This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft File: oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft (raw, json) Hash identifier: F5UlTTKrodx17DGpqQYUi87M7VDHUCaIfaeNTcfZeRs= Subject key identifier: 5C:B2:8F:B1:01:34:AA:50:4B:51:A1:D3:2C:F7:62:21:2E:F1:4C:98 Authority key identifier: A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 Certificate issuer: /CN=A91FA024/serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Certificate serial: 0859 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft Manifest number: 0851 Signing time: Sat 24 Jan 2026 20:07:28 +0000 Manifest this update: Sat 24 Jan 2026 20:07:28 +0000 Manifest next update: Sat 31 Jan 2026 20:07:28 +0000 Files and hashes: 1: oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl (hash: nql8Bjrq3uL8halq8Mmc/yXD6WpWPvXpRpBlpVIWWyM=) 2: FE1FDB12BCD011EC8283681EC4F9AE02.roa (hash: 2wuY0yDKdmJN9ZQKTlSwz2efwa28k+u+9dd3owV3hlg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 20:07:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2137 (0x859) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA024, serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Validity Not Before: Jan 24 20:07:28 2026 GMT Not After : Jan 31 20:07:28 2026 GMT Subject: CN=69752680-0d7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:8a:f9:9a:4c:74:35:2b:64:29:9b:7d:d6:82: 2e:8b:30:73:b7:bc:80:34:72:a1:92:94:31:4e:b0: e9:62:fc:cf:79:dc:64:8c:2b:25:7a:de:9d:4e:ce: 08:49:e2:05:fa:15:fa:ef:74:48:47:da:b0:2e:4a: 26:65:bd:b3:0b:2e:bd:c8:4c:5c:a4:36:49:01:3d: b3:52:b0:5f:90:99:8a:c7:57:10:fd:d1:23:74:8c: ff:4d:5e:27:b6:7d:29:39:af:96:ef:25:77:08:0a: 52:a4:85:3b:e3:69:ce:90:4a:39:61:a0:23:64:b6: a3:c6:bb:d6:d7:85:6b:b9:f8:b1:4d:e1:24:f1:78: d5:ba:75:36:72:79:08:64:70:34:60:1f:cc:01:62: 43:6f:03:0d:ee:62:4a:1a:8d:16:52:64:2e:28:76: 92:4e:b3:fe:64:79:02:c8:2c:98:09:93:ef:74:fc: fb:9f:b4:39:29:55:bc:00:16:3b:3c:b2:0b:88:6d: d7:7c:e8:1a:7b:99:2a:78:d6:1b:c6:44:fe:97:70: 2f:d0:45:33:79:ff:d8:3c:71:30:47:96:76:f9:4c: d9:51:cf:c4:06:79:ed:f0:82:3a:22:80:56:87:b5: df:76:9c:77:fd:35:a6:e6:12:88:b5:a9:b6:30:f8: 21:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:B2:8F:B1:01:34:AA:50:4B:51:A1:D3:2C:F7:62:21:2E:F1:4C:98 X509v3 Authority Key Identifier: keyid:A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:71:bd:ef:24:76:ae:7b:b8:81:f7:34:53:c9:82:df:6e:f6: 4f:78:8d:a4:04:a8:29:2b:b6:a7:2c:40:bb:0c:56:8d:db:85: 65:dd:8a:e8:0f:d9:48:4c:a0:c1:ca:19:53:bc:b6:92:65:6e: 5b:3f:80:b1:fb:b7:6a:33:1c:8f:79:ee:be:b3:b5:2d:09:b3: 2f:e1:4b:21:4f:b2:4a:d6:e9:37:bf:98:38:2f:e7:41:c7:10: 03:04:b3:f5:b9:95:18:cb:d5:1a:75:27:29:b1:98:05:49:fd: 44:67:bb:08:9d:03:42:68:ab:84:a8:d2:c7:3a:3f:8b:4f:4b: f3:15:5f:b6:05:69:d4:d3:54:68:af:ee:11:82:11:07:a6:50: 96:3c:23:00:41:14:73:46:44:a6:83:e7:fc:d4:7a:ee:5e:bb: 17:9a:bb:02:ec:41:c2:dc:f0:20:ac:66:07:1f:d1:9e:73:99: a3:cc:a6:c2:9d:a8:e4:41:5d:64:ec:2b:d4:19:a1:df:cd:f5: d5:f8:f2:c3:6c:88:06:62:0e:8f:52:25:64:c4:05:da:2f:38: 2c:f2:8a:7e:37:08:71:cf:17:3e:49:29:8a:30:ab:22:84:f1: a1:f1:c5:28:74:fa:a6:89:db:54:ac:0e:3b:72:16:27:20:9b: 07:7e:30:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkEwMjQxMTAvBgNVBAUTKEEwQUM0MjdFOTU3QjM3NEQwMjY3RkE3NjQ4REQzRkY4 NTcwMkRBQjEwHhcNMjYwMTI0MjAwNzI4WhcNMjYwMTMxMjAwNzI4WjAYMRYwFAYD VQQDDA02OTc1MjY4MC0wZDdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArYr5mkx0NStkKZt91oIuizBzt7yANHKhkpQxTrDpYvzPedxkjCslet6dTs4I SeIF+hX673RIR9qwLkomZb2zCy69yExcpDZJAT2zUrBfkJmKx1cQ/dEjdIz/TV4n tn0pOa+W7yV3CApSpIU742nOkEo5YaAjZLajxrvW14VrufixTeEk8XjVunU2cnkI ZHA0YB/MAWJDbwMN7mJKGo0WUmQuKHaSTrP+ZHkCyCyYCZPvdPz7n7Q5KVW8ABY7 PLILiG3XfOgae5kqeNYbxkT+l3Av0EUzef/YPHEwR5Z2+UzZUc/EBnnt8II6IoBW h7Xfdpx3/TWm5hKItam2MPghbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFyyj7EB NKpQS1Gh0yz3YiEu8UyYMB8GA1UdIwQYMBaAFKCsQn6VezdNAmf6dkjdP/hXAtqx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTAyNC9EMzNBNDc5NEYx ODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04wMENaX3AyU04wXy1GY0My ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LeENmcFY3TjAwQ1pfcDJTTjBfLUZjQzJyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTAyNC9EMzNBNDc5NEYxODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04w MENaX3AyU04wXy1GY0MyckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfcb3vJHaue7iB9zRTyYLfbvZPeI2kBKgpK7anLEC7DFaN24Vl3Yro D9lITKDByhlTvLaSZW5bP4Cx+7dqMxyPee6+s7UtCbMv4UshT7JK1uk3v5g4L+dB xxADBLP1uZUYy9UadScpsZgFSf1EZ7sInQNCaKuEqNLHOj+LT0vzFV+2BWnU01Ro r+4RghEHplCWPCMAQRRzRkSmg+f81HruXrsXmrsC7EHC3PAgrGYHH9Gec5mjzKbC najkQV1k7CvUGaHfzfXV+PLDbIgGYg6PUiVkxAXaLzgs8op+Nwhxzxc+SSmKMKsi hPGh8cUodPqmidtUrA47chYnIJsHfjCz -----END CERTIFICATE-----Generated at Sun Jan 25 10:45:11 2026 by rpki-client