This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC0F2/7F33EE24FD7E11EEA1B3535CC4F9AE02/oAM_SUNjDclOLd9fKmuI6GZGGuc.mft File: oAM_SUNjDclOLd9fKmuI6GZGGuc.mft (raw, json) Hash identifier: OE8VyGc3ERQ893IoLU3ogGngOO3yKlFIdd4CsY5hr1E= Subject key identifier: D4:41:79:76:2D:E0:04:9B:D9:3B:21:A1:9C:7C:32:B4:2B:A4:51:8E Authority key identifier: A0:03:3F:49:43:63:0D:C9:4E:2D:DF:5F:2A:6B:88:E8:66:46:1A:E7 Certificate issuer: /CN=A91DC0F2/serialNumber=A0033F4943630DC94E2DDF5F2A6B88E866461AE7 Certificate serial: 0143 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oAM_SUNjDclOLd9fKmuI6GZGGuc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC0F2/7F33EE24FD7E11EEA1B3535CC4F9AE02/oAM_SUNjDclOLd9fKmuI6GZGGuc.mft Manifest number: 013E Signing time: Tue 23 Dec 2025 04:24:57 +0000 Manifest this update: Tue 23 Dec 2025 04:24:56 +0000 Manifest next update: Tue 30 Dec 2025 04:24:56 +0000 Files and hashes: 1: oAM_SUNjDclOLd9fKmuI6GZGGuc.crl (hash: VZfMuxvW9oQ6kXXdSjzNocji+/Jce7y48IiQ3gis+aw=) 2: EE647C1418A411EFBA690F60C4F9AE02.roa (hash: AYukR+hmqHQ+0JX0n3f3MQ037rzAgSDHYS/kLZbCSZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC0F2/7F33EE24FD7E11EEA1B3535CC4F9AE02/oAM_SUNjDclOLd9fKmuI6GZGGuc.crl rsync://rpki.apnic.net/member_repository/A91DC0F2/7F33EE24FD7E11EEA1B3535CC4F9AE02/oAM_SUNjDclOLd9fKmuI6GZGGuc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oAM_SUNjDclOLd9fKmuI6GZGGuc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:24:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 323 (0x143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC0F2, serialNumber=A0033F4943630DC94E2DDF5F2A6B88E866461AE7 Validity Not Before: Dec 23 04:24:56 2025 GMT Not After : Dec 30 04:24:56 2025 GMT Subject: CN=694a1998-3af8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f6:db:26:e7:a6:79:85:89:5e:c2:15:08:61: 77:f7:2f:40:51:2c:51:71:f8:02:ab:36:b5:c2:cc: 7d:e4:12:3f:88:70:4b:5b:4e:57:ed:72:6e:51:30: f5:0a:43:09:c0:a0:d7:8f:27:e0:52:96:35:6c:4a: c2:62:ed:c9:8b:10:49:56:d1:60:03:cd:37:ba:aa: 3e:f3:a3:3f:57:70:4c:46:67:c9:88:a9:59:8c:5c: 2a:40:8c:13:4a:19:b5:12:d0:0e:58:59:bb:4c:25: 87:5e:70:da:79:4f:46:6b:a9:06:3c:aa:b4:49:af: 0c:30:f2:4c:4e:fa:5a:30:02:48:04:a1:ca:ce:19: 62:ec:70:4b:ab:72:5f:ae:9a:ca:c2:36:fb:85:c9: 2d:dd:d4:f4:c9:25:42:23:42:da:6e:18:a8:f2:90: 35:14:62:e5:1f:34:90:b9:bc:ee:b3:31:50:c4:71: 5c:e9:3b:e0:ae:71:28:7c:e8:a2:f3:2d:55:a6:b8: 61:11:f0:60:f9:d8:0a:52:f1:55:12:07:b8:3d:c8: f5:9c:e2:61:e5:7e:a5:a3:8f:0b:7c:54:eb:34:ca: 34:d6:1b:6b:2d:99:90:50:fa:29:35:6d:8d:a9:5b: 01:e2:87:a6:29:19:e7:15:c4:a1:2b:2d:8f:1d:6f: 40:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:41:79:76:2D:E0:04:9B:D9:3B:21:A1:9C:7C:32:B4:2B:A4:51:8E X509v3 Authority Key Identifier: keyid:A0:03:3F:49:43:63:0D:C9:4E:2D:DF:5F:2A:6B:88:E8:66:46:1A:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC0F2/7F33EE24FD7E11EEA1B3535CC4F9AE02/oAM_SUNjDclOLd9fKmuI6GZGGuc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oAM_SUNjDclOLd9fKmuI6GZGGuc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC0F2/7F33EE24FD7E11EEA1B3535CC4F9AE02/oAM_SUNjDclOLd9fKmuI6GZGGuc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:5a:b3:ab:3d:02:89:26:1b:55:05:2f:b5:ad:88:55:f7:71: 30:72:93:a8:ae:0b:4f:10:8b:f4:7f:cf:64:60:45:50:bd:4f: 2c:71:e1:88:c1:88:64:f5:5d:18:be:c3:17:be:61:b8:69:b7: 1f:88:03:91:f8:1e:93:0c:59:17:3a:fb:74:7d:c2:2b:a0:5a: c2:fc:a6:ee:f1:ee:7f:5b:ec:a0:b2:20:85:a6:2e:62:d5:06: b8:8c:c4:50:21:f9:96:aa:c2:f6:15:14:f8:41:04:de:14:7b: fe:27:15:d4:7e:a3:ac:b8:92:d3:61:a3:33:8d:fc:58:5f:b8: c5:61:9a:70:02:ee:03:19:75:83:f3:88:fc:3f:15:67:f6:93: 31:82:56:93:2c:9e:5b:e0:e3:98:e0:e0:35:5e:9d:3d:ec:e4: 84:91:ed:d1:2a:db:17:f2:c6:f0:63:8d:23:15:ed:79:f4:df: 37:b7:7b:6a:09:d3:76:0e:c1:d7:c2:92:2e:73:e4:95:01:1b: 9f:eb:c8:a8:87:df:de:8e:b2:42:dd:b3:b8:e8:f1:31:6e:03: c5:c1:f7:68:71:c8:8a:e4:5d:ec:bf:03:49:63:8a:53:fb:e7: a9:e5:36:05:99:ed:07:6b:73:38:9b:06:9b:dc:67:42:36:ea: c2:3d:af:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx REMwRjIxMTAvBgNVBAUTKEEwMDMzRjQ5NDM2MzBEQzk0RTJEREY1RjJBNkI4OEU4 NjY0NjFBRTcwHhcNMjUxMjIzMDQyNDU2WhcNMjUxMjMwMDQyNDU2WjAYMRYwFAYD VQQDDA02OTRhMTk5OC0zYWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyvbbJuemeYWJXsIVCGF39y9AUSxRcfgCqza1wsx95BI/iHBLW05X7XJuUTD1 CkMJwKDXjyfgUpY1bErCYu3JixBJVtFgA803uqo+86M/V3BMRmfJiKlZjFwqQIwT Shm1EtAOWFm7TCWHXnDaeU9Ga6kGPKq0Sa8MMPJMTvpaMAJIBKHKzhli7HBLq3Jf rprKwjb7hckt3dT0ySVCI0Labhio8pA1FGLlHzSQubzuszFQxHFc6TvgrnEofOii 8y1VprhhEfBg+dgKUvFVEge4Pcj1nOJh5X6lo48LfFTrNMo01htrLZmQUPopNW2N qVsB4oemKRnnFcShKy2PHW9A+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNRBeXYt 4ASb2TshoZx8MrQrpFGOMB8GA1UdIwQYMBaAFKADP0lDYw3JTi3fXypriOhmRhrn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzBGMi83RjMzRUUyNEZE N0UxMUVFQTFCMzUzNUNDNEY5QUUwMi9vQU1fU1VOakRjbE9MZDlmS211STZHWkdH dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29BTV9TVU5qRGNsT0xkOWZLbXVJNkdaR0d1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzBGMi83RjMzRUUyNEZEN0UxMUVFQTFCMzUzNUNDNEY5QUUwMi9vQU1fU1VOakRj bE9MZDlmS211STZHWkdHdWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZWrOrPQKJJhtVBS+1rYhV93EwcpOorgtPEIv0f89kYEVQvU8sceGI wYhk9V0YvsMXvmG4abcfiAOR+B6TDFkXOvt0fcIroFrC/Kbu8e5/W+ygsiCFpi5i 1Qa4jMRQIfmWqsL2FRT4QQTeFHv+JxXUfqOsuJLTYaMzjfxYX7jFYZpwAu4DGXWD 84j8PxVn9pMxglaTLJ5b4OOY4OA1Xp097OSEke3RKtsX8sbwY40jFe159N83t3tq CdN2DsHXwpIuc+SVARuf68ioh9/ejrJC3bO46PExbgPFwfdocciK5F3svwNJY4pT ++ep5TYFme0Ha3M4mwab3GdCNurCPa8Z -----END CERTIFICATE-----Generated at Wed Dec 24 14:08:52 2025 by rpki-client