This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft File: OxaIpfe3JKr754IKLGPZey6o5SI.mft (raw, json) Hash identifier: hffHMVEfLf3q0MTrc9CWJtYBjzaQ2uwcKMrJIINx4NM= Subject key identifier: 88:5B:AB:1B:A9:42:5C:21:77:A2:D5:68:AE:E9:E5:5A:60:22:69:B5 Authority key identifier: 3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 Certificate issuer: /CN=A91772FA/serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Certificate serial: 0383 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft Manifest number: 037B Signing time: Sat 06 Dec 2025 23:27:24 +0000 Manifest this update: Sat 06 Dec 2025 23:27:24 +0000 Manifest next update: Sat 13 Dec 2025 23:27:24 +0000 Files and hashes: 1: OxaIpfe3JKr754IKLGPZey6o5SI.crl (hash: JZ9fc5XWWoJ8qwjHWjU6qxrUw/hr1cAQ6gynvp1RbCg=) 2: 2D613294CD7611EC83259862C4F9AE02.roa (hash: HUqC6JNil8MpabByxXZUWUh1z061818LFUdkHBUaghY=) 3: EF8CB49CD78F11EC91680D49C4F9AE02.roa (hash: m1T9GaVF/kOA3y3lDclBiCBdGMqPbCm1SzZbjGctr8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 23:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 899 (0x383) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91772FA, serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Validity Not Before: Dec 6 23:27:24 2025 GMT Not After : Dec 13 23:27:24 2025 GMT Subject: CN=6934bbdc-06e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:27:e3:14:de:4a:b6:09:91:01:42:47:61:b8: 2b:00:03:d5:18:37:f8:79:92:35:3e:f4:fd:24:8b: 6b:02:13:65:50:a9:6f:24:71:e4:0b:87:48:1a:e7: 93:48:a6:df:a2:8c:24:37:a3:d4:e8:6f:81:00:a0: 20:3e:13:fa:21:cb:6d:51:11:fa:5c:61:82:7a:cd: 48:09:a5:82:6d:d1:a1:d5:8e:6d:82:a2:3a:6f:00: ed:65:8d:c8:22:5e:9e:d2:9e:af:51:39:ba:27:74: 6f:22:d4:67:da:82:30:ea:62:99:4f:36:89:7d:21: e5:ed:13:8f:0a:d1:69:31:d3:03:6a:60:f8:05:ec: 01:df:b7:6f:ee:96:3c:64:7f:d6:88:3d:cd:5b:ce: d2:03:0d:1e:50:11:81:5f:48:00:aa:72:f0:ec:0e: bd:04:66:bf:18:8a:50:86:08:84:bc:41:a9:6b:73: 36:2b:76:bc:77:88:a3:b8:9c:77:19:0d:9a:c8:b5: ea:f0:a1:4f:77:66:f5:03:c9:ef:52:85:a3:ec:6e: 58:e0:13:d8:15:05:bc:5a:67:a6:a6:71:ee:69:a3: ea:57:18:f9:cc:14:6e:fe:62:76:68:2b:79:a9:34: aa:63:2e:61:e4:ef:30:9b:4f:3b:24:ab:3b:26:ad: 1f:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:5B:AB:1B:A9:42:5C:21:77:A2:D5:68:AE:E9:E5:5A:60:22:69:B5 X509v3 Authority Key Identifier: keyid:3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:26:b4:21:25:e5:6d:17:37:2c:4f:30:22:14:15:3a:de:7d: ca:84:66:05:df:3e:cd:cf:df:c2:4c:84:7d:46:75:cf:74:97: 6f:bc:c9:ad:c9:da:46:f6:85:a6:50:dc:8f:90:1d:87:fe:73: 82:90:e4:b5:f4:1b:9c:4e:c8:d7:6f:0b:cd:4e:8e:3e:fd:a5: c0:d1:8b:29:80:4c:f1:9a:ee:8e:08:bb:cc:c7:bb:ea:27:02: d5:f5:77:9b:ed:06:06:9a:9f:d5:5e:c3:3f:80:68:4d:23:0b: 98:0d:22:06:18:8b:c6:17:08:38:b7:70:0f:fd:23:ef:71:74: 7a:8e:49:8e:ba:b9:38:fe:5b:99:db:0e:95:8e:64:ca:3b:c2: a2:e2:81:be:bb:95:79:95:33:a1:dd:03:df:a5:68:7f:eb:fd: 49:cd:28:01:54:d3:eb:4b:e9:6c:2e:a7:38:a2:d5:ef:4b:e1: f0:ff:b0:af:69:dc:2b:f5:c7:f6:44:0c:7a:d2:8f:eb:28:b6: e4:08:1d:49:50:90:5c:c8:90:be:41:c3:18:5b:58:78:9b:39: 36:4a:b4:10:c4:85:71:ee:5c:57:ac:c3:9c:cf:18:16:5e:fe: 1f:7d:1a:11:19:b8:56:43:01:e8:87:c7:be:bd:a0:1f:16:a5: a4:ce:5d:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcyRkExMTAvBgNVBAUTKDNCMTY4OEE1RjdCNzI0QUFGQkU3ODIwQTJDNjNEOTdC MkVBOEU1MjIwHhcNMjUxMjA2MjMyNzI0WhcNMjUxMjEzMjMyNzI0WjAYMRYwFAYD VQQDEw02OTM0YmJkYy0wNmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7yfjFN5KtgmRAUJHYbgrAAPVGDf4eZI1PvT9JItrAhNlUKlvJHHkC4dIGueT SKbfoowkN6PU6G+BAKAgPhP6IcttURH6XGGCes1ICaWCbdGh1Y5tgqI6bwDtZY3I Il6e0p6vUTm6J3RvItRn2oIw6mKZTzaJfSHl7ROPCtFpMdMDamD4BewB37dv7pY8 ZH/WiD3NW87SAw0eUBGBX0gAqnLw7A69BGa/GIpQhgiEvEGpa3M2K3a8d4ijuJx3 GQ2ayLXq8KFPd2b1A8nvUoWj7G5Y4BPYFQW8WmempnHuaaPqVxj5zBRu/mJ2aCt5 qTSqYy5h5O8wm087JKs7Jq0f4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIhbqxup Qlwhd6LVaK7p5VpgImm1MB8GA1UdIwQYMBaAFDsWiKX3tySq++eCCixj2XsuqOUi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzJGQS9ENzI0NDU2MkNE NzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pLcjc1NElLTEdQWmV5Nm81 U0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL094YUlwZmUzSktyNzU0SUtMR1BaZXk2bzVTSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzJGQS9ENzI0NDU2MkNENzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pL cjc1NElLTEdQWmV5Nm81U0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKJrQhJeVtFzcsTzAiFBU63n3KhGYF3z7Nz9/CTIR9RnXPdJdvvMmt ydpG9oWmUNyPkB2H/nOCkOS19BucTsjXbwvNTo4+/aXA0YspgEzxmu6OCLvMx7vq JwLV9Xeb7QYGmp/VXsM/gGhNIwuYDSIGGIvGFwg4t3AP/SPvcXR6jkmOurk4/luZ 2w6VjmTKO8Ki4oG+u5V5lTOh3QPfpWh/6/1JzSgBVNPrS+lsLqc4otXvS+Hw/7Cv adwr9cf2RAx60o/rKLbkCB1JUJBcyJC+QcMYW1h4mzk2SrQQxIVx7lxXrMOczxgW Xv4ffRoRGbhWQwHoh8e+vaAfFqWkzl0E -----END CERTIFICATE-----Generated at Mon Dec 8 06:13:43 2025 by rpki-client