This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft File: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft (raw, json) Hash identifier: +/fZpK+sT/YTI/odgNlZfvl3pxi26mxQhXHs7OdHd4Y= Subject key identifier: 9B:7B:F1:6A:4E:D3:87:9C:10:5D:B0:D3:B4:7F:1E:4C:DB:19:EF:71 Authority key identifier: A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 Certificate issuer: /CN=A91B65AC/serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Certificate serial: 014A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft Manifest number: 0146 Signing time: Wed 03 Dec 2025 02:50:20 +0000 Manifest this update: Wed 03 Dec 2025 02:50:20 +0000 Manifest next update: Wed 10 Dec 2025 02:50:20 +0000 Files and hashes: 1: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl (hash: k8m87K/7+Fo7Y8lZL7wS0zGigZei/3VGRvAOEILW90Q=) 2: 48005D9EE5AE11EE9ECE4023C4F9AE02.roa (hash: MrPqjHlMCM5b67h4IqKRm22f4PuZXIPWzDsfWbxNY08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 330 (0x14a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65AC, serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Validity Not Before: Dec 3 02:50:20 2025 GMT Not After : Dec 10 02:50:20 2025 GMT Subject: CN=692fa56c-d131 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:73:8c:c8:26:16:db:fa:fa:0f:49:2b:f8:b3: 62:3e:4f:b8:cf:c2:73:98:94:c3:d4:60:81:8a:78: 06:75:64:37:6b:b2:1d:74:5d:52:f1:58:1c:55:d7: 69:dd:3b:32:0f:dc:9c:aa:17:8b:03:83:15:d6:a5: df:e3:b2:89:02:c4:aa:e5:ca:ee:9d:f6:c2:5b:fc: 09:74:9c:36:2e:00:be:2b:73:bd:0f:94:d2:66:2b: 09:0a:ee:6e:21:25:2a:ca:0a:ad:d7:fe:60:d2:50: b4:70:55:12:c3:c1:89:21:21:a8:c3:5f:3d:78:eb: 9d:c8:2e:c4:32:f0:79:8e:3a:27:80:a2:d2:54:97: a6:98:04:be:fb:c4:47:52:5e:29:21:1d:2b:40:e2: cc:b5:d6:24:53:71:f0:ac:3e:fc:f4:9c:28:1a:fc: a7:3c:b5:b3:96:ad:0a:5e:d6:51:a1:95:56:0e:57: c3:39:58:ec:83:57:a7:7c:aa:6c:3f:c5:44:92:ef: 81:e5:d6:2d:5e:29:3d:ef:d9:42:18:1c:2a:65:d7: a9:3b:08:cd:cf:48:a1:01:d2:23:f2:6c:0c:94:f6: 02:8e:cf:24:83:65:c8:57:c9:ab:29:48:8e:39:bf: 4f:fd:dc:29:d1:3c:66:fa:1e:75:9b:11:c9:0f:ac: 3b:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:7B:F1:6A:4E:D3:87:9C:10:5D:B0:D3:B4:7F:1E:4C:DB:19:EF:71 X509v3 Authority Key Identifier: keyid:A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:ee:d2:3a:e5:d9:3f:e2:22:5a:98:14:3f:5c:15:73:68:8f: 6b:32:de:4a:7b:5c:53:94:31:02:7b:c0:24:1b:4e:52:7a:bf: 58:04:df:5a:5d:24:9c:0e:40:51:ac:9f:62:4c:59:a1:ee:ba: 29:1d:02:33:00:e8:1d:fa:2e:5e:af:66:2b:f4:b9:f4:78:d9: 5b:0e:d5:03:78:3e:db:12:7a:92:be:c7:40:8b:f2:cb:3f:32: bf:27:74:3d:a7:ed:ee:df:89:c1:b9:3f:56:83:bd:fc:c6:a0: a4:06:a0:18:bb:1b:81:8f:e1:2e:0a:6a:07:55:0b:23:80:da: 45:7f:e5:dd:3a:22:37:84:e2:7e:a6:d7:65:24:16:1c:45:39: 2c:5d:0e:e6:47:ab:56:f8:aa:6e:48:85:21:21:f9:a8:86:69: e9:b4:52:7a:fc:3d:a1:cf:25:15:c3:fa:8e:3f:7d:6b:3f:30: 9e:7f:91:df:58:46:d9:76:a1:49:52:19:be:71:5c:2f:52:ba: ab:30:f4:5b:b2:8f:ab:be:c4:52:8f:c4:0a:34:8b:8b:f0:ee: a6:db:b3:8c:5f:9b:b2:fd:d6:bd:b6:a3:68:bd:b3:81:cd:d2: 3e:db:66:09:8b:6f:4f:ed:b5:4e:eb:9c:dd:58:19:96:5f:e6: 06:be:56:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1QUMxMTAvBgNVBAUTKEExMEY1NzgzQzhGOUE2RDk0RDI5QjRBQTkwQzU2RTAx NkJCNTE0NTYwHhcNMjUxMjAzMDI1MDIwWhcNMjUxMjEwMDI1MDIwWjAYMRYwFAYD VQQDEw02OTJmYTU2Yy1kMTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA23OMyCYW2/r6D0kr+LNiPk+4z8JzmJTD1GCBingGdWQ3a7IddF1S8VgcVddp 3TsyD9ycqheLA4MV1qXf47KJAsSq5crunfbCW/wJdJw2LgC+K3O9D5TSZisJCu5u ISUqygqt1/5g0lC0cFUSw8GJISGow189eOudyC7EMvB5jjongKLSVJemmAS++8RH Ul4pIR0rQOLMtdYkU3HwrD789JwoGvynPLWzlq0KXtZRoZVWDlfDOVjsg1enfKps P8VEku+B5dYtXik979lCGBwqZdepOwjNz0ihAdIj8mwMlPYCjs8kg2XIV8mrKUiO Ob9P/dwp0Txm+h51mxHJD6w73wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJt78WpO 04ecEF2w07R/HkzbGe9xMB8GA1UdIwQYMBaAFKEPV4PI+abZTSm0qpDFbgFrtRRW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVBQy9DQjc0RjhCRUUx RTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0bE5LYlNxa01WdUFXdTFG RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29ROVhnOGo1cHRsTktiU3FrTVZ1QVd1MUZGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVBQy9DQjc0RjhCRUUxRTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0 bE5LYlNxa01WdUFXdTFGRlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDA7tI65dk/4iJamBQ/XBVzaI9rMt5Ke1xTlDECe8AkG05Ser9YBN9a XSScDkBRrJ9iTFmh7ropHQIzAOgd+i5er2Yr9Ln0eNlbDtUDeD7bEnqSvsdAi/LL PzK/J3Q9p+3u34nBuT9Wg738xqCkBqAYuxuBj+EuCmoHVQsjgNpFf+XdOiI3hOJ+ ptdlJBYcRTksXQ7mR6tW+KpuSIUhIfmohmnptFJ6/D2hzyUVw/qOP31rPzCef5Hf WEbZdqFJUhm+cVwvUrqrMPRbso+rvsRSj8QKNIuL8O6m27OMX5uy/da9tqNovbOB zdI+22YJi29P7bVO65zdWBmWX+YGvlZB -----END CERTIFICATE-----Generated at Wed Dec 3 14:56:52 2025 by rpki-client