This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft File: oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft (raw, json) Hash identifier: FGzX/KQsPDrkRTjMS5nraAynHWIIbpPyFf1PCJe/9P0= Subject key identifier: 9A:AB:08:D0:ED:46:D8:87:F4:25:D0:EC:62:4B:6E:0C:92:1B:D0:92 Authority key identifier: A0:9C:A2:D3:1B:16:BF:A5:84:A7:58:C3:A7:D5:1F:AC:D2:15:1B:02 Certificate issuer: /CN=A91A4ED0/serialNumber=A09CA2D31B16BFA584A758C3A7D51FACD2151B02 Certificate serial: 0B0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft Manifest number: 0B01 Signing time: Mon 22 Dec 2025 18:50:47 +0000 Manifest this update: Mon 22 Dec 2025 18:50:47 +0000 Manifest next update: Mon 29 Dec 2025 18:50:47 +0000 Files and hashes: 1: oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl (hash: Floioa6VYtY5hU/4L7kbJZcViCRq8aGqJFj4KWE0RQk=) 2: 52F59E403B4111ECABFD2186C4F9AE02.roa (hash: iGeCqjea5TKx5w3j1RMFWZOzP6n/8IBkqpNhUcYz96Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:50:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2827 (0xb0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4ED0, serialNumber=A09CA2D31B16BFA584A758C3A7D51FACD2151B02 Validity Not Before: Dec 22 18:50:47 2025 GMT Not After : Dec 29 18:50:47 2025 GMT Subject: CN=69499307-b28b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:9d:a6:33:84:ad:41:15:54:95:e3:e1:a0:22: 78:25:58:ca:24:a0:a7:0f:4f:63:46:9f:a5:c3:ca: e4:bf:77:3f:63:b0:8b:53:9b:93:35:bd:e0:ea:16: 10:89:e1:4d:31:a0:fa:fd:d9:90:ea:7c:ed:36:c0: ee:e8:db:e3:e9:d1:7a:52:e1:bb:7a:ce:a7:69:bc: b7:d6:4d:f1:82:0c:84:e2:55:c9:a0:39:8d:35:19: 7e:f3:bf:d3:23:35:23:80:99:3c:50:5e:87:0b:af: 72:24:df:7b:f4:07:34:a2:b9:ed:a3:6f:b0:f4:04: 9b:82:8b:08:e9:55:97:bf:47:1f:cb:16:25:0b:90: a9:de:45:e5:30:e1:3d:6d:8d:f2:46:cc:f4:bd:24: 40:49:fc:c9:72:20:b4:6a:f6:99:22:b1:ea:d4:23: 3f:40:6f:e6:a4:09:2c:58:3b:54:7a:8b:04:a9:a6: ad:15:96:83:e1:10:e1:05:23:44:70:e0:97:d9:46: fb:b5:ba:7b:bf:80:43:e1:6a:fe:65:79:88:83:11: 94:f5:85:b7:84:b8:58:0c:6e:88:fd:fe:3f:01:f7: 9a:7a:df:9c:37:33:dc:00:2a:3c:c8:7d:cb:c2:79: b2:c5:43:92:37:ad:34:19:bc:9f:f1:cb:60:fb:a7: 3c:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:AB:08:D0:ED:46:D8:87:F4:25:D0:EC:62:4B:6E:0C:92:1B:D0:92 X509v3 Authority Key Identifier: keyid:A0:9C:A2:D3:1B:16:BF:A5:84:A7:58:C3:A7:D5:1F:AC:D2:15:1B:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oJyi0xsWv6WEp1jDp9UfrNIVGwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4ED0/92B3CD5A58CF11EA85E8594DC4F9AE02/oJyi0xsWv6WEp1jDp9UfrNIVGwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:e2:d0:80:88:f9:a1:aa:06:14:38:37:ef:28:3b:8b:b2:40: 43:15:49:bf:40:b1:2a:cf:91:cc:00:bf:99:00:d8:80:1e:bc: fa:ce:72:ab:0f:24:81:db:8a:7e:67:45:0d:ef:0e:11:db:a3: 0e:27:54:9e:90:37:34:7e:37:3d:4d:1a:47:7d:e7:45:c7:4e: e4:83:62:96:bb:2d:cf:6d:aa:b1:9f:6f:b1:6f:77:44:d2:c4: 11:6a:1f:34:79:36:f9:41:72:9b:27:10:51:76:96:c5:a2:5b: 9c:e8:44:19:b4:53:04:b4:97:6b:1a:7c:1a:9f:dc:36:22:92: 6a:a9:e2:5c:2f:e8:9d:cc:c1:45:2c:8b:97:3f:b3:63:12:9a: 48:73:15:82:e4:c3:83:66:6b:44:0c:49:26:02:fd:38:97:ab: dd:27:5b:81:0c:cf:ad:84:7f:e9:a0:9e:c2:34:a5:a9:b8:6f: 7c:5f:a1:bb:18:ec:0f:41:e2:37:8f:35:82:1f:3d:9c:d6:de: 32:b5:6e:17:62:84:a7:1f:3f:9e:5d:09:19:d4:51:47:4b:f9: 04:c8:2d:e3:74:0e:9b:88:93:63:16:e5:2b:a2:2a:b5:21:8b: 1d:95:08:6b:9d:2b:db:b2:a4:59:56:ed:45:e9:59:ed:56:37: cb:a4:4f:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRFRDAxMTAvBgNVBAUTKEEwOUNBMkQzMUIxNkJGQTU4NEE3NThDM0E3RDUxRkFD RDIxNTFCMDIwHhcNMjUxMjIyMTg1MDQ3WhcNMjUxMjI5MTg1MDQ3WjAYMRYwFAYD VQQDDA02OTQ5OTMwNy1iMjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmZ2mM4StQRVUlePhoCJ4JVjKJKCnD09jRp+lw8rkv3c/Y7CLU5uTNb3g6hYQ ieFNMaD6/dmQ6nztNsDu6Nvj6dF6UuG7es6naby31k3xggyE4lXJoDmNNRl+87/T IzUjgJk8UF6HC69yJN979Ac0ornto2+w9ASbgosI6VWXv0cfyxYlC5Cp3kXlMOE9 bY3yRsz0vSRASfzJciC0avaZIrHq1CM/QG/mpAksWDtUeosEqaatFZaD4RDhBSNE cOCX2Ub7tbp7v4BD4Wr+ZXmIgxGU9YW3hLhYDG6I/f4/Afeaet+cNzPcACo8yH3L wnmyxUOSN600Gbyf8ctg+6c82wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJqrCNDt RtiH9CXQ7GJLbgySG9CSMB8GA1UdIwQYMBaAFKCcotMbFr+lhKdYw6fVH6zSFRsC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEVEMC85MkIzQ0Q1QTU4 Q0YxMUVBODVFODU5NERDNEY5QUUwMi9vSnlpMHhzV3Y2V0VwMWpEcDlVZnJOSVZH d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29KeWkweHNXdjZXRXAxakRwOVVmck5JVkd3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEVEMC85MkIzQ0Q1QTU4Q0YxMUVBODVFODU5NERDNEY5QUUwMi9vSnlpMHhzV3Y2 V0VwMWpEcDlVZnJOSVZHd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBu4tCAiPmhqgYUODfvKDuLskBDFUm/QLEqz5HMAL+ZANiAHrz6znKr DySB24p+Z0UN7w4R26MOJ1SekDc0fjc9TRpHfedFx07kg2KWuy3Pbaqxn2+xb3dE 0sQRah80eTb5QXKbJxBRdpbFoluc6EQZtFMEtJdrGnwan9w2IpJqqeJcL+idzMFF LIuXP7NjEppIcxWC5MODZmtEDEkmAv04l6vdJ1uBDM+thH/poJ7CNKWpuG98X6G7 GOwPQeI3jzWCHz2c1t4ytW4XYoSnHz+eXQkZ1FFHS/kEyC3jdA6biJNjFuUroiq1 IYsdlQhrnSvbsqRZVu1F6VntVjfLpE80 -----END CERTIFICATE-----Generated at Wed Dec 24 19:32:24 2025 by rpki-client