This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft File: OXH34h0IySQ6u0A_gDBkv3iy2IA.mft (raw, json) Hash identifier: 6ndm/0VTOElLdhjDcf/Nh5nAa8BPliAI+pW9QVJBAkM= Subject key identifier: 75:A4:E6:AA:0F:23:49:84:00:93:1C:06:E2:12:1C:BA:93:0A:CA:4B Authority key identifier: 39:71:F7:E2:1D:08:C9:24:3A:BB:40:3F:80:30:64:BF:78:B2:D8:80 Certificate issuer: /CN=A913D46F/serialNumber=3971F7E21D08C9243ABB403F803064BF78B2D880 Certificate serial: 0D2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft Manifest number: 0D00 Signing time: Mon 26 Jan 2026 17:48:12 +0000 Manifest this update: Mon 26 Jan 2026 17:48:12 +0000 Manifest next update: Mon 02 Feb 2026 17:48:12 +0000 Files and hashes: 1: OXH34h0IySQ6u0A_gDBkv3iy2IA.crl (hash: jE/SEBUE86BNQjh2P9JWgzTmk2MAgU95guW+11ptrAk=) 2: 92F8F6D042DA11ED93029A6AC4F9AE02.roa (hash: 6avRjwNItYCzxG+yq5MB2LMVNEbgrnYskEIlXomTLWc=) 3: B0B722BEFA4A11EDA47C091DC4F9AE02.roa (hash: whIj4TZ+yyw/VbL0wLVNZHdMGGpE4Mabv0G6g01cTLE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.crl rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Feb 2026 17:48:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3375 (0xd2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D46F, serialNumber=3971F7E21D08C9243ABB403F803064BF78B2D880 Validity Not Before: Jan 26 17:48:12 2026 GMT Not After : Feb 2 17:48:12 2026 GMT Subject: CN=6977a8dc-e066 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:9e:be:0f:00:7f:84:59:d8:81:03:2e:a0:f0: ab:5b:7c:8b:d2:92:67:e1:9a:e6:e2:71:57:6f:6f: 90:ca:a6:bd:33:1b:9a:5a:77:5c:e5:df:26:3b:9e: ec:e5:e2:81:88:15:9d:18:0e:15:8d:bc:5a:d7:a6: 83:00:e6:d4:29:10:11:32:20:20:9a:05:b7:65:ee: 42:3e:34:f5:d7:20:33:fe:87:22:6f:2b:35:38:be: d0:87:6f:3d:a3:3a:cd:79:68:a8:17:17:be:e7:e3: 59:a1:dc:b5:01:2d:2d:7f:8c:46:0f:62:c9:e4:1b: 8b:78:2c:d8:e0:ea:05:a8:e6:49:f6:9f:34:23:66: f8:fe:34:10:ea:38:53:50:6b:bb:cb:01:40:0d:f3: 8b:c8:c6:ec:2d:4d:43:da:f6:50:12:ea:64:b8:d5: 74:4e:c8:18:e8:01:d4:be:23:cd:b8:b4:c6:33:71: 71:07:90:c8:b8:0a:50:fb:8a:52:05:b6:f5:1d:ce: 88:43:1d:60:eb:c7:17:08:8a:c6:63:a0:30:c9:27: 76:c6:3f:e4:5b:6b:2a:51:f2:b2:7c:ed:80:c3:8d: 93:9a:6b:99:47:87:73:e5:52:27:59:b9:9c:9f:50: 70:4c:b4:68:bb:38:00:df:bf:a1:95:18:a1:6f:17: 7d:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:A4:E6:AA:0F:23:49:84:00:93:1C:06:E2:12:1C:BA:93:0A:CA:4B X509v3 Authority Key Identifier: keyid:39:71:F7:E2:1D:08:C9:24:3A:BB:40:3F:80:30:64:BF:78:B2:D8:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:f2:27:dd:23:79:12:91:99:fd:5d:84:ee:22:ea:ee:21:6e: 16:d8:d4:44:64:07:d6:4e:dd:fd:1f:a4:7a:5d:4b:84:0c:2d: b7:7e:eb:5c:4b:f3:9d:bb:46:8c:99:fb:05:25:93:71:13:fb: e3:03:10:d2:bb:bd:e1:93:7d:ad:8f:12:f7:1a:be:1e:20:6f: 27:e5:c0:a4:19:8a:bc:d8:ac:d3:73:a5:9c:88:c4:d6:bc:cb: b5:96:3e:e9:42:39:94:7e:fe:ed:12:f8:41:eb:ad:c5:c1:7e: 23:f3:00:06:c5:b9:1b:ef:04:8b:a4:f4:c7:a3:f3:12:7a:e0: b2:f0:42:6f:26:b0:de:53:ca:f3:d7:f0:fe:32:64:a3:ea:bc: 3b:af:73:53:e1:01:10:02:d2:7e:9b:3b:fa:51:01:d4:93:04: c1:bc:e9:14:39:84:7f:24:98:1a:11:63:2f:88:e1:1e:f1:9f: 25:c9:bf:4d:4b:57:f3:a5:fc:81:ac:2f:f8:23:a0:90:06:f8: a2:0c:24:10:e8:7a:d4:96:0d:ea:f1:b0:b9:58:10:2f:38:ab: 55:da:bf:38:66:5c:b2:03:f0:2b:96:63:c5:49:a8:47:60:45: 81:1d:40:69:23:3c:c0:cf:26:7d:af:8a:ad:9c:0b:dc:3b:4d: 89:11:1c:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Q0NkYxMTAvBgNVBAUTKDM5NzFGN0UyMUQwOEM5MjQzQUJCNDAzRjgwMzA2NEJG NzhCMkQ4ODAwHhcNMjYwMTI2MTc0ODEyWhcNMjYwMjAyMTc0ODEyWjAYMRYwFAYD VQQDDA02OTc3YThkYy1lMDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+Z6+DwB/hFnYgQMuoPCrW3yL0pJn4Zrm4nFXb2+Qyqa9MxuaWndc5d8mO57s 5eKBiBWdGA4Vjbxa16aDAObUKRARMiAgmgW3Ze5CPjT11yAz/ocibys1OL7Qh289 ozrNeWioFxe+5+NZody1AS0tf4xGD2LJ5BuLeCzY4OoFqOZJ9p80I2b4/jQQ6jhT UGu7ywFADfOLyMbsLU1D2vZQEupkuNV0TsgY6AHUviPNuLTGM3FxB5DIuApQ+4pS Bbb1Hc6IQx1g68cXCIrGY6AwySd2xj/kW2sqUfKyfO2Aw42TmmuZR4dz5VInWbmc n1BwTLRouzgA37+hlRihbxd9nQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHWk5qoP I0mEAJMcBuISHLqTCspLMB8GA1UdIwQYMBaAFDlx9+IdCMkkOrtAP4AwZL94stiA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDQ2Ri83REEyNEM3QTAw NjkxMUVBOEZEQjI4NURDNEY5QUUwMi9PWEgzNGgwSXlTUTZ1MEFfZ0RCa3YzaXky SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09YSDM0aDBJeVNRNnUwQV9nREJrdjNpeTJJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDQ2Ri83REEyNEM3QTAwNjkxMUVBOEZEQjI4NURDNEY5QUUwMi9PWEgzNGgwSXlT UTZ1MEFfZ0RCa3YzaXkySUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB98ifdI3kSkZn9XYTuIuruIW4W2NREZAfWTt39H6R6XUuEDC23futc S/Odu0aMmfsFJZNxE/vjAxDSu73hk32tjxL3Gr4eIG8n5cCkGYq82KzTc6WciMTW vMu1lj7pQjmUfv7tEvhB663FwX4j8wAGxbkb7wSLpPTHo/MSeuCy8EJvJrDeU8rz 1/D+MmSj6rw7r3NT4QEQAtJ+mzv6UQHUkwTBvOkUOYR/JJgaEWMviOEe8Z8lyb9N S1fzpfyBrC/4I6CQBviiDCQQ6HrUlg3q8bC5WBAvOKtV2r84ZlyyA/ArlmPFSahH YEWBHUBpIzzAzyZ9r4qtnAvcO02JERwB -----END CERTIFICATE-----Generated at Tue Jan 27 17:51:32 2026 by rpki-client