This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft File: orn_7UcMW3HFLztks7btpBm-E7M.mft (raw, json) Hash identifier: RvBsmcTPRbr/K3vSv4zPEUxplYh0Myfq3bcOTL/ODcc= Subject key identifier: CC:49:34:98:58:62:9B:78:2B:39:2E:ED:BF:A3:0A:E6:B4:98:FE:F9 Authority key identifier: A2:B9:FF:ED:47:0C:5B:71:C5:2F:3B:64:B3:B6:ED:A4:19:BE:13:B3 Certificate issuer: /CN=A91187C1/serialNumber=A2B9FFED470C5B71C52F3B64B3B6EDA419BE13B3 Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft Manifest number: 52 Signing time: Wed 03 Dec 2025 05:27:07 +0000 Manifest this update: Wed 03 Dec 2025 05:27:07 +0000 Manifest next update: Wed 10 Dec 2025 05:27:07 +0000 Files and hashes: 1: orn_7UcMW3HFLztks7btpBm-E7M.crl (hash: S9PBC+y8QH97VTJ6tpumRomlGUstAKRVfniGEQQ0Mxs=) 2: C265A63A571211F092B99F2AC4F9AE02.roa (hash: mdIvnywtfDJvKSbbhgc4qSg7/SJGPr319lK/wnjqr9k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.crl rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 05:27:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91187C1, serialNumber=A2B9FFED470C5B71C52F3B64B3B6EDA419BE13B3 Validity Not Before: Dec 3 05:27:07 2025 GMT Not After : Dec 10 05:27:07 2025 GMT Subject: CN=692fca2b-ed77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:3b:9f:fd:21:0b:4b:59:93:eb:c7:3a:33:be: 2d:9f:83:10:95:7b:0a:2b:3d:34:0d:47:90:c5:a5: e8:c7:9a:18:b0:5e:fe:ec:68:22:c3:fb:ed:07:2f: de:fa:d4:26:15:a4:46:67:4c:5d:11:97:ee:ad:aa: 3e:ae:5c:f0:e0:5a:da:e3:b1:1a:e0:83:9f:5b:a5: ab:38:3b:04:4d:21:37:d8:cb:5c:d4:71:b3:33:3f: 78:66:0d:8b:c4:dc:72:1a:5b:ee:5a:15:d7:da:ed: 99:b9:99:f1:2c:0e:cd:f7:d1:39:6a:51:bc:9d:fc: 05:0e:2a:d9:2f:b3:47:78:b9:97:8c:ec:6c:b8:8b: 2d:e7:33:13:91:dd:26:b1:d9:be:98:97:77:65:3f: b0:ab:c5:ab:66:f2:a4:4c:51:f0:98:0a:ea:85:fa: 09:cf:a0:c9:6e:eb:eb:65:f9:34:61:70:ff:54:68: f2:71:56:19:a3:56:79:33:f3:2c:3a:ae:91:32:d3: 07:87:5c:1a:10:33:62:86:d4:ca:d2:4d:04:9b:2e: eb:65:96:95:8e:87:80:ef:08:28:87:30:66:71:ee: 0c:44:79:7c:73:9b:e2:8f:c8:32:e6:00:2c:80:e3: 25:3c:40:66:d1:27:eb:53:ba:54:7e:fb:1f:ba:01: 96:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:49:34:98:58:62:9B:78:2B:39:2E:ED:BF:A3:0A:E6:B4:98:FE:F9 X509v3 Authority Key Identifier: keyid:A2:B9:FF:ED:47:0C:5B:71:C5:2F:3B:64:B3:B6:ED:A4:19:BE:13:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:3c:17:01:70:d7:a2:9b:99:27:cc:7b:5e:f5:0b:60:15:40: c8:6e:cb:a4:d9:5d:18:db:51:e3:1a:5b:07:c7:78:a1:05:bf: 09:0b:ea:92:e3:0c:e8:50:f3:98:56:f4:e9:7a:92:25:36:5a: 47:c6:83:aa:a8:71:a1:d4:38:ee:d3:5e:44:f5:1a:80:36:0e: 41:78:19:92:a5:ad:32:c1:3d:0b:3e:d3:4d:57:90:fb:d0:e8: c2:12:2f:a7:e0:84:89:c8:63:53:4b:cd:5b:2c:6a:0d:a9:77: 47:78:96:37:fa:63:e9:27:d7:c4:49:ec:b5:03:85:06:f1:bb: 85:6d:b0:a3:37:41:6b:a2:ab:73:b5:d2:27:21:38:89:03:aa: ec:7e:8d:f6:61:45:f8:be:7a:92:5f:a9:46:cd:9f:9d:9c:63: f2:f0:ae:05:a0:e4:e0:f8:4b:24:f0:ff:94:f4:51:43:e4:f6: 42:b3:bb:35:c9:6e:c9:ae:a4:ea:69:fe:f2:eb:05:f3:17:e9: 61:2f:9f:5c:d3:2a:76:20:34:35:79:36:30:7a:2c:a8:22:da: ba:93:c0:db:d6:74:77:c7:42:2b:2e:1d:34:c4:6a:c5:47:c1: 84:a2:8f:c7:7b:92:be:2b:0c:69:4f:b4:34:d8:48:6a:86:aa: 12:70:b9:28 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx ODdDMTExMC8GA1UEBRMoQTJCOUZGRUQ0NzBDNUI3MUM1MkYzQjY0QjNCNkVEQTQx OUJFMTNCMzAeFw0yNTEyMDMwNTI3MDdaFw0yNTEyMTAwNTI3MDdaMBgxFjAUBgNV BAMTDTY5MmZjYTJiLWVkNzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwO5/9IQtLWZPrxzozvi2fgxCVeworPTQNR5DFpejHmhiwXv7saCLD++0HL976 1CYVpEZnTF0Rl+6tqj6uXPDgWtrjsRrgg59bpas4OwRNITfYy1zUcbMzP3hmDYvE 3HIaW+5aFdfa7Zm5mfEsDs330TlqUbyd/AUOKtkvs0d4uZeM7Gy4iy3nMxOR3Sax 2b6Yl3dlP7Crxatm8qRMUfCYCuqF+gnPoMlu6+tl+TRhcP9UaPJxVhmjVnkz8yw6 rpEy0weHXBoQM2KG1MrSTQSbLutllpWOh4DvCCiHMGZx7gxEeXxzm+KPyDLmACyA 4yU8QGbRJ+tTulR++x+6AZbvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzEk0mFhi m3grOS7tv6MK5rSY/vkwHwYDVR0jBBgwFoAUorn/7UcMW3HFLztks7btpBm+E7Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4N0MxLzI2MzFDOEI0NTcw QTExRjBCNTM4Q0Y2NUM0RjlBRTAyL29ybl83VWNNVzNIRkx6dGtzN2J0cEJtLUU3 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvb3JuXzdVY01XM0hGTHp0a3M3YnRwQm0tRTdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4 N0MxLzI2MzFDOEI0NTcwQTExRjBCNTM4Q0Y2NUM0RjlBRTAyL29ybl83VWNNVzNI Rkx6dGtzN2J0cEJtLUU3TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABs8FwFw16KbmSfMe171C2AVQMhuy6TZXRjbUeMaWwfHeKEFvwkL6pLj DOhQ85hW9Ol6kiU2WkfGg6qocaHUOO7TXkT1GoA2DkF4GZKlrTLBPQs+001XkPvQ 6MISL6fghInIY1NLzVssag2pd0d4ljf6Y+kn18RJ7LUDhQbxu4VtsKM3QWuiq3O1 0ichOIkDqux+jfZhRfi+epJfqUbNn52cY/LwrgWg5OD4SyTw/5T0UUPk9kKzuzXJ bsmupOpp/vLrBfMX6WEvn1zTKnYgNDV5NjB6LKgi2rqTwNvWdHfHQisuHTTEasVH wYSij8d7kr4rDGlPtDTYSGqGqhJwuSg= -----END CERTIFICATE-----Generated at Wed Dec 3 13:58:17 2025 by rpki-client