This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft File: oXkseNMOEHMKPERWHH5YIufxwvg.mft (raw, json) Hash identifier: MnMiVVdsHghF41gfskh7a8VxCjUy+EMlh05qB9WY2P4= Subject key identifier: 23:C5:AA:C3:C7:F4:6C:02:B4:6C:F4:5E:D0:62:58:6C:7D:0F:83:56 Authority key identifier: A1:79:2C:78:D3:0E:10:73:0A:3C:44:56:1C:7E:58:22:E7:F1:C2:F8 Certificate issuer: /CN=A91A093A/serialNumber=A1792C78D30E10730A3C44561C7E5822E7F1C2F8 Certificate serial: 08C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oXkseNMOEHMKPERWHH5YIufxwvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft Manifest number: 08B6 Signing time: Mon 22 Dec 2025 19:50:46 +0000 Manifest this update: Mon 22 Dec 2025 19:50:46 +0000 Manifest next update: Mon 29 Dec 2025 19:50:46 +0000 Files and hashes: 1: oXkseNMOEHMKPERWHH5YIufxwvg.crl (hash: CZhF44Le8+oPCBE10JaBPXSR1DDgnGGT/KUOKrYDo0Q=) 2: 153A3AE86A9111EF905C3C37C4F9AE02.roa (hash: LYF+KadzZ69diyD5rWiKHJlYkwO/eA/Z250K04w+xPI=) 3: AA973CB86A8B11EFB0774B61C4F9AE02.roa (hash: +w6DPiK2iGC1sFd6+H0KMfGyjFvRHYPwKc/prnzBHkc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.crl rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oXkseNMOEHMKPERWHH5YIufxwvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:50:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2242 (0x8c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A093A, serialNumber=A1792C78D30E10730A3C44561C7E5822E7F1C2F8 Validity Not Before: Dec 22 19:50:46 2025 GMT Not After : Dec 29 19:50:46 2025 GMT Subject: CN=6949a116-1d2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:7f:fd:84:80:d4:40:ca:ed:a6:29:ff:9d:16: 45:a7:a2:16:32:1c:1a:82:d1:ef:d4:1b:aa:76:b8: ce:d9:e3:e1:47:dd:40:c7:85:a0:d7:ce:0b:74:03: 17:77:f8:c1:c0:f9:1a:b7:f2:cf:59:c4:dd:c6:cb: 1a:06:f2:5c:70:e4:73:21:a4:cc:27:ef:9f:b7:39: 16:5c:c3:fa:a4:f0:63:15:c6:5c:04:9f:13:5f:bd: 80:c9:e6:b0:0e:eb:58:76:79:30:d5:1d:f2:85:39: 49:e2:3a:41:31:f5:13:90:75:5c:f8:81:95:3c:84: d2:44:0d:63:02:94:79:cb:1a:6b:8f:48:0a:20:ee: 28:b8:b8:6f:20:aa:6a:58:c4:6d:e9:52:ca:7b:c8: 87:bd:4b:c5:c4:de:cf:52:78:4f:65:1f:d3:fe:8d: 62:9b:ab:35:da:44:f5:7a:0a:21:92:3f:90:fb:eb: 75:af:89:d2:27:89:53:43:94:0f:53:48:f3:42:18: 38:9e:e9:ae:a0:37:bc:a8:7b:83:63:73:d6:3d:60: a9:e7:8c:76:98:ac:4c:a1:15:94:89:ce:e1:28:b2: 70:d3:6e:23:99:49:1c:fa:44:e6:9d:e4:7c:63:81: ec:80:ab:98:29:a8:16:4c:fc:94:55:6e:cf:42:4d: a8:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:C5:AA:C3:C7:F4:6C:02:B4:6C:F4:5E:D0:62:58:6C:7D:0F:83:56 X509v3 Authority Key Identifier: keyid:A1:79:2C:78:D3:0E:10:73:0A:3C:44:56:1C:7E:58:22:E7:F1:C2:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oXkseNMOEHMKPERWHH5YIufxwvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:d6:fa:71:6e:98:0c:dc:fe:de:e2:5e:f1:08:ba:11:9a:d5: 55:1a:ea:bc:98:b5:c4:64:0e:76:ae:5b:fe:de:2d:fb:0e:f2: f1:45:08:31:7d:bb:02:77:70:52:3d:15:37:bb:ad:ff:0e:e9: ce:9a:58:b8:7d:5e:64:93:d1:ef:42:e1:3b:63:e0:44:0e:a0: 80:fa:01:80:27:01:91:87:41:0e:13:5c:a5:1b:77:f4:c0:f1: 39:29:e9:3d:03:e8:11:c3:77:60:b2:d1:82:60:7d:6a:2d:bc: 76:05:bb:c5:9d:0e:93:53:73:17:5f:32:1f:e2:0e:54:6c:ee: 84:98:7b:f4:dc:fd:f0:a8:e7:89:c2:84:18:f4:19:8c:1d:d5: 5d:35:81:85:c5:0c:f1:70:9e:37:ad:b9:b3:70:92:74:de:a2: 69:7e:d9:2a:f0:72:42:7e:ab:62:e6:12:41:29:13:63:3c:13: 3a:fe:bb:ed:a8:92:6f:bd:71:01:5a:5c:9c:26:f1:5f:8f:6a: 07:0b:5b:65:74:7b:19:20:7c:89:8d:bd:19:9c:72:10:f5:bc: 4d:5d:f6:95:e7:be:5d:88:bc:78:b0:67:b1:0f:a8:1a:f0:73: 0f:dd:41:91:7e:f0:d7:7f:58:42:96:73:f5:de:53:f3:3c:ca: 01:70:02:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5M0ExMTAvBgNVBAUTKEExNzkyQzc4RDMwRTEwNzMwQTNDNDQ1NjFDN0U1ODIy RTdGMUMyRjgwHhcNMjUxMjIyMTk1MDQ2WhcNMjUxMjI5MTk1MDQ2WjAYMRYwFAYD VQQDDA02OTQ5YTExNi0xZDJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsH/9hIDUQMrtpin/nRZFp6IWMhwagtHv1BuqdrjO2ePhR91Ax4Wg184LdAMX d/jBwPkat/LPWcTdxssaBvJccORzIaTMJ++ftzkWXMP6pPBjFcZcBJ8TX72Ayeaw DutYdnkw1R3yhTlJ4jpBMfUTkHVc+IGVPITSRA1jApR5yxprj0gKIO4ouLhvIKpq WMRt6VLKe8iHvUvFxN7PUnhPZR/T/o1im6s12kT1egohkj+Q++t1r4nSJ4lTQ5QP U0jzQhg4numuoDe8qHuDY3PWPWCp54x2mKxMoRWUic7hKLJw024jmUkc+kTmneR8 Y4HsgKuYKagWTPyUVW7PQk2oHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCPFqsPH 9GwCtGz0XtBiWGx9D4NWMB8GA1UdIwQYMBaAFKF5LHjTDhBzCjxEVhx+WCLn8cL4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDkzQS9FQkEzNTMxRUNC RDgxMUVBODY3QUZCNEZDNEY5QUUwMi9vWGtzZU5NT0VITUtQRVJXSEg1WUl1Znh3 dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Ya3NlTk1PRUhNS1BFUldISDVZSXVmeHd2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDkzQS9FQkEzNTMxRUNCRDgxMUVBODY3QUZCNEZDNEY5QUUwMi9vWGtzZU5NT0VI TUtQRVJXSEg1WUl1Znh3dmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCP1vpxbpgM3P7e4l7xCLoRmtVVGuq8mLXEZA52rlv+3i37DvLxRQgx fbsCd3BSPRU3u63/DunOmli4fV5kk9HvQuE7Y+BEDqCA+gGAJwGRh0EOE1ylG3f0 wPE5Kek9A+gRw3dgstGCYH1qLbx2BbvFnQ6TU3MXXzIf4g5UbO6EmHv03P3wqOeJ woQY9BmMHdVdNYGFxQzxcJ43rbmzcJJ03qJpftkq8HJCfqti5hJBKRNjPBM6/rvt qJJvvXEBWlycJvFfj2oHC1tldHsZIHyJjb0ZnHIQ9bxNXfaV575diLx4sGexD6ga 8HMP3UGRfvDXf1hClnP13lPzPMoBcAJD -----END CERTIFICATE-----Generated at Tue Dec 23 08:28:22 2025 by rpki-client