This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft File: Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft (raw, json) Hash identifier: p5AvJc9fEzH6Gp4CKh+GRSaNwAjNXnixOK5TIqX0Hws= Subject key identifier: 5D:D9:9B:44:41:6D:2B:4F:29:F3:9A:8B:38:C4:C9:8C:34:E4:07:3B Authority key identifier: 3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C Certificate issuer: /CN=A91ACD4D/serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Certificate serial: 16AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft Manifest number: 169C Signing time: Tue 20 Jan 2026 16:26:24 +0000 Manifest this update: Tue 20 Jan 2026 16:26:24 +0000 Manifest next update: Tue 27 Jan 2026 16:26:24 +0000 Files and hashes: 1: Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl (hash: iAosaQDa73WawSmNf5OGBe1QvdBw0TcdyF9k/bI8TkU=) 2: 268ECB3ED5BD11E894FFC250C4F9AE02.roa (hash: sJz6G/xstqw6p4gPUJK4gZEDHHsTgFb0oSV9wpMQ7es=) 3: 3DE1DBC4D81011EC892E8A79C4F9AE02.roa (hash: bW1tXZTK5POt+zZDGbG4YDsox5kPeg50QnLxOuLANNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 16:26:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5806 (0x16ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD4D, serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Validity Not Before: Jan 20 16:26:24 2026 GMT Not After : Jan 27 16:26:24 2026 GMT Subject: CN=696facb0-6c56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:0a:b1:f1:4b:9f:ff:0e:6f:e1:cc:4e:49:c0: 0e:b3:18:34:42:47:3f:51:90:de:80:00:45:ad:c6: 70:22:0b:58:9e:ed:80:35:4c:a8:cc:6f:55:27:11: 4d:52:23:72:e6:99:22:17:12:0d:72:d4:96:0e:a9: 95:a8:77:02:22:0e:4b:44:14:a6:11:51:2b:7e:29: 7b:03:43:94:2c:6a:12:29:ff:cb:9f:d9:e9:e7:61: de:90:95:46:02:8f:f8:db:cd:6c:ab:0b:8f:eb:45: a9:a3:aa:17:2b:9d:64:fc:f6:61:f0:e1:cc:97:bc: 12:a8:a3:e0:b4:c4:0b:ce:7a:aa:b9:88:e8:b6:0a: fd:61:03:95:cc:9a:07:ac:1f:50:a6:cb:a9:71:09: 99:9b:2b:71:76:ac:b1:95:2f:2a:d4:9f:e6:c5:1a: 99:5b:14:9b:9e:a1:e3:85:bb:e9:56:1f:c3:6c:36: d3:a0:0d:0e:ac:7d:ba:64:a7:cc:43:17:9e:7d:36: 6c:bf:5e:73:60:c0:45:06:af:3c:31:be:e8:05:26: 0a:62:d8:91:da:30:e3:8d:0f:2a:5f:5c:76:ec:c0: 45:2e:2d:85:c6:c6:a4:e3:7d:33:24:4b:55:56:de: cb:ae:3d:2d:09:72:34:2a:3b:9e:51:0c:f3:b5:99: 75:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:D9:9B:44:41:6D:2B:4F:29:F3:9A:8B:38:C4:C9:8C:34:E4:07:3B X509v3 Authority Key Identifier: keyid:3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:2d:f6:40:b3:f3:f6:81:74:21:ab:f8:f0:34:12:47:4a:15: 6c:e2:42:f6:b6:2a:2f:4a:c0:2a:25:e2:5d:2a:6f:ef:6b:bb: 5f:74:ee:0d:29:42:1a:ba:50:cc:e7:63:d7:03:3f:97:99:5c: 26:20:1d:47:e4:c6:40:62:6a:3c:67:86:c8:14:5a:2a:05:61: b2:09:0d:b0:a7:01:8a:5a:69:25:1f:4a:19:8e:1b:07:fd:63: 8f:3e:71:ac:de:98:ca:3f:60:2b:54:ee:75:ae:63:12:1c:79: ec:85:75:c1:bc:1e:d2:78:27:05:01:af:77:0e:f4:f6:bc:5d: 29:dd:af:8d:a6:f0:8f:91:fe:65:e0:23:90:32:64:6e:ee:a5: b8:18:36:f0:0d:28:1d:db:ba:14:99:fc:bc:d7:d4:a1:74:bb: 89:41:8c:4e:91:21:b1:8f:1e:58:2f:74:9b:89:88:25:d4:3c: 68:f3:92:6b:10:3a:b7:0a:db:5b:d1:53:22:0d:79:b0:e6:27: 81:f9:f7:95:59:de:a8:69:59:c1:af:fa:bc:9c:29:e7:16:7a: bd:9b:ed:cb:07:4b:d1:a7:b4:59:27:bf:a1:6f:40:80:5a:f4: 04:60:f7:06:3e:07:8b:d9:cf:88:c4:0c:f8:13:ef:2e:55:bd: 27:da:13:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFq4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENEQxMTAvBgNVBAUTKDNBNDZGQjBGNDBGNjlENUUxREI3NUQyODUxRjA0MEMx OUY2NkYyMkMwHhcNMjYwMTIwMTYyNjI0WhcNMjYwMTI3MTYyNjI0WjAYMRYwFAYD VQQDDA02OTZmYWNiMC02YzU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqAqx8Uuf/w5v4cxOScAOsxg0Qkc/UZDegABFrcZwIgtYnu2ANUyozG9VJxFN UiNy5pkiFxINctSWDqmVqHcCIg5LRBSmEVErfil7A0OULGoSKf/Ln9np52HekJVG Ao/4281sqwuP60Wpo6oXK51k/PZh8OHMl7wSqKPgtMQLznqquYjotgr9YQOVzJoH rB9QpsupcQmZmytxdqyxlS8q1J/mxRqZWxSbnqHjhbvpVh/DbDbToA0OrH26ZKfM QxeefTZsv15zYMBFBq88Mb7oBSYKYtiR2jDjjQ8qX1x27MBFLi2Fxsak430zJEtV Vt7Lrj0tCXI0KjueUQzztZl1RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF3Zm0RB bStPKfOaizjEyYw05Ac7MB8GA1UdIwQYMBaAFDpG+w9A9p1eHbddKFHwQMGfZvIs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q0RC8xMzdEMDBENDE2 MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5WNGR0MTBvVWZCQXdaOW04 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rYjdEMEQyblY0ZHQxMG9VZkJBd1o5bThpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0Q0RC8xMzdEMDBENDE2MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5W NGR0MTBvVWZCQXdaOW04aXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsLfZAs/P2gXQhq/jwNBJHShVs4kL2tiovSsAqJeJdKm/va7tfdO4N KUIaulDM52PXAz+XmVwmIB1H5MZAYmo8Z4bIFFoqBWGyCQ2wpwGKWmklH0oZjhsH /WOPPnGs3pjKP2ArVO51rmMSHHnshXXBvB7SeCcFAa93DvT2vF0p3a+NpvCPkf5l 4COQMmRu7qW4GDbwDSgd27oUmfy819ShdLuJQYxOkSGxjx5YL3SbiYgl1Dxo85Jr EDq3Cttb0VMiDXmw5ieB+feVWd6oaVnBr/q8nCnnFnq9m+3LB0vRp7RZJ7+hb0CA WvQEYPcGPgeL2c+IxAz4E+8uVb0n2hOi -----END CERTIFICATE-----Generated at Wed Jan 21 09:06:24 2026 by rpki-client