This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft File: oKMiStDIKz-aYvNHrKP5RdsI8rA.mft (raw, json) Hash identifier: Oy0IWYnp913u08RJIi+g+m0uPKbh4CuzcMaFvfe9/Ck= Subject key identifier: 5A:69:69:F7:83:6E:C2:98:66:1F:01:4F:23:EE:B8:FF:A4:10:AA:56 Authority key identifier: A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 Certificate issuer: /CN=A91B80BD/serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Certificate serial: 30BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft Manifest number: 308E Signing time: Sun 14 Dec 2025 15:20:38 +0000 Manifest this update: Sun 14 Dec 2025 15:20:38 +0000 Manifest next update: Sun 21 Dec 2025 15:20:38 +0000 Files and hashes: 1: oKMiStDIKz-aYvNHrKP5RdsI8rA.crl (hash: M3bzu5JdZwI4+U6t7BDpXxMnyQwQCevdN+z2xqc+ox8=) 2: 583C1F6854F611E79DF7E643C4F9AE02.roa (hash: 1eHb69O06VCoxBVFTjIxU1eZxUsYuasvDB2d3Sv1+IY=) 3: 915E51B8F3BE11ED8B9B1450C4F9AE02.roa (hash: Q3pwtlHxQOfBNfjg0rXQ1DaKhtCgPEj+Sbwz9SrcaHA=) 4: 4C72E61CB0EC11E5A6934B42C4F9AE02.roa (hash: wILFdeIGXMZ8VMyQoHGFHEc5EcgVL0MxaSOGHfY+WMQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 15:20:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12479 (0x30bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80BD, serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Validity Not Before: Dec 14 15:20:38 2025 GMT Not After : Dec 21 15:20:38 2025 GMT Subject: CN=693ed5c6-2ce1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d3:4e:88:43:97:d1:7f:e1:22:ea:39:9e:b6: 30:e7:44:b1:4b:a1:ba:1c:c4:40:d9:b7:7c:dc:b6: 5a:f0:4e:73:f0:ff:fe:b7:6d:35:5c:f5:21:49:fc: f9:5c:13:a4:e1:8a:b6:f0:5a:a0:e5:52:03:62:0b: 91:23:1d:cc:34:d9:03:0b:3b:07:4e:ba:cb:e9:35: 5b:09:00:95:7e:cf:e4:b1:f1:13:3f:73:f9:82:91: 43:72:fc:57:e1:23:99:e4:42:c9:70:e6:e0:87:54: 52:24:75:10:8a:a7:86:49:c8:9f:20:9a:48:84:4e: d3:7a:63:6d:3f:e8:d4:d1:e4:af:e9:e5:59:6f:c1: 15:c0:2d:ba:ad:2f:76:ed:f5:20:3b:5e:6e:b3:88: c7:c9:18:ef:6b:d1:18:f9:dc:af:af:ae:a1:f5:75: 7c:56:9a:9b:be:d6:9a:75:48:06:4c:54:94:ab:48: 5b:27:dc:ed:86:8d:48:52:72:b1:f1:9d:2d:c0:1b: 35:89:8c:a9:88:c8:72:14:44:c4:5a:ce:1f:84:77: 57:33:9a:07:e7:a4:ca:96:2c:21:21:5a:a6:4f:6e: a6:35:e0:96:f0:a6:03:7c:a6:86:9f:af:da:e9:57: 72:e9:d0:9d:de:5d:b8:ec:88:1f:9f:b9:2c:be:a5: 3c:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:69:69:F7:83:6E:C2:98:66:1F:01:4F:23:EE:B8:FF:A4:10:AA:56 X509v3 Authority Key Identifier: keyid:A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:dd:bb:d0:66:91:46:b8:fb:31:6f:df:1f:7d:e1:dc:d6:b4: b0:43:e3:cd:71:87:d5:fe:8e:fd:3b:1f:39:69:0f:4b:6e:6d: 37:3d:a8:1d:a0:4d:f4:33:6b:e3:8d:9a:70:87:31:ac:59:fe: 6c:a8:e6:62:01:85:50:3d:23:9d:4a:53:e5:76:e1:89:c4:b9: 67:ef:f8:38:ca:81:09:8f:1e:e6:2b:dc:63:47:d7:62:03:d5: d1:65:d1:f0:10:1d:89:80:0d:3a:71:83:ff:f8:d6:5b:94:46: 3b:68:f1:aa:94:95:ae:14:ba:03:84:6c:ee:ec:b8:07:98:18: db:56:26:15:21:09:e3:82:95:a5:75:b6:a1:a5:72:69:42:27: 27:94:55:6d:59:02:db:5e:d4:54:78:cc:46:90:f3:c6:87:3e: ba:71:91:52:c9:f5:13:d8:e1:73:6a:a7:d8:ff:d3:a4:28:5d: ce:4a:1a:b2:fa:bf:10:8a:07:e5:b7:66:58:a1:14:4d:51:3c: 67:42:03:b3:6a:f1:e4:00:70:3e:20:57:ad:8b:c4:1d:6b:d2: 23:6d:64:5a:8c:19:75:cf:eb:96:6d:b6:b2:82:27:01:43:a5: a8:16:0a:0a:9a:15:28:4f:54:4e:4b:4f:9f:cb:f1:54:2a:2c: 23:4e:4f:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICML8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQkQxMTAvBgNVBAUTKEEwQTMyMjRBRDBDODJCM0Y5QTYyRjM0N0FDQTNGOTQ1 REIwOEYyQjAwHhcNMjUxMjE0MTUyMDM4WhcNMjUxMjIxMTUyMDM4WjAYMRYwFAYD VQQDDA02OTNlZDVjNi0yY2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdNOiEOX0X/hIuo5nrYw50SxS6G6HMRA2bd83LZa8E5z8P/+t201XPUhSfz5 XBOk4Yq28Fqg5VIDYguRIx3MNNkDCzsHTrrL6TVbCQCVfs/ksfETP3P5gpFDcvxX 4SOZ5ELJcObgh1RSJHUQiqeGScifIJpIhE7TemNtP+jU0eSv6eVZb8EVwC26rS92 7fUgO15us4jHyRjva9EY+dyvr66h9XV8VpqbvtaadUgGTFSUq0hbJ9ztho1IUnKx 8Z0twBs1iYypiMhyFETEWs4fhHdXM5oH56TKliwhIVqmT26mNeCW8KYDfKaGn6/a 6Vdy6dCd3l247Igfn7ksvqU8hQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFppafeD bsKYZh8BTyPuuP+kEKpWMB8GA1UdIwQYMBaAFKCjIkrQyCs/mmLzR6yj+UXbCPKw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBCRC9CNUE2MzZEOEZF NUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6LWFZdk5IcktQNVJkc0k4 ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LTWlTdERJS3otYVl2TkhyS1A1UmRzSThyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBCRC9CNUE2MzZEOEZFNUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6 LWFZdk5IcktQNVJkc0k4ckEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCN3bvQZpFGuPsxb98ffeHc1rSwQ+PNcYfV/o79Ox85aQ9Lbm03Pagd oE30M2vjjZpwhzGsWf5sqOZiAYVQPSOdSlPlduGJxLln7/g4yoEJjx7mK9xjR9di A9XRZdHwEB2JgA06cYP/+NZblEY7aPGqlJWuFLoDhGzu7LgHmBjbViYVIQnjgpWl dbahpXJpQicnlFVtWQLbXtRUeMxGkPPGhz66cZFSyfUT2OFzaqfY/9OkKF3OShqy +r8Qigflt2ZYoRRNUTxnQgOzavHkAHA+IFeti8Qda9IjbWRajBl1z+uWbbaygicB Q6WoFgoKmhUoT1ROS0+fy/FUKiwjTk/I -----END CERTIFICATE-----Generated at Tue Dec 16 07:30:26 2025 by rpki-client