This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft File: 4OynvFsloMo3TZqDzEz5DdbPIgk.mft (raw, json) Hash identifier: Sd1MaqFnDwUmCIoiS43uWSnnZQeUab+Mc8eVzMPPo74= Subject key identifier: 72:13:92:50:1B:02:82:83:D7:17:C3:F6:2A:7A:DD:ED:29:03:41:18 Authority key identifier: E0:EC:A7:BC:5B:25:A0:CA:37:4D:9A:83:CC:4C:F9:0D:D6:CF:22:09 Certificate issuer: /CN=A91C74B5/serialNumber=E0ECA7BC5B25A0CA374D9A83CC4CF90DD6CF2209 Certificate serial: 01C7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OynvFsloMo3TZqDzEz5DdbPIgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft Manifest number: 01B9 Signing time: Tue 09 Dec 2025 01:17:59 +0000 Manifest this update: Tue 09 Dec 2025 01:17:59 +0000 Manifest next update: Tue 16 Dec 2025 01:17:59 +0000 Files and hashes: 1: 4OynvFsloMo3TZqDzEz5DdbPIgk.crl (hash: MfuzI+uNyOHGwED8yAYBXuOPw5vnfn/0e1bB5x/tC08=) 2: FBCA5E628A4E11EE8EFFA44BC4F9AE02.roa (hash: n7d+wfVovpgFh/VPuHK0Be+tZJiAokXkxVBH6z58Cdo=) 3: 23E0203034AF11EE90E6263DC4F9AE02.roa (hash: qRwojUTlxnLhuw/Mk800h2tw73R4wHeoNMLoVaIWLSQ=) 4: FE53F0DE34AA11EE85FF0735C4F9AE02.roa (hash: FSryM40tOFsx9/9SakfMh/QfDHk+qmxC9WGqNR/nxQA=) 5: 2343647034AF11EE90E6263DC4F9AE02.roa (hash: O7wU5uPOsDFh8TlK1r/cSTqhuO+kftwlxz4zNibCfJw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.crl rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OynvFsloMo3TZqDzEz5DdbPIgk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Dec 2025 01:17:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 455 (0x1c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C74B5, serialNumber=E0ECA7BC5B25A0CA374D9A83CC4CF90DD6CF2209 Validity Not Before: Dec 9 01:17:59 2025 GMT Not After : Dec 16 01:17:59 2025 GMT Subject: CN=693778c7-069c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e0:bd:c5:b7:bc:b3:d9:9d:49:36:d6:e1:d5: 2b:65:98:1f:76:b5:5d:82:2f:71:d5:b4:4f:a1:23: bb:7d:bd:24:7c:60:65:bd:ee:f0:e3:f0:0c:34:2b: 48:d2:1e:33:50:5a:44:91:1f:d6:b4:ad:f7:bb:c5: 97:3c:20:b2:ab:e4:82:69:7d:3a:c3:04:fb:ae:8e: a5:54:9d:0b:a9:2b:a0:36:d0:de:f0:f0:82:c0:39: 56:ec:25:42:2d:59:3e:4c:b0:c5:a8:75:62:66:f2: f5:3b:3f:e9:8a:db:1c:53:40:0b:ec:4f:b1:2a:af: b6:61:d8:ba:19:3a:ea:90:c6:61:f0:55:99:d0:18: b0:15:6c:c0:41:3c:f0:a0:91:7a:cd:e9:36:12:d8: f8:2c:3d:fe:14:08:fc:33:19:5f:f8:7b:09:30:15: 2b:01:03:14:23:34:20:13:21:10:cd:2f:37:99:b1: 0b:68:38:1e:75:44:03:b7:ca:7f:78:71:e6:a9:96: 9d:4c:00:82:b9:20:94:1a:f6:4e:4c:45:77:29:b3: db:25:b5:f7:49:cc:44:8d:f7:4d:8f:c1:41:6a:b8: 52:e0:7e:67:e6:50:4a:12:42:12:2f:a4:d4:9d:c1: bd:25:c3:6a:21:a6:a1:c8:9f:2e:3a:cb:f0:4e:b5: 24:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:13:92:50:1B:02:82:83:D7:17:C3:F6:2A:7A:DD:ED:29:03:41:18 X509v3 Authority Key Identifier: keyid:E0:EC:A7:BC:5B:25:A0:CA:37:4D:9A:83:CC:4C:F9:0D:D6:CF:22:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OynvFsloMo3TZqDzEz5DdbPIgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:e5:8a:5e:e9:e2:a4:05:f5:ed:a7:ad:47:2e:68:e8:95:52: fa:d8:a7:28:71:fd:25:3c:32:99:12:69:3c:fb:5a:79:09:68: 26:3b:6d:3d:63:d0:5c:c6:9a:d9:bd:7d:ea:f4:bb:65:e2:bd: 4a:8e:93:34:40:c0:f3:51:b3:87:08:fc:cc:5f:0e:e4:0a:d8: 7e:2e:f8:fa:e9:be:2a:a4:b5:bd:08:8c:bd:0e:20:50:88:5d: 6b:4c:b4:8e:c2:a6:0f:e4:b4:d1:66:18:73:cd:84:f9:85:9f: 13:89:41:af:54:20:a5:ca:3c:be:a0:22:28:9f:b3:ab:39:8a: 56:50:42:f7:c7:78:bb:bf:77:5c:4a:9a:03:d2:df:57:2b:ea: 4b:44:93:01:c6:9b:b7:2c:81:62:ee:52:b8:bb:21:51:5e:d5: 05:52:39:e0:ec:09:79:80:ae:7e:2e:20:87:16:0f:bb:cd:67: c0:e2:74:8d:a9:0e:a7:b6:56:29:f3:e2:08:5e:5e:b8:af:a3: a5:bc:b8:08:f7:2a:b5:6b:82:84:20:88:97:c9:be:b9:07:03: 70:5c:5a:ff:7c:c0:e7:b4:03:d7:be:bc:48:07:a6:dd:cb:7d: 3b:72:41:ed:20:55:72:72:9b:98:40:9c:a3:f0:f5:73:50:71: 5b:eb:f4:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc0QjUxMTAvBgNVBAUTKEUwRUNBN0JDNUIyNUEwQ0EzNzREOUE4M0NDNENGOTBE RDZDRjIyMDkwHhcNMjUxMjA5MDExNzU5WhcNMjUxMjE2MDExNzU5WjAYMRYwFAYD VQQDEw02OTM3NzhjNy0wNjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArOC9xbe8s9mdSTbW4dUrZZgfdrVdgi9x1bRPoSO7fb0kfGBlve7w4/AMNCtI 0h4zUFpEkR/WtK33u8WXPCCyq+SCaX06wwT7ro6lVJ0LqSugNtDe8PCCwDlW7CVC LVk+TLDFqHViZvL1Oz/pitscU0AL7E+xKq+2Ydi6GTrqkMZh8FWZ0BiwFWzAQTzw oJF6zek2Etj4LD3+FAj8Mxlf+HsJMBUrAQMUIzQgEyEQzS83mbELaDgedUQDt8p/ eHHmqZadTACCuSCUGvZOTEV3KbPbJbX3ScxEjfdNj8FBarhS4H5n5lBKEkISL6TU ncG9JcNqIaahyJ8uOsvwTrUkDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHITklAb AoKD1xfD9ip63e0pA0EYMB8GA1UdIwQYMBaAFODsp7xbJaDKN02ag8xM+Q3WzyIJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzRCNS85ODA0MzU2RTM0 QUExMUVFQTA2QUUxMzNDNEY5QUUwMi80T3ludkZzbG9NbzNUWnFEekV6NURkYlBJ Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRPeW52RnNsb01vM1RacUR6RXo1RGRiUElnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzRCNS85ODA0MzU2RTM0QUExMUVFQTA2QUUxMzNDNEY5QUUwMi80T3ludkZzbG9N bzNUWnFEekV6NURkYlBJZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBd5Ype6eKkBfXtp61HLmjolVL62Kcocf0lPDKZEmk8+1p5CWgmO209 Y9BcxprZvX3q9Ltl4r1KjpM0QMDzUbOHCPzMXw7kCth+Lvj66b4qpLW9CIy9DiBQ iF1rTLSOwqYP5LTRZhhzzYT5hZ8TiUGvVCClyjy+oCIon7OrOYpWUEL3x3i7v3dc SpoD0t9XK+pLRJMBxpu3LIFi7lK4uyFRXtUFUjng7Al5gK5+LiCHFg+7zWfA4nSN qQ6ntlYp8+IIXl64r6OlvLgI9yq1a4KEIIiXyb65BwNwXFr/fMDntAPXvrxIB6bd y307ckHtIFVycpuYQJyj8PVzUHFb6/TG -----END CERTIFICATE-----Generated at Thu Dec 11 10:14:18 2025 by rpki-client