This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft File: oqIX1KQS-1OPXJGjSzbOcYed22U.mft (raw, json) Hash identifier: wNUhuN0cut03ElmBqfonF0DVJ+11BNSFZ2oGlyEyuEM= Subject key identifier: A4:EE:ED:40:94:92:E1:BB:2B:7D:8C:F5:AA:53:86:2D:2E:72:58:E4 Authority key identifier: A2:A2:17:D4:A4:12:FB:53:8F:5C:91:A3:4B:36:CE:71:87:9D:DB:65 Certificate issuer: /CN=A91CF9B0/serialNumber=A2A217D4A412FB538F5C91A34B36CE71879DDB65 Certificate serial: 0196 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft Manifest number: 0187 Signing time: Tue 23 Dec 2025 02:49:00 +0000 Manifest this update: Tue 23 Dec 2025 02:49:00 +0000 Manifest next update: Tue 30 Dec 2025 02:49:00 +0000 Files and hashes: 1: oqIX1KQS-1OPXJGjSzbOcYed22U.crl (hash: Wux14tqTOkEMD6zE+axdRUAwr9wr4cPxiSonDVswr2E=) 2: 84D917FC9F4911EEA0C5C856C4F9AE02.roa (hash: NmyQHlBil47JzTSCPQYz/6ZBa9AnAtiDqsHIcZPO3dA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.crl rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:48:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 406 (0x196) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF9B0, serialNumber=A2A217D4A412FB538F5C91A34B36CE71879DDB65 Validity Not Before: Dec 23 02:49:00 2025 GMT Not After : Dec 30 02:49:00 2025 GMT Subject: CN=694a031c-4d33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e7:ff:f1:9f:61:c4:ac:da:d0:7c:ff:3b:44: 48:15:5d:85:6f:8d:f9:86:1b:81:ec:93:3f:4b:5b: cf:95:8a:97:3b:f1:15:b3:0e:bb:fe:03:b8:e7:39: 66:6e:df:cb:c5:bd:c0:82:70:82:a2:07:96:07:73: af:61:0a:1b:2f:f4:85:04:db:2d:8f:ad:c9:5e:54: ca:91:75:e4:5d:15:76:93:89:66:88:40:70:c6:1a: 95:d7:4c:8d:a6:b3:59:d0:7c:95:9c:7a:87:c3:88: a9:53:53:36:d1:70:f9:25:63:38:db:1a:85:a0:2f: 8d:29:fa:6b:1f:92:e5:3a:51:44:a9:9c:86:0d:f7: c0:db:1d:23:34:9e:7b:a2:c2:5b:5a:94:84:1c:df: ab:1c:fb:01:58:a6:a5:34:51:e7:dd:b6:9f:c0:02: b6:b5:47:a8:85:d1:8e:c7:d8:45:d4:51:38:e2:9b: 6e:03:df:95:6a:d3:b1:0a:f7:18:2e:0a:75:d8:c8: 06:32:b4:1b:d2:0c:ed:6e:96:0c:52:c7:fb:45:89: 48:3b:56:3d:49:46:65:eb:77:18:96:d9:53:d5:0c: 16:15:8f:69:f7:3d:f5:d4:82:3d:bc:79:c1:9f:92: e8:78:24:01:8a:ca:4f:28:fb:3a:00:1d:01:94:20: be:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:EE:ED:40:94:92:E1:BB:2B:7D:8C:F5:AA:53:86:2D:2E:72:58:E4 X509v3 Authority Key Identifier: keyid:A2:A2:17:D4:A4:12:FB:53:8F:5C:91:A3:4B:36:CE:71:87:9D:DB:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:09:a8:ff:09:36:09:be:b6:ad:95:28:87:0c:e2:9a:2f:84: 81:f0:57:c1:de:4e:c8:bc:d1:b8:e9:79:fe:ba:57:28:e7:08: 8e:10:33:91:09:56:1c:07:ee:34:e0:b7:6d:96:82:1e:78:9b: 9f:65:dd:49:b9:9b:bd:b3:67:f4:d3:f6:4e:47:d0:cd:18:3e: 65:75:eb:9c:ea:26:72:bf:d9:bc:e1:9a:40:82:2b:de:88:08: 07:9a:2e:c8:3e:e7:f6:be:6b:a4:4d:1a:e8:e9:26:2d:a6:d7: 45:70:7f:f1:fd:ca:aa:50:71:0b:37:fb:0e:69:8d:52:78:ae: f3:e6:0e:a0:18:3c:f1:fc:69:76:34:1f:6f:e6:d5:44:33:01: 86:09:2e:eb:e2:2e:c4:e2:f7:fc:73:54:9d:a3:90:b4:00:b3: e8:71:ff:d0:36:d6:71:29:93:65:00:58:57:bc:69:a6:0b:da: c7:18:6c:70:ef:f8:1f:81:5b:f4:62:8e:df:95:f7:78:e1:f0: 5b:3e:be:ec:58:dc:f3:a8:10:d3:0f:14:d7:5b:ee:cd:7f:d0: 49:ad:7e:d6:a8:2b:87:40:0b:4b:ae:70:ec:49:98:be:ad:52: a5:50:6b:27:65:f2:de:fa:2d:59:95:22:4b:68:a4:22:0d:73: 8a:9a:02:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y5QjAxMTAvBgNVBAUTKEEyQTIxN0Q0QTQxMkZCNTM4RjVDOTFBMzRCMzZDRTcx ODc5RERCNjUwHhcNMjUxMjIzMDI0OTAwWhcNMjUxMjMwMDI0OTAwWjAYMRYwFAYD VQQDDA02OTRhMDMxYy00ZDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ef/8Z9hxKza0Hz/O0RIFV2Fb435hhuB7JM/S1vPlYqXO/EVsw67/gO45zlm bt/Lxb3AgnCCogeWB3OvYQobL/SFBNstj63JXlTKkXXkXRV2k4lmiEBwxhqV10yN prNZ0HyVnHqHw4ipU1M20XD5JWM42xqFoC+NKfprH5LlOlFEqZyGDffA2x0jNJ57 osJbWpSEHN+rHPsBWKalNFHn3bafwAK2tUeohdGOx9hF1FE44ptuA9+VatOxCvcY Lgp12MgGMrQb0gztbpYMUsf7RYlIO1Y9SUZl63cYltlT1QwWFY9p9z311II9vHnB n5LoeCQBispPKPs6AB0BlCC+xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKTu7UCU kuG7K32M9apThi0ucljkMB8GA1UdIwQYMBaAFKKiF9SkEvtTj1yRo0s2znGHndtl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjlCMC8xNEM5NDk2RTlG M0YxMUVFODAxQjFENjJDNEY5QUUwMi9vcUlYMUtRUy0xT1BYSkdqU3piT2NZZWQy MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29xSVgxS1FTLTFPUFhKR2pTemJPY1llZDIyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjlCMC8xNEM5NDk2RTlGM0YxMUVFODAxQjFENjJDNEY5QUUwMi9vcUlYMUtRUy0x T1BYSkdqU3piT2NZZWQyMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuCaj/CTYJvratlSiHDOKaL4SB8FfB3k7IvNG46Xn+ulco5wiOEDOR CVYcB+404LdtloIeeJufZd1JuZu9s2f00/ZOR9DNGD5ldeuc6iZyv9m84ZpAgive iAgHmi7IPuf2vmukTRro6SYtptdFcH/x/cqqUHELN/sOaY1SeK7z5g6gGDzx/Gl2 NB9v5tVEMwGGCS7r4i7E4vf8c1Sdo5C0ALPocf/QNtZxKZNlAFhXvGmmC9rHGGxw 7/gfgVv0Yo7flfd44fBbPr7sWNzzqBDTDxTXW+7Nf9BJrX7WqCuHQAtLrnDsSZi+ rVKlUGsnZfLe+i1ZlSJLaKQiDXOKmgLV -----END CERTIFICATE-----Generated at Wed Dec 24 15:44:46 2025 by rpki-client