This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft File: OPsGr2SfQA9ROZSTW-335JJwyKo.mft (raw, json) Hash identifier: r6uoLQN0Nh4OCdHL8AQM80KHB++ZuBxB0DlqetXcD68= Subject key identifier: 0B:58:A5:A3:6D:53:AB:C8:3A:D6:5D:49:9A:39:5F:CD:08:38:05:33 Authority key identifier: 38:FB:06:AF:64:9F:40:0F:51:39:94:93:5B:ED:F7:E4:92:70:C8:AA Certificate issuer: /CN=A9198267/serialNumber=38FB06AF649F400F513994935BEDF7E49270C8AA Certificate serial: 0A7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft Manifest number: 0A6C Signing time: Sat 10 Jan 2026 19:05:53 +0000 Manifest this update: Sat 10 Jan 2026 19:05:53 +0000 Manifest next update: Sat 17 Jan 2026 19:05:53 +0000 Files and hashes: 1: OPsGr2SfQA9ROZSTW-335JJwyKo.crl (hash: 4ZP97IaX6zh03hXjwvwsULnaA1gnOCeC1G/bUmi1X18=) 2: 2F43EE7278CC11EAB69DAC75C4F9AE02.roa (hash: vryPQgJZ9HPQvb4c/vnzkdnAafqVRFouOd+j23S6sMU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.crl rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 Jan 2026 19:05:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2683 (0xa7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198267, serialNumber=38FB06AF649F400F513994935BEDF7E49270C8AA Validity Not Before: Jan 10 19:05:53 2026 GMT Not After : Jan 17 19:05:53 2026 GMT Subject: CN=6962a311-daf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:1e:72:41:0a:e6:a1:41:6e:fd:b8:ee:3c:e5: 85:e5:95:b8:a4:07:c2:f5:9d:2c:75:73:43:a6:22: 71:21:21:52:00:6b:a5:54:86:80:db:02:53:48:f4: a7:4e:43:dd:18:61:94:f6:2b:4b:a2:6b:12:85:42: 0d:95:7a:fa:37:16:8d:d8:0d:c0:a0:81:2d:10:0a: 57:8d:7f:46:fc:ff:f2:0c:06:96:d4:e0:61:3a:39: a5:60:91:7a:bc:27:24:09:aa:20:81:56:1b:26:b4: f1:3c:e5:f7:0c:05:e0:91:2e:21:91:c7:cb:0b:53: a2:e2:28:2e:f3:e8:23:27:bd:b4:b5:c3:35:c5:16: f7:47:4c:5c:ab:1c:6b:37:03:d7:70:6f:ae:80:d7: a9:c7:58:61:e3:4c:d7:41:f6:8b:80:cb:db:e6:3e: c2:e2:a5:68:b3:ba:af:01:b0:7a:71:83:6d:69:c5: 66:a5:11:99:8c:e5:06:75:30:dc:41:d8:7f:a4:58: c8:fe:8d:28:4d:ce:e0:31:b0:8f:df:a2:17:af:12: 75:a3:fd:ac:b9:b6:f5:69:ae:53:a9:0e:ac:a6:3d: f6:c5:47:8c:51:7e:02:8d:2e:2d:b8:f3:48:3c:ee: d3:e3:12:b1:23:23:fa:e8:96:db:4d:68:27:f0:95: fb:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:58:A5:A3:6D:53:AB:C8:3A:D6:5D:49:9A:39:5F:CD:08:38:05:33 X509v3 Authority Key Identifier: keyid:38:FB:06:AF:64:9F:40:0F:51:39:94:93:5B:ED:F7:E4:92:70:C8:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:9c:ff:60:01:6c:48:c0:45:1b:28:41:5b:6a:5e:2c:dd:2e: 3f:f7:c0:39:d5:4b:21:d3:0d:cb:83:5c:5e:80:c1:74:39:84: 43:cd:af:c5:e0:86:cc:26:10:87:37:b1:a0:4e:e0:86:af:b7: fa:7b:e9:bc:45:98:89:ac:05:ed:ff:7d:71:6a:92:76:71:a6: 6a:a7:07:af:d5:80:0f:27:ab:c5:ca:d3:18:13:28:fc:19:fc: 89:46:fc:68:5f:a7:5b:4c:5c:05:6e:bc:14:ce:28:a5:12:cf: 59:6c:59:d3:f4:11:12:e9:7d:d6:9c:80:cc:fc:e5:05:b3:43: 84:ba:20:5a:db:2c:d4:2a:05:75:8b:86:72:f2:9d:c1:0a:19: c5:13:d1:35:75:e4:d3:5f:03:ff:f4:ab:a6:e0:e4:bb:e2:7c: 16:d5:1e:38:88:1a:eb:b0:90:20:62:c5:9e:a9:f3:f2:c6:86: 38:f6:94:a5:30:75:56:fb:c4:f7:98:a1:ed:07:3b:f8:c8:52: fb:29:9c:c9:fa:1d:f1:4c:34:41:d4:23:51:65:a2:d7:5d:6f: 8c:39:36:f9:aa:71:31:fb:ee:a0:17:02:22:5f:2a:1d:02:a7: 1a:01:39:68:fd:ab:af:f2:9b:e0:1d:8f:c9:46:f4:6a:b5:56: ae:5a:2f:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgyNjcxMTAvBgNVBAUTKDM4RkIwNkFGNjQ5RjQwMEY1MTM5OTQ5MzVCRURGN0U0 OTI3MEM4QUEwHhcNMjYwMTEwMTkwNTUzWhcNMjYwMTE3MTkwNTUzWjAYMRYwFAYD VQQDDA02OTYyYTMxMS1kYWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAth5yQQrmoUFu/bjuPOWF5ZW4pAfC9Z0sdXNDpiJxISFSAGulVIaA2wJTSPSn TkPdGGGU9itLomsShUINlXr6NxaN2A3AoIEtEApXjX9G/P/yDAaW1OBhOjmlYJF6 vCckCaoggVYbJrTxPOX3DAXgkS4hkcfLC1Oi4igu8+gjJ720tcM1xRb3R0xcqxxr NwPXcG+ugNepx1hh40zXQfaLgMvb5j7C4qVos7qvAbB6cYNtacVmpRGZjOUGdTDc Qdh/pFjI/o0oTc7gMbCP36IXrxJ1o/2subb1aa5TqQ6spj32xUeMUX4CjS4tuPNI PO7T4xKxIyP66JbbTWgn8JX7SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAtYpaNt U6vIOtZdSZo5X80IOAUzMB8GA1UdIwQYMBaAFDj7Bq9kn0APUTmUk1vt9+SScMiq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODI2Ny8wMkM4NkVBQTc4 Q0IxMUVBODIwRDcyNzRDNEY5QUUwMi9PUHNHcjJTZlFBOVJPWlNUVy0zMzVKSnd5 S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09Qc0dyMlNmUUE5Uk9aU1RXLTMzNUpKd3lLby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODI2Ny8wMkM4NkVBQTc4Q0IxMUVBODIwRDcyNzRDNEY5QUUwMi9PUHNHcjJTZlFB OVJPWlNUVy0zMzVKSnd5S28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACnP9gAWxIwEUbKEFbal4s3S4/98A51Ush0w3Lg1xegMF0OYRDza/F 4IbMJhCHN7GgTuCGr7f6e+m8RZiJrAXt/31xapJ2caZqpwev1YAPJ6vFytMYEyj8 GfyJRvxoX6dbTFwFbrwUziilEs9ZbFnT9BES6X3WnIDM/OUFs0OEuiBa2yzUKgV1 i4Zy8p3BChnFE9E1deTTXwP/9Kum4OS74nwW1R44iBrrsJAgYsWeqfPyxoY49pSl MHVW+8T3mKHtBzv4yFL7KZzJ+h3xTDRB1CNRZaLXXW+MOTb5qnEx++6gFwIiXyod AqcaATlo/auv8pvgHY/JRvRqtVauWi+I -----END CERTIFICATE-----Generated at Mon Jan 12 02:35:19 2026 by rpki-client