This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft File: Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft (raw, json) Hash identifier: BJryuQoH5/wpGcosXMlKGkVArVzpKz0q+Ss2Ec0/3qw= Subject key identifier: F7:45:07:3C:F7:2E:24:9F:6D:21:11:F6:F1:AF:85:D7:37:A9:A4:EF Authority key identifier: 3A:AF:FB:B7:EA:4A:60:D7:7B:B4:42:84:AC:BF:25:C3:98:BA:9A:6D Certificate issuer: /CN=A91F8E3D/serialNumber=3AAFFBB7EA4A60D77BB44284ACBF25C398BA9A6D Certificate serial: 04F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq_7t-pKYNd7tEKErL8lw5i6mm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft Manifest number: 04DB Signing time: Sat 24 Jan 2026 23:06:20 +0000 Manifest this update: Sat 24 Jan 2026 23:06:20 +0000 Manifest next update: Sat 31 Jan 2026 23:06:20 +0000 Files and hashes: 1: Oq_7t-pKYNd7tEKErL8lw5i6mm0.crl (hash: pu0624Yc3KzLXEJsjPR18SW6N2TG7SbDuQMF0v//HtU=) 2: FF9D89B6AB4C11ECB0C94F67C4F9AE02.roa (hash: uWglw8OueH0Asw0T6kf62YSmlBsJEbupukPa8GvgWcE=) 3: 23AF59F0EC5E11F0BAE87BA74C6F56BC.roa (hash: VHUy0d/TsV+8Ry4/AYEMtN2/lqRO0uQWzoEF5RxJ1W4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.crl rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq_7t-pKYNd7tEKErL8lw5i6mm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 23:06:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1265 (0x4f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E3D, serialNumber=3AAFFBB7EA4A60D77BB44284ACBF25C398BA9A6D Validity Not Before: Jan 24 23:06:20 2026 GMT Not After : Jan 31 23:06:20 2026 GMT Subject: CN=6975506c-7c8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f6:e9:dd:b0:26:c2:60:79:e0:b4:42:77:12: 7d:cd:f0:86:f7:e5:81:4e:66:17:0e:97:71:ed:98: f2:fb:99:f9:c0:a6:00:6c:7b:e7:f2:db:b6:95:50: 0f:c6:84:cb:5a:2c:61:cf:cd:47:32:43:87:35:c0: 5b:87:c3:45:90:43:7f:fa:82:dd:06:cf:26:cf:a9: f7:1c:ae:ba:82:85:b8:8c:df:74:e7:11:91:5c:6f: 3b:57:f8:03:78:4b:8e:63:10:87:54:61:9c:ac:fc: 34:c4:df:8e:fd:3f:c3:38:c9:72:96:b4:af:ed:8a: 65:ac:9b:c4:d6:f7:55:e3:a0:74:69:6e:35:aa:7a: ce:f8:73:7a:31:c4:97:2e:ab:cb:56:15:b6:fa:26: 13:4a:f1:e6:79:a7:c2:11:c5:fd:e6:ca:ac:f5:3d: 27:9f:26:1b:82:93:74:b0:70:b6:a7:0d:76:87:46: 8b:fa:73:21:3c:f6:52:8f:54:ff:f7:5f:35:b0:8d: 72:6b:e3:85:32:0f:f4:a1:75:a4:8b:d4:af:b5:a6: f2:ce:a1:48:66:09:8e:bb:44:7a:c4:df:a5:3b:00: 69:fd:e0:f9:e7:ce:bc:d7:91:b6:7c:f2:d7:00:0d: e2:3b:57:f5:f8:8b:c5:e9:b2:a9:66:9a:b5:e1:e0: da:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:45:07:3C:F7:2E:24:9F:6D:21:11:F6:F1:AF:85:D7:37:A9:A4:EF X509v3 Authority Key Identifier: keyid:3A:AF:FB:B7:EA:4A:60:D7:7B:B4:42:84:AC:BF:25:C3:98:BA:9A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq_7t-pKYNd7tEKErL8lw5i6mm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:9e:6e:0b:17:f9:b0:5d:cb:c1:93:dd:f5:2a:a5:7c:ca:ff: 7d:19:52:dd:94:c9:71:e3:af:e7:82:ac:bf:06:03:dc:6c:fa: d5:ae:b2:2c:40:d1:68:28:04:86:02:6d:da:29:a3:be:9c:69: dc:6c:cf:59:15:eb:d5:10:ab:1e:79:43:19:44:20:a5:78:03: 2c:bb:73:03:69:f3:20:7e:87:2f:4a:2e:14:e6:42:e3:d4:f9: e8:22:c9:41:5b:cb:d1:ae:3c:73:16:32:e5:1a:ce:57:2d:b8: 41:7f:cb:57:96:25:6c:50:10:74:e4:1d:2d:a8:19:b5:a2:56: 2e:48:e4:b0:7c:b5:d7:74:a9:fb:dd:9a:8a:6f:8b:37:e1:27: 7f:c6:0e:c4:6b:12:1e:49:c9:8e:b2:a7:a1:c0:4e:f5:2d:a0: fe:49:cc:75:b6:f0:a5:55:0a:9a:61:57:6e:63:21:f6:2d:7a: 45:18:64:d9:7c:16:73:e1:6e:83:5f:96:4f:a0:4d:65:a3:df: e3:f4:a6:32:c4:08:99:eb:04:a2:47:a3:0b:4c:c9:86:8e:da: bf:23:34:02:e9:a2:16:1d:b5:e7:4a:b2:45:31:d5:97:0f:ba: 6a:6b:b5:1c:2f:20:9b:fa:1d:57:97:cd:90:1e:34:24:a9:b9: eb:f3:a5:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RjhFM0QxMTAvBgNVBAUTKDNBQUZGQkI3RUE0QTYwRDc3QkI0NDI4NEFDQkYyNUMz OThCQTlBNkQwHhcNMjYwMTI0MjMwNjIwWhcNMjYwMTMxMjMwNjIwWjAYMRYwFAYD VQQDDA02OTc1NTA2Yy03YzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Pbp3bAmwmB54LRCdxJ9zfCG9+WBTmYXDpdx7Zjy+5n5wKYAbHvn8tu2lVAP xoTLWixhz81HMkOHNcBbh8NFkEN/+oLdBs8mz6n3HK66goW4jN905xGRXG87V/gD eEuOYxCHVGGcrPw0xN+O/T/DOMlylrSv7YplrJvE1vdV46B0aW41qnrO+HN6McSX LqvLVhW2+iYTSvHmeafCEcX95sqs9T0nnyYbgpN0sHC2pw12h0aL+nMhPPZSj1T/ 9181sI1ya+OFMg/0oXWki9SvtabyzqFIZgmOu0R6xN+lOwBp/eD5586815G2fPLX AA3iO1f1+IvF6bKpZpq14eDaiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPdFBzz3 LiSfbSER9vGvhdc3qaTvMB8GA1UdIwQYMBaAFDqv+7fqSmDXe7RChKy/JcOYuppt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEUzRC8wQUI0Mzg2QTU4 NEUxMUVDOUZDRjE3NzlDNEY5QUUwMi9PcV83dC1wS1lOZDd0RUtFckw4bHc1aTZt bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xXzd0LXBLWU5kN3RFS0VyTDhsdzVpNm1tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEUzRC8wQUI0Mzg2QTU4NEUxMUVDOUZDRjE3NzlDNEY5QUUwMi9PcV83dC1wS1lO ZDd0RUtFckw4bHc1aTZtbTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvnm4LF/mwXcvBk931KqV8yv99GVLdlMlx46/ngqy/BgPcbPrVrrIs QNFoKASGAm3aKaO+nGncbM9ZFevVEKseeUMZRCCleAMsu3MDafMgfocvSi4U5kLj 1PnoIslBW8vRrjxzFjLlGs5XLbhBf8tXliVsUBB05B0tqBm1olYuSOSwfLXXdKn7 3ZqKb4s34Sd/xg7EaxIeScmOsqehwE71LaD+Scx1tvClVQqaYVduYyH2LXpFGGTZ fBZz4W6DX5ZPoE1lo9/j9KYyxAiZ6wSiR6MLTMmGjtq/IzQC6aIWHbXnSrJFMdWX D7pqa7UcLyCb+h1Xl82QHjQkqbnr86Uv -----END CERTIFICATE-----Generated at Sun Jan 25 02:59:01 2026 by rpki-client