This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91185B8/D9BF4394BE3111EDB4FF7D34C4F9AE02/owBvXZI9TJzDuBs4ocpnEnR9RAY.mft File: owBvXZI9TJzDuBs4ocpnEnR9RAY.mft (raw, json) Hash identifier: 9RIxGMbgCxFhCKXF7tauL6uWlP85YJPbK6GNS6Os6lw= Subject key identifier: F6:D4:75:D2:1D:9B:9A:0B:C9:0C:39:78:F6:2F:D0:76:1A:0D:F2:FE Authority key identifier: A3:00:6F:5D:92:3D:4C:9C:C3:B8:1B:38:A1:CA:67:12:74:7D:44:06 Certificate issuer: /CN=A91185B8/serialNumber=A3006F5D923D4C9CC3B81B38A1CA6712747D4406 Certificate serial: 020A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/owBvXZI9TJzDuBs4ocpnEnR9RAY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91185B8/D9BF4394BE3111EDB4FF7D34C4F9AE02/owBvXZI9TJzDuBs4ocpnEnR9RAY.mft Manifest number: 0209 Signing time: Tue 23 Dec 2025 01:21:03 +0000 Manifest this update: Tue 23 Dec 2025 01:21:03 +0000 Manifest next update: Tue 30 Dec 2025 01:21:03 +0000 Files and hashes: 1: owBvXZI9TJzDuBs4ocpnEnR9RAY.crl (hash: zlXxlFot/tCmqOPnM/NNA9uHEU8SxurDSM/XvuAujTk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91185B8/D9BF4394BE3111EDB4FF7D34C4F9AE02/owBvXZI9TJzDuBs4ocpnEnR9RAY.crl rsync://rpki.apnic.net/member_repository/A91185B8/D9BF4394BE3111EDB4FF7D34C4F9AE02/owBvXZI9TJzDuBs4ocpnEnR9RAY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/owBvXZI9TJzDuBs4ocpnEnR9RAY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:21:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 522 (0x20a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91185B8, serialNumber=A3006F5D923D4C9CC3B81B38A1CA6712747D4406 Validity Not Before: Dec 23 01:21:03 2025 GMT Not After : Dec 30 01:21:03 2025 GMT Subject: CN=6949ee7f-f9c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:17:b3:d5:d8:7f:0d:1e:62:27:0c:25:99:52: 10:38:23:72:6f:f4:47:e7:67:a1:fa:5e:97:db:0a: 78:ea:b3:19:e3:0b:4b:ca:87:bc:87:58:1a:49:9e: 86:59:aa:1e:89:5a:b4:a0:46:02:95:c3:73:57:c6: 20:ff:fb:5d:65:81:56:26:1c:d4:e7:2b:09:37:11: 3d:37:89:51:7d:0c:0f:03:42:70:dc:af:a3:a4:6d: bc:40:48:68:34:25:7c:28:da:10:54:2c:0d:d5:50: 78:23:c9:08:7e:0f:94:b9:bb:7f:23:ec:55:32:16: 27:70:95:0b:76:2a:62:6c:46:c4:8d:4a:4a:16:dd: f6:f7:76:e0:c5:43:ba:0c:1c:05:71:ab:ea:45:d7: f3:06:fe:a2:5b:9c:36:cf:84:b1:80:0b:9d:ff:f2: 8e:62:87:06:06:09:dd:e5:16:1c:c6:59:2e:d9:22: e3:e4:47:30:84:3f:57:b0:29:f4:c6:2c:d7:05:6d: 41:70:c5:14:40:4a:bb:35:3e:7b:02:f8:4c:82:c2: 25:66:6e:f7:0b:9a:97:1c:91:60:0f:45:9b:7e:16: 05:d4:84:1e:84:18:15:18:c8:b0:31:ae:67:d5:81: 51:a9:81:2c:ab:b8:3c:75:b3:60:52:22:2c:31:c9: 91:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:D4:75:D2:1D:9B:9A:0B:C9:0C:39:78:F6:2F:D0:76:1A:0D:F2:FE X509v3 Authority Key Identifier: keyid:A3:00:6F:5D:92:3D:4C:9C:C3:B8:1B:38:A1:CA:67:12:74:7D:44:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91185B8/D9BF4394BE3111EDB4FF7D34C4F9AE02/owBvXZI9TJzDuBs4ocpnEnR9RAY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/owBvXZI9TJzDuBs4ocpnEnR9RAY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91185B8/D9BF4394BE3111EDB4FF7D34C4F9AE02/owBvXZI9TJzDuBs4ocpnEnR9RAY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:4a:2a:13:3d:a5:bc:40:25:21:66:ec:49:e0:71:d9:3a:dc: 24:89:c6:18:98:3e:1a:ee:d3:83:3c:fc:ea:08:cd:45:e9:ae: 9b:66:58:1f:27:5a:b6:52:09:e5:b6:a6:09:b8:c8:0d:0f:ab: e1:03:a8:79:ff:e6:5d:54:fa:b0:4f:c5:be:7c:27:6f:98:85: 68:93:70:5b:35:d3:01:3e:4d:2e:c2:90:15:40:c6:e7:df:48: 08:b0:8f:a8:4f:f4:f1:68:7c:83:0c:44:7f:37:41:14:b0:8f: b7:43:17:8e:fc:19:fa:75:9f:63:87:6d:e8:6b:09:02:c2:73: 75:70:a7:fb:69:c3:10:32:f1:9a:ab:8f:41:fb:ca:e6:08:b9: 56:d6:22:c1:6c:0b:53:65:9d:cb:59:c0:56:25:91:b4:83:e8: a0:91:27:ad:9c:20:89:60:91:94:44:4b:aa:53:77:2b:2d:b3: ae:b7:15:a1:d3:eb:9d:bd:ce:4e:34:8e:90:ec:9e:a0:c8:d6: 5b:fb:eb:8f:56:59:e7:8e:c9:d2:36:d7:61:e1:d2:f4:2a:64: dd:6c:44:12:04:88:8f:12:26:d7:75:4d:e5:c2:91:fd:d1:2d: f8:cc:b6:38:1a:7a:20:d3:19:07:f6:9e:09:80:6c:e2:44:08: a4:91:be:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg1QjgxMTAvBgNVBAUTKEEzMDA2RjVEOTIzRDRDOUNDM0I4MUIzOEExQ0E2NzEy NzQ3RDQ0MDYwHhcNMjUxMjIzMDEyMTAzWhcNMjUxMjMwMDEyMTAzWjAYMRYwFAYD VQQDDA02OTQ5ZWU3Zi1mOWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzBez1dh/DR5iJwwlmVIQOCNyb/RH52eh+l6X2wp46rMZ4wtLyoe8h1gaSZ6G WaoeiVq0oEYClcNzV8Yg//tdZYFWJhzU5ysJNxE9N4lRfQwPA0Jw3K+jpG28QEho NCV8KNoQVCwN1VB4I8kIfg+Uubt/I+xVMhYncJULdipibEbEjUpKFt3293bgxUO6 DBwFcavqRdfzBv6iW5w2z4SxgAud//KOYocGBgnd5RYcxlku2SLj5EcwhD9XsCn0 xizXBW1BcMUUQEq7NT57AvhMgsIlZm73C5qXHJFgD0WbfhYF1IQehBgVGMiwMa5n 1YFRqYEsq7g8dbNgUiIsMcmR+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPbUddId m5oLyQw5ePYv0HYaDfL+MB8GA1UdIwQYMBaAFKMAb12SPUycw7gbOKHKZxJ0fUQG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODVCOC9EOUJGNDM5NEJF MzExMUVEQjRGRjdEMzRDNEY5QUUwMi9vd0J2WFpJOVRKekR1QnM0b2NwbkVuUjlS QVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL293QnZYWkk5VEp6RHVCczRvY3BuRW5SOVJBWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODVCOC9EOUJGNDM5NEJFMzExMUVEQjRGRjdEMzRDNEY5QUUwMi9vd0J2WFpJOVRK ekR1QnM0b2NwbkVuUjlSQVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzSioTPaW8QCUhZuxJ4HHZOtwkicYYmD4a7tODPPzqCM1F6a6bZlgf J1q2UgnltqYJuMgND6vhA6h5/+ZdVPqwT8W+fCdvmIVok3BbNdMBPk0uwpAVQMbn 30gIsI+oT/TxaHyDDER/N0EUsI+3QxeO/Bn6dZ9jh23oawkCwnN1cKf7acMQMvGa q49B+8rmCLlW1iLBbAtTZZ3LWcBWJZG0g+igkSetnCCJYJGUREuqU3crLbOutxWh 0+udvc5ONI6Q7J6gyNZb++uPVlnnjsnSNtdh4dL0KmTdbEQSBIiPEibXdU3lwpH9 0S34zLY4Gnog0xkH9p4JgGziRAikkb6H -----END CERTIFICATE-----Generated at Wed Dec 24 17:37:39 2025 by rpki-client