This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.mft File: uOlsag2VSKKgQMvnGZdFun2x7Sg.mft (raw, json) Hash identifier: ZBE6flpkZN1ogbVkFn5F/1JP9G+Qjuv4rbyoTexq7I0= Subject key identifier: D4:AD:64:9D:CB:38:38:93:56:6D:21:C3:F2:2A:89:76:43:BF:5A:B5 Authority key identifier: B8:E9:6C:6A:0D:95:48:A2:A0:40:CB:E7:19:97:45:BA:7D:B1:ED:28 Certificate issuer: /CN=A91B2D29/serialNumber=B8E96C6A0D9548A2A040CBE7199745BA7DB1ED28 Certificate serial: 0A1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOlsag2VSKKgQMvnGZdFun2x7Sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.mft Manifest number: 47B6 Signing time: Thu 18 Dec 2025 15:43:07 +0000 Manifest this update: Thu 18 Dec 2025 15:43:07 +0000 Manifest next update: Thu 25 Dec 2025 15:43:07 +0000 Files and hashes: 1: uOlsag2VSKKgQMvnGZdFun2x7Sg.crl (hash: ELm1tAKDKTTjfqSo/wouvOkTJVG0fGSAjB/kTJdeNZ4=) 2: 7CEC1452E17E11ECAB421316C4F9AE02.roa (hash: 1Xe1cmvJhp+1uOgf9drz3lA2Kuch55N2lYYnYgzX/Sc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.crl rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOlsag2VSKKgQMvnGZdFun2x7Sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 15:43:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2591 (0xa1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2D29, serialNumber=B8E96C6A0D9548A2A040CBE7199745BA7DB1ED28 Validity Not Before: Dec 18 15:43:07 2025 GMT Not After : Dec 25 15:43:07 2025 GMT Subject: CN=6944210b-3250 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:c0:81:be:3f:2d:a3:99:e7:9e:82:df:66:db: 59:a1:0b:25:73:b4:53:97:92:5c:76:b2:f4:b4:69: ac:e2:e1:49:56:98:23:f8:07:ab:7e:06:a9:01:27: d5:34:cb:51:56:3b:21:ac:f1:fb:53:b4:3c:02:c9: 5d:6f:cd:99:a3:b4:12:77:02:80:59:00:38:82:e5: 63:18:7e:b7:7e:8b:bd:51:ae:4f:4a:8f:d3:9d:cb: ae:18:f7:7a:1f:0a:a5:f4:32:00:fb:62:82:71:bf: a2:06:56:83:72:bd:c3:7f:df:70:43:08:77:b3:64: a3:9d:52:48:f1:db:ef:a4:d2:6b:66:e9:ba:c2:64: c2:8b:c5:de:de:c3:3d:7d:39:52:91:16:94:15:36: 8d:21:2f:37:f5:67:56:ae:4f:41:b1:55:f8:68:af: 0d:15:a4:d6:c6:ce:61:35:6b:f0:a2:25:46:be:f5: bd:0d:98:a5:3b:61:ed:fb:84:a5:b8:3a:fe:92:97: 84:d0:d6:f0:23:e9:8f:0d:4e:50:86:82:70:f0:30: 9e:09:f2:95:a3:c6:5a:8d:3b:85:54:a3:52:a9:49: 28:8e:8b:e4:da:6a:2c:e2:94:aa:17:9a:3e:f3:1e: 5e:3a:4d:73:3e:b4:aa:a7:c8:30:8f:71:c2:8b:2e: b4:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:AD:64:9D:CB:38:38:93:56:6D:21:C3:F2:2A:89:76:43:BF:5A:B5 X509v3 Authority Key Identifier: keyid:B8:E9:6C:6A:0D:95:48:A2:A0:40:CB:E7:19:97:45:BA:7D:B1:ED:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOlsag2VSKKgQMvnGZdFun2x7Sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:01:6b:3b:6e:09:ff:1f:3a:18:37:70:a4:92:e4:60:7f:32: ee:59:cb:df:2f:b0:2a:0e:bc:0b:98:ea:45:c3:3a:87:12:a0: c9:78:69:6f:53:d2:6a:07:5d:f4:aa:1b:04:3e:a5:93:40:b3: f6:6b:a0:85:14:ad:2a:6d:c7:11:03:4f:30:fe:9e:ce:45:51: 3c:0b:16:8e:ea:b5:34:2a:66:97:24:d5:48:34:6b:38:b2:46: a6:1b:12:47:5b:c5:61:31:6d:0b:57:ca:58:98:9e:da:3e:78: f2:d7:b7:98:e8:94:2f:e3:a2:9c:9d:ca:f0:c1:ff:94:c5:d5: 90:e3:44:17:68:b5:fe:b9:b6:56:93:2e:20:f1:9f:e4:87:24: b7:51:73:70:b9:04:6c:06:b4:84:79:49:4d:d2:6e:36:4a:24: 6c:4a:b2:02:f1:78:16:77:c6:a8:86:bf:18:84:f5:09:4d:8e: 36:6d:84:74:aa:c1:88:50:47:7e:e7:e9:fe:bf:06:85:93:f6: ea:ba:dc:59:3f:77:67:36:fc:13:64:83:e3:4b:74:11:e0:ac: e0:d3:8a:e9:21:58:cd:ca:a1:c3:bd:7c:18:1d:ad:af:36:dd: 0f:56:35:ec:a5:91:6a:78:b7:4a:fa:c5:47:3d:a6:71:c5:4a: ba:ef:38:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJEMjkxMTAvBgNVBAUTKEI4RTk2QzZBMEQ5NTQ4QTJBMDQwQ0JFNzE5OTc0NUJB N0RCMUVEMjgwHhcNMjUxMjE4MTU0MzA3WhcNMjUxMjI1MTU0MzA3WjAYMRYwFAYD VQQDDA02OTQ0MjEwYi0zMjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkMCBvj8to5nnnoLfZttZoQslc7RTl5JcdrL0tGms4uFJVpgj+AerfgapASfV NMtRVjshrPH7U7Q8Asldb82Zo7QSdwKAWQA4guVjGH63fou9Ua5PSo/TncuuGPd6 Hwql9DIA+2KCcb+iBlaDcr3Df99wQwh3s2SjnVJI8dvvpNJrZum6wmTCi8Xe3sM9 fTlSkRaUFTaNIS839WdWrk9BsVX4aK8NFaTWxs5hNWvwoiVGvvW9DZilO2Ht+4Sl uDr+kpeE0NbwI+mPDU5QhoJw8DCeCfKVo8ZajTuFVKNSqUkojovk2mos4pSqF5o+ 8x5eOk1zPrSqp8gwj3HCiy60LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNStZJ3L ODiTVm0hw/IqiXZDv1q1MB8GA1UdIwQYMBaAFLjpbGoNlUiioEDL5xmXRbp9se0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkQyOS9GNzFFNzE2NjU1 MjExMUU1QURCMjA5MkFDNEY5QUUwMi91T2xzYWcyVlNLS2dRTXZuR1pkRnVuMng3 U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VPbHNhZzJWU0tLZ1FNdm5HWmRGdW4yeDdTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkQyOS9GNzFFNzE2NjU1MjExMUU1QURCMjA5MkFDNEY5QUUwMi91T2xzYWcyVlNL S2dRTXZuR1pkRnVuMng3U2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoAWs7bgn/HzoYN3CkkuRgfzLuWcvfL7AqDrwLmOpFwzqHEqDJeGlv U9JqB130qhsEPqWTQLP2a6CFFK0qbccRA08w/p7ORVE8CxaO6rU0KmaXJNVINGs4 skamGxJHW8VhMW0LV8pYmJ7aPnjy17eY6JQv46Kcncrwwf+UxdWQ40QXaLX+ubZW ky4g8Z/khyS3UXNwuQRsBrSEeUlN0m42SiRsSrIC8XgWd8aohr8YhPUJTY42bYR0 qsGIUEd+5+n+vwaFk/bqutxZP3dnNvwTZIPjS3QR4Kzg04rpIVjNyqHDvXwYHa2v Nt0PVjXspZFqeLdK+sVHPaZxxUq67zh8 -----END CERTIFICATE-----Generated at Sat Dec 20 14:39:35 2025 by rpki-client