This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft File: Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft (raw, json) Hash identifier: 8VYzjf8msHX9fKeUNApJU1BTcSi/0pGf96BD2wsuQro= Subject key identifier: BC:A4:33:B0:77:C2:C2:D4:CF:34:97:19:65:B3:D2:A7:E5:F1:EF:60 Authority key identifier: 3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 Certificate issuer: /CN=A91C4F06/serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Certificate serial: 35D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft Manifest number: 356E Signing time: Mon 22 Dec 2025 14:45:14 +0000 Manifest this update: Mon 22 Dec 2025 14:45:14 +0000 Manifest next update: Mon 29 Dec 2025 14:45:14 +0000 Files and hashes: 1: Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl (hash: 2B7rLGREtrwsp1n4TDk3Frnj+DaWFP0EnunJpdSk1Ho=) 2: 5A318E06F6A111EBB6318B7EC4F9AE02.roa (hash: g01plAkOdieV4NPIP7/omEljoKEhVOT/UK1CPH/JcfQ=) 3: 1600DBF659C311E9A04B846FC4F9AE02.roa (hash: Rp2RG1hF6yB5oGrywiGWXTiVHqNq8sdwd+lk50rYEfg=) 4: 6F1612BE562511EB9470B150C4F9AE02.roa (hash: BrIt4ULt/nWqzogqGuBCD8Hp7rvk2fEABSPjkLFLvVw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 14:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13778 (0x35d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4F06, serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Validity Not Before: Dec 22 14:45:14 2025 GMT Not After : Dec 29 14:45:14 2025 GMT Subject: CN=6949597a-9264 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:39:ca:a2:ea:d6:b7:e0:d3:36:69:9f:1a:2a: cc:a4:27:dd:25:3a:d9:ee:1a:7f:d7:af:df:db:aa: 73:3e:24:5c:ce:7b:d9:d5:e8:3e:12:dd:03:7f:dd: ea:84:bb:33:60:3d:81:80:c1:2e:10:3c:c6:62:fc: 7e:ee:6f:9d:ee:41:4b:27:63:c5:d2:4f:ce:cb:f0: 2e:4d:70:5f:29:3c:34:7f:75:8c:46:7f:81:92:2d: d8:aa:68:c9:95:24:8e:53:67:7b:d7:3e:8a:9a:57: 39:01:09:0b:a3:d5:cf:7c:7d:cd:03:8a:e2:cf:11: 33:4b:cd:26:05:b4:ed:b9:7f:ee:8c:ce:d8:38:97: 8f:61:8b:a1:04:5a:ac:85:e5:8d:f5:ca:43:5c:1e: 49:d1:e6:17:3a:b4:c2:3a:47:14:55:ec:8f:f3:90: 3c:71:e2:02:6d:3a:fb:2b:62:6c:82:9b:d3:4d:cc: 62:e7:45:08:1d:02:6b:0a:25:3b:31:42:2c:23:66: 69:45:06:2a:fb:61:bd:cf:24:85:c6:31:bc:87:d6: 8c:06:29:80:66:ac:0f:0f:b7:91:b1:d1:d7:8f:90: 13:d0:ef:87:50:b2:05:d4:07:70:85:ce:3d:ed:e3: da:29:74:b2:23:ee:a8:3b:0d:61:71:38:0b:8a:39: d7:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:A4:33:B0:77:C2:C2:D4:CF:34:97:19:65:B3:D2:A7:E5:F1:EF:60 X509v3 Authority Key Identifier: keyid:3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:32:4b:38:5b:8b:ec:ac:35:9f:ee:10:6f:d1:0c:3c:70:f6: 44:02:32:dd:45:83:38:d3:ab:4b:fb:c2:4a:17:ae:2f:df:ea: 8f:75:23:a8:3e:4e:d0:60:92:0b:67:9b:77:96:38:28:e2:18: 2f:8f:cf:cf:b2:46:96:05:29:0d:0b:2d:b7:74:36:9c:fe:46: 70:dd:b6:f3:92:49:c9:51:1f:bd:e7:28:47:6c:a1:5f:c7:60: 17:3b:dc:ea:d7:e3:49:fc:83:f0:91:4b:33:73:34:c2:38:cd: 12:48:97:d0:32:5d:2b:bf:fd:b5:6f:06:96:31:92:27:75:aa: 87:23:ac:a0:77:a6:e6:d0:06:31:83:81:55:c6:ad:ca:cc:18: ae:7d:43:b9:8d:62:e6:7e:e1:58:f9:6d:4b:84:e6:24:c1:d3: 93:23:b8:e3:3a:a3:48:4f:53:9e:14:b9:1e:26:f5:21:e0:6d: 1f:d9:bf:93:bd:6a:c6:c1:84:d8:d9:28:13:02:9a:e8:59:3f: 12:f6:56:75:ec:71:f8:4f:f9:7a:ea:1f:d6:18:11:d7:83:6e: d8:83:bb:b5:c2:b9:b3:ce:b3:ad:6f:fa:38:39:7e:e0:51:f7: 28:7f:b4:75:80:ad:30:41:ae:54:bc:94:2d:52:03:b5:e8:c0: 77:4b:a7:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRGMDYxMTAvBgNVBAUTKDNBQUY4MEVBOTdFOTlCOTUyNUIzM0JDMTMzNUJCMDk1 QzJEMjc4QTcwHhcNMjUxMjIyMTQ0NTE0WhcNMjUxMjI5MTQ0NTE0WjAYMRYwFAYD VQQDDA02OTQ5NTk3YS05MjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2TnKourWt+DTNmmfGirMpCfdJTrZ7hp/16/f26pzPiRcznvZ1eg+Et0Df93q hLszYD2BgMEuEDzGYvx+7m+d7kFLJ2PF0k/Oy/AuTXBfKTw0f3WMRn+Bki3YqmjJ lSSOU2d71z6Kmlc5AQkLo9XPfH3NA4rizxEzS80mBbTtuX/ujM7YOJePYYuhBFqs heWN9cpDXB5J0eYXOrTCOkcUVeyP85A8ceICbTr7K2JsgpvTTcxi50UIHQJrCiU7 MUIsI2ZpRQYq+2G9zySFxjG8h9aMBimAZqwPD7eRsdHXj5AT0O+HULIF1Adwhc49 7ePaKXSyI+6oOw1hcTgLijnX9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLykM7B3 wsLUzzSXGWWz0qfl8e9gMB8GA1UdIwQYMBaAFDqvgOqX6ZuVJbM7wTNbsJXC0nin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEYwNi83NkUxQzQ3RTFE OTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01VWxzenZCTTF1d2xjTFNl S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xLUE2cGZwbTVVbHN6dkJNMXV3bGNMU2VLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NEYwNi83NkUxQzQ3RTFEOTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01 VWxzenZCTTF1d2xjTFNlS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIMks4W4vsrDWf7hBv0Qw8cPZEAjLdRYM406tL+8JKF64v3+qPdSOo Pk7QYJILZ5t3ljgo4hgvj8/PskaWBSkNCy23dDac/kZw3bbzkknJUR+95yhHbKFf x2AXO9zq1+NJ/IPwkUszczTCOM0SSJfQMl0rv/21bwaWMZIndaqHI6ygd6bm0AYx g4FVxq3KzBiufUO5jWLmfuFY+W1LhOYkwdOTI7jjOqNIT1OeFLkeJvUh4G0f2b+T vWrGwYTY2SgTAproWT8S9lZ17HH4T/l66h/WGBHXg27Yg7u1wrmzzrOtb/o4OX7g Ufcof7R1gK0wQa5UvJQtUgO16MB3S6c+ -----END CERTIFICATE-----Generated at Tue Dec 23 12:43:38 2025 by rpki-client