This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.mft File: ObsL_xT7a0tfhhNydNQlE_N1Okc.mft (raw, json) Hash identifier: it6pWIHjtQU0caeKvD5yD0mIG/VjEVO5gelpmVK7cMM= Subject key identifier: 4D:AD:21:CE:A4:D0:98:F9:F3:96:64:39:5E:E5:12:49:00:34:07:B6 Authority key identifier: 39:BB:0B:FF:14:FB:6B:4B:5F:86:13:72:74:D4:25:13:F3:75:3A:47 Certificate issuer: /CN=A91124CC/serialNumber=39BB0BFF14FB6B4B5F86137274D42513F3753A47 Certificate serial: 0561 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ObsL_xT7a0tfhhNydNQlE_N1Okc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.mft Manifest number: 055A Signing time: Mon 22 Dec 2025 22:31:32 +0000 Manifest this update: Mon 22 Dec 2025 22:31:32 +0000 Manifest next update: Mon 29 Dec 2025 22:31:32 +0000 Files and hashes: 1: ObsL_xT7a0tfhhNydNQlE_N1Okc.crl (hash: ckuOLICMJWqFWaIkdWmTDkPJJ9aCWvyIvp7OPuYJfws=) 2: 5D4B0B5E153611ECA897546BC4F9AE02.roa (hash: c5J0KdHOLoi3ObVHZJngE8j6ijFOnrM4KMu8sfCJ1Cw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.crl rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ObsL_xT7a0tfhhNydNQlE_N1Okc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 22:31:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1377 (0x561) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91124CC, serialNumber=39BB0BFF14FB6B4B5F86137274D42513F3753A47 Validity Not Before: Dec 22 22:31:32 2025 GMT Not After : Dec 29 22:31:32 2025 GMT Subject: CN=6949c6c4-b0d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b8:fa:80:26:7b:43:96:9a:a9:97:be:b3:4b: 2d:9d:d5:4f:db:99:e8:18:8b:a9:91:d3:30:03:b8: 48:23:cd:2a:7e:e8:6d:cb:de:a8:2a:a7:49:88:15: 59:cb:d9:53:fc:48:ba:67:28:a0:39:bb:2d:be:d8: 70:30:3d:44:2f:46:dc:91:77:de:dd:06:b0:9a:5d: f4:cc:f8:70:36:83:c1:61:da:46:2d:55:65:6c:b9: 6a:f0:0d:b2:a1:80:90:6f:44:91:93:a9:a7:a2:ad: 23:68:49:c9:91:18:a2:6d:74:1b:58:d6:b6:59:c1: f0:75:f8:e5:36:78:9e:1c:bd:29:0f:42:22:db:df: c8:74:6b:41:0f:06:29:0f:b9:c4:69:9f:c2:34:ff: 12:0f:02:06:4a:7e:9d:11:68:c2:e3:db:59:15:3b: 9e:29:9d:2b:0e:3f:c7:8a:10:e6:13:d0:54:ba:d0: af:06:95:3a:b6:d1:dc:d0:ee:8a:9a:9d:6e:a7:23: 61:f1:e0:d6:b5:0f:05:06:04:13:0e:3b:cc:a0:c5: de:44:6c:a7:6c:ec:45:70:02:71:fc:58:73:13:30: a0:8c:82:41:17:19:95:62:13:8c:88:05:ec:15:e5: 7d:04:e0:a1:c5:3f:2c:14:9a:96:c9:a1:19:a7:b0: cc:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:AD:21:CE:A4:D0:98:F9:F3:96:64:39:5E:E5:12:49:00:34:07:B6 X509v3 Authority Key Identifier: keyid:39:BB:0B:FF:14:FB:6B:4B:5F:86:13:72:74:D4:25:13:F3:75:3A:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ObsL_xT7a0tfhhNydNQlE_N1Okc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:a9:fa:31:5c:b4:7d:8d:28:b8:52:66:ed:f9:da:a8:27:bc: 6c:a7:98:bf:d5:d4:98:52:15:07:8f:67:97:99:d9:af:de:c4: 61:b1:89:d3:5d:c9:5c:fb:c5:5c:cc:49:87:72:bc:dd:f5:51: 8d:35:e6:a6:19:8e:b0:24:0b:51:f5:d8:34:ae:d5:4b:f5:cf: c9:1b:ec:bc:e4:5d:39:55:09:0b:7b:35:56:b1:55:74:c7:7b: 13:b3:7a:26:1b:47:e2:bf:a8:d3:33:cf:e0:06:c4:3b:59:df: af:fd:54:26:99:78:f7:a5:22:f8:5a:89:23:55:5f:bb:0c:04: c6:be:07:8d:c3:82:08:cb:48:e9:62:cf:fa:24:d8:3d:ce:6c: 5d:5f:c4:3c:71:e5:bf:e3:af:1b:35:41:32:e8:85:37:c4:14: 07:1f:40:43:f4:75:ab:e8:9e:e2:c3:b3:9e:b3:8b:b3:be:6e: 1e:77:22:f7:a4:57:47:8d:c9:a6:f8:ad:a9:e4:2a:f4:09:6c: dd:1b:1a:44:e2:69:57:9b:a9:15:c6:0e:01:68:cd:24:bf:c8: 0e:03:b7:1f:b7:88:94:b5:6a:70:e8:4b:6a:1a:e0:34:e7:7a: e0:13:1c:0c:6a:26:0b:f4:66:5b:6c:32:e3:cd:d5:c3:4b:19: 4c:74:52:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI0Q0MxMTAvBgNVBAUTKDM5QkIwQkZGMTRGQjZCNEI1Rjg2MTM3Mjc0RDQyNTEz RjM3NTNBNDcwHhcNMjUxMjIyMjIzMTMyWhcNMjUxMjI5MjIzMTMyWjAYMRYwFAYD VQQDDA02OTQ5YzZjNC1iMGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp7j6gCZ7Q5aaqZe+s0stndVP25noGIupkdMwA7hII80qfuhty96oKqdJiBVZ y9lT/Ei6ZyigObstvthwMD1EL0bckXfe3Qawml30zPhwNoPBYdpGLVVlbLlq8A2y oYCQb0SRk6mnoq0jaEnJkRiibXQbWNa2WcHwdfjlNnieHL0pD0Ii29/IdGtBDwYp D7nEaZ/CNP8SDwIGSn6dEWjC49tZFTueKZ0rDj/HihDmE9BUutCvBpU6ttHc0O6K mp1upyNh8eDWtQ8FBgQTDjvMoMXeRGynbOxFcAJx/FhzEzCgjIJBFxmVYhOMiAXs FeV9BOChxT8sFJqWyaEZp7DMpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE2tIc6k 0Jj585ZkOV7lEkkANAe2MB8GA1UdIwQYMBaAFDm7C/8U+2tLX4YTcnTUJRPzdTpH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjRDQy9GODlDM0VCNjE1 MzExMUVDQjU5NEZCN0RDNEY5QUUwMi9PYnNMX3hUN2EwdGZoaE55ZE5RbEVfTjFP a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ic0xfeFQ3YTB0ZmhoTnlkTlFsRV9OMU9rYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjRDQy9GODlDM0VCNjE1MzExMUVDQjU5NEZCN0RDNEY5QUUwMi9PYnNMX3hUN2Ew dGZoaE55ZE5RbEVfTjFPa2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLqfoxXLR9jSi4Umbt+dqoJ7xsp5i/1dSYUhUHj2eXmdmv3sRhsYnT Xclc+8VczEmHcrzd9VGNNeamGY6wJAtR9dg0rtVL9c/JG+y85F05VQkLezVWsVV0 x3sTs3omG0fiv6jTM8/gBsQ7Wd+v/VQmmXj3pSL4WokjVV+7DATGvgeNw4IIy0jp Ys/6JNg9zmxdX8Q8ceW/468bNUEy6IU3xBQHH0BD9HWr6J7iw7Oes4uzvm4edyL3 pFdHjcmm+K2p5Cr0CWzdGxpE4mlXm6kVxg4BaM0kv8gOA7cft4iUtWpw6EtqGuA0 53rgExwMaiYL9GZbbDLjzdXDSxlMdFKB -----END CERTIFICATE-----Generated at Wed Dec 24 14:08:48 2025 by rpki-client