This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft File: OIX50v0IYCg7VTgfHE9KWjoe7z8.mft (raw, json) Hash identifier: qKwPUneAkcelh5OpHmnsfNUC6f0GS2hczwqANozw3RU= Subject key identifier: 4B:86:48:CC:57:D6:A2:FB:6D:4B:A1:E3:64:D8:71:C4:E9:16:3A:2D Authority key identifier: 38:85:F9:D2:FD:08:60:28:3B:55:38:1F:1C:4F:4A:5A:3A:1E:EF:3F Certificate issuer: /CN=A91847C2/serialNumber=3885F9D2FD0860283B55381F1C4F4A5A3A1EEF3F Certificate serial: 0134 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIX50v0IYCg7VTgfHE9KWjoe7z8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft Manifest number: 0131 Signing time: Mon 15 Dec 2025 03:55:05 +0000 Manifest this update: Mon 15 Dec 2025 03:55:05 +0000 Manifest next update: Mon 22 Dec 2025 03:55:05 +0000 Files and hashes: 1: OIX50v0IYCg7VTgfHE9KWjoe7z8.crl (hash: 8aMWt/9K26oYTEQuqs4VpkUrvWsvU5+AhOTJCafn2kI=) 2: 744D8A1005EE11EF851FA42FC4F9AE02.roa (hash: oPEA+euS8au7/G3eWPC6qnxCCEjdK5yKYosNW4PVWb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.crl rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIX50v0IYCg7VTgfHE9KWjoe7z8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 03:55:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 308 (0x134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847C2, serialNumber=3885F9D2FD0860283B55381F1C4F4A5A3A1EEF3F Validity Not Before: Dec 15 03:55:05 2025 GMT Not After : Dec 22 03:55:05 2025 GMT Subject: CN=693f8699-a767 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:f1:22:32:40:81:ed:d6:17:f6:8b:dc:ec:63: c2:8c:8d:8b:08:64:60:be:ca:2c:6c:8a:b4:1c:76: a3:2f:8a:8d:39:e1:ef:41:0d:fa:e3:60:a2:54:2c: f6:c6:77:41:25:e6:d3:cc:0f:10:d5:84:ac:06:b3: 3c:fa:15:e4:05:cb:27:42:a5:08:b6:af:f2:6c:61: aa:ed:5e:05:6c:52:59:ee:eb:30:2e:73:d7:30:d9: 77:76:74:8f:9b:3e:ae:6c:a4:ab:a7:ba:ec:aa:f0: ca:5c:43:f9:7f:38:bc:3f:7f:0e:5e:d2:b6:b6:94: 4f:72:48:03:f4:85:64:73:eb:ff:0c:38:ef:7a:25: d7:6a:68:54:5d:a1:a8:e8:a7:aa:41:3f:34:fd:18: 9c:ef:0d:ef:df:12:0f:cb:dc:51:f6:80:03:23:2a: e6:ef:fc:bc:e6:7b:9b:79:00:62:93:a8:d2:02:7f: 96:5b:7f:c3:ba:cd:33:50:3e:cf:9f:89:9f:10:b9: 9e:48:ce:6d:af:02:16:49:a0:88:12:de:3a:fc:14: 78:1b:28:da:51:4a:97:0b:7e:ca:e3:df:7e:15:cf: 93:84:c5:66:68:a8:ff:69:28:0b:ed:f1:9e:46:d2: c9:88:f8:80:45:cc:05:26:fb:fb:fb:c9:3a:3b:a7: 2a:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:86:48:CC:57:D6:A2:FB:6D:4B:A1:E3:64:D8:71:C4:E9:16:3A:2D X509v3 Authority Key Identifier: keyid:38:85:F9:D2:FD:08:60:28:3B:55:38:1F:1C:4F:4A:5A:3A:1E:EF:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIX50v0IYCg7VTgfHE9KWjoe7z8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:ea:67:a0:38:62:6c:74:76:04:28:b6:30:56:3e:08:03:3b: 6e:98:5f:af:1c:98:48:55:0c:d4:8c:9c:1e:33:73:66:99:70: 61:46:60:3a:d2:00:53:b4:a6:1a:09:31:06:48:31:3b:38:50: 10:09:b1:47:e1:a5:2c:bc:d2:2c:0d:f4:31:13:bd:54:8a:25: b0:9d:2d:df:8f:52:9a:72:1e:77:9a:56:0f:1a:e6:c7:99:fc: 0b:bb:f9:8b:47:62:08:e9:42:95:ea:1c:05:68:cf:cf:fe:c0: 2d:21:f1:a2:f7:58:99:34:9e:7f:ef:92:04:59:f7:6e:3c:74: 61:ca:66:5c:00:b7:17:b3:ee:1f:dd:0c:f2:82:62:60:08:4f: 51:8d:0f:1d:a8:e2:76:e8:0a:d7:e5:bf:06:3c:28:6d:e9:ad: c9:d1:11:1a:fd:36:f6:82:8e:05:ef:a4:63:d9:29:ab:d0:c1: e9:ed:fe:d4:38:09:06:0f:3c:14:46:0a:47:69:e7:22:22:c3: 53:20:e4:87:da:fe:db:cb:cc:da:3e:3f:b0:5b:f4:d3:82:31: 85:85:04:c8:14:c2:ae:bc:a6:b1:83:a5:e7:c5:4f:5e:4c:50: f5:5a:7e:7f:81:c2:06:91:f8:1a:e4:9d:24:17:a2:78:c3:d3: c9:0f:28:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QzIxMTAvBgNVBAUTKDM4ODVGOUQyRkQwODYwMjgzQjU1MzgxRjFDNEY0QTVB M0ExRUVGM0YwHhcNMjUxMjE1MDM1NTA1WhcNMjUxMjIyMDM1NTA1WjAYMRYwFAYD VQQDDA02OTNmODY5OS1hNzY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6PEiMkCB7dYX9ovc7GPCjI2LCGRgvsosbIq0HHajL4qNOeHvQQ3642CiVCz2 xndBJebTzA8Q1YSsBrM8+hXkBcsnQqUItq/ybGGq7V4FbFJZ7uswLnPXMNl3dnSP mz6ubKSrp7rsqvDKXEP5fzi8P38OXtK2tpRPckgD9IVkc+v/DDjveiXXamhUXaGo 6KeqQT80/Ric7w3v3xIPy9xR9oADIyrm7/y85nubeQBik6jSAn+WW3/Dus0zUD7P n4mfELmeSM5trwIWSaCIEt46/BR4GyjaUUqXC37K499+Fc+ThMVmaKj/aSgL7fGe RtLJiPiARcwFJvv7+8k6O6cqmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEuGSMxX 1qL7bUuh42TYccTpFjotMB8GA1UdIwQYMBaAFDiF+dL9CGAoO1U4HxxPSlo6Hu8/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdDMi9COTJCRkFENDA1 RUIxMUVGOTU2QkQ2NDNDNEY5QUUwMi9PSVg1MHYwSVlDZzdWVGdmSEU5S1dqb2U3 ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09JWDUwdjBJWUNnN1ZUZ2ZIRTlLV2pvZTd6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDdDMi9COTJCRkFENDA1RUIxMUVGOTU2QkQ2NDNDNEY5QUUwMi9PSVg1MHYwSVlD ZzdWVGdmSEU5S1dqb2U3ejgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAd6megOGJsdHYEKLYwVj4IAztumF+vHJhIVQzUjJweM3NmmXBhRmA6 0gBTtKYaCTEGSDE7OFAQCbFH4aUsvNIsDfQxE71UiiWwnS3fj1Kach53mlYPGubH mfwLu/mLR2II6UKV6hwFaM/P/sAtIfGi91iZNJ5/75IEWfduPHRhymZcALcXs+4f 3QzygmJgCE9RjQ8dqOJ26ArX5b8GPCht6a3J0REa/Tb2go4F76Rj2Smr0MHp7f7U OAkGDzwURgpHaeciIsNTIOSH2v7by8zaPj+wW/TTgjGFhQTIFMKuvKaxg6XnxU9e TFD1Wn5/gcIGkfga5J0kF6J4w9PJDyge -----END CERTIFICATE-----Generated at Tue Dec 16 04:43:14 2025 by rpki-client