This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft File: opgFnwZTffjAi4klX3lZQaMcGAA.mft (raw, json) Hash identifier: aOZNjxJErx+jGAPaz48iXsst+gdQeEwC3PwysArV6rg= Subject key identifier: 64:72:26:C5:00:46:05:37:4A:8E:CA:2B:DF:2D:DF:44:99:D3:00:9F Authority key identifier: A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00 Certificate issuer: /CN=A9144CB7/serialNumber=A298059F06537DF8C08B89255F795941A31C1800 Certificate serial: B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft Manifest number: B7 Signing time: Sun 25 Jan 2026 05:13:14 +0000 Manifest this update: Sun 25 Jan 2026 05:13:14 +0000 Manifest next update: Sun 01 Feb 2026 05:13:14 +0000 Files and hashes: 1: opgFnwZTffjAi4klX3lZQaMcGAA.crl (hash: IeAL8Sk+ZXddbDGh1v9lnULXCXIqfL/eGGWorzoak2Y=) 2: 903E0F1652BD11F0A9261F57C4F9AE02.roa (hash: wehugKaizIxEhZtf3yJWa3v9WBxQforOS0s0qf27ViE=) 3: E8716FD4EA3511EF89116C52C4F9AE02.roa (hash: /ib2O66BEz/+EIpjbYLfsm9ZEc6Tr2GDRN2PvAJwp9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.crl rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 05:13:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144CB7, serialNumber=A298059F06537DF8C08B89255F795941A31C1800 Validity Not Before: Jan 25 05:13:14 2026 GMT Not After : Feb 1 05:13:14 2026 GMT Subject: CN=6975a66a-ba24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:90:bb:ad:f4:28:a7:76:16:09:4a:45:53:ac: 23:f5:c9:e8:0d:6c:35:f9:5a:d3:97:cf:e5:ce:91: fd:aa:53:a1:4c:55:54:4c:7c:ad:d5:ff:2d:7b:ae: f8:32:14:0a:6a:94:bc:33:1b:d1:c0:fe:69:bd:d7: 31:35:15:8e:ce:d2:ab:53:4f:14:94:f5:3e:9d:7c: 31:99:93:b6:50:6f:15:15:01:22:c2:f8:31:32:22: f2:17:dc:70:c8:97:2a:c7:97:2f:29:f7:ce:c1:3a: 75:c4:5c:58:f1:06:53:f6:6d:af:75:60:9e:4f:c6: 11:78:a1:0b:c8:7a:48:95:b2:d0:c7:32:bd:38:ad: d2:15:44:72:dc:c8:94:ed:bd:53:e4:98:99:ce:a2: 2a:c2:a8:0f:16:8a:37:3f:06:8a:cf:89:1d:cd:73: a6:4e:0a:a4:9b:84:8a:0d:9c:af:4c:2c:04:07:0b: 47:c9:c0:fe:af:ce:b6:54:79:d7:7b:d1:4c:5e:ad: ab:ed:63:49:a9:5a:9a:18:d7:09:11:0b:47:be:01: 66:4a:b1:60:54:58:cd:45:31:a6:4b:91:32:ba:39: 53:6c:47:7e:cb:03:cb:db:65:74:e3:f3:38:9a:ea: 5e:16:be:23:39:00:df:2b:f0:7e:34:d3:cc:58:70: 92:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:72:26:C5:00:46:05:37:4A:8E:CA:2B:DF:2D:DF:44:99:D3:00:9F X509v3 Authority Key Identifier: keyid:A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:63:d0:53:95:75:ca:fb:2c:69:2f:a2:fa:16:4a:35:41:9f: a1:43:99:85:32:e9:71:52:d5:58:8a:9e:a1:58:33:95:2d:e2: 54:30:cf:6d:7c:b3:b7:4f:e6:11:56:33:b5:ed:55:22:92:4c: 78:73:42:f4:68:a3:7d:1f:35:99:21:03:23:77:2a:ad:d1:5d: 7b:7b:10:7b:80:4d:65:e9:45:68:cd:36:c5:be:69:6d:a8:ce: 95:ae:3c:33:6f:06:bb:77:15:9f:54:75:ac:b5:4e:d7:55:2b: f7:c0:52:37:b3:a3:74:04:f2:58:5b:ab:63:2f:2a:18:e4:9f: 28:92:e0:48:80:7f:58:4a:0b:95:b0:d4:44:57:7a:1d:67:08: 0f:55:a7:58:5b:6e:ac:e3:0e:d5:32:d6:8b:4f:bb:38:e3:25: 56:99:39:38:81:e9:f2:5f:c0:7a:62:52:fb:b2:ec:da:d5:f5: d1:a3:8b:6d:f4:c0:0b:b1:6c:76:81:9c:e3:6b:97:48:b1:68: 54:59:65:37:57:54:a9:a9:70:0c:21:7a:42:76:f5:87:2c:7c: 90:80:bb:9b:d8:97:a0:36:70:56:f4:dc:8e:92:c3:6b:3b:a7: fd:0e:dc:89:af:09:05:d8:fa:95:9e:d4:4a:30:58:45:e9:9d: 6c:55:16:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRDQjcxMTAvBgNVBAUTKEEyOTgwNTlGMDY1MzdERjhDMDhCODkyNTVGNzk1OTQx QTMxQzE4MDAwHhcNMjYwMTI1MDUxMzE0WhcNMjYwMjAxMDUxMzE0WjAYMRYwFAYD VQQDDA02OTc1YTY2YS1iYTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4JC7rfQop3YWCUpFU6wj9cnoDWw1+VrTl8/lzpH9qlOhTFVUTHyt1f8te674 MhQKapS8MxvRwP5pvdcxNRWOztKrU08UlPU+nXwxmZO2UG8VFQEiwvgxMiLyF9xw yJcqx5cvKffOwTp1xFxY8QZT9m2vdWCeT8YReKELyHpIlbLQxzK9OK3SFURy3MiU 7b1T5JiZzqIqwqgPFoo3PwaKz4kdzXOmTgqkm4SKDZyvTCwEBwtHycD+r862VHnX e9FMXq2r7WNJqVqaGNcJEQtHvgFmSrFgVFjNRTGmS5EyujlTbEd+ywPL22V04/M4 mupeFr4jOQDfK/B+NNPMWHCSXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGRyJsUA RgU3So7KK98t30SZ0wCfMB8GA1UdIwQYMBaAFKKYBZ8GU334wIuJJV95WUGjHBgA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NENCNy84QzkzRjc2Q0Ux NzYxMUVGQjc5ODFCMTlDNEY5QUUwMi9vcGdGbndaVGZmakFpNGtsWDNsWlFhTWNH QUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29wZ0Zud1pUZmZqQWk0a2xYM2xaUWFNY0dBQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NENCNy84QzkzRjc2Q0UxNzYxMUVGQjc5ODFCMTlDNEY5QUUwMi9vcGdGbndaVGZm akFpNGtsWDNsWlFhTWNHQUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCY9BTlXXK+yxpL6L6Fko1QZ+hQ5mFMulxUtVYip6hWDOVLeJUMM9t fLO3T+YRVjO17VUikkx4c0L0aKN9HzWZIQMjdyqt0V17exB7gE1l6UVozTbFvmlt qM6Vrjwzbwa7dxWfVHWstU7XVSv3wFI3s6N0BPJYW6tjLyoY5J8okuBIgH9YSguV sNREV3odZwgPVadYW26s4w7VMtaLT7s44yVWmTk4genyX8B6YlL7suza1fXRo4tt 9MALsWx2gZzja5dIsWhUWWU3V1SpqXAMIXpCdvWHLHyQgLub2JegNnBW9NyOksNr O6f9DtyJrwkF2PqVntRKMFhF6Z1sVRbt -----END CERTIFICATE-----Generated at Mon Jan 26 21:53:29 2026 by rpki-client