This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft File: cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft (raw, json) Hash identifier: X9FVQ1kFfvxLBFGEJDgnUR2wAC7SsXn4dNbGI5rAcz4= Subject key identifier: DF:2F:AF:78:F0:77:B9:D9:8E:6D:25:AB:77:40:CD:21:ED:37:2F:0B Authority key identifier: 70:E8:85:57:B0:C0:82:C9:B0:6E:CF:59:B8:F2:8A:77:03:A6:38:01 Certificate issuer: /CN=A91764E1/serialNumber=70E88557B0C082C9B06ECF59B8F28A7703A63801 Certificate serial: 015F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft Manifest number: 015D Signing time: Thu 25 Dec 2025 03:08:54 +0000 Manifest this update: Thu 25 Dec 2025 03:08:53 +0000 Manifest next update: Thu 01 Jan 2026 03:08:53 +0000 Files and hashes: 1: cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl (hash: NiompJmD3z3xqDzhWvRvZJVflt6D4qq5oYsA2vsZD54=) 2: 0C708FB4C67E11EE87B34958C4F9AE02.roa (hash: Emtdf6B32dUyriQRU+z92VLtRvSD7HNe+9gqK+EmXtg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 Jan 2026 03:08:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 351 (0x15f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91764E1, serialNumber=70E88557B0C082C9B06ECF59B8F28A7703A63801 Validity Not Before: Dec 25 03:08:53 2025 GMT Not After : Jan 1 03:08:53 2026 GMT Subject: CN=694caac6-f701 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f1:0f:9a:3f:5b:14:eb:52:8d:4e:c5:ee:21: 82:89:a6:af:ff:d9:5b:fd:54:ba:ad:52:16:49:73: 75:29:e7:9e:bb:cd:8f:c1:c8:45:4d:e2:f8:e8:48: 59:a5:70:15:ee:bf:de:47:37:1a:0b:f7:53:b9:92: 55:d8:57:da:66:7b:80:b0:9a:f2:cb:3a:a8:73:a3: 89:93:bb:12:f5:b5:9c:87:fd:87:b9:2b:f7:21:08: 98:87:3d:a5:e8:e2:6d:62:45:e3:f7:a4:05:6c:98: a3:3a:96:fe:da:06:4b:c0:6c:8b:bb:fd:db:05:d5: 57:f8:e4:e5:30:90:82:1c:00:91:c0:c8:43:31:c5: 44:63:70:c5:4a:5a:8b:2e:4e:75:86:c3:de:0d:11: 84:20:c6:4d:5b:88:4a:b1:57:59:15:b5:55:11:fe: 4d:9b:15:4f:8c:bf:de:79:bf:84:9d:2d:39:e0:14: 9c:9f:5e:2c:d6:8d:30:71:7f:1e:2f:f9:f6:9a:43: 31:c3:ae:58:74:14:98:43:12:91:c6:32:c6:7d:b3: 0e:24:50:e6:57:6e:db:08:f6:65:4c:ef:50:28:ea: 95:e7:96:4c:44:bb:34:40:41:b0:78:a6:d7:2e:a7: 89:bc:6c:c8:44:93:16:9b:9e:8b:31:0f:f1:55:a7: 9e:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:2F:AF:78:F0:77:B9:D9:8E:6D:25:AB:77:40:CD:21:ED:37:2F:0B X509v3 Authority Key Identifier: keyid:70:E8:85:57:B0:C0:82:C9:B0:6E:CF:59:B8:F2:8A:77:03:A6:38:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:ee:a4:89:b5:01:6f:a6:4b:58:4c:ef:44:08:78:24:51:8c: 04:94:b4:e7:44:48:a5:48:4c:0b:f8:bd:9c:fa:9c:43:39:f0: 02:ea:cf:16:e4:a5:c3:9f:4e:68:23:7b:f7:92:ee:ef:5a:78: cc:59:a4:a0:82:1c:db:5a:dc:99:61:4b:9e:1d:02:77:ec:46: 0d:a2:5c:f6:ee:ee:ff:df:0d:0c:17:3d:49:f0:13:04:a1:ad: 46:82:4e:f2:3a:d7:3a:e3:e6:f4:07:a5:e7:ce:21:84:a8:f6: 82:84:56:c4:7e:46:5c:eb:26:5f:a3:e8:18:d9:ca:3c:06:f6: eb:4d:7c:7a:d2:3e:9d:03:1f:53:82:77:eb:d2:68:fc:c3:59: 48:6a:60:33:dd:ea:6e:21:b7:43:0e:96:6f:93:7a:01:ad:22: db:73:04:29:8b:5f:5d:3e:b0:43:44:10:b1:ba:ce:47:e5:f7: 61:12:f2:5b:5f:22:ea:99:e6:f9:f6:8b:c1:e6:d1:f0:06:85: a1:81:ea:c1:fb:51:be:8e:d7:22:29:48:59:b8:f0:57:1e:37: 06:2a:8a:0f:ac:50:2f:fd:a0:29:e5:b5:6c:ae:06:4e:10:93: a4:d3:da:42:81:5d:8d:83:1c:ae:f9:05:b0:42:bb:e5:e0:4b: 33:a2:e8:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY0RTExMTAvBgNVBAUTKDcwRTg4NTU3QjBDMDgyQzlCMDZFQ0Y1OUI4RjI4QTc3 MDNBNjM4MDEwHhcNMjUxMjI1MDMwODUzWhcNMjYwMTAxMDMwODUzWjAYMRYwFAYD VQQDDA02OTRjYWFjNi1mNzAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvEPmj9bFOtSjU7F7iGCiaav/9lb/VS6rVIWSXN1Keeeu82PwchFTeL46EhZ pXAV7r/eRzcaC/dTuZJV2FfaZnuAsJryyzqoc6OJk7sS9bWch/2HuSv3IQiYhz2l 6OJtYkXj96QFbJijOpb+2gZLwGyLu/3bBdVX+OTlMJCCHACRwMhDMcVEY3DFSlqL Lk51hsPeDRGEIMZNW4hKsVdZFbVVEf5NmxVPjL/eeb+EnS054BScn14s1o0wcX8e L/n2mkMxw65YdBSYQxKRxjLGfbMOJFDmV27bCPZlTO9QKOqV55ZMRLs0QEGweKbX LqeJvGzIRJMWm56LMQ/xVaeeUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN8vr3jw d7nZjm0lq3dAzSHtNy8LMB8GA1UdIwQYMBaAFHDohVewwILJsG7PWbjyincDpjgB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjRFMS82MjMxQTAyRUM2 N0QxMUVFODcwMjdCM0FDNEY5QUUwMi9jT2lGVjdEQWdzbXdiczladVBLS2R3T21P QUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NPaUZWN0RBZ3Ntd2JzOVp1UEtLZHdPbU9BRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjRFMS82MjMxQTAyRUM2N0QxMUVFODcwMjdCM0FDNEY5QUUwMi9jT2lGVjdEQWdz bXdiczladVBLS2R3T21PQUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCD7qSJtQFvpktYTO9ECHgkUYwElLTnREilSEwL+L2c+pxDOfAC6s8W 5KXDn05oI3v3ku7vWnjMWaSgghzbWtyZYUueHQJ37EYNolz27u7/3w0MFz1J8BME oa1Ggk7yOtc64+b0B6XnziGEqPaChFbEfkZc6yZfo+gY2co8BvbrTXx60j6dAx9T gnfr0mj8w1lIamAz3epuIbdDDpZvk3oBrSLbcwQpi19dPrBDRBCxus5H5fdhEvJb XyLqmeb59ovB5tHwBoWhgerB+1G+jtciKUhZuPBXHjcGKooPrFAv/aAp5bVsrgZO EJOk09pCgV2Ngxyu+QWwQrvl4Eszouga -----END CERTIFICATE-----Generated at Thu Dec 25 09:07:15 2025 by rpki-client