This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft File: ok2WODNZy0lmoVuakGkT61RWZXs.mft (raw, json) Hash identifier: rHBzMBhTODM9jSsSEu/Hv/OlMfP2e1dvHxo91OFU5Gk= Subject key identifier: 5F:59:D4:93:AB:4D:BB:B9:85:C7:40:5E:4A:B0:7B:4C:C8:69:46:05 Authority key identifier: A2:4D:96:38:33:59:CB:49:66:A1:5B:9A:90:69:13:EB:54:56:65:7B Certificate issuer: /CN=A91C9C03/serialNumber=A24D96383359CB4966A15B9A906913EB5456657B Certificate serial: 79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft Manifest number: 73 Signing time: Sun 21 Dec 2025 05:59:27 +0000 Manifest this update: Sun 21 Dec 2025 05:59:27 +0000 Manifest next update: Sun 28 Dec 2025 05:59:27 +0000 Files and hashes: 1: ok2WODNZy0lmoVuakGkT61RWZXs.crl (hash: 8dfjyra77LTzfqeX8oNOyutCniILFmiZXoebYFPVRKI=) 2: 19088D04716211F0A531A51FC4F9AE02.roa (hash: UYhhmkQaI1q3+QjYEo/76mR50UYMRxm9p33lOpn/bSs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.crl rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 05:59:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9C03, serialNumber=A24D96383359CB4966A15B9A906913EB5456657B Validity Not Before: Dec 21 05:59:27 2025 GMT Not After : Dec 28 05:59:27 2025 GMT Subject: CN=69478cbf-e1f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:51:54:2d:94:d3:98:d5:32:7a:d4:18:e1:6a: 6e:36:97:11:67:fa:b5:a8:08:0b:e4:14:4b:e3:61: cc:46:ee:55:96:0e:3a:71:3d:4d:37:61:ee:9c:9c: 98:c3:86:5f:2d:7e:63:fd:f4:04:77:ca:b8:f5:1f: 98:6a:eb:33:7d:9e:f3:4b:1f:7c:45:21:ef:40:a3: 3e:34:7b:ce:53:53:8b:ef:b4:05:6b:44:71:90:b9: 24:61:2f:5b:fc:72:21:ad:13:1c:7f:f5:8b:bb:84: cd:7a:55:64:88:da:2d:be:9e:e5:83:5d:42:ad:e6: e0:95:21:f6:5a:04:3f:79:e5:6f:40:12:1a:30:bc: 94:ea:d6:e3:bb:17:d7:71:1a:92:33:59:05:2e:1a: e4:44:57:5f:54:30:34:aa:db:88:00:f2:43:d8:95: 33:75:87:fd:49:e5:16:09:a8:0a:b2:00:03:7e:3d: ce:18:39:27:6c:5f:6d:3a:1a:56:41:9d:30:ca:c9: 28:f1:a6:aa:8a:f3:c6:2d:8e:0a:1d:3e:76:bb:d8: f0:77:a6:52:e9:f7:64:c9:98:cf:db:39:3a:36:4d: 73:03:b3:80:6f:31:8b:5c:17:1c:3c:22:2f:bf:ce: 1b:81:4d:21:6b:b8:e2:ca:07:73:73:8d:7b:9c:0a: ec:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:59:D4:93:AB:4D:BB:B9:85:C7:40:5E:4A:B0:7B:4C:C8:69:46:05 X509v3 Authority Key Identifier: keyid:A2:4D:96:38:33:59:CB:49:66:A1:5B:9A:90:69:13:EB:54:56:65:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:37:8a:8b:c1:a5:76:9c:0d:90:c5:dc:40:57:bd:6b:ca:54: 8e:c4:80:19:e8:a9:df:5c:72:4b:81:16:11:6c:d4:34:1b:cf: 18:53:a2:ad:d0:c4:05:9a:dd:84:fe:27:7d:3b:be:02:71:89: 33:c4:84:53:0f:60:fb:be:50:fb:90:5b:09:c7:32:47:64:2d: c4:0a:b2:b3:97:de:78:09:49:d7:50:05:1c:b4:cf:79:38:6b: 6a:94:aa:eb:d0:c3:13:69:8a:5a:64:ea:2d:91:7b:1d:95:a4: 09:0c:4c:f4:a9:32:c7:b5:96:3e:69:72:14:7d:2d:56:49:66: d7:65:41:11:45:43:64:83:a6:cd:b3:8f:29:de:14:90:31:b2: 7b:d3:40:71:50:70:1f:90:68:47:31:b5:0e:2a:d1:3c:56:0a: 37:ad:7a:6f:73:c2:c6:8a:e7:a3:23:7b:d5:23:49:36:cd:26: 26:34:58:ef:77:69:21:c4:70:48:ed:cc:b9:27:8d:9b:11:11: a9:ab:67:3c:96:21:a4:55:c2:aa:fd:65:f8:ad:3e:1f:54:3b: d5:2c:4f:48:9e:25:ea:87:be:f2:45:27:a5:d4:f3:ee:bf:19: 27:d8:79:63:65:1f:12:2f:e8:d6:70:5a:04:d7:15:18:69:63: fe:5c:d7:50 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD OUMwMzExMC8GA1UEBRMoQTI0RDk2MzgzMzU5Q0I0OTY2QTE1QjlBOTA2OTEzRUI1 NDU2NjU3QjAeFw0yNTEyMjEwNTU5MjdaFw0yNTEyMjgwNTU5MjdaMBgxFjAUBgNV BAMMDTY5NDc4Y2JmLWUxZjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcUVQtlNOY1TJ61Bjham42lxFn+rWoCAvkFEvjYcxG7lWWDjpxPU03Ye6cnJjD hl8tfmP99AR3yrj1H5hq6zN9nvNLH3xFIe9Aoz40e85TU4vvtAVrRHGQuSRhL1v8 ciGtExx/9Yu7hM16VWSI2i2+nuWDXUKt5uCVIfZaBD955W9AEhowvJTq1uO7F9dx GpIzWQUuGuREV19UMDSq24gA8kPYlTN1h/1J5RYJqAqyAAN+Pc4YOSdsX206GlZB nTDKySjxpqqK88YtjgodPna72PB3plLp92TJmM/bOTo2TXMDs4BvMYtcFxw8Ii+/ zhuBTSFruOLKB3NzjXucCuyrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUX1nUk6tN u7mFx0BeSrB7TMhpRgUwHwYDVR0jBBgwFoAUok2WODNZy0lmoVuakGkT61RWZXsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5QzAzLzM3RDE4QTE2MzlB MzExRjBCQUQ3MkMzQ0M0RjlBRTAyL29rMldPRE5aeTBsbW9WdWFrR2tUNjFSV1pY cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb2syV09ETlp5MGxtb1Z1YWtHa1Q2MVJXWlhzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5 QzAzLzM3RDE4QTE2MzlBMzExRjBCQUQ3MkMzQ0M0RjlBRTAyL29rMldPRE5aeTBs bW9WdWFrR2tUNjFSV1pYcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHk3iovBpXacDZDF3EBXvWvKVI7EgBnoqd9cckuBFhFs1DQbzxhToq3Q xAWa3YT+J307vgJxiTPEhFMPYPu+UPuQWwnHMkdkLcQKsrOX3ngJSddQBRy0z3k4 a2qUquvQwxNpilpk6i2Rex2VpAkMTPSpMse1lj5pchR9LVZJZtdlQRFFQ2SDps2z jyneFJAxsnvTQHFQcB+QaEcxtQ4q0TxWCjetem9zwsaK56Mje9UjSTbNJiY0WO93 aSHEcEjtzLknjZsREamrZzyWIaRVwqr9ZfitPh9UO9UsT0ieJeqHvvJFJ6XU8+6/ GSfYeWNlHxIv6NZwWgTXFRhpY/5c11A= -----END CERTIFICATE-----Generated at Mon Dec 22 11:32:07 2025 by rpki-client