This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft File: Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft (raw, json) Hash identifier: +FyvMJWE0IvSn2VvtrqiWUuaIzMU6wKAVTuyO1YtngM= Subject key identifier: 89:26:B2:B4:BF:70:CA:9E:17:B3:42:3C:E9:D0:93:91:6E:0D:FC:2A Authority key identifier: 3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C Certificate issuer: /CN=A91ACD4D/serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Certificate serial: 1697 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft Manifest number: 1685 Signing time: Sat 06 Dec 2025 16:16:21 +0000 Manifest this update: Sat 06 Dec 2025 16:16:20 +0000 Manifest next update: Sat 13 Dec 2025 16:16:20 +0000 Files and hashes: 1: Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl (hash: U10+gslBQn9Ugr2vcjodfAJzLJG0Qk9e6aCB6A2j3VI=) 2: 268ECB3ED5BD11E894FFC250C4F9AE02.roa (hash: sJz6G/xstqw6p4gPUJK4gZEDHHsTgFb0oSV9wpMQ7es=) 3: 3DE1DBC4D81011EC892E8A79C4F9AE02.roa (hash: bW1tXZTK5POt+zZDGbG4YDsox5kPeg50QnLxOuLANNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 16:16:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5783 (0x1697) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD4D, serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Validity Not Before: Dec 6 16:16:20 2025 GMT Not After : Dec 13 16:16:20 2025 GMT Subject: CN=693456d5-121c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:37:fc:46:6a:2e:4f:45:b3:0e:cd:ac:04:60: 48:ed:67:a8:7c:2f:0c:b3:bd:33:9f:ad:ef:8a:cf: da:b8:41:08:77:32:77:dc:b5:ae:da:38:68:c5:d0: 7f:ee:0e:a9:10:ae:c6:be:f3:cc:b5:a1:aa:53:4b: a6:f6:49:66:69:fc:29:a8:ea:3a:50:6f:88:3d:10: 50:b7:57:e4:48:d4:72:78:20:fe:ee:85:4b:da:50: 01:a2:d1:c0:ae:2c:56:38:a6:f4:5a:a3:98:16:72: 59:21:9a:11:31:01:dc:36:e6:09:ae:f2:f5:f5:a6: 39:a8:44:1c:e4:f2:98:c3:c0:08:14:df:21:98:24: 77:45:71:1d:6d:33:77:a6:87:eb:69:97:a4:f1:b5: c8:1e:34:3d:a7:ed:61:1f:f3:0e:de:83:b0:fb:91: 7f:eb:e3:f7:1d:df:eb:eb:36:37:81:dc:83:c4:5f: 45:a3:82:78:b2:ca:c0:48:d2:17:da:5e:43:c8:4e: a2:1b:8e:47:b8:da:f7:af:64:6e:94:d4:51:65:cf: 64:30:7e:6b:f3:02:f0:19:aa:6b:f3:f2:56:4c:f6: 01:fa:2e:81:cb:df:d4:8e:14:90:d1:4a:d6:57:3f: 9d:5c:56:55:2a:6b:d6:bb:77:2b:4b:84:c7:a0:00: 19:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:26:B2:B4:BF:70:CA:9E:17:B3:42:3C:E9:D0:93:91:6E:0D:FC:2A X509v3 Authority Key Identifier: keyid:3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:a8:1c:83:6f:95:1c:39:4b:72:be:9b:87:50:3e:ba:da:25: 58:ab:e9:74:dc:60:d5:9d:c6:a6:65:76:05:b0:0a:47:e6:f4: 2d:e7:53:93:48:b2:8f:3f:73:4b:8a:23:60:9c:72:62:d6:3d: a5:30:25:83:50:8e:88:0a:3b:f1:a6:35:c0:74:12:7c:1f:7d: 5c:85:a1:ba:c4:27:c5:56:51:b0:7d:5b:47:26:67:5b:96:a8: c9:11:41:dd:bf:b7:0a:65:a8:d1:ae:13:ca:7c:d4:0b:92:29: 75:d0:f6:a1:2c:66:9e:22:37:83:c3:8a:4e:72:ab:a5:90:65: 92:fa:e7:b0:fa:5f:a4:9b:70:b0:cb:44:8b:57:45:12:21:fd: 7e:0b:d9:07:29:ba:a9:ba:65:39:69:bf:dc:15:ea:f9:59:a5: d2:ee:ab:c4:d8:3a:e7:1b:df:9d:9e:45:a8:12:e3:38:e9:f5: bb:d7:10:ba:dd:5d:85:ba:e7:6d:7c:e6:a3:89:c4:74:67:6d: fe:e1:9f:f2:08:2b:01:59:11:6d:39:21:25:11:17:57:b3:2f: 96:a4:f0:31:14:d1:ac:57:24:9d:2b:83:ae:ae:78:7a:7d:6f: 44:06:5b:45:1d:9f:de:61:08:d9:22:61:91:72:f7:22:1c:b5: 6c:4d:4d:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFpcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENEQxMTAvBgNVBAUTKDNBNDZGQjBGNDBGNjlENUUxREI3NUQyODUxRjA0MEMx OUY2NkYyMkMwHhcNMjUxMjA2MTYxNjIwWhcNMjUxMjEzMTYxNjIwWjAYMRYwFAYD VQQDEw02OTM0NTZkNS0xMjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuzf8RmouT0WzDs2sBGBI7WeofC8Ms70zn63vis/auEEIdzJ33LWu2jhoxdB/ 7g6pEK7GvvPMtaGqU0um9klmafwpqOo6UG+IPRBQt1fkSNRyeCD+7oVL2lABotHA rixWOKb0WqOYFnJZIZoRMQHcNuYJrvL19aY5qEQc5PKYw8AIFN8hmCR3RXEdbTN3 pofraZek8bXIHjQ9p+1hH/MO3oOw+5F/6+P3Hd/r6zY3gdyDxF9Fo4J4ssrASNIX 2l5DyE6iG45HuNr3r2RulNRRZc9kMH5r8wLwGapr8/JWTPYB+i6By9/UjhSQ0UrW Vz+dXFZVKmvWu3crS4THoAAZewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIkmsrS/ cMqeF7NCPOnQk5FuDfwqMB8GA1UdIwQYMBaAFDpG+w9A9p1eHbddKFHwQMGfZvIs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q0RC8xMzdEMDBENDE2 MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5WNGR0MTBvVWZCQXdaOW04 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rYjdEMEQyblY0ZHQxMG9VZkJBd1o5bThpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0Q0RC8xMzdEMDBENDE2MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5W NGR0MTBvVWZCQXdaOW04aXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeqByDb5UcOUtyvpuHUD662iVYq+l03GDVncamZXYFsApH5vQt51OT SLKPP3NLiiNgnHJi1j2lMCWDUI6ICjvxpjXAdBJ8H31chaG6xCfFVlGwfVtHJmdb lqjJEUHdv7cKZajRrhPKfNQLkil10PahLGaeIjeDw4pOcqulkGWS+uew+l+km3Cw y0SLV0USIf1+C9kHKbqpumU5ab/cFer5WaXS7qvE2DrnG9+dnkWoEuM46fW71xC6 3V2FuudtfOajicR0Z23+4Z/yCCsBWRFtOSElERdXsy+WpPAxFNGsVySdK4Ournh6 fW9EBltFHZ/eYQjZImGRcvciHLVsTU3P -----END CERTIFICATE-----Generated at Sun Dec 7 03:11:40 2025 by rpki-client