This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft File: P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft (raw, json) Hash identifier: qOJgh+iancuqo7W0eHbdIZ3bkJ6IXzlLlXUJfGmSB/o= Subject key identifier: DB:47:C7:F0:67:63:75:24:9B:24:A3:C3:26:99:7C:DD:1E:51:BD:53 Authority key identifier: 3F:E3:AE:35:5A:92:77:B9:1D:73:E2:AC:52:F5:38:7F:09:5F:18:9A Certificate issuer: /CN=A91C37DD/serialNumber=3FE3AE355A9277B91D73E2AC52F5387F095F189A Certificate serial: 0144 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-OuNVqSd7kdc-KsUvU4fwlfGJo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft Manifest number: 013C Signing time: Tue 23 Dec 2025 03:32:56 +0000 Manifest this update: Tue 23 Dec 2025 03:32:56 +0000 Manifest next update: Tue 30 Dec 2025 03:32:56 +0000 Files and hashes: 1: P-OuNVqSd7kdc-KsUvU4fwlfGJo.crl (hash: vH/FX8p/YA7ZHfgMZMcdu5hhJqCA/FCH8jYWU6Pq9WE=) 2: 8670D60E096611EF99F30750C4F9AE02.roa (hash: sT0cMmz3LwTY9msFrBTT0GIkbrL7Fs7LTvjg3aLQ9/g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.crl rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-OuNVqSd7kdc-KsUvU4fwlfGJo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:32:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 324 (0x144) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C37DD, serialNumber=3FE3AE355A9277B91D73E2AC52F5387F095F189A Validity Not Before: Dec 23 03:32:56 2025 GMT Not After : Dec 30 03:32:56 2025 GMT Subject: CN=694a0d68-de47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:59:ca:68:ed:61:c5:23:85:e5:07:eb:09:36: 6f:70:fb:99:2a:43:42:3c:87:9d:ef:4b:21:10:ae: 25:86:b9:05:b3:2d:49:46:7a:d6:30:c7:d4:ee:d1: 06:08:f8:e7:3d:32:9c:cb:4c:ba:8a:36:a7:98:61: 60:ea:52:e1:cf:a2:aa:d5:de:e5:9b:a8:66:b5:bf: 2b:1c:05:de:28:7d:83:bd:87:08:cf:25:bf:92:53: a8:e3:9b:53:3b:d3:d6:7b:3d:f7:6e:6e:63:3c:4d: dd:80:57:4c:74:01:2c:2e:b5:f0:d1:51:ca:65:4a: 15:32:bd:4e:c7:08:b4:79:d8:84:90:ca:e3:8d:28: ec:44:9d:ea:ce:c4:75:bb:15:bd:82:59:ac:10:ac: 7d:2b:51:31:c9:e4:12:b6:34:8c:16:19:92:1b:95: a1:68:32:b8:19:ab:41:88:5e:f9:5c:ce:e1:45:36: f8:64:c8:c5:1d:92:f2:bd:c2:e6:4a:96:cf:c6:23: 9a:74:fb:27:be:6b:58:69:00:0c:6f:d5:4f:90:85: 05:ff:ec:2f:5e:f1:4f:bd:0c:6d:1d:29:ec:61:bc: 14:1e:27:03:de:b6:2c:9e:d1:1d:6e:22:c8:d0:79: 5e:0d:d7:5a:46:56:c1:05:97:a5:57:34:e7:14:86: 3c:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:47:C7:F0:67:63:75:24:9B:24:A3:C3:26:99:7C:DD:1E:51:BD:53 X509v3 Authority Key Identifier: keyid:3F:E3:AE:35:5A:92:77:B9:1D:73:E2:AC:52:F5:38:7F:09:5F:18:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-OuNVqSd7kdc-KsUvU4fwlfGJo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:30:a6:47:cb:ed:3d:12:10:4c:cc:bc:88:bd:af:ef:30:ba: ce:34:3a:41:1c:1b:1d:28:60:2b:5b:84:0b:dc:5f:da:a5:b6: 24:db:54:42:b0:fa:0e:ee:f6:18:d8:9e:45:75:cd:2d:a5:bd: 24:c5:25:be:1b:c2:fc:0d:31:a3:03:57:8f:cf:8f:d4:ed:0a: 48:20:41:9c:42:3f:42:b0:e6:7b:7c:73:7b:9e:53:22:9c:d0: 66:a8:f9:5a:e5:43:40:fd:af:e0:9a:ed:c0:f1:47:fb:14:43: 89:39:a7:33:17:47:26:01:12:58:0a:0d:fb:b9:99:50:53:4f: 42:cd:ce:6b:7a:02:0c:3e:87:5a:dd:74:00:68:9d:06:e1:ff: dc:c8:c9:36:ad:f8:f9:b9:d7:24:6f:6b:8d:6c:fb:04:26:51: be:20:4e:f7:f9:1d:4e:13:2a:00:f5:cf:82:9c:60:b0:4b:6a: db:29:3e:01:3c:4c:a2:53:76:a6:c6:81:0f:5c:f5:ee:9f:d6: 9e:b5:5f:7a:cf:fc:38:21:b4:12:ff:08:37:1c:89:9f:de:d2: 64:87:4f:db:59:ac:db:5b:ec:bc:14:e5:5a:84:2e:3b:a0:f2: 86:ae:68:6e:bf:fe:bc:e4:1a:a9:85:14:f9:0f:23:e8:6f:31: e6:2b:aa:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzM3REQxMTAvBgNVBAUTKDNGRTNBRTM1NUE5Mjc3QjkxRDczRTJBQzUyRjUzODdG MDk1RjE4OUEwHhcNMjUxMjIzMDMzMjU2WhcNMjUxMjMwMDMzMjU2WjAYMRYwFAYD VQQDDA02OTRhMGQ2OC1kZTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArlnKaO1hxSOF5QfrCTZvcPuZKkNCPIed70shEK4lhrkFsy1JRnrWMMfU7tEG CPjnPTKcy0y6ijanmGFg6lLhz6Kq1d7lm6hmtb8rHAXeKH2DvYcIzyW/klOo45tT O9PWez33bm5jPE3dgFdMdAEsLrXw0VHKZUoVMr1Oxwi0ediEkMrjjSjsRJ3qzsR1 uxW9glmsEKx9K1ExyeQStjSMFhmSG5WhaDK4GatBiF75XM7hRTb4ZMjFHZLyvcLm SpbPxiOadPsnvmtYaQAMb9VPkIUF/+wvXvFPvQxtHSnsYbwUHicD3rYsntEdbiLI 0HleDddaRlbBBZelVzTnFIY8/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNtHx/Bn Y3UkmySjwyaZfN0eUb1TMB8GA1UdIwQYMBaAFD/jrjVakne5HXPirFL1OH8JXxia MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzdERC8yNDg1NUQ4MDA5 NjUxMUVGQTRCQ0U4N0FDNEY5QUUwMi9QLU91TlZxU2Q3a2RjLUtzVXZVNGZ3bGZH Sm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AtT3VOVnFTZDdrZGMtS3NVdlU0ZndsZkdKby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzdERC8yNDg1NUQ4MDA5NjUxMUVGQTRCQ0U4N0FDNEY5QUUwMi9QLU91TlZxU2Q3 a2RjLUtzVXZVNGZ3bGZHSm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtMKZHy+09EhBMzLyIva/vMLrONDpBHBsdKGArW4QL3F/apbYk21RC sPoO7vYY2J5Fdc0tpb0kxSW+G8L8DTGjA1ePz4/U7QpIIEGcQj9CsOZ7fHN7nlMi nNBmqPla5UNA/a/gmu3A8Uf7FEOJOaczF0cmARJYCg37uZlQU09Czc5regIMPoda 3XQAaJ0G4f/cyMk2rfj5udckb2uNbPsEJlG+IE73+R1OEyoA9c+CnGCwS2rbKT4B PEyiU3amxoEPXPXun9aetV96z/w4IbQS/wg3HImf3tJkh0/bWazbW+y8FOVahC47 oPKGrmhuv/685BqphRT5DyPobzHmK6p3 -----END CERTIFICATE-----Generated at Wed Dec 24 19:33:02 2025 by rpki-client