This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft File: OhpAdHHRvxyhUl8h997PWmoqZNg.mft (raw, json) Hash identifier: LiDJ8o2f2lSGur8qZpttB2toUE1XwVxnYXWNRo6l2cE= Subject key identifier: 38:A0:52:19:4F:05:E4:D5:73:45:78:F5:33:7E:86:25:1B:11:D9:AB Authority key identifier: 3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 Certificate issuer: /CN=A91B7B23/serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Certificate serial: 018E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft Manifest number: 0185 Signing time: Tue 23 Dec 2025 02:46:13 +0000 Manifest this update: Tue 23 Dec 2025 02:46:13 +0000 Manifest next update: Tue 30 Dec 2025 02:46:13 +0000 Files and hashes: 1: OhpAdHHRvxyhUl8h997PWmoqZNg.crl (hash: C9/7kTAOgyChE55vBjVMUEvPhfhoN/Q0ha71gCIrZXk=) 2: 7F6FE074B84811F091A01766C4F9AE02.roa (hash: T7R8nJe2MmGkA+MfYtiQhvIQ2foWHqQ+M3uuOBpD0wc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:46:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 398 (0x18e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7B23, serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Validity Not Before: Dec 23 02:46:13 2025 GMT Not After : Dec 30 02:46:13 2025 GMT Subject: CN=694a0275-6d78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:ee:da:71:79:4f:aa:2a:76:c9:cb:bc:eb:d3: 6b:d8:cb:6e:7b:45:1c:b0:48:d6:2e:63:54:c1:0e: ca:9f:37:8c:0b:3a:c6:c6:3f:b0:4d:c4:13:02:04: f1:e9:48:d1:4b:8e:90:e7:4d:7e:09:22:8b:08:da: 2b:25:8d:46:dd:96:c9:38:90:02:e8:e5:c8:29:50: 7d:f2:f8:2c:c8:e3:22:03:a8:2a:3b:ed:3b:c9:16: 69:bc:d7:49:12:18:fb:c0:e0:04:9a:71:84:a6:6e: bf:af:68:aa:5d:73:6a:c6:16:20:ad:52:b5:c8:1e: c4:06:8b:91:25:80:39:d5:ce:01:f9:61:56:23:55: fd:49:91:37:76:fe:b0:63:55:83:d9:f5:7f:f1:34: 81:0e:bf:0d:36:0c:6b:56:8e:10:6f:a8:44:ef:e6: bd:b9:62:53:69:60:93:61:35:9c:38:61:18:e6:1f: aa:83:4c:51:a7:70:72:4a:93:66:17:20:c7:4b:30: bd:1d:e8:cd:c6:b1:c3:2c:96:4b:16:63:89:0f:c4: 75:c3:59:34:7f:de:13:80:c4:5b:5c:34:03:20:f2: 74:60:44:87:15:b1:0f:d8:33:dd:ad:d4:3e:a2:e5: fe:6b:87:59:58:73:d6:37:b6:d4:2c:2d:28:6e:e9: 50:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:A0:52:19:4F:05:E4:D5:73:45:78:F5:33:7E:86:25:1B:11:D9:AB X509v3 Authority Key Identifier: keyid:3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:18:ca:66:bc:28:82:02:a5:f0:0a:12:78:a5:2b:ad:64:86: 39:da:8b:b5:d3:6b:a8:d7:2e:d8:e7:e9:6d:a6:45:86:d7:56: 66:3e:02:68:14:21:1f:6d:b8:8f:a2:44:6c:d9:df:11:84:5a: 86:c9:04:f2:7a:ec:ce:d7:20:9d:9b:df:7e:1b:f2:f7:65:da: b1:83:7a:33:85:98:6f:37:37:0e:b4:74:e0:1b:ed:a5:89:3b: 4d:7f:1c:bd:9a:88:f5:77:12:46:e7:50:66:e6:02:14:c2:cd: 24:b8:96:da:b7:a8:db:65:6a:b5:77:d4:00:8e:86:79:82:93: e0:d3:2b:f4:29:8c:b7:f5:fb:6b:cc:85:b6:3c:79:6e:7d:4e: 70:04:e6:01:59:88:a3:33:79:41:83:43:61:c3:19:0c:2a:42: b3:ab:68:1a:0a:02:0b:ee:46:63:2f:a6:c3:5d:09:b2:db:21: 03:43:86:98:41:a3:bd:d4:b3:68:d5:66:97:d9:69:d9:60:37: 92:3c:49:5c:9b:b3:a8:63:81:24:1e:1f:c2:3c:b6:87:be:16: 00:ce:66:5d:3e:54:3a:50:72:34:ba:a6:63:18:7f:03:7d:0c: 7c:0d:b1:23:53:ee:2f:c1:8a:d2:f5:86:c8:43:97:e1:c2:31: 9e:d2:01:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QjdCMjMxMTAvBgNVBAUTKDNBMUE0MDc0NzFEMUJGMUNBMTUyNUYyMUY3REVDRjVB NkEyQTY0RDgwHhcNMjUxMjIzMDI0NjEzWhcNMjUxMjMwMDI0NjEzWjAYMRYwFAYD VQQDDA02OTRhMDI3NS02ZDc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAje7acXlPqip2ycu869Nr2Mtue0UcsEjWLmNUwQ7KnzeMCzrGxj+wTcQTAgTx 6UjRS46Q501+CSKLCNorJY1G3ZbJOJAC6OXIKVB98vgsyOMiA6gqO+07yRZpvNdJ Ehj7wOAEmnGEpm6/r2iqXXNqxhYgrVK1yB7EBouRJYA51c4B+WFWI1X9SZE3dv6w Y1WD2fV/8TSBDr8NNgxrVo4Qb6hE7+a9uWJTaWCTYTWcOGEY5h+qg0xRp3BySpNm FyDHSzC9HejNxrHDLJZLFmOJD8R1w1k0f94TgMRbXDQDIPJ0YESHFbEP2DPdrdQ+ ouX+a4dZWHPWN7bULC0obulQ3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDigUhlP BeTVc0V49TN+hiUbEdmrMB8GA1UdIwQYMBaAFDoaQHRx0b8coVJfIffez1pqKmTY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0IyMy83NTQ1RjAzQTk3 RDMxMUVFQTIzQzY2MEJDNEY5QUUwMi9PaHBBZEhIUnZ4eWhVbDhoOTk3UFdtb3Fa TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ocEFkSEhSdnh5aFVsOGg5OTdQV21vcVpOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0IyMy83NTQ1RjAzQTk3RDMxMUVFQTIzQzY2MEJDNEY5QUUwMi9PaHBBZEhIUnZ4 eWhVbDhoOTk3UFdtb3FaTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5GMpmvCiCAqXwChJ4pSutZIY52ou102uo1y7Y5+ltpkWG11ZmPgJo FCEfbbiPokRs2d8RhFqGyQTyeuzO1yCdm99+G/L3Zdqxg3ozhZhvNzcOtHTgG+2l iTtNfxy9moj1dxJG51Bm5gIUws0kuJbat6jbZWq1d9QAjoZ5gpPg0yv0KYy39ftr zIW2PHlufU5wBOYBWYijM3lBg0NhwxkMKkKzq2gaCgIL7kZjL6bDXQmy2yEDQ4aY QaO91LNo1WaX2WnZYDeSPElcm7OoY4EkHh/CPLaHvhYAzmZdPlQ6UHI0uqZjGH8D fQx8DbEjU+4vwYrS9YbIQ5fhwjGe0gFA -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:51 2025 by rpki-client