This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft File: OIes3fccvvSnUh2EUe7LrrJRnv0.mft (raw, json) Hash identifier: p1pE2ODxBxt0sRg10ClHGFuYmUcoHnuZ+qQmbcLf1K0= Subject key identifier: DC:20:64:64:86:31:C5:28:AE:42:51:29:86:45:18:2B:E0:12:54:18 Authority key identifier: 38:87:AC:DD:F7:1C:BE:F4:A7:52:1D:84:51:EE:CB:AE:B2:51:9E:FD Certificate issuer: /CN=A91778D4/serialNumber=3887ACDDF71CBEF4A7521D8451EECBAEB2519EFD Certificate serial: 0425 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft Manifest number: 0420 Signing time: Mon 22 Dec 2025 23:25:10 +0000 Manifest this update: Mon 22 Dec 2025 23:25:09 +0000 Manifest next update: Mon 29 Dec 2025 23:25:09 +0000 Files and hashes: 1: OIes3fccvvSnUh2EUe7LrrJRnv0.crl (hash: fsd8o8+VHX7A1GYUOC6EdJXzcKLJjL8xUmVG8/qZwq8=) 2: 13F9F650905511EC9A978D19C4F9AE02.roa (hash: LsezswxbsYTDkD8XmvSpL4OSBTZlfRn5UeJiOefMqvA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.crl rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:25:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1061 (0x425) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91778D4, serialNumber=3887ACDDF71CBEF4A7521D8451EECBAEB2519EFD Validity Not Before: Dec 22 23:25:09 2025 GMT Not After : Dec 29 23:25:09 2025 GMT Subject: CN=6949d356-12d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:bb:53:7e:04:82:d4:17:5f:d7:73:81:9c:6a: 1b:6f:10:90:06:21:b6:e5:4e:7d:84:9c:9c:04:d5: 80:4c:46:c8:c9:35:2b:ed:db:27:c2:9e:31:71:55: 29:34:7c:37:06:52:d2:ee:09:a6:5e:bc:9d:2c:14: e6:1e:87:0b:ec:d3:e5:b4:90:4f:7f:39:78:06:5d: ac:2f:70:06:8f:87:26:aa:a1:75:6c:b9:76:a5:0e: c7:c2:8a:fb:ca:e3:7d:f6:c1:1f:60:df:bf:a1:0e: b0:1e:91:fa:25:81:f4:69:25:21:90:a9:e5:9e:d4: 57:10:c3:0c:62:ed:8f:0f:fb:39:e4:e5:cf:87:af: 3f:d8:9b:d2:31:6f:73:26:5d:67:d1:0d:15:45:da: a0:e5:3c:68:03:b1:f2:1f:b5:c6:bf:d4:24:89:f3: b0:92:11:d1:c2:fc:8b:12:55:ed:98:5a:a9:d1:28: 68:01:8f:b9:14:e2:c7:8d:72:69:77:d7:87:9d:b3: a1:fd:32:03:86:80:7c:a9:08:ea:b4:f5:36:a0:b9: b4:6a:fc:25:13:11:90:6a:cb:92:95:e0:82:0e:ff: b5:11:73:36:b6:85:ac:34:27:d8:8c:97:60:e4:cf: 46:c2:68:fd:98:f1:5e:0e:c1:d3:41:d5:b9:60:3a: 46:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:20:64:64:86:31:C5:28:AE:42:51:29:86:45:18:2B:E0:12:54:18 X509v3 Authority Key Identifier: keyid:38:87:AC:DD:F7:1C:BE:F4:A7:52:1D:84:51:EE:CB:AE:B2:51:9E:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:0e:6f:6e:a6:e6:7d:74:fa:ab:36:f2:82:c9:c7:75:e7:b8: 3d:47:58:f0:34:eb:59:73:fc:dd:67:a7:76:a9:75:6a:ca:04: 50:a9:3a:51:e6:15:1b:bb:ed:28:61:2b:37:f0:e9:c9:0e:41: cf:b7:82:dd:de:f6:42:17:cc:0a:cf:92:77:50:0d:54:90:fb: a6:13:37:23:c6:3b:c2:25:14:46:00:5c:c6:9d:34:e4:f8:15: 04:4b:99:74:d6:64:c2:3d:6c:d3:12:ad:91:e8:e0:87:08:05: e9:be:62:e2:ae:a1:67:1d:b4:c5:6c:d5:77:3a:64:00:ca:1f: 69:25:83:4e:a9:fa:22:6c:67:2d:0a:0e:f6:87:5b:38:4f:9a: 5b:89:6b:2c:7f:0c:1d:c7:16:b2:c6:c0:90:54:a3:ec:05:5e: 9f:a1:70:1e:37:be:f5:89:7d:bf:b8:79:35:b6:7f:89:d4:0e: 6b:28:fd:b6:a3:27:05:60:f2:03:53:e1:7b:48:8a:ef:25:f1: 5d:cb:33:34:1e:59:3b:4b:0e:87:ce:a8:39:21:15:75:c7:30: e1:25:20:ef:90:bd:6b:6a:07:15:fe:d0:36:92:7d:14:c6:f4: 5c:71:b6:1d:23:b8:98:09:a4:c8:96:59:34:23:00:7f:3c:4a: d7:80:8e:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc4RDQxMTAvBgNVBAUTKDM4ODdBQ0RERjcxQ0JFRjRBNzUyMUQ4NDUxRUVDQkFF QjI1MTlFRkQwHhcNMjUxMjIyMjMyNTA5WhcNMjUxMjI5MjMyNTA5WjAYMRYwFAYD VQQDDA02OTQ5ZDM1Ni0xMmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsLtTfgSC1Bdf13OBnGobbxCQBiG25U59hJycBNWATEbIyTUr7dsnwp4xcVUp NHw3BlLS7gmmXrydLBTmHocL7NPltJBPfzl4Bl2sL3AGj4cmqqF1bLl2pQ7Hwor7 yuN99sEfYN+/oQ6wHpH6JYH0aSUhkKnlntRXEMMMYu2PD/s55OXPh68/2JvSMW9z Jl1n0Q0VRdqg5TxoA7HyH7XGv9QkifOwkhHRwvyLElXtmFqp0ShoAY+5FOLHjXJp d9eHnbOh/TIDhoB8qQjqtPU2oLm0avwlExGQasuSleCCDv+1EXM2toWsNCfYjJdg 5M9Gwmj9mPFeDsHTQdW5YDpGzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNwgZGSG McUorkJRKYZFGCvgElQYMB8GA1UdIwQYMBaAFDiHrN33HL70p1IdhFHuy66yUZ79 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzhENC9EOUQ1NjkzQTkw NTExMUVDQTM2OTk2MTVDNEY5QUUwMi9PSWVzM2ZjY3Z2U25VaDJFVWU3THJySlJu djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09JZXMzZmNjdnZTblVoMkVVZTdMcnJKUm52MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzhENC9EOUQ1NjkzQTkwNTExMUVDQTM2OTk2MTVDNEY5QUUwMi9PSWVzM2ZjY3Z2 U25VaDJFVWU3THJySlJudjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzDm9upuZ9dPqrNvKCycd157g9R1jwNOtZc/zdZ6d2qXVqygRQqTpR 5hUbu+0oYSs38OnJDkHPt4Ld3vZCF8wKz5J3UA1UkPumEzcjxjvCJRRGAFzGnTTk +BUES5l01mTCPWzTEq2R6OCHCAXpvmLirqFnHbTFbNV3OmQAyh9pJYNOqfoibGct Cg72h1s4T5pbiWssfwwdxxayxsCQVKPsBV6foXAeN771iX2/uHk1tn+J1A5rKP22 oycFYPIDU+F7SIrvJfFdyzM0Hlk7Sw6Hzqg5IRV1xzDhJSDvkL1ragcV/tA2kn0U xvRccbYdI7iYCaTIllk0IwB/PErXgI78 -----END CERTIFICATE-----Generated at Wed Dec 24 17:35:06 2025 by rpki-client