This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft File: o5jf1NOXXquW_TgDOWgkbkdeKLM.mft (raw, json) Hash identifier: ETU0p25bIa1SnWueL6i9TRz3dXFOya+WMniEbulTS/w= Subject key identifier: DC:DD:18:91:9E:DC:36:59:A1:2A:88:BF:33:B5:A4:2C:EB:61:E9:E9 Authority key identifier: A3:98:DF:D4:D3:97:5E:AB:96:FD:38:03:39:68:24:6E:47:5E:28:B3 Certificate issuer: /CN=A91B915D/serialNumber=A398DFD4D3975EAB96FD38033968246E475E28B3 Certificate serial: 0454 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5jf1NOXXquW_TgDOWgkbkdeKLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft Manifest number: 044F Signing time: Sat 20 Dec 2025 23:26:50 +0000 Manifest this update: Sat 20 Dec 2025 23:26:50 +0000 Manifest next update: Sat 27 Dec 2025 23:26:50 +0000 Files and hashes: 1: o5jf1NOXXquW_TgDOWgkbkdeKLM.crl (hash: daFQl2w5ReqybF0Nl8y5WyyhTvTJi5F2XoQjPm7tcOU=) 2: 8CA3BAEC7DCB11EC99806E25C4F9AE02.roa (hash: 7VcZosPp1uH1LHkRjpyCPhzaiPyFOlncH9YUjxzCpg4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.crl rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5jf1NOXXquW_TgDOWgkbkdeKLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 23:26:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1108 (0x454) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B915D, serialNumber=A398DFD4D3975EAB96FD38033968246E475E28B3 Validity Not Before: Dec 20 23:26:50 2025 GMT Not After : Dec 27 23:26:50 2025 GMT Subject: CN=694730ba-78b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:41:d3:a4:76:e2:45:1c:5e:92:ab:78:59:92: 35:3f:25:c0:dd:eb:c6:65:6c:3c:53:76:49:08:ef: f5:c9:a8:bf:73:6b:2b:0b:5f:e0:20:f4:ba:11:6b: ac:ab:3b:c6:0c:f9:08:9c:f5:a3:e2:7a:0f:e0:0d: 62:89:33:46:17:1b:9f:9e:73:cd:52:6e:9d:42:89: 7c:a0:25:45:dc:0f:85:24:af:81:24:07:b3:8e:ff: 77:12:66:76:34:d8:64:6d:23:f0:fe:88:74:a0:7e: 4d:63:27:7f:ce:38:f3:2b:30:f3:7a:fc:b1:13:07: a5:a3:5c:0f:aa:cf:6a:f9:46:fb:0a:5f:fb:fd:e5: 73:53:ba:cf:49:83:7f:0a:7a:d1:bb:3b:f4:aa:30: a6:3f:6e:79:a3:2b:ab:70:6e:6c:4a:91:00:e3:3a: db:1c:ab:0b:d0:0c:f9:5c:79:0d:61:5c:89:9f:de: cd:2a:ee:bc:a3:1c:aa:2a:14:42:cd:e4:69:15:01: d6:7e:ce:e7:f9:80:08:1f:60:2a:27:17:d6:7e:38: 5d:60:f7:cb:ad:f4:d4:7a:ca:ad:af:97:68:b6:78: 37:82:fd:bc:0e:d3:58:9c:f5:66:0d:78:ef:19:c2: 0c:d6:56:dd:ec:58:3d:1e:96:8f:5a:07:54:7e:5c: 74:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:DD:18:91:9E:DC:36:59:A1:2A:88:BF:33:B5:A4:2C:EB:61:E9:E9 X509v3 Authority Key Identifier: keyid:A3:98:DF:D4:D3:97:5E:AB:96:FD:38:03:39:68:24:6E:47:5E:28:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5jf1NOXXquW_TgDOWgkbkdeKLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:0c:29:cd:d3:82:f3:a0:54:59:08:1d:56:7f:36:ec:3e:b1: 53:7b:46:93:ac:9c:d7:cb:0b:dc:11:36:ee:28:d6:ef:73:4a: ce:0e:62:2c:64:6a:ae:5b:08:82:aa:8f:72:56:a2:3d:f0:97: f1:58:dc:36:a4:18:0e:2a:6f:20:70:ad:fc:97:cc:36:0d:33: 0a:34:f6:29:07:a5:73:fb:03:c3:26:f1:3a:62:18:45:dc:9c: b6:42:88:81:e5:5e:55:c3:90:6a:65:96:ac:75:5b:c7:b6:30: 8f:1a:62:74:60:59:c9:3f:2d:e0:71:36:6d:e7:77:86:33:4a: 90:7b:b2:fc:bc:46:d7:a1:82:e0:88:29:e0:7c:ed:f2:9e:2c: ab:e5:5b:4e:7b:16:24:20:81:2c:2d:f0:3f:d2:84:1e:a8:4a: 0c:f3:f2:c5:88:05:9e:bc:04:a3:d1:78:c3:24:8f:b3:e9:d5: 79:82:bc:09:01:58:ad:f4:a0:ef:95:f9:84:7b:99:c7:96:df: 39:f5:ec:fd:a6:7c:f6:4c:e1:9a:c9:d5:89:a5:96:42:02:67: 11:6a:b0:a5:7f:1d:9b:41:d9:5a:cd:2f:a5:33:93:81:93:89: 54:f6:4c:03:58:44:00:7a:18:59:37:c0:b9:10:e9:c1:16:09: 8b:6d:4e:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkxNUQxMTAvBgNVBAUTKEEzOThERkQ0RDM5NzVFQUI5NkZEMzgwMzM5NjgyNDZF NDc1RTI4QjMwHhcNMjUxMjIwMjMyNjUwWhcNMjUxMjI3MjMyNjUwWjAYMRYwFAYD VQQDDA02OTQ3MzBiYS03OGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApkHTpHbiRRxekqt4WZI1PyXA3evGZWw8U3ZJCO/1yai/c2srC1/gIPS6EWus qzvGDPkInPWj4noP4A1iiTNGFxufnnPNUm6dQol8oCVF3A+FJK+BJAezjv93EmZ2 NNhkbSPw/oh0oH5NYyd/zjjzKzDzevyxEwelo1wPqs9q+Ub7Cl/7/eVzU7rPSYN/ CnrRuzv0qjCmP255oyurcG5sSpEA4zrbHKsL0Az5XHkNYVyJn97NKu68oxyqKhRC zeRpFQHWfs7n+YAIH2AqJxfWfjhdYPfLrfTUesqtr5dotng3gv28DtNYnPVmDXjv GcIM1lbd7Fg9HpaPWgdUflx0xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNzdGJGe 3DZZoSqIvzO1pCzrYenpMB8GA1UdIwQYMBaAFKOY39TTl16rlv04AzloJG5HXiiz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTE1RC83MTA5RUZDNDdE QzkxMUVDQkJGQjZGMjRDNEY5QUUwMi9vNWpmMU5PWFhxdVdfVGdET1dna2JrZGVL TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL281amYxTk9YWHF1V19UZ0RPV2drYmtkZUtMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTE1RC83MTA5RUZDNDdEQzkxMUVDQkJGQjZGMjRDNEY5QUUwMi9vNWpmMU5PWFhx dVdfVGdET1dna2JrZGVLTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgDCnN04LzoFRZCB1WfzbsPrFTe0aTrJzXywvcETbuKNbvc0rODmIs ZGquWwiCqo9yVqI98JfxWNw2pBgOKm8gcK38l8w2DTMKNPYpB6Vz+wPDJvE6YhhF 3Jy2QoiB5V5Vw5BqZZasdVvHtjCPGmJ0YFnJPy3gcTZt53eGM0qQe7L8vEbXoYLg iCngfO3yniyr5VtOexYkIIEsLfA/0oQeqEoM8/LFiAWevASj0XjDJI+z6dV5grwJ AVit9KDvlfmEe5nHlt859ez9pnz2TOGaydWJpZZCAmcRarClfx2bQdlazS+lM5OB k4lU9kwDWEQAehhZN8C5EOnBFgmLbU4U -----END CERTIFICATE-----Generated at Mon Dec 22 08:37:28 2025 by rpki-client