This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft File: OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft (raw, json) Hash identifier: 7lXoNNbn32cYO45JAfr7wlEouJxnwrfnQbeJDgLiEBs= Subject key identifier: ED:7A:50:1B:ED:CB:4B:8C:2D:63:D0:E9:28:ED:A8:FC:8C:1A:DC:D8 Authority key identifier: 39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD Certificate issuer: /CN=A9157D67/serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD Certificate serial: 0C01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft Manifest number: 0A30 Signing time: Mon 26 Jan 2026 20:55:24 +0000 Manifest this update: Mon 26 Jan 2026 20:55:24 +0000 Manifest next update: Mon 02 Feb 2026 20:55:24 +0000 Files and hashes: 1: OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl (hash: MlnvociMhxyUFtHOQUq+qznIHT7tyAKX5a+MtZkoCJg=) 2: 93EE047E4BB511EE9309AA4EC4F9AE02.roa (hash: vQWuHkxNO3W+64VKIpJFVWJTeNRMIc+wKzNHsAhde4Q=) 3: 72C9BE36950211EFAC892C5EC4F9AE02.roa (hash: tUqKc58G4NP/ZiNhEE4m52A3vGMH09GTzhVMgnnCe/8=) 4: AB96EF3852CD11ECAB209C5FC4F9AE02.roa (hash: KHmIhJVDnUN/JIAGOGyBUT9fEQNuIGqQSzduAjkMS7g=) 5: 61EE2500936E11F091943583C4F9AE02.roa (hash: RcQ5pRuJKyp+aRig1meEGosphiGW/VOOSzuxcFIORtk=) 6: B8D1EFFECFF111F085D0CF76C4F9AE02.roa (hash: OKHo5PlaRkuq1valJ2KLlI42leF/3R3vRaJtQrRDfSg=) 7: 263DB02C4BB611EE9B959267C4F9AE02.roa (hash: uy/Ya9Uphz8yk5gzFrvw8K92wA25vKbiFTbIY5cp56U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Feb 2026 20:55:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3073 (0xc01) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D67, serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD Validity Not Before: Jan 26 20:55:24 2026 GMT Not After : Feb 2 20:55:24 2026 GMT Subject: CN=6977d4bc-5f6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:2f:8d:60:fc:f0:ad:47:c9:92:d6:31:57:86: e5:72:d3:61:f9:c7:d6:ca:6c:71:bc:23:29:ea:21: 05:b6:13:2d:01:bc:b0:85:bf:68:36:a7:07:32:9b: 56:4a:02:98:28:52:c1:f6:25:65:ca:bf:23:00:65: 3f:6f:2d:a2:81:17:c1:c8:be:29:c3:3f:d9:b6:5d: b4:a1:4e:4f:11:f6:d2:03:30:b3:95:49:de:0e:4d: 65:6d:00:35:5d:16:ef:06:37:66:f7:ea:e8:48:60: 20:82:94:b3:2e:0c:f4:c1:3f:25:48:71:42:75:8f: ca:fc:da:17:13:c3:91:2a:0e:a1:df:1f:9a:f5:28: 6a:e4:38:ba:b5:47:76:1e:f7:cc:90:38:00:07:71: 2c:ec:84:89:99:0b:64:43:6b:3c:29:b1:1d:44:3c: dd:67:e8:f3:5e:1e:2f:31:2e:5d:68:d2:c1:55:1c: f2:d1:0b:a8:70:12:1b:7d:00:97:e8:2f:0c:a8:66: c7:e8:7a:f4:79:49:ac:80:8d:bc:3e:6c:be:2f:b8: da:90:f7:79:14:e5:22:18:48:d0:b5:1a:46:cf:32: 61:bd:f0:27:ee:05:71:53:db:30:b4:41:41:a3:50: a7:d6:c8:e5:fa:69:2e:2c:88:0e:b6:99:30:0f:e7: 50:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:7A:50:1B:ED:CB:4B:8C:2D:63:D0:E9:28:ED:A8:FC:8C:1A:DC:D8 X509v3 Authority Key Identifier: keyid:39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:17:fa:db:db:15:09:08:4f:c3:73:f8:87:ff:81:36:ac:67: 0e:10:eb:26:e7:36:51:db:1c:9d:99:10:9a:94:b0:7c:c2:ef: b5:fb:08:41:23:ff:21:df:7f:78:d0:b8:b1:f9:5f:32:01:ee: e6:3e:af:3c:d4:03:4e:02:2f:55:40:21:a7:8b:48:2c:81:e3: 5f:25:b8:6b:65:f4:7f:b4:78:f3:48:07:85:3a:50:9f:0d:f9: 32:bd:b8:d1:82:fb:49:59:1d:5a:1b:42:ee:c0:c2:66:a1:02: 6c:97:ec:0b:5b:b8:5e:c9:39:42:f9:96:c8:4a:5b:c9:29:b7: 9a:c4:08:f3:db:5f:f6:79:53:e4:18:bb:a3:a2:56:6a:d7:2d: db:0b:c6:25:37:21:1c:4c:15:5c:60:d2:34:4e:01:cf:e8:60: c7:1d:b0:91:85:18:ba:57:4b:78:2d:a2:be:1a:b3:2d:f6:35: 77:66:2d:a2:80:ac:4d:96:15:7c:2b:c4:5d:a3:fa:7d:b5:ed: b9:72:73:ab:35:ba:e0:76:c5:c1:e3:63:d5:12:fe:d3:1c:ed: 83:36:ad:3c:0a:80:7e:9a:1a:72:93:c2:87:af:ce:4d:86:74: d5:17:89:e1:d7:cb:51:b1:26:5f:68:6b:ea:d5:d8:44:e5:7f: 27:9b:56:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdENjcxMTAvBgNVBAUTKDM5QzQzOTY3NTcwMDg3RjU4M0U0MjVBOUZFOUI2OUI5 NTA2QTU5QkQwHhcNMjYwMTI2MjA1NTI0WhcNMjYwMjAyMjA1NTI0WjAYMRYwFAYD VQQDDA02OTc3ZDRiYy01ZjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwy+NYPzwrUfJktYxV4blctNh+cfWymxxvCMp6iEFthMtAbywhb9oNqcHMptW SgKYKFLB9iVlyr8jAGU/by2igRfByL4pwz/Ztl20oU5PEfbSAzCzlUneDk1lbQA1 XRbvBjdm9+roSGAggpSzLgz0wT8lSHFCdY/K/NoXE8ORKg6h3x+a9Shq5Di6tUd2 HvfMkDgAB3Es7ISJmQtkQ2s8KbEdRDzdZ+jzXh4vMS5daNLBVRzy0QuocBIbfQCX 6C8MqGbH6Hr0eUmsgI28Pmy+L7jakPd5FOUiGEjQtRpGzzJhvfAn7gVxU9swtEFB o1Cn1sjl+mkuLIgOtpkwD+dQtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO16UBvt y0uMLWPQ6SjtqPyMGtzYMB8GA1UdIwQYMBaAFDnEOWdXAIf1g+Qlqf6bablQalm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q2Ny82OUU2QzE2QTQ0 MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9PY1E1WjFjQWhfV0Q1Q1dwX3B0cHVWQnFX YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jUTVaMWNBaF9XRDVDV3BfcHRwdVZCcVdiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0Q2Ny82OUU2QzE2QTQ0MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9PY1E1WjFjQWhf V0Q1Q1dwX3B0cHVWQnFXYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCF/rb2xUJCE/Dc/iH/4E2rGcOEOsm5zZR2xydmRCalLB8wu+1+whB I/8h33940Lix+V8yAe7mPq881ANOAi9VQCGni0gsgeNfJbhrZfR/tHjzSAeFOlCf DfkyvbjRgvtJWR1aG0LuwMJmoQJsl+wLW7heyTlC+ZbISlvJKbeaxAjz21/2eVPk GLujolZq1y3bC8YlNyEcTBVcYNI0TgHP6GDHHbCRhRi6V0t4LaK+GrMt9jV3Zi2i gKxNlhV8K8Rdo/p9te25cnOrNbrgdsXB42PVEv7THO2DNq08CoB+mhpyk8KHr85N hnTVF4nh18tRsSZfaGvq1dhE5X8nm1ap -----END CERTIFICATE-----Generated at Tue Jan 27 08:14:08 2026 by rpki-client