This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft File: oL2xs_Hk5wTrTU8s5f405lA3uUM.mft (raw, json) Hash identifier: BcUTiqx01/nRAdhnJLlXg7Nhadugqty7aYCV/ILyIlI= Subject key identifier: 21:74:89:EE:40:EC:D0:23:34:96:FA:66:1D:00:2E:9C:9F:90:C1:3A Authority key identifier: A0:BD:B1:B3:F1:E4:E7:04:EB:4D:4F:2C:E5:FE:34:E6:50:37:B9:43 Certificate issuer: /CN=A91A5B83/serialNumber=A0BDB1B3F1E4E704EB4D4F2CE5FE34E65037B943 Certificate serial: 095D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft Manifest number: 0950 Signing time: Mon 22 Dec 2025 19:33:15 +0000 Manifest this update: Mon 22 Dec 2025 19:33:15 +0000 Manifest next update: Mon 29 Dec 2025 19:33:15 +0000 Files and hashes: 1: oL2xs_Hk5wTrTU8s5f405lA3uUM.crl (hash: YIrODmvM9Q3kHG4IsqMrpb1Eml4VnGTYkWnaXhiWMOQ=) 2: A21F0938C44B11EB8CF88F1EC4F9AE02.roa (hash: /W7jNuOZe0YfOd8yIagbqgnCN+PhgeGc0tSQIMsMPPI=) 3: 975BB0CE73AD11EDAD75DB7DC4F9AE02.roa (hash: jBS/1Hlfhun69e6e4ZHEVPi7ipp4H+jsjI8X7M9ZNQw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.crl rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:33:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2397 (0x95d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5B83, serialNumber=A0BDB1B3F1E4E704EB4D4F2CE5FE34E65037B943 Validity Not Before: Dec 22 19:33:15 2025 GMT Not After : Dec 29 19:33:15 2025 GMT Subject: CN=69499cfb-8887 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:61:2f:77:da:85:c7:bc:0b:9f:14:45:08:93: 6b:74:d2:47:b9:9c:cc:f5:0c:37:ab:a8:b3:d6:03: 59:bc:44:2c:3a:80:0c:69:02:2d:9f:02:50:2a:43: 42:b8:4f:29:f0:ed:c4:a0:f8:8b:0f:40:18:b3:1b: dd:c6:fe:e4:9c:d3:59:73:b2:1d:b1:b6:b4:2c:f0: b6:7f:b0:d3:bb:e9:83:70:94:8c:5e:65:01:41:6a: b5:bc:a7:ab:9c:c1:d3:0e:3d:ce:ae:aa:6c:e1:d8: 01:c2:87:00:d5:93:59:d8:8e:78:1e:80:67:a4:8b: d7:e7:fe:e2:5a:3c:16:dc:df:40:1f:3b:5e:f2:12: fd:80:d4:72:ae:b7:a5:28:7d:b1:20:8e:eb:60:18: 24:5a:7f:15:28:85:3c:70:ba:3b:f2:44:38:22:65: 8f:01:1c:bd:2a:07:e3:f6:dc:57:2a:8f:e9:19:13: 11:27:09:1f:b3:d3:91:70:9e:4c:4e:4c:80:8e:85: 2a:81:d4:73:28:1c:70:bf:80:00:1e:3c:5c:0f:8b: a4:8f:b3:7b:0b:f8:0a:21:37:9f:3d:67:16:e1:07: 35:5e:67:cb:5d:e0:75:fd:d7:26:df:8e:eb:6a:89: 20:42:3f:e4:d7:4b:d8:62:c3:ab:1b:bc:69:7e:dc: 40:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:74:89:EE:40:EC:D0:23:34:96:FA:66:1D:00:2E:9C:9F:90:C1:3A X509v3 Authority Key Identifier: keyid:A0:BD:B1:B3:F1:E4:E7:04:EB:4D:4F:2C:E5:FE:34:E6:50:37:B9:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:98:68:b3:f3:76:7a:73:5e:bd:a4:26:93:44:21:db:b8:c9: ae:48:5b:da:f3:af:de:fc:ae:9c:63:f9:17:b8:69:b6:07:4a: be:40:57:74:0d:09:1e:bc:58:83:fc:95:56:76:ed:a6:c7:4e: 17:28:e0:bf:b5:94:a3:a8:b9:14:5e:d8:48:4e:7f:b5:45:36: 6b:13:ef:3f:b5:91:c5:a1:fe:5b:65:81:de:b4:84:f6:65:81: 40:81:30:23:1c:91:9a:d6:de:89:92:7f:7f:d0:ba:d3:d3:71: aa:21:a3:65:0d:1f:44:cb:d1:9d:e4:e3:99:9f:90:72:60:d6: d2:26:eb:8b:2c:ab:7b:56:3b:13:97:b9:2d:86:de:bb:2e:6b: f9:cb:04:5b:10:b8:2e:b2:ca:6b:ec:bd:fe:df:31:fe:30:ba: 75:21:22:05:11:4f:c9:12:b4:b1:af:66:17:38:7c:6b:72:e2: 47:89:b4:0e:29:35:a8:17:9b:14:36:c7:2a:60:9c:6a:28:25: ea:91:34:24:c4:b1:b3:33:c5:fc:5e:fb:45:4e:eb:d2:d3:a0: e9:de:2a:8e:01:19:5b:e9:87:b8:70:1d:b6:63:45:16:49:32: fe:17:4a:f5:1f:8e:51:ce:65:3f:09:4f:3a:d9:a2:e7:b3:45: 58:77:da:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCODMxMTAvBgNVBAUTKEEwQkRCMUIzRjFFNEU3MDRFQjRENEYyQ0U1RkUzNEU2 NTAzN0I5NDMwHhcNMjUxMjIyMTkzMzE1WhcNMjUxMjI5MTkzMzE1WjAYMRYwFAYD VQQDDA02OTQ5OWNmYi04ODg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGEvd9qFx7wLnxRFCJNrdNJHuZzM9Qw3q6iz1gNZvEQsOoAMaQItnwJQKkNC uE8p8O3EoPiLD0AYsxvdxv7knNNZc7Idsba0LPC2f7DTu+mDcJSMXmUBQWq1vKer nMHTDj3Orqps4dgBwocA1ZNZ2I54HoBnpIvX5/7iWjwW3N9AHzte8hL9gNRyrrel KH2xII7rYBgkWn8VKIU8cLo78kQ4ImWPARy9Kgfj9txXKo/pGRMRJwkfs9ORcJ5M TkyAjoUqgdRzKBxwv4AAHjxcD4ukj7N7C/gKITefPWcW4Qc1XmfLXeB1/dcm347r aokgQj/k10vYYsOrG7xpftxAQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCF0ie5A 7NAjNJb6Zh0ALpyfkME6MB8GA1UdIwQYMBaAFKC9sbPx5OcE601PLOX+NOZQN7lD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUI4My8wRjQ2Q0E4Q0FE QUYxMUVBODRDMDRFMTBDNEY5QUUwMi9vTDJ4c19IazV3VHJUVThzNWY0MDVsQTN1 VU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29MMnhzX0hrNXdUclRVOHM1ZjQwNWxBM3VVTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUI4My8wRjQ2Q0E4Q0FEQUYxMUVBODRDMDRFMTBDNEY5QUUwMi9vTDJ4c19IazV3 VHJUVThzNWY0MDVsQTN1VU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAimGiz83Z6c169pCaTRCHbuMmuSFva86/e/K6cY/kXuGm2B0q+QFd0 DQkevFiD/JVWdu2mx04XKOC/tZSjqLkUXthITn+1RTZrE+8/tZHFof5bZYHetIT2 ZYFAgTAjHJGa1t6Jkn9/0LrT03GqIaNlDR9Ey9Gd5OOZn5ByYNbSJuuLLKt7VjsT l7ktht67Lmv5ywRbELgusspr7L3+3zH+MLp1ISIFEU/JErSxr2YXOHxrcuJHibQO KTWoF5sUNscqYJxqKCXqkTQkxLGzM8X8XvtFTuvS06Dp3iqOARlb6Ye4cB22Y0UW STL+F0r1H45RzmU/CU862aLns0VYd9rM -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:00 2025 by rpki-client