This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft File: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft (raw, json) Hash identifier: jazgu9RrryVZZX8fZBkAuM49lJshLgvyGkqcfFoEK8E= Subject key identifier: A1:D2:65:B0:78:B8:4D:49:B5:98:3F:41:9C:B5:A6:D7:A0:03:6B:F8 Authority key identifier: A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC Certificate issuer: /CN=A9158877/serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Certificate serial: 062F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft Manifest number: 0624 Signing time: Tue 20 Jan 2026 22:05:09 +0000 Manifest this update: Tue 20 Jan 2026 22:05:09 +0000 Manifest next update: Tue 27 Jan 2026 22:05:09 +0000 Files and hashes: 1: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl (hash: 9+cJZu4EE0jvrCx3SMahUY99/BLE2oOCfFqnPuk2n7E=) 2: 58C1F4C06E2211EE98839C33C4F9AE02.roa (hash: Ews4xG+BhGr1YKU7wFoc4NdQF1qugSkJAZpv3+K1VQA=) 3: 931EBB586D6E11EE8AF4BF30C4F9AE02.roa (hash: ixAKLgsVNfo1Pz8i7g4aRb3j68KYgsQlay7em4iJOQg=) 4: DD21ADFACA7311EBAA6E0567C4F9AE02.roa (hash: pKLk6OfJnvru45xZOE/FJIK5VrkZPKYSrNqrwCtPYN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 22:05:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1583 (0x62f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158877, serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Validity Not Before: Jan 20 22:05:09 2026 GMT Not After : Jan 27 22:05:09 2026 GMT Subject: CN=696ffc15-1521 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:84:75:5a:91:03:bb:e0:72:45:12:a9:e0:64: 92:4f:62:c5:21:28:44:3e:59:f9:51:29:10:64:d2: ae:fe:59:c0:27:94:63:22:d1:ce:28:43:a7:86:26: ad:01:74:1c:46:fb:6c:77:3e:36:e2:e7:bf:61:12: d5:3c:21:ad:03:bc:fb:d5:a4:ec:01:08:05:ac:fc: 6b:28:09:44:de:9c:a8:59:70:fa:84:d6:cf:3a:bb: 32:bd:d6:b3:fe:8d:03:9e:77:81:1e:a7:4b:40:53: 9b:c4:2a:76:16:5c:55:d4:18:5b:3a:0d:a4:26:f9: 88:d4:78:72:31:5b:46:3d:f0:58:a8:e9:51:cb:cd: 0f:d2:9c:c0:7d:64:6a:63:44:d1:b8:cf:35:5a:16: 28:e0:02:ed:52:7b:ad:8b:06:a6:fb:f3:aa:e7:7c: 0d:5d:b1:86:33:05:82:c0:2f:16:7c:54:89:91:39: 42:a5:f5:c1:9e:1a:2e:a3:1b:1e:2f:53:cc:e3:c9: 61:d5:26:2f:ff:7c:1b:35:e1:4d:e5:34:f5:5d:18: 44:c0:71:b2:1d:8a:d1:d5:c7:47:2e:b4:9e:f9:ff: 71:3b:3a:c2:83:35:c7:90:9a:74:b6:c0:d1:9a:20: 6a:e1:23:57:6e:09:56:b8:9b:a9:12:04:cf:ad:88: f6:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:D2:65:B0:78:B8:4D:49:B5:98:3F:41:9C:B5:A6:D7:A0:03:6B:F8 X509v3 Authority Key Identifier: keyid:A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:52:ac:b1:52:87:dc:8a:27:99:93:a6:b3:f5:ce:99:53:4a: c1:7f:6d:f2:a2:f8:3c:eb:45:09:cd:34:ec:ae:71:a0:9c:fd: c8:f0:de:90:e1:d8:6e:9f:93:17:52:4b:1e:5c:1a:a5:35:82: 27:bc:4d:37:e7:70:61:e0:a1:9f:30:53:8e:23:a6:8f:f0:97: 56:f0:ee:7e:11:c0:76:e7:7b:64:a0:d9:26:90:db:67:0d:eb: 56:62:a7:ef:21:5e:57:08:60:7d:bd:2a:cc:66:9b:bf:fd:40: 9d:d8:75:ab:8d:1b:88:24:33:e8:70:23:ea:25:ae:72:9a:ef: 6e:72:bb:38:c0:4d:d1:b7:3b:8c:7f:50:22:5b:d8:dd:23:45: 84:06:e4:e4:5f:e6:22:f5:6c:10:b2:ce:b5:1f:67:f1:37:ee: aa:71:aa:c6:20:fa:bd:f6:b1:b8:a4:1b:d2:71:9f:96:58:8f: 27:4a:0a:ca:eb:60:4b:da:5b:ce:26:a6:5f:4f:e9:a7:79:a2: 5a:3d:bd:1b:69:2d:63:e5:2c:6b:67:6c:12:93:b7:6a:fd:d2: 23:72:e0:8a:21:98:96:de:19:46:a1:9f:4f:dd:9c:19:72:42: 19:7e:a0:6d:2e:a1:79:4e:19:52:1d:81:2e:3e:1b:85:11:a8: 60:27:d1:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg4NzcxMTAvBgNVBAUTKEEzQjE2NDgxQjVENkMxNzlGQzBCNzNBRTFFMEU1M0RF OTY3NjQxREMwHhcNMjYwMTIwMjIwNTA5WhcNMjYwMTI3MjIwNTA5WjAYMRYwFAYD VQQDDA02OTZmZmMxNS0xNTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm4R1WpEDu+ByRRKp4GSST2LFIShEPln5USkQZNKu/lnAJ5RjItHOKEOnhiat AXQcRvtsdz424ue/YRLVPCGtA7z71aTsAQgFrPxrKAlE3pyoWXD6hNbPOrsyvdaz /o0DnneBHqdLQFObxCp2FlxV1BhbOg2kJvmI1HhyMVtGPfBYqOlRy80P0pzAfWRq Y0TRuM81WhYo4ALtUnutiwam+/Oq53wNXbGGMwWCwC8WfFSJkTlCpfXBnhouoxse L1PM48lh1SYv/3wbNeFN5TT1XRhEwHGyHYrR1cdHLrSe+f9xOzrCgzXHkJp0tsDR miBq4SNXbglWuJupEgTPrYj2mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKHSZbB4 uE1JtZg/QZy1ptegA2v4MB8GA1UdIwQYMBaAFKOxZIG11sF5/Atzrh4OU96WdkHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODg3Ny9GMDU4NThCOENB NzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dYbjhDM091SGc1VDNwWjJR ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL283RmtnYlhXd1huOEMzT3VIZzVUM3BaMlFkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODg3Ny9GMDU4NThCOENBNzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dY bjhDM091SGc1VDNwWjJRZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmUqyxUofciieZk6az9c6ZU0rBf23yovg860UJzTTsrnGgnP3I8N6Q 4dhun5MXUkseXBqlNYInvE0353Bh4KGfMFOOI6aP8JdW8O5+EcB253tkoNkmkNtn DetWYqfvIV5XCGB9vSrMZpu//UCd2HWrjRuIJDPocCPqJa5ymu9ucrs4wE3RtzuM f1AiW9jdI0WEBuTkX+Yi9WwQss61H2fxN+6qcarGIPq99rG4pBvScZ+WWI8nSgrK 62BL2lvOJqZfT+mneaJaPb0baS1j5SxrZ2wSk7dq/dIjcuCKIZiW3hlGoZ9P3ZwZ ckIZfqBtLqF5ThlSHYEuPhuFEahgJ9Fr -----END CERTIFICATE-----Generated at Wed Jan 21 14:44:13 2026 by rpki-client