This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.mft File: oPojd21UTId5RsrHxId0ZRmTfbg.mft (raw, json) Hash identifier: EDcQ79yD/pgc9PMYWx2HBnXLlaF+8nTxiZ6sCYKwxRM= Subject key identifier: 8E:DA:43:A1:30:27:9E:DC:15:07:E6:E3:6E:88:3A:6F:92:03:80:1E Authority key identifier: A0:FA:23:77:6D:54:4C:87:79:46:CA:C7:C4:87:74:65:19:93:7D:B8 Certificate issuer: /CN=A91DD584/serialNumber=A0FA23776D544C877946CAC7C487746519937DB8 Certificate serial: D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPojd21UTId5RsrHxId0ZRmTfbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.mft Manifest number: D5 Signing time: Tue 23 Dec 2025 04:38:31 +0000 Manifest this update: Tue 23 Dec 2025 04:38:30 +0000 Manifest next update: Tue 30 Dec 2025 04:38:30 +0000 Files and hashes: 1: oPojd21UTId5RsrHxId0ZRmTfbg.crl (hash: oS0nOSxoXdnI5XIEfDjP0Mg2b8/v2tK3cet5CLIiY4A=) 2: B4C685B09CB111EFA6F8E627C4F9AE02.roa (hash: GuNo7IUV7Thwoh9B3txt8mnx9fY3g5B8M+APQokJxqg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.crl rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPojd21UTId5RsrHxId0ZRmTfbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:38:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD584, serialNumber=A0FA23776D544C877946CAC7C487746519937DB8 Validity Not Before: Dec 23 04:38:30 2025 GMT Not After : Dec 30 04:38:30 2025 GMT Subject: CN=694a1cc7-7a83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:28:a6:d3:6b:fb:48:0e:7f:21:da:e9:2f:24: 58:94:74:ff:8a:75:b1:05:f2:c5:9d:87:3c:c4:0a: e8:29:6f:0a:67:86:ce:b7:27:b2:31:9a:14:14:10: 33:73:19:17:25:5c:28:18:9f:fe:86:8e:16:4e:a6: 45:41:64:05:3c:c5:67:e4:d5:f0:77:18:0d:d0:77: 3e:06:94:55:8c:e2:0f:fa:30:92:d6:e2:d3:a1:f2: f6:22:92:d2:79:e5:06:6e:e5:08:30:b8:7b:ab:c2: fe:87:17:f5:7b:80:b2:60:57:43:b9:77:a1:37:2a: 03:6c:d3:2e:da:69:d2:58:2c:17:18:69:ad:2e:0c: cf:77:4e:49:0a:d7:3a:76:dd:f3:af:56:f8:cf:90: a3:0d:dc:72:e2:0c:bd:5e:87:f6:58:e0:a2:f6:4f: d5:f3:f5:94:73:44:8e:05:f2:67:4c:55:ba:ce:12: fb:0d:8a:a5:0b:e4:12:15:20:dc:ba:22:53:96:0f: 1f:02:26:f7:b0:e0:53:45:75:10:c1:d9:62:a1:7a: 42:3d:a6:7b:2f:af:e2:70:f6:e1:b4:f8:85:44:3f: d2:9f:64:55:6a:cd:04:ff:13:ab:31:66:6e:46:9e: d5:18:e8:28:0a:b5:8d:8f:47:18:40:99:75:9d:8a: e1:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:DA:43:A1:30:27:9E:DC:15:07:E6:E3:6E:88:3A:6F:92:03:80:1E X509v3 Authority Key Identifier: keyid:A0:FA:23:77:6D:54:4C:87:79:46:CA:C7:C4:87:74:65:19:93:7D:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPojd21UTId5RsrHxId0ZRmTfbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:61:6c:58:43:1a:79:2a:e1:77:3d:eb:3a:91:07:c0:6c:c5: ae:98:a9:64:1c:88:3a:f2:2d:93:15:2a:fd:1c:83:4d:80:d4: ee:6e:28:3b:ae:d3:72:4d:98:fe:5b:a3:4f:cb:1a:39:80:0a: 30:91:e3:0e:4f:85:9f:24:8f:7e:20:7d:48:b7:1a:8c:ba:f8: b8:21:fa:95:ad:1a:1b:f3:02:14:8a:e1:d8:b8:ad:9a:20:a1: 5c:9f:fe:a2:14:c5:64:23:81:7b:ec:57:15:52:a7:55:4f:dd: 97:a3:55:e6:02:51:70:5c:8f:1b:c5:e7:f3:5f:ad:9f:92:b8: 04:2f:19:19:44:9c:90:6c:b1:79:c6:cb:3a:21:57:e4:bd:0b: 11:c7:ce:d9:0a:7c:ce:f1:fb:9a:fe:7f:f5:cc:af:72:ba:17: 2b:c5:73:da:9d:38:59:c8:04:df:2d:8c:8d:3f:4b:a5:00:05: 62:f2:0e:cc:fb:91:71:17:ef:34:d5:23:02:0d:e5:df:ec:c5: d7:4f:7a:f3:3b:88:d1:03:c3:c0:04:5c:19:7b:9c:e4:9d:fb: 41:c5:11:1c:83:af:d2:d4:99:ec:d6:bb:fd:7d:12:af:94:05: 51:c7:bd:39:1b:36:dc:ad:86:0b:b6:09:56:a4:d2:66:99:ff: 84:81:d7:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ1ODQxMTAvBgNVBAUTKEEwRkEyMzc3NkQ1NDRDODc3OTQ2Q0FDN0M0ODc3NDY1 MTk5MzdEQjgwHhcNMjUxMjIzMDQzODMwWhcNMjUxMjMwMDQzODMwWjAYMRYwFAYD VQQDDA02OTRhMWNjNy03YTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0iim02v7SA5/IdrpLyRYlHT/inWxBfLFnYc8xAroKW8KZ4bOtyeyMZoUFBAz cxkXJVwoGJ/+ho4WTqZFQWQFPMVn5NXwdxgN0Hc+BpRVjOIP+jCS1uLTofL2IpLS eeUGbuUIMLh7q8L+hxf1e4CyYFdDuXehNyoDbNMu2mnSWCwXGGmtLgzPd05JCtc6 dt3zr1b4z5CjDdxy4gy9Xof2WOCi9k/V8/WUc0SOBfJnTFW6zhL7DYqlC+QSFSDc uiJTlg8fAib3sOBTRXUQwdlioXpCPaZ7L6/icPbhtPiFRD/Sn2RVas0E/xOrMWZu Rp7VGOgoCrWNj0cYQJl1nYrh9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI7aQ6Ew J57cFQfm426IOm+SA4AeMB8GA1UdIwQYMBaAFKD6I3dtVEyHeUbKx8SHdGUZk324 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDU4NC8zMjcwNzM4MjlD QjExMUVGQUVBMDBEMjVDNEY5QUUwMi9vUG9qZDIxVVRJZDVSc3JIeElkMFpSbVRm YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Qb2pkMjFVVElkNVJzckh4SWQwWlJtVGZiZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDU4NC8zMjcwNzM4MjlDQjExMUVGQUVBMDBEMjVDNEY5QUUwMi9vUG9qZDIxVVRJ ZDVSc3JIeElkMFpSbVRmYmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTYWxYQxp5KuF3Pes6kQfAbMWumKlkHIg68i2TFSr9HINNgNTubig7 rtNyTZj+W6NPyxo5gAowkeMOT4WfJI9+IH1ItxqMuvi4IfqVrRob8wIUiuHYuK2a IKFcn/6iFMVkI4F77FcVUqdVT92Xo1XmAlFwXI8bxefzX62fkrgELxkZRJyQbLF5 xss6IVfkvQsRx87ZCnzO8fua/n/1zK9yuhcrxXPanThZyATfLYyNP0ulAAVi8g7M +5FxF+801SMCDeXf7MXXT3rzO4jRA8PABFwZe5zknftBxREcg6/S1Jns1rv9fRKv lAVRx705GzbcrYYLtglWpNJmmf+EgdfE -----END CERTIFICATE-----Generated at Tue Dec 23 21:25:18 2025 by rpki-client