This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft File: OQo4N6umkSos8p5hDaSVVd8sb6U.mft (raw, json) Hash identifier: bi+bl7V1ne5OrWgA5HryOwQbfeuajcjJGGD0H0RniLU= Subject key identifier: 23:BF:1C:0D:8F:CA:D9:85:13:50:C6:98:CD:60:74:CD:A4:BB:EA:7F Authority key identifier: 39:0A:38:37:AB:A6:91:2A:2C:F2:9E:61:0D:A4:95:55:DF:2C:6F:A5 Certificate issuer: /CN=A91982B6/serialNumber=390A3837ABA6912A2CF29E610DA49555DF2C6FA5 Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft Manifest number: CC Signing time: Thu 01 Jan 2026 05:32:29 +0000 Manifest this update: Thu 01 Jan 2026 05:32:28 +0000 Manifest next update: Thu 08 Jan 2026 05:32:28 +0000 Files and hashes: 1: OQo4N6umkSos8p5hDaSVVd8sb6U.crl (hash: KYAwgx6aRp6kA0cbSMmvXRxXuVayJSfgH4/K5iT3NrM=) 2: 8CC6B54CB44011F0ACFB4D45C4F9AE02.roa (hash: dqRzvsYYzS0ot/6HGxMcWMe4B7L97QuQgSdCQiuHa2U=) 3: 4B34CDD888EB11F09EC0EE50C4F9AE02.roa (hash: p4wINUwzjfYN0Bo2oW/pH90dIns+xH2+FFOhnoxyjpY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.crl rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 Jan 2026 05:32:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91982B6, serialNumber=390A3837ABA6912A2CF29E610DA49555DF2C6FA5 Validity Not Before: Jan 1 05:32:28 2026 GMT Not After : Jan 8 05:32:28 2026 GMT Subject: CN=695606ed-12ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:62:3f:8d:b9:4a:b6:be:91:85:2c:20:60:47: f3:be:b4:f8:17:08:d5:29:c0:cb:f5:6e:d1:2e:c5: 64:82:34:64:11:07:7e:c1:40:14:13:15:fa:38:ca: 5f:78:9f:01:ec:57:a6:e2:c1:16:a5:88:85:cd:e3: 25:9e:05:9d:81:37:7c:23:3a:83:0f:6e:63:00:2f: 37:01:35:99:37:b0:cd:2b:1f:d0:7d:d1:6e:55:72: ee:54:c1:22:09:2d:4d:9b:0d:62:50:8a:f4:b3:7e: b7:ee:09:94:aa:36:53:26:a8:20:8e:26:f9:89:c9: 13:6f:2c:8b:4a:22:e6:e2:77:b9:36:fb:67:3e:18: 3c:d8:98:77:07:10:fa:21:f7:c9:69:48:9b:df:4d: 7a:80:0a:9c:69:e7:0f:7a:d2:02:60:50:40:72:92: 05:8e:a3:9f:56:0f:f2:ba:54:4b:02:49:bd:41:93: 8d:bd:b6:c5:50:bf:6f:a9:22:fa:9a:80:ba:0d:07: ab:1a:e0:70:b5:6f:d1:53:c7:76:64:f4:78:35:5c: 9c:b4:08:f0:b7:2b:04:55:f3:27:56:de:d1:ef:93: e3:29:c2:d7:36:a2:10:45:b2:0f:7a:2a:21:8e:50: a8:a9:02:61:e0:18:e4:1b:ee:91:74:16:8f:1e:7f: ac:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:BF:1C:0D:8F:CA:D9:85:13:50:C6:98:CD:60:74:CD:A4:BB:EA:7F X509v3 Authority Key Identifier: keyid:39:0A:38:37:AB:A6:91:2A:2C:F2:9E:61:0D:A4:95:55:DF:2C:6F:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:1c:1b:de:3f:44:c4:3d:27:c9:ef:1a:4f:cf:98:9e:e5:40: c1:de:9e:fb:e2:9c:7c:23:a1:9b:f3:c1:56:4f:ed:57:15:b2: 03:07:0a:fd:28:9d:5b:17:41:00:df:97:44:a4:14:6f:e3:0f: 39:48:de:75:7e:c5:7e:0a:2e:d4:5b:54:ee:51:f8:c3:b7:61: a8:44:ce:7a:34:03:56:70:55:2d:41:32:51:8e:51:76:c7:33: b2:73:fa:9a:8f:e3:ee:89:3a:80:b5:6b:3e:c2:a6:48:5f:3d: 85:22:75:e0:f5:01:d3:a6:5d:9f:ca:51:b0:86:06:29:e2:15: 3f:98:e1:6b:3c:39:6b:c3:74:05:60:f0:4d:92:a9:58:da:16: 13:5f:a8:86:d5:57:57:c9:d9:eb:72:75:87:ff:6f:43:55:e2: 67:4f:da:d1:a2:ab:b7:a4:50:5d:63:32:16:7c:7c:a6:cc:d3: 60:df:c3:e5:f5:81:ac:23:a4:11:58:17:ab:94:48:54:bb:bd: b3:d4:b3:fb:56:d1:c0:3a:e5:0d:0a:1d:03:4d:56:82:3d:60: d1:5d:32:49:82:d9:b5:e8:e6:22:ac:de:7b:09:e0:8d:e1:71: 9c:07:64:fc:84:24:7b:6e:0a:07:4e:8d:cd:08:61:6d:4f:ec: e5:31:71:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgyQjYxMTAvBgNVBAUTKDM5MEEzODM3QUJBNjkxMkEyQ0YyOUU2MTBEQTQ5NTU1 REYyQzZGQTUwHhcNMjYwMTAxMDUzMjI4WhcNMjYwMTA4MDUzMjI4WjAYMRYwFAYD VQQDDA02OTU2MDZlZC0xMmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq2I/jblKtr6RhSwgYEfzvrT4FwjVKcDL9W7RLsVkgjRkEQd+wUAUExX6OMpf eJ8B7Fem4sEWpYiFzeMlngWdgTd8IzqDD25jAC83ATWZN7DNKx/QfdFuVXLuVMEi CS1Nmw1iUIr0s3637gmUqjZTJqggjib5ickTbyyLSiLm4ne5NvtnPhg82Jh3BxD6 IffJaUib3016gAqcaecPetICYFBAcpIFjqOfVg/yulRLAkm9QZONvbbFUL9vqSL6 moC6DQerGuBwtW/RU8d2ZPR4NVyctAjwtysEVfMnVt7R75PjKcLXNqIQRbIPeioh jlCoqQJh4BjkG+6RdBaPHn+sLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCO/HA2P ytmFE1DGmM1gdM2ku+p/MB8GA1UdIwQYMBaAFDkKODerppEqLPKeYQ2klVXfLG+l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODJCNi9ERTdFMzIxRUNC NTkxMUVGODY5MTVCNjFDNEY5QUUwMi9PUW80TjZ1bWtTb3M4cDVoRGFTVlZkOHNi NlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09RbzRONnVta1NvczhwNWhEYVNWVmQ4c2I2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODJCNi9ERTdFMzIxRUNCNTkxMUVGODY5MTVCNjFDNEY5QUUwMi9PUW80TjZ1bWtT b3M4cDVoRGFTVlZkOHNiNlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFHBveP0TEPSfJ7xpPz5ie5UDB3p774px8I6Gb88FWT+1XFbIDBwr9 KJ1bF0EA35dEpBRv4w85SN51fsV+Ci7UW1TuUfjDt2GoRM56NANWcFUtQTJRjlF2 xzOyc/qaj+PuiTqAtWs+wqZIXz2FInXg9QHTpl2fylGwhgYp4hU/mOFrPDlrw3QF YPBNkqlY2hYTX6iG1VdXydnrcnWH/29DVeJnT9rRoqu3pFBdYzIWfHymzNNg38Pl 9YGsI6QRWBerlEhUu72z1LP7VtHAOuUNCh0DTVaCPWDRXTJJgtm16OYirN57CeCN 4XGcB2T8hCR7bgoHTo3NCGFtT+zlMXFB -----END CERTIFICATE-----Generated at Thu Jan 1 15:59:35 2026 by rpki-client