This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0F0F/5C18A6125DE711F0A867914EC4F9AE02/OOsNjnrx6xh9WqP8X3lBkTOL22Y.mft File: OOsNjnrx6xh9WqP8X3lBkTOL22Y.mft (raw, json) Hash identifier: Z3yVfCcGLk4r5tPsGWZiuuD3eWThV1Mg0Z3SlQn0ZmM= Subject key identifier: C2:1C:F6:8D:57:FA:3C:E6:B6:3A:4A:B1:5D:E1:9A:A2:F3:7C:0C:4B Authority key identifier: 38:EB:0D:8E:7A:F1:EB:18:7D:5A:A3:FC:5F:79:41:91:33:8B:DB:66 Certificate issuer: /CN=A91D0F0F/serialNumber=38EB0D8E7AF1EB187D5AA3FC5F794191338BDB66 Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOsNjnrx6xh9WqP8X3lBkTOL22Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0F0F/5C18A6125DE711F0A867914EC4F9AE02/OOsNjnrx6xh9WqP8X3lBkTOL22Y.mft Manifest number: 57 Signing time: Tue 23 Dec 2025 06:04:14 +0000 Manifest this update: Tue 23 Dec 2025 06:04:13 +0000 Manifest next update: Tue 30 Dec 2025 06:04:13 +0000 Files and hashes: 1: OOsNjnrx6xh9WqP8X3lBkTOL22Y.crl (hash: 9qXpG18qZURtMZo91DagACIsYR5To4ODA/nzQUOB5qU=) 2: CCD6F0DE5DE711F0BC6E0A50C4F9AE02.roa (hash: oCx5plSmqi8Rm6TAvFIAJcsQRs4OdtkOfKnCiaRUGsU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0F0F/5C18A6125DE711F0A867914EC4F9AE02/OOsNjnrx6xh9WqP8X3lBkTOL22Y.crl rsync://rpki.apnic.net/member_repository/A91D0F0F/5C18A6125DE711F0A867914EC4F9AE02/OOsNjnrx6xh9WqP8X3lBkTOL22Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOsNjnrx6xh9WqP8X3lBkTOL22Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 06:04:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0F0F, serialNumber=38EB0D8E7AF1EB187D5AA3FC5F794191338BDB66 Validity Not Before: Dec 23 06:04:13 2025 GMT Not After : Dec 30 06:04:13 2025 GMT Subject: CN=694a30de-09bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:1f:a8:88:bd:62:fa:74:84:a3:53:9f:24:66: c1:a6:00:e9:e7:8d:6c:32:fd:56:54:e8:0b:ae:52: 6c:ba:46:bf:ea:e2:d6:c8:69:e2:2d:b0:8f:64:00: 7e:fe:c8:76:34:5d:b7:eb:6d:36:14:8e:0e:6e:5a: 84:85:07:80:e9:af:c1:54:bc:f3:77:de:77:0c:24: 81:35:63:b4:c9:cd:9a:ed:17:27:88:43:fe:e6:73: e6:6d:7a:1d:0f:db:37:5a:0c:ac:a5:26:72:9a:7f: 44:87:a5:39:9d:b7:fe:ce:21:0d:d1:5a:f2:c4:d7: 7a:42:aa:6c:09:4c:8c:be:87:72:97:4e:73:fc:78: 79:f0:98:68:e1:a6:2d:f4:56:24:b8:02:e9:17:66: 96:64:1e:09:1c:5f:b0:54:30:78:cf:1d:83:66:16: a6:84:3f:7b:8b:6f:12:94:eb:af:ec:e1:7b:b0:9d: bd:41:96:5c:e8:92:c7:67:1d:b3:5e:60:08:09:fc: 6a:fb:dd:c7:7a:58:9b:98:99:d4:d6:05:a1:be:d2: 7d:42:44:de:8d:92:4b:a4:75:e2:2b:ac:00:6e:05: 7e:d6:88:a3:5e:cc:9b:95:64:b8:a2:f1:e3:c0:8b: f1:ad:5a:59:6f:81:30:f0:2e:6e:38:b6:36:45:a8: 72:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:1C:F6:8D:57:FA:3C:E6:B6:3A:4A:B1:5D:E1:9A:A2:F3:7C:0C:4B X509v3 Authority Key Identifier: keyid:38:EB:0D:8E:7A:F1:EB:18:7D:5A:A3:FC:5F:79:41:91:33:8B:DB:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0F0F/5C18A6125DE711F0A867914EC4F9AE02/OOsNjnrx6xh9WqP8X3lBkTOL22Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOsNjnrx6xh9WqP8X3lBkTOL22Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0F0F/5C18A6125DE711F0A867914EC4F9AE02/OOsNjnrx6xh9WqP8X3lBkTOL22Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:c0:8e:14:f2:fc:b9:07:11:2f:91:9d:bb:d0:3d:d1:90:51: e9:14:d2:71:0b:6d:ca:74:fd:2a:e2:44:f7:6b:ee:47:93:16: 9b:d6:e0:0a:0c:79:dd:14:a9:0e:4e:bc:70:2d:b5:c0:32:29: ae:fb:6c:fc:91:33:13:31:d7:4c:b1:82:fa:55:04:ea:b4:5a: 56:08:40:c3:da:05:d9:11:50:b7:cc:b0:77:e3:43:4b:fa:fa: 12:db:91:d6:1c:2a:84:09:8b:ea:f2:3e:0f:e1:e3:97:95:55: 81:83:0a:ba:68:d7:fb:22:84:a4:19:a7:04:9e:d8:bc:22:d1: 8d:4d:d5:f1:2e:2e:d0:9e:10:bc:8d:86:b9:2d:01:5c:8a:83: ca:96:07:65:0b:b8:de:cb:02:25:33:b3:0e:89:c7:59:5b:7d: d0:46:6a:fa:11:e7:22:ba:4b:21:18:98:e2:1d:36:ca:f7:62: dd:37:b1:a1:99:73:f0:f8:15:7d:ca:72:2f:41:60:65:cb:04: 7f:7b:cc:d6:fc:97:67:a1:2b:45:f7:63:48:bc:30:23:a5:68: f3:ff:31:2e:b3:46:76:53:88:f6:a8:e3:c2:99:b3:aa:1c:b7: 0a:cf:30:65:f4:52:db:d7:93:98:7a:05:34:5a:ba:f6:0a:7a: 8c:83:a9:47 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MEYwRjExMC8GA1UEBRMoMzhFQjBEOEU3QUYxRUIxODdENUFBM0ZDNUY3OTQxOTEz MzhCREI2NjAeFw0yNTEyMjMwNjA0MTNaFw0yNTEyMzAwNjA0MTNaMBgxFjAUBgNV BAMMDTY5NGEzMGRlLTA5YmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDaH6iIvWL6dISjU58kZsGmAOnnjWwy/VZU6AuuUmy6Rr/q4tbIaeItsI9kAH7+ yHY0XbfrbTYUjg5uWoSFB4Dpr8FUvPN33ncMJIE1Y7TJzZrtFyeIQ/7mc+Zteh0P 2zdaDKylJnKaf0SHpTmdt/7OIQ3RWvLE13pCqmwJTIy+h3KXTnP8eHnwmGjhpi30 ViS4AukXZpZkHgkcX7BUMHjPHYNmFqaEP3uLbxKU66/s4Xuwnb1BllzoksdnHbNe YAgJ/Gr73cd6WJuYmdTWBaG+0n1CRN6NkkukdeIrrABuBX7WiKNezJuVZLii8ePA i/GtWllvgTDwLm44tjZFqHJ3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwhz2jVf6 POa2OkqxXeGaovN8DEswHwYDVR0jBBgwFoAUOOsNjnrx6xh9WqP8X3lBkTOL22Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwRjBGLzVDMThBNjEyNURF NzExRjBBODY3OTE0RUM0RjlBRTAyL09Pc05qbnJ4NnhoOVdxUDhYM2xCa1RPTDIy WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT09zTmpucng2eGg5V3FQOFgzbEJrVE9MMjJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQw RjBGLzVDMThBNjEyNURFNzExRjBBODY3OTE0RUM0RjlBRTAyL09Pc05qbnJ4Nnho OVdxUDhYM2xCa1RPTDIyWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADrAjhTy/LkHES+RnbvQPdGQUekU0nELbcp0/SriRPdr7keTFpvW4AoM ed0UqQ5OvHAttcAyKa77bPyRMxMx10yxgvpVBOq0WlYIQMPaBdkRULfMsHfjQ0v6 +hLbkdYcKoQJi+ryPg/h45eVVYGDCrpo1/sihKQZpwSe2Lwi0Y1N1fEuLtCeELyN hrktAVyKg8qWB2ULuN7LAiUzsw6Jx1lbfdBGavoR5yK6SyEYmOIdNsr3Yt03saGZ c/D4FX3Kci9BYGXLBH97zNb8l2ehK0X3Y0i8MCOlaPP/MS6zRnZTiPao48KZs6oc twrPMGX0UtvXk5h6BTRauvYKeoyDqUc= -----END CERTIFICATE-----Generated at Wed Dec 24 15:47:18 2025 by rpki-client