This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft File: OU6gholcbxfZNlSKMiOLgs95KU0.mft (raw, json) Hash identifier: E84gSZySxq2NvLOwbqnCqEdta9/TKdoS7sCJWkA6ZlQ= Subject key identifier: 78:55:B3:A9:EB:13:F3:BA:0C:86:78:D0:5D:9F:39:09:9A:34:B0:5D Authority key identifier: 39:4E:A0:86:89:5C:6F:17:D9:36:54:8A:32:23:8B:82:CF:79:29:4D Certificate issuer: /CN=A91AAE16/serialNumber=394EA086895C6F17D936548A32238B82CF79294D Certificate serial: 1023 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft Manifest number: 1014 Signing time: Thu 18 Dec 2025 17:17:08 +0000 Manifest this update: Thu 18 Dec 2025 17:17:08 +0000 Manifest next update: Thu 25 Dec 2025 17:17:08 +0000 Files and hashes: 1: OU6gholcbxfZNlSKMiOLgs95KU0.crl (hash: zubIY5kcNlU6YIbwK5p1LJUG2MBYw4JNEFi2vbmnIdQ=) 2: B2409F28DF9311EEBF6BC36DC4F9AE02.roa (hash: bOx/MaRmXB38ne/1h1RZYscRhBFAXmNorXwlc1KE7w8=) 3: 68DA14E65BB211E9BF474F16C4F9AE02.roa (hash: +yhzJzGn+WxW2d4EtUHBstgfBIaoIoaYoJwg0N+/u2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.crl rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:17:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4131 (0x1023) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE16, serialNumber=394EA086895C6F17D936548A32238B82CF79294D Validity Not Before: Dec 18 17:17:08 2025 GMT Not After : Dec 25 17:17:08 2025 GMT Subject: CN=69443714-1354 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:94:66:87:8c:26:a5:25:7a:13:cd:7e:17:03: 1c:da:14:61:90:7c:2d:25:a4:c4:b0:be:98:9f:53: 28:0e:77:1b:43:e8:11:87:b7:22:c6:5f:7a:2d:38: 7e:58:b5:be:f4:12:af:71:54:65:ca:df:b8:1c:f9: 9d:0f:6a:91:7c:55:7e:68:a4:63:53:20:02:ea:e9: 55:24:a1:30:36:be:1f:55:fb:08:59:a8:a7:d9:2e: 4f:98:3c:22:07:e3:21:b5:a2:04:80:d0:e5:f5:10: 64:87:eb:06:8f:af:05:76:da:db:e6:ae:87:06:ea: ee:55:d3:ad:87:82:5f:5f:45:11:c6:93:32:c4:7d: 58:04:35:6f:6b:f0:f9:76:8c:cf:f3:85:a7:a1:1d: bd:cb:ae:af:a6:cc:d8:76:39:8e:22:da:ca:8d:7e: e4:82:45:e1:3a:b7:86:9c:c1:fc:02:53:e4:d0:96: 82:89:50:3c:e8:63:92:45:9a:b9:9b:ee:50:5a:e4: db:d5:5f:b2:41:f5:66:20:b1:3d:7b:8e:ac:ff:55: d4:60:6f:ec:ab:28:aa:e2:e9:42:8c:34:00:4c:49: ff:74:a3:9e:3a:ed:26:31:e6:31:50:d2:a0:af:8c: 67:97:de:b4:e6:fe:16:2e:09:c5:c9:0f:5b:c6:ca: d0:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:55:B3:A9:EB:13:F3:BA:0C:86:78:D0:5D:9F:39:09:9A:34:B0:5D X509v3 Authority Key Identifier: keyid:39:4E:A0:86:89:5C:6F:17:D9:36:54:8A:32:23:8B:82:CF:79:29:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:ea:04:00:da:38:69:f9:91:54:d1:66:64:4b:a9:d8:92:6b: 23:b3:3c:f4:e0:d7:f3:56:c9:49:85:56:4c:c0:d0:77:57:84: 85:d0:8b:fa:1e:a5:d6:d9:28:58:e9:c0:fd:e1:7e:89:9d:55: e5:49:2b:19:23:84:9d:0c:26:ee:71:90:7b:03:56:9f:49:cc: b7:b3:19:3a:96:34:19:86:79:cf:07:64:ee:39:f6:0b:36:fe: 90:9c:12:f2:d8:f8:57:e0:2a:2b:74:d3:e1:b2:fe:a4:61:b0: 88:20:9d:21:dd:b7:45:f1:b4:ea:b2:46:d8:ce:61:75:5b:82: c0:8a:67:6e:37:b0:0f:64:47:fc:fe:2d:d8:aa:eb:89:55:20: 55:87:cc:98:0e:af:24:a7:98:51:19:09:99:cb:88:3f:e4:1d: b7:70:ac:65:b0:cd:9b:b9:4d:14:e1:ae:b0:2f:2d:26:06:6a: 50:d3:54:46:a1:49:d1:e3:9c:b2:bd:d4:63:b4:59:8a:4c:4b: 34:ae:08:a6:f4:61:a6:f4:92:70:cf:12:b2:e1:77:4b:14:7e: 99:71:8e:74:b9:09:be:35:ae:a0:60:4f:fc:19:30:0a:f6:4c: e1:53:e5:63:9b:20:0e:8e:f1:4c:b8:35:a8:ed:a6:18:bd:06: 65:53:8a:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICECMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFMTYxMTAvBgNVBAUTKDM5NEVBMDg2ODk1QzZGMTdEOTM2NTQ4QTMyMjM4Qjgy Q0Y3OTI5NEQwHhcNMjUxMjE4MTcxNzA4WhcNMjUxMjI1MTcxNzA4WjAYMRYwFAYD VQQDDA02OTQ0MzcxNC0xMzU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5Rmh4wmpSV6E81+FwMc2hRhkHwtJaTEsL6Yn1MoDncbQ+gRh7cixl96LTh+ WLW+9BKvcVRlyt+4HPmdD2qRfFV+aKRjUyAC6ulVJKEwNr4fVfsIWain2S5PmDwi B+MhtaIEgNDl9RBkh+sGj68Fdtrb5q6HBuruVdOth4JfX0URxpMyxH1YBDVva/D5 dozP84WnoR29y66vpszYdjmOItrKjX7kgkXhOreGnMH8AlPk0JaCiVA86GOSRZq5 m+5QWuTb1V+yQfVmILE9e46s/1XUYG/sqyiq4ulCjDQATEn/dKOeOu0mMeYxUNKg r4xnl9605v4WLgnFyQ9bxsrQCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHhVs6nr E/O6DIZ40F2fOQmaNLBdMB8GA1UdIwQYMBaAFDlOoIaJXG8X2TZUijIji4LPeSlN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUUxNi8xNzQ4ODU1MDVC QjExMUU5OEIxMDNCMTNDNEY5QUUwMi9PVTZnaG9sY2J4ZlpObFNLTWlPTGdzOTVL VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09VNmdob2xjYnhmWk5sU0tNaU9MZ3M5NUtVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUUxNi8xNzQ4ODU1MDVCQjExMUU5OEIxMDNCMTNDNEY5QUUwMi9PVTZnaG9sY2J4 ZlpObFNLTWlPTGdzOTVLVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAL6gQA2jhp+ZFU0WZkS6nYkmsjszz04NfzVslJhVZMwNB3V4SF0Iv6 HqXW2ShY6cD94X6JnVXlSSsZI4SdDCbucZB7A1afScy3sxk6ljQZhnnPB2TuOfYL Nv6QnBLy2PhX4CordNPhsv6kYbCIIJ0h3bdF8bTqskbYzmF1W4LAimduN7APZEf8 /i3YquuJVSBVh8yYDq8kp5hRGQmZy4g/5B23cKxlsM2buU0U4a6wLy0mBmpQ01RG oUnR45yyvdRjtFmKTEs0rgim9GGm9JJwzxKy4XdLFH6ZcY50uQm+Na6gYE/8GTAK 9kzhU+VjmyAOjvFMuDWo7aYYvQZlU4r9 -----END CERTIFICATE-----Generated at Sat Dec 20 01:35:52 2025 by rpki-client