This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft File: oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft (raw, json) Hash identifier: +On2xG8JpkDYMSJm0MfLayf6dwdrKfGLJZq/b0zxo+s= Subject key identifier: CB:6E:81:6D:F0:4C:97:EE:E9:9D:84:EC:94:8D:CC:77:6C:2D:B1:51 Authority key identifier: A0:1D:23:F7:81:E8:FF:35:3B:18:BD:18:82:84:C9:AD:FC:D9:E3:96 Certificate issuer: /CN=A91E0267/serialNumber=A01D23F781E8FF353B18BD188284C9ADFCD9E396 Certificate serial: 34F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft Manifest number: 34F0 Signing time: Mon 22 Dec 2025 14:48:21 +0000 Manifest this update: Mon 22 Dec 2025 14:48:20 +0000 Manifest next update: Mon 29 Dec 2025 14:48:20 +0000 Files and hashes: 1: oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl (hash: RA6DRfvcxaUoDolil8zwA1SQKEeYlu7Ev0rNAU2Pioc=) 2: 77C9E89A3CDC11EEBFA0475EC4F9AE02.roa (hash: e40Fx6yfX6nJRx1dMJZUnN8AeYmm3aJoH7MptW5kCWo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 14:48:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13556 (0x34f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0267, serialNumber=A01D23F781E8FF353B18BD188284C9ADFCD9E396 Validity Not Before: Dec 22 14:48:20 2025 GMT Not After : Dec 29 14:48:20 2025 GMT Subject: CN=69495a34-7157 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:14:d5:37:ba:73:f2:7f:59:23:6e:16:05:39: 23:2b:37:61:e3:58:6b:6f:17:fd:1a:3a:72:59:22: cc:93:ae:53:f3:63:14:d5:76:17:75:21:b5:2e:62: bd:f4:d8:0b:c8:57:ce:2b:98:26:19:bb:f2:3a:16: 29:17:8c:df:3a:ff:95:b0:72:45:43:ac:0d:fe:34: 9d:70:7b:67:4f:d1:4f:bf:4e:d5:4a:50:b4:41:ba: 5d:b5:5d:59:42:14:6b:31:40:35:37:ed:d5:19:b3: 38:48:2e:55:63:a9:ce:67:f3:67:9a:ab:30:cc:80: 8c:9b:87:0c:80:ca:4c:05:75:81:ea:b6:a0:dd:f2: fb:cf:05:f0:6c:ba:76:80:97:41:45:86:37:b1:14: 0b:51:d2:ae:13:44:71:ba:17:20:cf:fd:2f:99:15: d2:1c:72:fa:7b:5b:73:bf:f3:27:03:56:79:80:22: 72:2f:65:1b:c9:d1:ac:84:46:cd:dc:a2:de:ba:64: 2f:19:54:ea:49:ad:30:1c:35:d6:4c:58:f2:9b:19: 69:f0:8c:1c:62:7f:a7:7e:f0:d3:ab:10:a2:f5:e5: eb:81:6a:1c:b7:17:ee:e6:3c:b1:d0:96:ad:71:42: d6:91:6f:f8:58:4c:da:b6:24:b3:b2:62:73:09:32: 4c:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:6E:81:6D:F0:4C:97:EE:E9:9D:84:EC:94:8D:CC:77:6C:2D:B1:51 X509v3 Authority Key Identifier: keyid:A0:1D:23:F7:81:E8:FF:35:3B:18:BD:18:82:84:C9:AD:FC:D9:E3:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:1a:ea:cb:18:78:ad:37:40:a5:90:d0:5f:97:57:73:d8:1f: bd:90:da:11:5f:37:37:ed:e1:0a:8a:7a:7a:7b:8c:01:65:9c: e8:83:04:cf:c9:9c:c4:2a:bb:93:9c:f2:18:03:15:77:6e:59: 98:b1:24:23:bc:f6:d0:18:9f:f9:02:7c:e3:1d:f4:94:36:e7: ee:12:91:80:da:69:35:80:16:69:53:b8:06:32:08:05:77:d9: 72:7f:98:7f:1b:46:15:bd:e8:f2:79:93:45:74:e0:da:7f:e2: 8e:8a:81:a5:36:93:ae:f5:5d:e4:90:58:74:0d:9a:52:a4:df: 8a:19:41:6f:7c:60:e2:0a:86:95:21:d8:89:62:7a:78:23:d0: a8:81:4a:97:68:30:b8:ce:ff:e3:26:14:dd:8c:57:8d:c8:d6: 61:d3:f6:79:4e:6c:f1:ad:9b:a9:e7:05:1f:22:a4:1c:62:ca: 35:64:65:cd:9c:ec:0b:a4:29:9a:84:2e:70:58:0b:10:1c:81: d0:87:f5:c9:dd:d2:5e:4b:4e:3e:ef:d0:ea:cb:d2:ec:ec:a2: 04:8a:b8:61:e9:86:5b:c0:1e:61:fc:d1:3b:1d:af:11:7c:a4: 4f:04:d2:96:1b:98:b3:3a:e3:6d:3a:0e:34:3d:1f:3c:bd:c1: e5:ab:af:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAyNjcxMTAvBgNVBAUTKEEwMUQyM0Y3ODFFOEZGMzUzQjE4QkQxODgyODRDOUFE RkNEOUUzOTYwHhcNMjUxMjIyMTQ0ODIwWhcNMjUxMjI5MTQ0ODIwWjAYMRYwFAYD VQQDDA02OTQ5NWEzNC03MTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmBTVN7pz8n9ZI24WBTkjKzdh41hrbxf9GjpyWSLMk65T82MU1XYXdSG1LmK9 9NgLyFfOK5gmGbvyOhYpF4zfOv+VsHJFQ6wN/jSdcHtnT9FPv07VSlC0QbpdtV1Z QhRrMUA1N+3VGbM4SC5VY6nOZ/NnmqswzICMm4cMgMpMBXWB6rag3fL7zwXwbLp2 gJdBRYY3sRQLUdKuE0Rxuhcgz/0vmRXSHHL6e1tzv/MnA1Z5gCJyL2UbydGshEbN 3KLeumQvGVTqSa0wHDXWTFjymxlp8IwcYn+nfvDTqxCi9eXrgWoctxfu5jyx0Jat cULWkW/4WEzatiSzsmJzCTJMxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMtugW3w TJfu6Z2E7JSNzHdsLbFRMB8GA1UdIwQYMBaAFKAdI/eB6P81Oxi9GIKEya382eOW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDI2Ny8xOTBFQUI1QzFE OTgxMUUyOUU2NUZGODEwOEIwMkNEMi9vQjBqOTRIb196VTdHTDBZZ29USnJmelo0 NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29CMGo5NEhvX3pVN0dMMFlnb1RKcmZ6WjQ1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDI2Ny8xOTBFQUI1QzFEOTgxMUUyOUU2NUZGODEwOEIwMkNEMi9vQjBqOTRIb196 VTdHTDBZZ29USnJmelo0NVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxGurLGHitN0ClkNBfl1dz2B+9kNoRXzc37eEKinp6e4wBZZzogwTP yZzEKruTnPIYAxV3blmYsSQjvPbQGJ/5AnzjHfSUNufuEpGA2mk1gBZpU7gGMggF d9lyf5h/G0YVvejyeZNFdODaf+KOioGlNpOu9V3kkFh0DZpSpN+KGUFvfGDiCoaV IdiJYnp4I9CogUqXaDC4zv/jJhTdjFeNyNZh0/Z5TmzxrZup5wUfIqQcYso1ZGXN nOwLpCmahC5wWAsQHIHQh/XJ3dJeS04+79Dqy9Ls7KIEirhh6YZbwB5h/NE7Ha8R fKRPBNKWG5izOuNtOg40PR88vcHlq6/V -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:33 2025 by rpki-client