This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft File: oRHoHEs-J72m4nEkl_bbugz7CCY.mft (raw, json) Hash identifier: qBTUeJA101JKqNvhOXupDBgnjVujdZb6qP3IWxFJMMI= Subject key identifier: B2:3F:AD:F2:FF:9D:F7:EB:59:3F:04:5F:6A:0F:47:4A:73:08:A3:9C Authority key identifier: A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 Certificate issuer: /CN=A91C1DB8/serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Certificate serial: 13D9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft Manifest number: 13CD Signing time: Sat 10 Jan 2026 16:41:16 +0000 Manifest this update: Sat 10 Jan 2026 16:41:15 +0000 Manifest next update: Sat 17 Jan 2026 16:41:15 +0000 Files and hashes: 1: oRHoHEs-J72m4nEkl_bbugz7CCY.crl (hash: HV0jWbNXzk7c9ZMfAJ5myMo+Yc5yPRR6n6dXXVweZy4=) 2: 6D6692CAAA0211EEAADA3D32C4F9AE02.roa (hash: Lfw4Pf1U5kN1CyHW4zjiGH94Ozpr6hL2Iw69vgHFnZ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 Jan 2026 16:41:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5081 (0x13d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1DB8, serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Validity Not Before: Jan 10 16:41:15 2026 GMT Not After : Jan 17 16:41:15 2026 GMT Subject: CN=6962812c-3539 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:07:51:d8:26:f6:73:dc:48:37:1e:a0:46:53: d4:94:35:31:a3:02:76:82:c7:2e:51:4b:02:c9:4e: 21:af:9b:23:ab:4f:23:0c:de:1b:06:c4:66:ba:1d: 4e:cb:c0:37:fc:78:7e:02:dd:5f:13:4c:da:99:9b: 8b:7a:79:b3:96:c0:47:48:bf:5b:84:61:60:03:15: 42:84:da:9d:c1:e8:72:a7:c3:88:81:2e:6d:75:f3: c3:76:45:10:a3:6c:cf:bb:e3:01:76:3f:92:18:3c: 44:7d:16:7c:61:ec:ac:67:02:f6:49:61:b3:fd:3a: 9e:f3:4e:69:db:17:3e:ec:66:ef:a5:31:ec:5f:cb: 47:92:0a:56:94:b5:49:2a:31:33:bb:db:5d:f1:65: ca:b2:3e:fa:4d:61:31:fc:69:3c:44:57:53:06:76: c5:db:7d:f9:4a:53:d1:96:1b:53:61:15:ce:34:9d: 77:42:c5:94:9b:75:19:3e:9c:a0:81:f3:c5:1a:a4: 47:5b:6c:d4:c2:b1:54:bf:74:aa:54:2b:d0:d4:fb: 6a:d4:33:3b:91:7a:d7:14:df:58:23:2c:3b:a0:ba: 0e:90:d5:1a:38:2a:48:e1:13:eb:91:71:43:c0:e3: f9:52:3d:54:e7:30:ed:03:46:7a:bd:6b:d4:23:80: 86:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:3F:AD:F2:FF:9D:F7:EB:59:3F:04:5F:6A:0F:47:4A:73:08:A3:9C X509v3 Authority Key Identifier: keyid:A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:c1:c6:ef:14:9c:cf:24:2d:71:9b:ce:c9:e2:ed:2f:b3:aa: af:f1:bb:21:c5:36:45:56:b8:3f:43:e2:5c:e6:68:c9:98:98: 1c:61:8d:cd:4a:58:11:73:61:72:f1:6d:2b:23:8a:7c:63:de: 15:a0:76:e7:86:df:b8:66:41:7f:2a:ed:33:e5:bf:66:2a:a8: 5f:39:c5:58:c5:e6:f7:10:00:ac:0c:dc:1c:88:5f:17:87:23: 11:64:0e:5a:2f:f9:5c:1a:03:0c:51:bb:34:6b:86:fa:a0:d1: 2a:7c:60:a8:0a:ae:3d:99:39:2b:29:7a:90:82:0e:25:12:83: 2c:75:e5:90:8a:e8:dc:e5:f2:3d:5e:e5:10:1e:fe:b2:3b:d0: 4a:a3:65:45:6b:27:0c:de:c6:d6:57:03:1f:2f:14:a7:62:85: 2d:84:2f:d1:e3:fb:41:a6:17:bb:c3:94:a3:e9:6f:bd:eb:cb: fd:bd:3e:81:77:4c:d8:80:78:2f:32:d8:64:78:cf:66:09:45: a4:d1:4e:14:ce:0e:1f:65:e9:da:0f:0c:8f:07:6d:8b:05:e4: 70:02:81:3e:0d:5c:36:aa:5f:16:b7:5e:9d:9b:ce:b2:b2:96: f3:9c:e3:9e:7d:be:13:18:24:d2:77:39:e7:d4:00:b5:3b:a2: 7a:4f:26:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFEQjgxMTAvBgNVBAUTKEExMTFFODFDNEIzRTI3QkRBNkUyNzEyNDk3RjZEQkJB MENGQjA4MjYwHhcNMjYwMTEwMTY0MTE1WhcNMjYwMTE3MTY0MTE1WjAYMRYwFAYD VQQDDA02OTYyODEyYy0zNTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArgdR2Cb2c9xINx6gRlPUlDUxowJ2gscuUUsCyU4hr5sjq08jDN4bBsRmuh1O y8A3/Hh+At1fE0zamZuLenmzlsBHSL9bhGFgAxVChNqdwehyp8OIgS5tdfPDdkUQ o2zPu+MBdj+SGDxEfRZ8YeysZwL2SWGz/Tqe805p2xc+7GbvpTHsX8tHkgpWlLVJ KjEzu9td8WXKsj76TWEx/Gk8RFdTBnbF2335SlPRlhtTYRXONJ13QsWUm3UZPpyg gfPFGqRHW2zUwrFUv3SqVCvQ1Ptq1DM7kXrXFN9YIyw7oLoOkNUaOCpI4RPrkXFD wOP5Uj1U5zDtA0Z6vWvUI4CGgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLI/rfL/ nffrWT8EX2oPR0pzCKOcMB8GA1UdIwQYMBaAFKER6BxLPie9puJxJJf227oM+wgm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMURCOC8wRDk5MzFCQUEx MUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3Mm00bkVrbF9iYnVnejdD Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29SSG9IRXMtSjcybTRuRWtsX2JidWd6N0NDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MURCOC8wRDk5MzFCQUExMUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3 Mm00bkVrbF9iYnVnejdDQ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbwcbvFJzPJC1xm87J4u0vs6qv8bshxTZFVrg/Q+Jc5mjJmJgcYY3N SlgRc2Fy8W0rI4p8Y94VoHbnht+4ZkF/Ku0z5b9mKqhfOcVYxeb3EACsDNwciF8X hyMRZA5aL/lcGgMMUbs0a4b6oNEqfGCoCq49mTkrKXqQgg4lEoMsdeWQiujc5fI9 XuUQHv6yO9BKo2VFaycM3sbWVwMfLxSnYoUthC/R4/tBphe7w5Sj6W+968v9vT6B d0zYgHgvMthkeM9mCUWk0U4Uzg4fZenaDwyPB22LBeRwAoE+DVw2ql8Wt16dm86y spbznOOefb4TGCTSdznn1AC1O6J6Tya8 -----END CERTIFICATE-----Generated at Mon Jan 12 15:20:37 2026 by rpki-client