This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft File: RiOppNLqhemPtaEaDSywgDiHjw8.mft (raw, json) Hash identifier: sOVWexPEoa4wmdGzMdgEULiw3mSrB/T0zIScCsv8+ZE= Subject key identifier: 72:84:BE:F9:14:3F:71:A3:48:4A:02:3F:3A:8A:D5:1D:15:EB:BB:84 Authority key identifier: 46:23:A9:A4:D2:EA:85:E9:8F:B5:A1:1A:0D:2C:B0:80:38:87:8F:0F Certificate issuer: /CN=A9128DE9/serialNumber=4623A9A4D2EA85E98FB5A11A0D2CB08038878F0F Certificate serial: 0C48 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft Manifest number: 0C41 Signing time: Thu 08 Jan 2026 18:18:14 +0000 Manifest this update: Thu 08 Jan 2026 18:18:14 +0000 Manifest next update: Thu 15 Jan 2026 18:18:14 +0000 Files and hashes: 1: RiOppNLqhemPtaEaDSywgDiHjw8.crl (hash: 7KxosEPhYxU8vCSIPXU6CK3C8WJYyIIxtmJzSVRuP9Y=) 2: 75E6DD481BDA11EAB3F45D44C4F9AE02.roa (hash: CqtlIV8oyS/ltG/c7wrvUbZ8dS3VADjXiEg/AjA1Uu4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.crl rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 Jan 2026 18:18:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3144 (0xc48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128DE9, serialNumber=4623A9A4D2EA85E98FB5A11A0D2CB08038878F0F Validity Not Before: Jan 8 18:18:14 2026 GMT Not After : Jan 15 18:18:14 2026 GMT Subject: CN=695ff4e6-918b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:cb:45:f7:fe:fe:60:da:c4:4a:53:83:86:0f: f8:15:db:d5:5d:71:a1:24:33:30:9b:35:90:3e:ba: ff:fe:f7:01:88:6e:db:83:8f:4f:2e:32:f3:fc:30: 91:f9:2f:6e:aa:89:47:cd:ba:55:d8:28:be:8b:ea: 37:60:94:b5:b4:c6:22:ff:4a:51:bd:42:af:cc:14: cc:27:82:b3:86:29:24:cb:9e:e7:a0:6f:4c:a0:00: 08:bc:2e:43:0c:95:e6:c8:d4:d5:cf:c3:03:24:ea: 2b:47:62:65:e7:90:b1:34:bb:a3:22:df:4f:6d:fa: 86:73:81:0d:9e:f6:5f:b3:14:a5:86:67:bb:a6:f5: bd:9a:7e:ee:2f:75:46:3a:fa:8f:aa:d1:2f:8b:59: 7f:19:f0:ee:b4:da:75:80:b9:6e:32:98:09:03:49: a7:ce:4c:c0:fd:c8:05:3e:82:f7:34:49:c9:c3:1b: f4:39:1c:05:cd:e6:0a:fb:d6:ab:fd:c5:14:0a:87: 3f:df:ee:c3:38:a6:ee:d9:d0:c2:9c:f8:93:2d:94: 84:ee:8b:26:e4:35:3d:43:61:05:71:8b:5e:62:7b: 81:e8:77:b5:28:5f:df:92:60:16:b5:63:dc:e1:1f: 9e:9c:6e:d2:14:52:d5:24:5c:a5:56:3e:57:a1:a5: 56:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:84:BE:F9:14:3F:71:A3:48:4A:02:3F:3A:8A:D5:1D:15:EB:BB:84 X509v3 Authority Key Identifier: keyid:46:23:A9:A4:D2:EA:85:E9:8F:B5:A1:1A:0D:2C:B0:80:38:87:8F:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:e8:61:ae:50:77:f8:ee:31:a6:62:5e:1f:56:d6:2f:4f:14: dc:af:62:85:0c:f5:2b:94:8d:d9:41:e5:06:d7:15:82:e8:57: 64:77:dc:04:aa:64:b9:ff:9b:ee:d4:9a:02:2f:3a:4a:dd:78: 06:9b:31:98:ff:d8:18:0e:68:1d:df:34:2a:74:19:c1:fa:c8: af:af:65:12:32:7d:bc:fe:8d:44:6a:ab:af:24:07:49:91:c5: d5:75:4f:21:c9:5a:1e:03:e2:7a:0a:b4:86:cf:a5:bd:e2:e8: 75:4d:28:3f:85:31:35:cd:eb:c9:88:17:e9:7b:ca:e6:a3:73: 6d:bd:da:d0:11:2b:f2:9f:11:77:af:bf:16:af:b2:4b:ab:64: b0:06:d8:c7:a7:97:40:f3:84:33:0e:67:b9:11:44:29:44:87: de:3d:34:bb:3a:b0:3c:49:2f:8b:98:d8:34:c9:28:32:ab:b8: e1:6c:a3:3d:0c:c6:43:14:66:b9:b5:e8:38:0e:c5:b4:55:c6: 6f:19:62:d7:6c:5f:10:6f:d1:21:18:fa:9f:9b:85:30:e1:4d: 5d:e3:85:a6:36:d6:60:77:7b:e1:c0:da:d4:69:5e:75:ad:0a: b8:e0:5e:6b:60:fc:38:31:49:97:0f:a8:4a:7b:1b:88:e5:47: bc:24:1c:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhERTkxMTAvBgNVBAUTKDQ2MjNBOUE0RDJFQTg1RTk4RkI1QTExQTBEMkNCMDgw Mzg4NzhGMEYwHhcNMjYwMTA4MTgxODE0WhcNMjYwMTE1MTgxODE0WjAYMRYwFAYD VQQDDA02OTVmZjRlNi05MThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApMtF9/7+YNrESlODhg/4FdvVXXGhJDMwmzWQPrr//vcBiG7bg49PLjLz/DCR +S9uqolHzbpV2Ci+i+o3YJS1tMYi/0pRvUKvzBTMJ4Kzhikky57noG9MoAAIvC5D DJXmyNTVz8MDJOorR2Jl55CxNLujIt9PbfqGc4ENnvZfsxSlhme7pvW9mn7uL3VG OvqPqtEvi1l/GfDutNp1gLluMpgJA0mnzkzA/cgFPoL3NEnJwxv0ORwFzeYK+9ar /cUUCoc/3+7DOKbu2dDCnPiTLZSE7osm5DU9Q2EFcYteYnuB6He1KF/fkmAWtWPc 4R+enG7SFFLVJFylVj5XoaVWmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHKEvvkU P3GjSEoCPzqK1R0V67uEMB8GA1UdIwQYMBaAFEYjqaTS6oXpj7WhGg0ssIA4h48P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOERFOS9EMDA0OUY4NjFC RDUxMUVBODBDQkNGMzZDNEY5QUUwMi9SaU9wcE5McWhlbVB0YUVhRFN5d2dEaUhq dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JpT3BwTkxxaGVtUHRhRWFEU3l3Z0RpSGp3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OERFOS9EMDA0OUY4NjFCRDUxMUVBODBDQkNGMzZDNEY5QUUwMi9SaU9wcE5McWhl bVB0YUVhRFN5d2dEaUhqdzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAK6GGuUHf47jGmYl4fVtYvTxTcr2KFDPUrlI3ZQeUG1xWC6Fdkd9wE qmS5/5vu1JoCLzpK3XgGmzGY/9gYDmgd3zQqdBnB+sivr2USMn28/o1EaquvJAdJ kcXVdU8hyVoeA+J6CrSGz6W94uh1TSg/hTE1zevJiBfpe8rmo3NtvdrQESvynxF3 r78Wr7JLq2SwBtjHp5dA84QzDme5EUQpRIfePTS7OrA8SS+LmNg0ySgyq7jhbKM9 DMZDFGa5teg4DsW0VcZvGWLXbF8Qb9EhGPqfm4Uw4U1d44WmNtZgd3vhwNrUaV51 rQq44F5rYPw4MUmXD6hKexuI5Ue8JBxk -----END CERTIFICATE-----Generated at Thu Jan 8 23:30:46 2026 by rpki-client