This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.mft File: oNGf1mnyVeFici98GdiGS7Brc5k.mft (raw, json) Hash identifier: nuXv0eJxv7jLS7ODftXZmhZItg2gP5j5BlZJ9uZxvXM= Subject key identifier: 62:59:59:5D:A1:DD:B5:2B:A9:0C:A8:4C:2A:CA:7B:E6:9D:0E:C2:BE Authority key identifier: A0:D1:9F:D6:69:F2:55:E1:62:72:2F:7C:19:D8:86:4B:B0:6B:73:99 Certificate issuer: /CN=A91DEC72/serialNumber=A0D19FD669F255E162722F7C19D8864BB06B7399 Certificate serial: 01BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNGf1mnyVeFici98GdiGS7Brc5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.mft Manifest number: 01B9 Signing time: Tue 23 Dec 2025 02:05:05 +0000 Manifest this update: Tue 23 Dec 2025 02:05:05 +0000 Manifest next update: Tue 30 Dec 2025 02:05:05 +0000 Files and hashes: 1: oNGf1mnyVeFici98GdiGS7Brc5k.crl (hash: Is0jorVvFd9lBynyiI/qtQzSwLELfTSCUQplx8vsCtg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.crl rsync://rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNGf1mnyVeFici98GdiGS7Brc5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:05:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 442 (0x1ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEC72, serialNumber=A0D19FD669F255E162722F7C19D8864BB06B7399 Validity Not Before: Dec 23 02:05:05 2025 GMT Not After : Dec 30 02:05:05 2025 GMT Subject: CN=6949f8d1-1096 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:02:f5:fb:e7:55:da:e2:8e:16:fb:f6:ee:2c: 9f:ac:2a:3b:d8:cb:e2:51:49:e9:c7:95:30:28:b5: 63:ea:f4:f0:a5:dd:e6:6e:80:fb:f6:d5:1e:14:4f: b7:4a:5b:4e:23:43:9c:63:e7:42:ce:d7:2a:bc:cb: 2b:27:5a:d0:7f:35:3c:83:70:08:ee:1b:bb:97:2a: 7b:2a:5f:05:2c:78:3c:d9:44:6c:02:50:9a:fe:fd: 27:91:04:d1:34:93:8e:49:a0:ad:f1:22:93:3e:59: 85:f9:28:57:20:fd:51:0c:a4:9e:33:9f:c3:5e:db: 9d:d9:9c:4b:42:3e:a9:04:25:e6:84:6a:89:df:ec: 0f:09:37:0e:50:43:7e:de:c8:35:67:09:8f:0d:65: 1a:e7:2f:6f:7d:18:4d:4c:f9:84:b6:52:16:58:82: 9c:90:c3:33:1a:f6:a8:53:a4:7d:68:09:ab:2e:6d: 02:76:6f:db:48:34:95:34:18:9e:ee:67:ed:dd:d1: 60:53:a9:35:7e:96:9d:36:f7:6a:e4:76:77:89:3c: e3:a7:e1:eb:ae:39:77:16:90:bd:c6:13:e9:ec:bc: cd:76:c6:3c:07:1c:8f:51:a6:80:0d:ce:2e:52:ba: 8f:18:1d:ae:0a:09:dd:b4:a8:01:16:b2:72:58:2d: ca:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:59:59:5D:A1:DD:B5:2B:A9:0C:A8:4C:2A:CA:7B:E6:9D:0E:C2:BE X509v3 Authority Key Identifier: keyid:A0:D1:9F:D6:69:F2:55:E1:62:72:2F:7C:19:D8:86:4B:B0:6B:73:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNGf1mnyVeFici98GdiGS7Brc5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC72/3F71FF883B9111EEAC617E6AC4F9AE02/oNGf1mnyVeFici98GdiGS7Brc5k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:7b:bf:01:dc:51:3c:20:24:d6:bb:e9:f2:16:4d:f5:d8:92: b0:6b:7d:58:b0:e5:a7:15:f5:9d:59:47:6d:47:80:ee:36:49: 41:92:2d:6e:38:43:72:b5:5d:5e:3a:39:15:b6:f9:18:f5:19: 74:a5:d2:c6:42:ba:9d:88:a3:7d:3d:82:92:a6:f9:96:33:65: a1:cb:36:7d:59:48:40:c6:f1:33:85:c6:78:96:3a:86:e7:14: 76:dc:81:d9:f0:65:ad:57:8f:3c:a8:73:9a:2d:63:b7:29:5e: 98:99:a1:49:9d:63:8b:3e:fd:64:31:15:5c:c1:7f:bd:ae:07: 82:98:97:ba:2b:28:57:6d:68:77:ae:88:87:d1:c5:6a:ad:79: 6d:c8:8b:cc:46:c8:d1:d5:80:82:05:b2:91:fb:b9:0f:f0:bb: 0c:97:ff:32:02:d8:70:8b:44:d3:f2:71:40:5a:fc:40:89:4f: d4:f1:30:5a:14:c2:a6:02:75:b9:ab:a6:1e:5b:15:ca:b8:2a: c2:71:a0:99:64:31:b5:60:ba:d9:07:d8:64:e3:bf:37:44:e5: 99:3a:fa:3f:b8:1b:a1:c8:a5:75:ad:e1:35:97:87:e1:f0:34: ba:58:4f:4d:02:9b:8e:c0:65:e7:49:d3:2c:bd:f6:34:c6:cc: 51:d2:48:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVDNzIxMTAvBgNVBAUTKEEwRDE5RkQ2NjlGMjU1RTE2MjcyMkY3QzE5RDg4NjRC QjA2QjczOTkwHhcNMjUxMjIzMDIwNTA1WhcNMjUxMjMwMDIwNTA1WjAYMRYwFAYD VQQDDA02OTQ5ZjhkMS0xMDk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQL1++dV2uKOFvv27iyfrCo72MviUUnpx5UwKLVj6vTwpd3mboD79tUeFE+3 SltOI0OcY+dCztcqvMsrJ1rQfzU8g3AI7hu7lyp7Kl8FLHg82URsAlCa/v0nkQTR NJOOSaCt8SKTPlmF+ShXIP1RDKSeM5/DXtud2ZxLQj6pBCXmhGqJ3+wPCTcOUEN+ 3sg1ZwmPDWUa5y9vfRhNTPmEtlIWWIKckMMzGvaoU6R9aAmrLm0Cdm/bSDSVNBie 7mft3dFgU6k1fpadNvdq5HZ3iTzjp+Hrrjl3FpC9xhPp7LzNdsY8BxyPUaaADc4u UrqPGB2uCgndtKgBFrJyWC3KmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGJZWV2h 3bUrqQyoTCrKe+adDsK+MB8GA1UdIwQYMBaAFKDRn9Zp8lXhYnIvfBnYhkuwa3OZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUM3Mi8zRjcxRkY4ODNC OTExMUVFQUM2MTdFNkFDNEY5QUUwMi9vTkdmMW1ueVZlRmljaTk4R2RpR1M3QnJj NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29OR2YxbW55VmVGaWNpOThHZGlHUzdCcmM1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUM3Mi8zRjcxRkY4ODNCOTExMUVFQUM2MTdFNkFDNEY5QUUwMi9vTkdmMW1ueVZl RmljaTk4R2RpR1M3QnJjNWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBze78B3FE8ICTWu+nyFk312JKwa31YsOWnFfWdWUdtR4DuNklBki1u OENytV1eOjkVtvkY9Rl0pdLGQrqdiKN9PYKSpvmWM2WhyzZ9WUhAxvEzhcZ4ljqG 5xR23IHZ8GWtV488qHOaLWO3KV6YmaFJnWOLPv1kMRVcwX+9rgeCmJe6KyhXbWh3 roiH0cVqrXltyIvMRsjR1YCCBbKR+7kP8LsMl/8yAthwi0TT8nFAWvxAiU/U8TBa FMKmAnW5q6YeWxXKuCrCcaCZZDG1YLrZB9hk4783ROWZOvo/uBuhyKV1reE1l4fh 8DS6WE9NApuOwGXnSdMsvfY0xsxR0khC -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:50 2025 by rpki-client