This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft File: oRHoHEs-J72m4nEkl_bbugz7CCY.mft (raw, json) Hash identifier: P/RbBVAnnDnSGLS0mh3DgtV8CQjGP1d1KaThVBeiOAA= Subject key identifier: D9:59:F7:D6:1C:85:72:7E:84:40:9E:E8:94:C1:4D:4F:32:32:5E:6C Authority key identifier: A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 Certificate issuer: /CN=A91C1DB8/serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Certificate serial: 13C8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft Manifest number: 13BC Signing time: Mon 08 Dec 2025 16:41:38 +0000 Manifest this update: Mon 08 Dec 2025 16:41:38 +0000 Manifest next update: Mon 15 Dec 2025 16:41:38 +0000 Files and hashes: 1: oRHoHEs-J72m4nEkl_bbugz7CCY.crl (hash: p8zPKBTChps1UkBcJhmqI7+kMizSXaawGsYCPgjJi1A=) 2: 6D6692CAAA0211EEAADA3D32C4F9AE02.roa (hash: Lfw4Pf1U5kN1CyHW4zjiGH94Ozpr6hL2Iw69vgHFnZ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Dec 2025 16:41:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5064 (0x13c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1DB8, serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Validity Not Before: Dec 8 16:41:38 2025 GMT Not After : Dec 15 16:41:38 2025 GMT Subject: CN=6936ffc2-4395 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:74:2c:b8:22:ff:7b:fb:ca:d0:8a:42:be:9b: e0:b8:25:80:1c:ef:6e:6d:36:95:6a:4e:88:f7:ab: 29:79:95:b5:86:73:76:9b:b1:b5:5d:40:38:0c:4b: 48:a6:00:d0:46:52:4b:17:c2:7f:06:2f:af:47:23: 2b:f2:ac:86:d9:81:ea:b6:68:f4:ab:b1:50:54:93: 3c:9a:42:af:3c:3f:4c:e8:b0:e9:e3:42:5b:91:38: 69:a4:52:ec:e4:7a:59:d2:aa:b1:80:12:0a:e7:f5: 4d:ac:ba:04:8d:26:ed:e8:bd:56:e5:a0:9c:fd:15: 2b:21:0e:14:d9:64:e4:0f:b3:77:6e:14:bf:6c:8c: 75:7d:ee:3c:a5:3e:20:3f:20:5e:c0:9e:46:7d:60: 95:30:ef:43:92:10:65:5c:dd:da:25:4b:c0:20:6d: 6d:0b:c7:f0:ab:7e:18:d5:77:f4:e0:ec:ff:00:96: 19:bd:2b:4e:a5:25:6e:26:30:d4:86:2e:80:b2:3b: 9f:2e:0b:3d:5c:e6:a8:a8:8a:28:a1:27:ca:6c:9a: b5:a7:0a:8d:31:20:0d:c7:40:88:33:7a:ff:4f:5b: 0b:6d:4c:92:90:49:6d:40:59:83:50:2c:c7:7e:b4: d8:b6:65:27:70:30:85:4d:22:7b:c3:d5:9f:fa:3b: ae:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:59:F7:D6:1C:85:72:7E:84:40:9E:E8:94:C1:4D:4F:32:32:5E:6C X509v3 Authority Key Identifier: keyid:A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:2e:49:4b:b2:09:05:50:e4:74:7f:03:a2:15:8f:80:aa:d5: 19:db:a1:71:56:4d:e0:c5:fb:22:fd:6f:cf:64:12:3a:85:19: 7b:48:fc:6c:fb:ab:38:12:20:98:03:5a:92:7d:ad:41:92:f8: 9c:2e:a3:22:77:35:ce:96:99:11:60:9d:7f:40:ab:ee:3d:40: 41:59:91:ce:cf:cd:7b:77:7a:be:c6:77:b2:72:e5:fe:df:ec: d6:85:af:2b:45:19:1d:6e:a0:f6:62:db:a0:05:d9:54:7e:f7: 7d:7d:80:b4:0c:a2:e0:c9:cc:8d:36:78:41:15:3e:a4:ce:67: 6b:bf:33:b2:53:a7:d7:25:20:bb:0c:9a:8c:1b:7b:1f:32:05: 73:c8:89:07:e0:03:d8:a7:e3:73:1d:1d:6b:09:7b:b4:81:fc: 89:26:ef:5a:20:13:f1:d9:42:de:66:4d:c4:84:e3:64:66:6e: 86:3f:88:d6:aa:a0:09:9b:cd:c5:e4:ae:10:c4:a8:2d:78:b0: 12:b0:01:bb:40:02:47:6e:16:b0:bc:31:d4:12:47:34:52:a3: 73:90:da:72:f1:54:f5:38:2b:48:10:1e:f6:cc:81:38:8b:17: 31:c8:85:3d:51:88:bd:df:a8:db:0a:66:5c:5d:1c:de:8c:ea: 72:1c:4e:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFEQjgxMTAvBgNVBAUTKEExMTFFODFDNEIzRTI3QkRBNkUyNzEyNDk3RjZEQkJB MENGQjA4MjYwHhcNMjUxMjA4MTY0MTM4WhcNMjUxMjE1MTY0MTM4WjAYMRYwFAYD VQQDEw02OTM2ZmZjMi00Mzk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwXQsuCL/e/vK0IpCvpvguCWAHO9ubTaVak6I96speZW1hnN2m7G1XUA4DEtI pgDQRlJLF8J/Bi+vRyMr8qyG2YHqtmj0q7FQVJM8mkKvPD9M6LDp40JbkThppFLs 5HpZ0qqxgBIK5/VNrLoEjSbt6L1W5aCc/RUrIQ4U2WTkD7N3bhS/bIx1fe48pT4g PyBewJ5GfWCVMO9DkhBlXN3aJUvAIG1tC8fwq34Y1Xf04Oz/AJYZvStOpSVuJjDU hi6AsjufLgs9XOaoqIoooSfKbJq1pwqNMSANx0CIM3r/T1sLbUySkEltQFmDUCzH frTYtmUncDCFTSJ7w9Wf+juuFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNlZ99Yc hXJ+hECe6JTBTU8yMl5sMB8GA1UdIwQYMBaAFKER6BxLPie9puJxJJf227oM+wgm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMURCOC8wRDk5MzFCQUEx MUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3Mm00bkVrbF9iYnVnejdD Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29SSG9IRXMtSjcybTRuRWtsX2JidWd6N0NDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MURCOC8wRDk5MzFCQUExMUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3 Mm00bkVrbF9iYnVnejdDQ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvLklLsgkFUOR0fwOiFY+AqtUZ26FxVk3gxfsi/W/PZBI6hRl7SPxs +6s4EiCYA1qSfa1BkvicLqMidzXOlpkRYJ1/QKvuPUBBWZHOz817d3q+xneycuX+ 3+zWha8rRRkdbqD2YtugBdlUfvd9fYC0DKLgycyNNnhBFT6kzmdrvzOyU6fXJSC7 DJqMG3sfMgVzyIkH4APYp+NzHR1rCXu0gfyJJu9aIBPx2ULeZk3EhONkZm6GP4jW qqAJm83F5K4QxKgteLASsAG7QAJHbhawvDHUEkc0UqNzkNpy8VT1OCtIEB72zIE4 ixcxyIU9UYi936jbCmZcXRzejOpyHE5d -----END CERTIFICATE-----Generated at Wed Dec 10 04:59:37 2025 by rpki-client