This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft File: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft (raw, json) Hash identifier: htaBcRk6bc6mlAC6/6LToQ6MIr2SzNh2mGwv6szrMxE= Subject key identifier: A8:AE:85:5B:AE:3C:C4:03:C8:40:9C:58:48:F8:7A:7F:1A:80:D0:C0 Authority key identifier: 3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 Certificate issuer: /CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Certificate serial: 2264 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft Manifest number: 2218 Signing time: Sat 24 Jan 2026 15:42:49 +0000 Manifest this update: Sat 24 Jan 2026 15:42:48 +0000 Manifest next update: Sat 31 Jan 2026 15:42:48 +0000 Files and hashes: 1: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl (hash: hs3Qb2i6ksJJ8rFlAt4r1KFzJN9lPLtoluPTwKaerQE=) 2: 11DE1CDA467611EC988CDC09C4F9AE02.roa (hash: VRoVKZ5apQPibJfYuezBj0SVEXkfapSpmG0vCNALPFk=) 3: 586B33AEF44611EBA78C117AC4F9AE02.roa (hash: W3kQqETMCmWx1rkG4UQFdMD9AvtHip25lMvzH/UT/O4=) 4: 2D477384D9C711F098E1B70271D3641D.roa (hash: DE+aX0zYPSkZlOiHZwp9PIbSMR2LTCu2LXvGYzXa9NQ=) 5: 63BFE4C0292811EEAF894530C4F9AE02.roa (hash: 8CfQ0/1GwUUp0J0kvZBXA7fizuzpoZuw6UptgYm1mO8=) 6: 5EDC2B56F27E11EE8704D12FC4F9AE02.roa (hash: IkaJ8i577C8HJn9L10GXsDg7dnEgDNc7V/0u1lmvtUc=) 7: A73C0BF6D93511E6B2617F7BC4F9AE02.roa (hash: tha3MuUqAY4uta6oQkpRf/6b/EDrjv+89kT9R3U6DBE=) 8: 5F649D88F27E11EE8704D12FC4F9AE02.roa (hash: 9qbnU5NoZnRKr5UON4q3pztK39xd0U7HOmGKLDSw1XM=) 9: 5480D316764D11EA8CB5C039C4F9AE02.roa (hash: pHTu337dbSxJnT3CyDhgI/d9oBjNP9lN6T+b/cHszRk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 15:42:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8804 (0x2264) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0EBF, serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Validity Not Before: Jan 24 15:42:48 2026 GMT Not After : Jan 31 15:42:48 2026 GMT Subject: CN=6974e879-edda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:9f:2e:57:1a:7a:51:ec:ab:8f:2e:da:c8:3a: 82:3f:a0:d5:7b:93:3d:ac:8b:06:94:d9:8e:69:0f: f5:89:be:d7:8e:27:16:70:2f:be:80:9d:bd:86:a6: 84:f8:08:a5:50:47:99:f9:d4:04:4a:c9:8a:40:a5: 13:9b:1f:62:cb:a0:ca:94:b0:56:ee:f2:c3:a8:bf: 88:5b:af:36:d1:47:bd:ee:9a:8f:ff:28:a4:94:3c: 98:bc:5e:4c:7b:95:72:0d:83:be:36:1e:88:c2:d7: 72:6c:05:c6:5c:4b:57:b5:de:1c:5a:24:7d:c9:86: e8:0e:9e:62:17:d0:57:96:28:29:a5:8f:56:c6:de: 39:d4:bf:5f:39:44:1d:0b:40:c6:67:67:9d:71:05: 5f:f3:c9:13:ef:d4:d6:0f:02:a3:09:e9:57:03:e8: c4:e5:11:28:f2:b7:6b:71:38:f1:db:02:bb:63:f8: 6a:a0:47:fc:99:ca:ee:5f:f7:7c:ef:af:45:8e:a6: 01:41:4b:04:c9:43:eb:89:84:e7:40:45:d5:50:84: e3:ac:a0:07:66:05:64:eb:c7:ee:bb:b0:90:95:a7: 2d:a5:e0:b3:65:42:b1:f4:d0:5d:6f:9c:f8:f4:fd: c9:06:76:20:61:12:c7:1e:de:6d:da:69:15:bb:92: 9c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:AE:85:5B:AE:3C:C4:03:C8:40:9C:58:48:F8:7A:7F:1A:80:D0:C0 X509v3 Authority Key Identifier: keyid:3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:cc:3f:ad:d3:72:9b:12:fb:92:87:8f:53:7f:ee:65:64:7e: 55:ae:ad:96:9d:bb:6b:0d:1b:0f:13:ef:3c:38:ab:12:22:c9: dd:65:48:34:0f:c7:03:85:ed:2f:6a:fa:55:a1:52:d1:e7:31: a6:85:61:25:c7:db:6b:51:84:c0:a6:fc:ad:ee:2a:c9:d4:0a: ea:7c:bf:96:ab:c0:4b:46:cb:b0:c2:5d:b3:25:44:4f:99:8b: 1e:4f:67:d0:df:19:64:2a:16:12:ff:7b:5a:41:82:6c:33:0c: 0a:36:c7:30:22:d2:d3:d8:e1:9c:cd:76:b9:ff:14:37:e1:59: c4:d5:e2:64:b1:58:7d:12:bd:dc:43:7f:2e:6b:ae:f9:81:a4: e7:e9:fc:82:e6:43:e9:e3:c4:5e:b0:f0:94:b1:7a:39:a1:b0: 7e:af:bf:07:d5:9c:57:6c:40:ff:c4:13:03:cb:54:ca:7a:a2: 25:23:a8:33:79:76:e0:e9:1b:fe:a4:ce:78:71:a6:ba:4e:80: 7b:63:15:be:1c:7a:fd:22:cf:9a:3c:6d:8b:c0:51:f8:c4:3b: 40:49:1f:c9:f8:fb:45:3f:29:c1:fd:ed:8f:1d:04:ab:dd:ad: 27:a2:06:93:88:09:01:f5:0f:09:9e:02:26:38:26:0b:5c:18: 79:2c:2a:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICImQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBFQkYxMTAvBgNVBAUTKDNBQ0NCNjk1MzlBQzlGNDI4OEJDRDBGMEE1NDI1MEQ1 OTJGNTQwRDQwHhcNMjYwMTI0MTU0MjQ4WhcNMjYwMTMxMTU0MjQ4WjAYMRYwFAYD VQQDDA02OTc0ZTg3OS1lZGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvJ8uVxp6Ueyrjy7ayDqCP6DVe5M9rIsGlNmOaQ/1ib7XjicWcC++gJ29hqaE +AilUEeZ+dQESsmKQKUTmx9iy6DKlLBW7vLDqL+IW6820Ue97pqP/yiklDyYvF5M e5VyDYO+Nh6IwtdybAXGXEtXtd4cWiR9yYboDp5iF9BXligppY9Wxt451L9fOUQd C0DGZ2edcQVf88kT79TWDwKjCelXA+jE5REo8rdrcTjx2wK7Y/hqoEf8mcruX/d8 769FjqYBQUsEyUPriYTnQEXVUITjrKAHZgVk68fuu7CQlactpeCzZUKx9NBdb5z4 9P3JBnYgYRLHHt5t2mkVu5KcNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKiuhVuu PMQDyECcWEj4en8agNDAMB8GA1UdIwQYMBaAFDrMtpU5rJ9CiLzQ8KVCUNWS9UDU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEVCRi81Rjg0RDdEOERC ODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24wS0l2TkR3cFVKUTFaTDFR TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09zeTJsVG1zbjBLSXZORHdwVUpRMVpMMVFOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEVCRi81Rjg0RDdEOERCODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24w S0l2TkR3cFVKUTFaTDFRTlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPzD+t03KbEvuSh49Tf+5lZH5Vrq2WnbtrDRsPE+88OKsSIsndZUg0 D8cDhe0vavpVoVLR5zGmhWElx9trUYTApvyt7irJ1ArqfL+Wq8BLRsuwwl2zJURP mYseT2fQ3xlkKhYS/3taQYJsMwwKNscwItLT2OGczXa5/xQ34VnE1eJksVh9Er3c Q38ua675gaTn6fyC5kPp48ResPCUsXo5obB+r78H1ZxXbED/xBMDy1TKeqIlI6gz eXbg6Rv+pM54caa6ToB7YxW+HHr9Is+aPG2LwFH4xDtASR/J+PtFPynB/e2PHQSr 3a0nogaTiAkB9Q8JngImOCYLXBh5LCrn -----END CERTIFICATE-----Generated at Sun Jan 25 18:29:03 2026 by rpki-client