This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft File: oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft (raw, json) Hash identifier: W80LB8m90ydUIovBo/+ZGWOVYjV1xbm6sJ92rlZ2reY= Subject key identifier: 0B:00:1D:19:D8:B7:83:BE:37:66:91:E0:D8:ED:E9:63:28:31:C4:FC Authority key identifier: A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 Certificate issuer: /CN=A91D9D8B/serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Certificate serial: 023A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft Manifest number: 0234 Signing time: Sun 21 Dec 2025 01:14:56 +0000 Manifest this update: Sun 21 Dec 2025 01:14:56 +0000 Manifest next update: Sun 28 Dec 2025 01:14:56 +0000 Files and hashes: 1: oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl (hash: OBHZ6GNa9ZR4epSTxgRiu4qq7zgHQGMpxJCR7Yi66rk=) 2: 95C4C7AA7F7911ED9C1EAE19C4F9AE02.roa (hash: 9UBDG0nK7dNXHoswvyDP2323eSe7RBcMWWQgGNewLxg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 01:14:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 570 (0x23a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9D8B, serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Validity Not Before: Dec 21 01:14:56 2025 GMT Not After : Dec 28 01:14:56 2025 GMT Subject: CN=69474a10-9636 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f8:dc:e7:12:89:ba:81:d0:08:18:9b:8b:2c: cd:e8:3a:97:5c:f8:ad:96:5d:15:8a:e9:fe:45:db: eb:f5:68:2d:a7:15:cb:3e:64:a3:41:52:fc:ef:d2: 75:57:06:e9:01:f8:4b:85:e8:d1:0f:a2:08:8a:61: 86:e2:7d:10:a0:cd:d1:43:ae:64:ac:72:80:4b:3a: 7f:dd:ad:27:7f:d2:c0:65:c3:3d:0c:e2:2e:99:67: 85:b6:e5:f0:7b:8c:20:35:4e:3a:cd:95:47:9f:9a: 4b:50:a9:b6:77:37:de:ac:84:47:98:82:26:d9:55: 6a:c6:60:2c:b8:af:45:64:47:66:e7:26:de:0e:e4: 01:7c:07:40:e0:33:60:c7:1e:f6:3b:cb:45:48:68: cd:9f:ad:ce:73:ee:eb:b0:d0:c2:f2:16:5e:66:27: 28:20:1e:63:4e:1b:a2:52:42:b1:48:38:af:3a:0e: f7:c6:28:d3:f3:44:41:dd:f6:f7:dc:ec:08:87:99: 0e:27:f0:0b:92:d3:28:11:8e:70:6e:aa:b5:cc:3c: d3:ba:77:d2:ad:2b:e4:bd:6f:0b:84:bb:6c:08:43: 6e:1b:38:f0:fe:4d:32:46:99:91:f7:7c:ec:a2:03: d2:c9:1f:2e:cb:c4:97:f2:01:46:30:4c:2f:2d:b3: cb:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:00:1D:19:D8:B7:83:BE:37:66:91:E0:D8:ED:E9:63:28:31:C4:FC X509v3 Authority Key Identifier: keyid:A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:2f:4e:4c:5e:9d:e7:e4:82:ce:3c:52:ac:57:74:9b:41:33: 7d:2d:d9:c0:92:e8:b8:1f:b8:22:40:41:d3:e8:1b:12:b5:80: c0:d8:86:5e:52:df:2c:26:6c:36:a5:f4:16:85:67:7a:57:16: 3f:e7:c2:38:3e:9d:df:85:da:99:53:03:ab:e1:6f:1e:cf:a9: da:b6:a6:6b:c3:2f:e8:2b:a9:0e:a6:9b:f3:da:a6:de:5f:1c: 92:02:19:86:43:28:69:af:c7:aa:60:4e:9a:c4:fa:45:25:27: 6d:a7:23:09:94:0f:66:9c:e0:88:da:14:13:96:4f:c4:c1:f5: ae:88:37:64:54:90:8b:e5:d9:3f:09:d5:dc:19:83:f0:0c:5f: 4d:c6:65:ff:1c:f3:d3:68:68:59:6d:89:0d:aa:85:a7:ef:ec: 3e:57:56:99:47:e5:09:f0:ef:62:25:63:42:92:34:d5:39:78: 7c:d2:6a:69:2b:71:60:03:1c:c2:b8:e3:7a:53:6a:ab:42:fd: 08:e1:f1:e0:46:2b:b1:45:d2:56:81:cb:fa:c8:8b:c2:57:51: b9:06:3d:9d:25:ab:88:b7:c0:dd:b3:14:ab:88:a1:30:fd:06: 49:3e:0d:9b:f7:19:8f:20:2e:2d:1b:7a:18:61:ec:27:40:13: 56:00:cb:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlEOEIxMTAvBgNVBAUTKEExOTM4QzkxMkFDMkY0QTk1OEI5M0RBRjhGNEIyNzIw MTVCMEQ4RDgwHhcNMjUxMjIxMDExNDU2WhcNMjUxMjI4MDExNDU2WjAYMRYwFAYD VQQDDA02OTQ3NGExMC05NjM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwvjc5xKJuoHQCBibiyzN6DqXXPitll0Viun+Rdvr9WgtpxXLPmSjQVL879J1 VwbpAfhLhejRD6IIimGG4n0QoM3RQ65krHKASzp/3a0nf9LAZcM9DOIumWeFtuXw e4wgNU46zZVHn5pLUKm2dzferIRHmIIm2VVqxmAsuK9FZEdm5ybeDuQBfAdA4DNg xx72O8tFSGjNn63Oc+7rsNDC8hZeZicoIB5jThuiUkKxSDivOg73xijT80RB3fb3 3OwIh5kOJ/ALktMoEY5wbqq1zDzTunfSrSvkvW8LhLtsCENuGzjw/k0yRpmR93zs ogPSyR8uy8SX8gFGMEwvLbPLhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAsAHRnY t4O+N2aR4Njt6WMoMcT8MB8GA1UdIwQYMBaAFKGTjJEqwvSpWLk9r49LJyAVsNjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUQ4Qi81RjExRTAyQTdG NzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlLbFl1VDJ2ajBzbklCV3cy TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29aT01rU3JDOUtsWXVUMnZqMHNuSUJXdzJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUQ4Qi81RjExRTAyQTdGNzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlL bFl1VDJ2ajBzbklCV3cyTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmL05MXp3n5ILOPFKsV3SbQTN9LdnAkui4H7giQEHT6BsStYDA2IZe Ut8sJmw2pfQWhWd6VxY/58I4Pp3fhdqZUwOr4W8ez6natqZrwy/oK6kOppvz2qbe XxySAhmGQyhpr8eqYE6axPpFJSdtpyMJlA9mnOCI2hQTlk/EwfWuiDdkVJCL5dk/ CdXcGYPwDF9NxmX/HPPTaGhZbYkNqoWn7+w+V1aZR+UJ8O9iJWNCkjTVOXh80mpp K3FgAxzCuON6U2qrQv0I4fHgRiuxRdJWgcv6yIvCV1G5Bj2dJauIt8DdsxSriKEw /QZJPg2b9xmPIC4tG3oYYewnQBNWAMs/ -----END CERTIFICATE-----Generated at Mon Dec 22 07:14:26 2025 by rpki-client