriX5bnoLlX+l96hRx6w= Subject key identifier: 01:95:40:B5:92:59:8C:00:01:25:B7:18:6C:4F:B7:A8:80:DD:A7:DA Authority key identifier: A2:72:AC:AF:E8:FA:A4:F2:A9:70:0A:6F:C1:14:25:90:8C:74:3D:4B Certificate issuer: /CN=A91E3E27/serialNumber=A272ACAFE8FAA4F2A9700A6FC11425908C743D4B Certificate serial: 0B2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft Manifest number: 0ADB Signing time: Sat 24 Jan 2026 19:01:17 +0000 Manifest this update: Sat 24 Jan 2026 19:01:17 +0000 Manifest next update: Sat 31 Jan 2026 19:01:17 +0000 Files and hashes: 1: onKsr-j6pPKpcApvwRQlkIx0PUs.crl (hash: F2iEfBAWYVLq9Gubh1J59kKaSW5U1RAb0XNBweiv5bw=) 2: 95BD9D90A56A11EFA5ABDC46C4F9AE02.roa (hash: 5hsatirdoTAMt8sVP/32NV6rGnCIOasP2d6dKTsMLr4=) 3: 879C6CC6BC0A11EF8387A57BC4F9AE02.roa (hash: GD8TE1iM2Ym7f93p/1VYDkqCG50V4KFtJCkioUpH7AI=) 4: B379B0346F4711EA81200366C4F9AE02.roa (hash: 34aVw5Rt72hNPVd0d/UxB/shSl9fnFPWjJTO5/uz5ZU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.crl rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 19:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2860 (0xb2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E27, serialNumber=A272ACAFE8FAA4F2A9700A6FC11425908C743D4B Validity Not Before: Jan 24 19:01:17 2026 GMT Not After : Jan 31 19:01:17 2026 GMT Subject: CN=697516fd-3274 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:75:8b:9c:53:af:ac:3d:3c:de:a9:8a:30:77: e9:d5:38:6a:30:75:e1:e8:8d:21:af:99:f5:21:70: 74:5b:b3:ad:05:eb:67:71:bf:92:02:cc:60:f6:59: 81:59:ec:f8:11:59:ec:b3:cf:e3:d3:70:9d:50:7e: 3b:40:f3:dc:7b:ef:b0:1c:e5:cc:f1:96:27:68:87: 04:12:4e:0a:f5:34:b6:df:91:9c:d3:77:b4:6c:73: d2:d5:1c:68:e2:17:55:e0:1d:ef:9f:6d:ad:8f:1f: 29:f1:a1:64:24:22:f3:e9:e5:d4:c3:a3:fd:dc:8c: cf:37:80:38:37:dc:a0:ad:48:da:fe:e8:b8:de:b2: 5a:bb:5c:bb:84:33:45:dd:f7:77:09:5a:b3:86:5a: 25:c1:2e:0e:15:2a:9d:7d:24:a8:2d:cd:f7:a7:2d: 0c:e5:fa:b6:0f:66:b9:96:30:42:05:26:03:77:0b: 6a:4a:b9:5e:c7:d8:ea:0a:4a:66:43:79:61:cd:00: 7c:1e:97:67:db:47:0e:78:b3:30:ea:07:29:9f:04: 85:f7:59:15:68:80:ac:c2:91:89:3a:c5:84:c1:02: c6:90:9c:5e:aa:28:d2:b3:63:8f:44:a0:e7:d4:cc: c4:9a:3e:9f:34:ff:2b:51:e7:0a:c5:e1:56:5f:b4: 0d:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:95:40:B5:92:59:8C:00:01:25:B7:18:6C:4F:B7:A8:80:DD:A7:DA X509v3 Authority Key Identifier: keyid:A2:72:AC:AF:E8:FA:A4:F2:A9:70:0A:6F:C1:14:25:90:8C:74:3D:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:66:bd:f4:96:3f:db:c8:7d:6f:4e:44:f4:95:ef:83:a7:e6: 2a:ec:07:a1:d0:6d:50:47:90:c1:02:a0:ce:75:06:88:48:0a: d2:90:4a:33:45:7e:56:bc:89:b1:50:ee:51:25:d4:69:a3:c7: 0e:f3:b5:f8:02:a2:6c:49:39:5c:cd:51:6c:29:2e:5f:60:fa: c5:b6:65:e0:61:fa:fb:30:7d:0d:4e:69:ee:c6:31:88:85:1c: ad:af:7f:8a:1e:84:b6:57:eb:ea:f4:f7:7e:46:dd:30:06:04: b5:38:87:10:cf:c6:55:e9:7a:f0:92:e9:fa:40:48:38:57:21: 6a:7c:f1:52:f6:7e:79:e3:5b:51:76:51:c1:38:0d:02:bf:0b: dc:49:da:f2:63:f5:71:58:a5:da:14:f5:f7:e0:0a:04:cf:16: b5:26:75:8f:61:53:9b:43:6a:3c:21:82:6b:f2:26:02:fe:e3: 59:82:91:18:ea:72:a3:2e:ff:41:81:b5:34:c6:92:f0:97:d5: d3:4b:d2:b6:42:ba:8f:17:3d:61:33:90:93:af:08:c5:40:d8: 10:74:c4:3d:59:72:03:6a:82:6b:93:b3:09:12:69:91:e7:47: a8:62:43:6b:c2:43:6a:d3:00:35:0d:5b:3d:a5:b2:6a:99:c9: ad:e2:10:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCywwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNFMjcxMTAvBgNVBAUTKEEyNzJBQ0FGRThGQUE0RjJBOTcwMEE2RkMxMTQyNTkw OEM3NDNENEIwHhcNMjYwMTI0MTkwMTE3WhcNMjYwMTMxMTkwMTE3WjAYMRYwFAYD VQQDDA02OTc1MTZmZC0zMjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2XWLnFOvrD083qmKMHfp1ThqMHXh6I0hr5n1IXB0W7OtBetncb+SAsxg9lmB Wez4EVnss8/j03CdUH47QPPce++wHOXM8ZYnaIcEEk4K9TS235Gc03e0bHPS1Rxo 4hdV4B3vn22tjx8p8aFkJCLz6eXUw6P93IzPN4A4N9ygrUja/ui43rJau1y7hDNF 3fd3CVqzhlolwS4OFSqdfSSoLc33py0M5fq2D2a5ljBCBSYDdwtqSrlex9jqCkpm Q3lhzQB8Hpdn20cOeLMw6gcpnwSF91kVaICswpGJOsWEwQLGkJxeqijSs2OPRKDn 1MzEmj6fNP8rUecKxeFWX7QNvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAGVQLWS WYwAASW3GGxPt6iA3afaMB8GA1UdIwQYMBaAFKJyrK/o+qTyqXAKb8EUJZCMdD1L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0UyNy9GMzg4ODc2NjZG M0ExMUVBOTg0MDEzM0RDNEY5QUUwMi9vbktzci1qNnBQS3BjQXB2d1JRbGtJeDBQ VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29uS3NyLWo2cFBLcGNBcHZ3UlFsa0l4MFBVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0UyNy9GMzg4ODc2NjZGM0ExMUVBOTg0MDEzM0RDNEY5QUUwMi9vbktzci1qNnBQ S3BjQXB2d1JRbGtJeDBQVXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaZr30lj/byH1vTkT0le+Dp+Yq7Aeh0G1QR5DBAqDOdQaISArSkEoz RX5WvImxUO5RJdRpo8cO87X4AqJsSTlczVFsKS5fYPrFtmXgYfr7MH0NTmnuxjGI hRytr3+KHoS2V+vq9Pd+Rt0wBgS1OIcQz8ZV6Xrwkun6QEg4VyFqfPFS9n5541tR dlHBOA0CvwvcSdryY/VxWKXaFPX34AoEzxa1JnWPYVObQ2o8IYJr8iYC/uNZgpEY 6nKjLv9BgbU0xpLwl9XTS9K2QrqPFz1hM5CTrwjFQNgQdMQ9WXIDaoJrk7MJEmmR 50eoYkNrwkNq0wA1DVs9pbJqmcmt4hDP -----END CERTIFICATE-----Generated at Sun Jan 25 04:34:00 2026 by rpki-client