This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft File: RiOppNLqhemPtaEaDSywgDiHjw8.mft (raw, json) Hash identifier: SEmdwUKzGNaVZcWGL/IiQ/VkGmVML1qqxz0WjKZOIwA= Subject key identifier: AD:8A:A9:28:44:B0:DD:81:60:36:FD:0E:61:CF:9B:E1:E8:B9:A5:9E Authority key identifier: 46:23:A9:A4:D2:EA:85:E9:8F:B5:A1:1A:0D:2C:B0:80:38:87:8F:0F Certificate issuer: /CN=A9128DE9/serialNumber=4623A9A4D2EA85E98FB5A11A0D2CB08038878F0F Certificate serial: 0C4C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft Manifest number: 0C45 Signing time: Fri 16 Jan 2026 18:16:17 +0000 Manifest this update: Fri 16 Jan 2026 18:16:16 +0000 Manifest next update: Fri 23 Jan 2026 18:16:16 +0000 Files and hashes: 1: RiOppNLqhemPtaEaDSywgDiHjw8.crl (hash: 4wVmK0jkUVI5UI/uvEE5T5BJikUpzj+nQmwrDR1GcX8=) 2: 75E6DD481BDA11EAB3F45D44C4F9AE02.roa (hash: CqtlIV8oyS/ltG/c7wrvUbZ8dS3VADjXiEg/AjA1Uu4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.crl rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 Jan 2026 18:16:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3148 (0xc4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128DE9, serialNumber=4623A9A4D2EA85E98FB5A11A0D2CB08038878F0F Validity Not Before: Jan 16 18:16:16 2026 GMT Not After : Jan 23 18:16:16 2026 GMT Subject: CN=696a8071-9bcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:05:7d:d2:22:6c:1a:bd:2c:fa:bf:71:e8:c3: 86:9e:f7:71:13:f3:f0:ff:ca:53:26:19:1e:ce:45: 10:cb:40:c2:50:a0:63:de:65:2c:16:c6:79:67:fe: e7:2e:6c:e8:fe:2f:07:28:ab:88:cb:54:7d:0d:4a: 5a:da:72:51:0a:b8:42:3b:d3:74:82:d0:5b:47:4c: c9:0d:67:93:7f:26:02:b4:5e:da:f3:50:b5:fc:22: bf:44:dd:24:86:61:50:9b:a8:c6:ad:4e:c3:6a:69: 75:97:97:48:4e:10:50:14:39:f3:6e:59:fe:51:28: 05:cc:ab:9c:51:03:d2:41:05:29:a4:2f:7f:9a:80: 6f:3f:f2:11:6d:6e:0f:10:a3:fa:7b:74:a8:25:3f: c1:77:77:7f:86:0d:61:06:ae:8b:35:02:6e:f9:aa: 05:dc:04:46:db:3a:7a:a3:b0:49:61:48:94:af:3d: e7:9d:f4:ac:01:50:dd:43:36:44:9d:8d:04:aa:da: 37:34:70:a0:bc:da:8f:99:af:18:5e:48:f9:8b:e2: 71:54:0a:27:7e:1e:28:3a:86:cf:96:31:33:82:38: 0a:15:05:94:20:93:62:08:ab:e2:8d:92:c6:00:3f: 40:d7:e2:7c:d3:c5:be:87:a7:8b:54:68:d5:b0:c8: b5:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:8A:A9:28:44:B0:DD:81:60:36:FD:0E:61:CF:9B:E1:E8:B9:A5:9E X509v3 Authority Key Identifier: keyid:46:23:A9:A4:D2:EA:85:E9:8F:B5:A1:1A:0D:2C:B0:80:38:87:8F:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:33:aa:c4:de:aa:d2:77:a4:89:09:45:1d:27:1e:6c:0e:c9: ca:7d:fc:26:57:fc:85:88:eb:8f:31:da:e5:8b:dc:b8:84:94: de:b3:69:d2:42:6c:be:32:10:c6:b8:9d:06:e0:a5:48:96:13: 92:50:93:0d:e8:13:5c:9f:d5:38:88:25:d4:a0:b9:e4:69:83: c0:f2:d4:ae:61:09:e2:dd:54:d1:fe:3c:79:9c:64:f8:a1:eb: 95:9b:43:a1:33:4c:0e:90:92:7d:f7:76:4e:f8:42:73:8f:d2: ee:5b:da:e5:1b:64:ce:d1:49:81:be:5d:09:05:63:70:cf:42: 07:dd:c9:7e:a7:1b:dc:24:99:db:d8:bf:00:0a:4d:8d:de:db: 2c:3a:e3:35:b3:fc:2a:48:01:15:00:ef:27:e7:59:44:6e:0c: 86:b9:54:78:b6:46:35:19:dd:8b:2f:31:9e:91:77:ef:d2:06: 67:f4:06:74:e5:be:a7:32:03:1b:6d:f4:4a:21:79:ff:9e:78: 30:d5:63:f7:88:07:a1:1b:fc:4b:2a:e3:4e:bf:bc:9f:23:39: b4:d4:e3:c6:68:6b:90:45:ec:f8:1a:6f:35:fb:ed:41:57:d0: 40:f5:f3:f8:5f:f0:aa:df:d9:13:6b:2b:2f:be:ab:b9:5a:81: 22:f1:b3:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhERTkxMTAvBgNVBAUTKDQ2MjNBOUE0RDJFQTg1RTk4RkI1QTExQTBEMkNCMDgw Mzg4NzhGMEYwHhcNMjYwMTE2MTgxNjE2WhcNMjYwMTIzMTgxNjE2WjAYMRYwFAYD VQQDDA02OTZhODA3MS05YmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAowV90iJsGr0s+r9x6MOGnvdxE/Pw/8pTJhkezkUQy0DCUKBj3mUsFsZ5Z/7n Lmzo/i8HKKuIy1R9DUpa2nJRCrhCO9N0gtBbR0zJDWeTfyYCtF7a81C1/CK/RN0k hmFQm6jGrU7Daml1l5dIThBQFDnzbln+USgFzKucUQPSQQUppC9/moBvP/IRbW4P EKP6e3SoJT/Bd3d/hg1hBq6LNQJu+aoF3ARG2zp6o7BJYUiUrz3nnfSsAVDdQzZE nY0Eqto3NHCgvNqPma8YXkj5i+JxVAonfh4oOobPljEzgjgKFQWUIJNiCKvijZLG AD9A1+J808W+h6eLVGjVsMi17wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK2KqShE sN2BYDb9DmHPm+HouaWeMB8GA1UdIwQYMBaAFEYjqaTS6oXpj7WhGg0ssIA4h48P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOERFOS9EMDA0OUY4NjFC RDUxMUVBODBDQkNGMzZDNEY5QUUwMi9SaU9wcE5McWhlbVB0YUVhRFN5d2dEaUhq dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JpT3BwTkxxaGVtUHRhRWFEU3l3Z0RpSGp3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OERFOS9EMDA0OUY4NjFCRDUxMUVBODBDQkNGMzZDNEY5QUUwMi9SaU9wcE5McWhl bVB0YUVhRFN5d2dEaUhqdzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUM6rE3qrSd6SJCUUdJx5sDsnKffwmV/yFiOuPMdrli9y4hJTes2nS Qmy+MhDGuJ0G4KVIlhOSUJMN6BNcn9U4iCXUoLnkaYPA8tSuYQni3VTR/jx5nGT4 oeuVm0OhM0wOkJJ993ZO+EJzj9LuW9rlG2TO0UmBvl0JBWNwz0IH3cl+pxvcJJnb 2L8ACk2N3tssOuM1s/wqSAEVAO8n51lEbgyGuVR4tkY1Gd2LLzGekXfv0gZn9AZ0 5b6nMgMbbfRKIXn/nngw1WP3iAehG/xLKuNOv7yfIzm01OPGaGuQRez4Gm81++1B V9BA9fP4X/Cq39kTaysvvqu5WoEi8bOe -----END CERTIFICATE-----Generated at Sun Jan 18 05:39:59 2026 by rpki-client