This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft File: oiiPiWTWFpqHlfL07wXg1ebhOwk.mft (raw, json) Hash identifier: zs+ZhUhMXKpe7rkxl0P7sqc156PtoH9NonQL/LMEOR4= Subject key identifier: 74:D4:54:4C:06:D0:6E:9E:F4:97:35:1B:8C:EC:B4:3C:56:0A:02:69 Authority key identifier: A2:28:8F:89:64:D6:16:9A:87:95:F2:F4:EF:05:E0:D5:E6:E1:3B:09 Certificate issuer: /CN=A91FB68C/serialNumber=A2288F8964D6169A8795F2F4EF05E0D5E6E13B09 Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft Manifest number: C0 Signing time: Sun 25 Jan 2026 05:17:56 +0000 Manifest this update: Sun 25 Jan 2026 05:17:56 +0000 Manifest next update: Sun 01 Feb 2026 05:17:56 +0000 Files and hashes: 1: oiiPiWTWFpqHlfL07wXg1ebhOwk.crl (hash: 5TlKEw7yqruh/XMwJmmkLw1p98DtE9rhdQQl5kl54EY=) 2: 965254F8278811F09217002CC4F9AE02.roa (hash: cntS2QbrLMGVNDiSYKCKZNhPNOsjrLMnvFLUFK/CvnQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.crl rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:17:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB68C, serialNumber=A2288F8964D6169A8795F2F4EF05E0D5E6E13B09 Validity Not Before: Jan 25 05:17:56 2026 GMT Not After : Feb 1 05:17:56 2026 GMT Subject: CN=6975a784-04ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:98:bf:a5:ed:fa:3e:d7:d5:ce:ce:19:d6:77: 02:da:8a:5a:c3:cc:6f:fd:dd:f8:81:e3:f2:03:cf: 69:ca:30:d1:96:3b:4c:58:a9:5d:60:7a:6f:9a:e5: d7:e6:6f:80:3e:3f:dc:d6:35:03:44:76:ac:40:2f: 01:42:f3:20:2b:b3:c9:8d:85:69:74:12:24:22:c1: b5:f6:3a:f6:f9:ae:d0:e1:80:d2:4a:b1:e6:7f:92: 9c:60:39:20:9a:50:d5:a8:e1:02:10:dc:f0:51:7d: 43:f9:f8:5b:fd:13:3a:72:4d:4d:b7:45:ba:f2:58: 19:59:f3:0f:d2:b2:e4:d9:b8:35:aa:7d:b7:16:1b: 3a:48:6c:8d:5c:dc:bc:fa:09:64:a0:f1:ed:59:d0: 21:63:b6:fa:30:a5:98:9c:83:cf:3d:f0:b8:15:22: 0b:e7:aa:a2:fc:95:af:d8:70:86:4d:c7:84:1c:d7: 4d:ef:d1:0e:d1:05:03:e3:25:0b:b5:27:00:2f:e4: d2:61:5d:4c:ad:c7:f5:0f:ab:51:c9:fb:f6:11:62: 3d:c6:b4:a8:db:7e:35:37:0f:11:1c:aa:bc:38:7a: 14:3a:c3:01:e9:d2:74:08:95:50:0e:75:02:7a:eb: 98:50:bf:6d:b6:c8:37:fa:99:72:5d:1e:17:65:58: 77:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:D4:54:4C:06:D0:6E:9E:F4:97:35:1B:8C:EC:B4:3C:56:0A:02:69 X509v3 Authority Key Identifier: keyid:A2:28:8F:89:64:D6:16:9A:87:95:F2:F4:EF:05:E0:D5:E6:E1:3B:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:33:97:d7:a0:03:6e:06:17:08:2a:70:b0:c5:67:58:31:f5: 7e:e0:36:db:79:0c:4c:8d:8b:f4:53:b9:85:6d:ae:ac:f5:09: 17:8c:16:b5:8f:eb:dc:bd:d5:72:cb:04:a0:f7:36:a1:c8:a2: b6:d7:6b:06:9e:c3:24:19:9a:f4:71:95:e2:22:fa:1a:bd:50: 27:99:1b:e9:b5:6f:6e:cd:d9:66:8e:17:ef:79:82:9a:c7:fb: c2:de:1c:05:ab:9f:86:20:73:c4:14:ac:4e:d1:a6:3f:60:45: ba:3e:a5:06:ee:5e:58:e8:9c:37:f5:0d:ae:f7:7f:01:f1:2a: 94:68:80:d3:9c:7f:39:fd:7e:b4:e9:f8:e1:4c:24:75:3f:78: c8:26:9d:07:53:75:36:a6:51:58:27:f0:19:13:c9:30:97:d2: e1:c9:16:bd:e2:fa:ea:92:a6:b7:f9:b1:f2:3f:7d:9e:91:3a: 5f:3f:af:93:29:28:dc:fa:9e:ca:d6:d3:17:94:d9:76:99:5b: 0a:8f:a2:19:88:17:ed:ee:ce:af:cb:b9:4f:b1:de:d0:ab:ff: 91:a6:b4:ca:63:d8:79:48:18:1f:f3:49:76:96:8b:41:c3:bf: a6:fc:00:cd:b3:d4:ea:49:74:48:13:f3:3a:3c:2e:a6:d5:2e: 13:6f:59:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI2OEMxMTAvBgNVBAUTKEEyMjg4Rjg5NjRENjE2OUE4Nzk1RjJGNEVGMDVFMEQ1 RTZFMTNCMDkwHhcNMjYwMTI1MDUxNzU2WhcNMjYwMjAxMDUxNzU2WjAYMRYwFAYD VQQDDA02OTc1YTc4NC0wNGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnJi/pe36PtfVzs4Z1ncC2opaw8xv/d34gePyA89pyjDRljtMWKldYHpvmuXX 5m+APj/c1jUDRHasQC8BQvMgK7PJjYVpdBIkIsG19jr2+a7Q4YDSSrHmf5KcYDkg mlDVqOECENzwUX1D+fhb/RM6ck1Nt0W68lgZWfMP0rLk2bg1qn23Fhs6SGyNXNy8 +glkoPHtWdAhY7b6MKWYnIPPPfC4FSIL56qi/JWv2HCGTceEHNdN79EO0QUD4yUL tScAL+TSYV1Mrcf1D6tRyfv2EWI9xrSo2341Nw8RHKq8OHoUOsMB6dJ0CJVQDnUC euuYUL9ttsg3+plyXR4XZVh35wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHTUVEwG 0G6e9Jc1G4zstDxWCgJpMB8GA1UdIwQYMBaAFKIoj4lk1haah5Xy9O8F4NXm4TsJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjY4Qy8xN0QxMDNBOEVB QjIxMUVGODQ2RjEzMzdDNEY5QUUwMi9vaWlQaVdUV0ZwcUhsZkwwN3dYZzFlYmhP d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29paVBpV1RXRnBxSGxmTDA3d1hnMWViaE93ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjY4Qy8xN0QxMDNBOEVBQjIxMUVGODQ2RjEzMzdDNEY5QUUwMi9vaWlQaVdUV0Zw cUhsZkwwN3dYZzFlYmhPd2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOM5fXoANuBhcIKnCwxWdYMfV+4DbbeQxMjYv0U7mFba6s9QkXjBa1 j+vcvdVyywSg9zahyKK212sGnsMkGZr0cZXiIvoavVAnmRvptW9uzdlmjhfveYKa x/vC3hwFq5+GIHPEFKxO0aY/YEW6PqUG7l5Y6Jw39Q2u938B8SqUaIDTnH85/X60 6fjhTCR1P3jIJp0HU3U2plFYJ/AZE8kwl9LhyRa94vrqkqa3+bHyP32ekTpfP6+T KSjc+p7K1tMXlNl2mVsKj6IZiBft7s6vy7lPsd7Qq/+RprTKY9h5SBgf80l2lotB w7+m/ADNs9TqSXRIE/M6PC6m1S4Tb1kd -----END CERTIFICATE-----Generated at Sun Jan 25 12:35:19 2026 by rpki-client