This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.mft File: ol7YoUJ66Tsk0w3M36gyU4tQCK0.mft (raw, json) Hash identifier: 4U/WKDDT2rCZjqyEDfcLD75UrIb3bkMR6272If3w5nQ= Subject key identifier: D7:26:D4:57:6C:50:FF:12:D0:90:8E:4D:D5:DC:16:7A:A0:22:0D:9A Authority key identifier: A2:5E:D8:A1:42:7A:E9:3B:24:D3:0D:CC:DF:A8:32:53:8B:50:08:AD Certificate issuer: /CN=A914A139/serialNumber=A25ED8A1427AE93B24D30DCCDFA832538B5008AD Certificate serial: 0C46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ol7YoUJ66Tsk0w3M36gyU4tQCK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.mft Manifest number: 0C2F Signing time: Mon 26 Jan 2026 18:20:48 +0000 Manifest this update: Mon 26 Jan 2026 18:20:48 +0000 Manifest next update: Mon 02 Feb 2026 18:20:48 +0000 Files and hashes: 1: ol7YoUJ66Tsk0w3M36gyU4tQCK0.crl (hash: ZPpsT/ehxSYvN5yqtd9cCJmgN+d8TOuUI3OX+U2+kbQ=) 2: 10CF1D82C0E311EE81F3E987C4F9AE02.roa (hash: DWCg5lL0mEzrArVCwICSW9aYx94oeCmf91vXy2qE580=) 3: 65BB2B42C0E311EEBEF3D409C4F9AE02.roa (hash: OwW86qMJFwbNjXHq+OTRD7Vzx3peXb6YxQieVHGeMos=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.crl rsync://rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ol7YoUJ66Tsk0w3M36gyU4tQCK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Feb 2026 18:20:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3142 (0xc46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A139, serialNumber=A25ED8A1427AE93B24D30DCCDFA832538B5008AD Validity Not Before: Jan 26 18:20:48 2026 GMT Not After : Feb 2 18:20:48 2026 GMT Subject: CN=6977b080-0560 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:02:17:a4:39:21:7c:fd:ef:a2:3d:77:c2:cd: 68:39:35:52:50:78:50:30:e1:3e:83:9c:a7:29:68: 2a:a5:22:93:89:a4:ee:d8:7f:44:31:9a:47:24:b9: ae:6f:e5:1d:fe:c1:12:d2:a8:d0:17:2b:79:da:23: 4e:cd:71:3b:df:54:be:cf:ea:a5:80:13:f8:70:de: 1c:e1:7e:49:12:1e:74:27:f1:3d:df:27:af:ad:75: 04:74:65:84:58:13:32:de:8a:b7:b8:15:1f:94:2a: aa:0c:fb:5a:65:27:b8:6d:14:29:b9:e7:2b:74:31: 90:3b:19:70:c4:d8:8f:9e:22:77:27:4e:18:4a:b8: ca:aa:4a:28:46:a3:46:fd:1c:cc:46:f6:66:de:15: 7d:ff:50:15:92:c4:15:54:38:4e:48:ea:b2:cd:6a: 00:ac:ce:23:5b:60:0c:3e:c3:69:b4:42:08:e2:19: 27:b7:79:a5:b3:92:97:c0:27:cb:ab:e9:c3:18:26: 76:ef:55:bf:be:94:2f:5f:fb:69:a6:82:91:51:35: 84:c6:e9:38:d6:43:de:2f:c7:d3:ad:fc:af:49:0f: 19:54:11:c0:30:5e:fa:2f:54:97:a3:97:f0:8c:4c: 87:ba:56:4a:37:ec:c4:bd:49:44:81:3a:e8:18:cf: 23:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:26:D4:57:6C:50:FF:12:D0:90:8E:4D:D5:DC:16:7A:A0:22:0D:9A X509v3 Authority Key Identifier: keyid:A2:5E:D8:A1:42:7A:E9:3B:24:D3:0D:CC:DF:A8:32:53:8B:50:08:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ol7YoUJ66Tsk0w3M36gyU4tQCK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:86:f6:4b:50:53:bd:3b:e9:b3:97:93:cd:7d:9d:76:0d:cc: 76:5a:fc:52:54:a9:8e:5c:8f:63:a7:31:0f:34:7d:9f:86:df: 6b:06:c4:c0:47:b6:4c:f6:c2:aa:b5:82:20:31:89:47:04:90: ab:1b:e1:47:56:0f:44:c5:d8:ed:29:d1:46:98:d8:d6:8b:d3: 87:b0:5e:b7:fb:9c:ae:97:f7:cc:19:6e:e0:b1:08:30:1e:1c: 4c:d2:72:44:c5:56:05:12:ac:37:15:4e:c7:e2:4b:0e:0e:36: a1:2e:3b:57:f2:1c:69:61:de:8b:3f:7c:39:80:ef:bf:9b:3d: 89:e0:64:8b:b7:b7:90:b9:47:b0:45:b1:36:92:7f:37:72:81: 63:56:e0:8f:e3:89:7c:e0:12:3d:a8:a7:fe:5f:c8:4f:55:cd: 5d:08:80:db:88:e0:2d:44:d1:dd:a2:49:20:50:89:58:5c:6d: df:01:7f:75:ec:e2:9a:52:30:05:56:87:82:59:cf:dd:05:8a: df:ed:d2:ab:cb:0d:bf:1c:3a:5c:20:0f:b5:bf:3e:6d:e2:e2: f1:74:a8:98:2f:22:61:f7:70:1a:27:7f:82:d6:7d:8d:20:76: 82:e7:36:61:8e:d6:d1:c4:32:ec:ec:fd:6f:e0:12:c3:74:b1: 80:c3:5a:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEExMzkxMTAvBgNVBAUTKEEyNUVEOEExNDI3QUU5M0IyNEQzMERDQ0RGQTgzMjUz OEI1MDA4QUQwHhcNMjYwMTI2MTgyMDQ4WhcNMjYwMjAyMTgyMDQ4WjAYMRYwFAYD VQQDDA02OTc3YjA4MC0wNTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzQIXpDkhfP3voj13ws1oOTVSUHhQMOE+g5ynKWgqpSKTiaTu2H9EMZpHJLmu b+Ud/sES0qjQFyt52iNOzXE731S+z+qlgBP4cN4c4X5JEh50J/E93yevrXUEdGWE WBMy3oq3uBUflCqqDPtaZSe4bRQpuecrdDGQOxlwxNiPniJ3J04YSrjKqkooRqNG /RzMRvZm3hV9/1AVksQVVDhOSOqyzWoArM4jW2AMPsNptEII4hknt3mls5KXwCfL q+nDGCZ271W/vpQvX/tppoKRUTWExuk41kPeL8fTrfyvSQ8ZVBHAMF76L1SXo5fw jEyHulZKN+zEvUlEgTroGM8jwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNcm1Fds UP8S0JCOTdXcFnqgIg2aMB8GA1UdIwQYMBaAFKJe2KFCeuk7JNMNzN+oMlOLUAit MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTEzOS9FQkI5RUM2MDI0 Q0ExMUVBQUMyQUU1ODZDNEY5QUUwMi9vbDdZb1VKNjZUc2swdzNNMzZneVU0dFFD SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29sN1lvVUo2NlRzazB3M00zNmd5VTR0UUNLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTEzOS9FQkI5RUM2MDI0Q0ExMUVBQUMyQUU1ODZDNEY5QUUwMi9vbDdZb1VKNjZU c2swdzNNMzZneVU0dFFDSzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChhvZLUFO9O+mzl5PNfZ12Dcx2WvxSVKmOXI9jpzEPNH2fht9rBsTA R7ZM9sKqtYIgMYlHBJCrG+FHVg9ExdjtKdFGmNjWi9OHsF63+5yul/fMGW7gsQgw HhxM0nJExVYFEqw3FU7H4ksODjahLjtX8hxpYd6LP3w5gO+/mz2J4GSLt7eQuUew RbE2kn83coFjVuCP44l84BI9qKf+X8hPVc1dCIDbiOAtRNHdokkgUIlYXG3fAX91 7OKaUjAFVoeCWc/dBYrf7dKryw2/HDpcIA+1vz5t4uLxdKiYLyJh93AaJ3+C1n2N IHaC5zZhjtbRxDLs7P1v4BLDdLGAw1pp -----END CERTIFICATE-----Generated at Tue Jan 27 17:53:05 2026 by rpki-client