This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB297/BBF28DDAD99511F09A18623B64D3641D/oPy-m8tDKKnovMofXhSWrMLOLtk.mft File: oPy-m8tDKKnovMofXhSWrMLOLtk.mft (raw, json) Hash identifier: +xAckm47wVAnv1OsESgghDyHqSgTUAt9acoIVfzQqnM= Subject key identifier: 66:7A:9C:C4:E6:BD:23:E0:45:F7:07:D9:01:EE:0B:1C:8E:56:79:55 Authority key identifier: A0:FC:BE:9B:CB:43:28:A9:E8:BC:CA:1F:5E:14:96:AC:C2:CE:2E:D9 Certificate issuer: /CN=A91FB297/serialNumber=A0FCBE9BCB4328A9E8BCCA1F5E1496ACC2CE2ED9 Certificate serial: 17 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oPy-m8tDKKnovMofXhSWrMLOLtk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB297/BBF28DDAD99511F09A18623B64D3641D/oPy-m8tDKKnovMofXhSWrMLOLtk.mft Manifest number: 17 Signing time: Sun 25 Jan 2026 03:02:13 +0000 Manifest this update: Sun 25 Jan 2026 03:02:13 +0000 Manifest next update: Sun 01 Feb 2026 03:02:13 +0000 Files and hashes: 1: oPy-m8tDKKnovMofXhSWrMLOLtk.crl (hash: 9J0Zo0NtIdw8FBbe8jmfIRwO3A5ksjN1zdEbx2Wf+34=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB297/BBF28DDAD99511F09A18623B64D3641D/oPy-m8tDKKnovMofXhSWrMLOLtk.crl rsync://rpki.apnic.net/member_repository/A91FB297/BBF28DDAD99511F09A18623B64D3641D/oPy-m8tDKKnovMofXhSWrMLOLtk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oPy-m8tDKKnovMofXhSWrMLOLtk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 03:02:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB297, serialNumber=A0FCBE9BCB4328A9E8BCCA1F5E1496ACC2CE2ED9 Validity Not Before: Jan 25 03:02:13 2026 GMT Not After : Feb 1 03:02:13 2026 GMT Subject: CN=697587b5-ef90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b4:6a:35:7b:0e:6c:b6:c0:e5:53:1f:f2:40: 22:64:f7:3a:70:41:5f:53:ea:79:46:d6:2e:1e:9a: 46:b5:2d:a3:41:54:b5:46:ac:05:b9:d5:6b:52:90: 29:53:33:0b:3b:d1:74:c5:ce:26:41:29:a7:e6:ea: 7b:d3:ed:db:73:8c:c3:0e:19:84:d5:c9:ab:06:c9: 0e:21:eb:0b:d8:73:29:c0:69:9b:3d:82:df:b8:ff: 88:f2:81:98:59:7e:2c:09:68:95:d7:89:5b:0a:76: 44:03:b9:de:de:be:c5:40:a7:1c:6f:af:5d:d1:8e: d6:65:56:41:a3:47:b2:fb:ed:ec:b4:72:82:e8:d9: ec:1f:47:54:31:b5:ef:7d:5e:1f:a6:ef:75:0c:b3: f7:fe:a9:5e:a7:87:52:01:6d:ce:03:9c:f1:a5:fe: f0:3f:97:ff:7f:fd:38:7b:f7:05:62:79:44:3e:4c: e5:e5:d4:0d:c5:bf:18:5e:87:a2:9e:46:5d:67:31: 43:25:a4:95:59:a4:76:97:69:a6:66:09:fa:26:4d: eb:51:4c:89:cf:6e:4b:92:5e:23:68:83:1f:76:c8: c9:bb:a5:7c:f4:94:09:13:bb:b0:b2:52:48:cf:12: 33:97:75:c6:10:4c:16:90:2c:80:e6:ea:34:a3:ce: df:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:7A:9C:C4:E6:BD:23:E0:45:F7:07:D9:01:EE:0B:1C:8E:56:79:55 X509v3 Authority Key Identifier: keyid:A0:FC:BE:9B:CB:43:28:A9:E8:BC:CA:1F:5E:14:96:AC:C2:CE:2E:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB297/BBF28DDAD99511F09A18623B64D3641D/oPy-m8tDKKnovMofXhSWrMLOLtk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oPy-m8tDKKnovMofXhSWrMLOLtk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB297/BBF28DDAD99511F09A18623B64D3641D/oPy-m8tDKKnovMofXhSWrMLOLtk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:9d:91:e0:cd:5e:69:01:46:13:4d:9f:e6:b3:61:10:4f:be: 21:1e:ee:64:6e:3f:94:60:56:5e:f5:5c:81:a6:a3:7c:f7:c9: 57:3d:36:e4:18:91:bc:ee:60:94:90:ef:73:79:3d:3a:25:3d: e2:a1:be:84:18:f1:d3:5d:0a:7b:b5:ea:f8:d0:7d:bd:36:14: d1:35:c2:09:e8:79:fa:6a:a9:5c:4f:49:c8:ba:c5:82:1f:a2: f1:77:9d:c3:f6:1f:e0:57:96:2e:0f:33:00:92:ff:c9:e5:f0: 80:99:28:9d:dd:f0:69:53:8e:44:3b:f0:8b:5e:fb:23:e6:4c: 44:a8:f1:d7:d6:6a:db:6f:03:9e:f4:75:6f:8e:41:c3:5c:40: ff:f2:a0:4f:7c:74:63:aa:11:c5:33:6f:d7:14:e2:d4:1f:3b: de:59:5e:0e:a5:75:92:5f:03:e2:25:f1:28:2a:11:e1:66:41: 06:30:aa:5a:22:2f:99:82:f6:39:f7:03:25:5a:21:18:3e:ce: 20:ad:c8:95:fa:f8:4a:cc:6f:b0:36:c4:9b:d2:92:14:a3:ff: 28:fd:3a:a0:a5:ce:28:27:5b:16:66:d4:d9:07:eb:f5:d3:b5: 09:7f:63:ca:72:6e:5d:77:93:c0:a5:67:e1:cb:71:9d:c3:db: ba:c5:42:a0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QjI5NzExMC8GA1UEBRMoQTBGQ0JFOUJDQjQzMjhBOUU4QkNDQTFGNUUxNDk2QUND MkNFMkVEOTAeFw0yNjAxMjUwMzAyMTNaFw0yNjAyMDEwMzAyMTNaMBgxFjAUBgNV BAMMDTY5NzU4N2I1LWVmOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCotGo1ew5stsDlUx/yQCJk9zpwQV9T6nlG1i4emka1LaNBVLVGrAW51WtSkClT Mws70XTFziZBKafm6nvT7dtzjMMOGYTVyasGyQ4h6wvYcynAaZs9gt+4/4jygZhZ fiwJaJXXiVsKdkQDud7evsVApxxvr13RjtZlVkGjR7L77ey0coLo2ewfR1Qxte99 Xh+m73UMs/f+qV6nh1IBbc4DnPGl/vA/l/9//Th79wVieUQ+TOXl1A3Fvxheh6Ke Rl1nMUMlpJVZpHaXaaZmCfomTetRTInPbkuSXiNogx92yMm7pXz0lAkTu7CyUkjP EjOXdcYQTBaQLIDm6jSjzt+dAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZnqcxOa9 I+BF9wfZAe4LHI5WeVUwHwYDVR0jBBgwFoAUoPy+m8tDKKnovMofXhSWrMLOLtkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCMjk3L0JCRjI4RERBRDk5 NTExRjA5QTE4NjIzQjY0RDM2NDFEL29QeS1tOHRES0tub3ZNb2ZYaFNXck1MT0x0 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvb1B5LW04dERLS25vdk1vZlhoU1dyTUxPTHRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZC Mjk3L0JCRjI4RERBRDk5NTExRjA5QTE4NjIzQjY0RDM2NDFEL29QeS1tOHRES0tu b3ZNb2ZYaFNXck1MT0x0ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEydkeDNXmkBRhNNn+azYRBPviEe7mRuP5RgVl71XIGmo3z3yVc9NuQY kbzuYJSQ73N5PTolPeKhvoQY8dNdCnu16vjQfb02FNE1wgnoefpqqVxPSci6xYIf ovF3ncP2H+BXli4PMwCS/8nl8ICZKJ3d8GlTjkQ78Ite+yPmTESo8dfWattvA570 dW+OQcNcQP/yoE98dGOqEcUzb9cU4tQfO95ZXg6ldZJfA+Il8SgqEeFmQQYwqloi L5mC9jn3AyVaIRg+ziCtyJX6+ErMb7A2xJvSkhSj/yj9OqClzignWxZm1NkH6/XT tQl/Y8pybl13k8ClZ+HLcZ3D27rFQqA= -----END CERTIFICATE-----Generated at Mon Jan 26 01:00:23 2026 by rpki-client