This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft File: oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft (raw, json) Hash identifier: F0WepffA79kO7PagBWJPSrJMgxVlOygofa/P7Hi1M0Y= Subject key identifier: 31:03:39:04:AE:08:CB:7A:78:25:A2:05:F1:78:F5:A8:92:A5:D9:B0 Authority key identifier: A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 Certificate issuer: /CN=A91E29CB/serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Certificate serial: 030D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft Manifest number: 02FF Signing time: Sun 21 Dec 2025 00:26:55 +0000 Manifest this update: Sun 21 Dec 2025 00:26:54 +0000 Manifest next update: Sun 28 Dec 2025 00:26:54 +0000 Files and hashes: 1: oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl (hash: TlYZI6pZOiFAGgXWLkPfsU4CR7eXD9NFAendz6VjQSc=) 2: C258B0D0E03C11EF991E147AC4F9AE02.roa (hash: laAl8Txo1gIHcxVocQuJwP60FGqDJ3pXtoHTwy2bFVE=) 3: C08A3ED6E03C11EF991E147AC4F9AE02.roa (hash: 2yxooHg2J0c3MSXXKFuW6gpFsAXkYNwDiL8UbiBNepU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:26:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 781 (0x30d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E29CB, serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Validity Not Before: Dec 21 00:26:54 2025 GMT Not After : Dec 28 00:26:54 2025 GMT Subject: CN=69473ecf-be4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:19:94:2a:5f:1d:a1:2a:66:e9:6a:72:d5:a0: b9:db:64:68:c2:79:fc:5d:54:b5:f3:ec:2d:73:65: fa:19:8f:f2:48:d9:55:c4:ee:89:ec:1d:e9:83:ec: 09:6d:4e:07:5b:a1:f7:c8:4b:f0:32:29:92:4a:db: 46:ef:01:bc:26:37:97:f7:8f:f4:62:e6:a7:e0:b0: d3:75:1e:61:07:24:8a:ca:b3:11:2d:2c:69:90:94: 7f:75:80:f1:b8:b3:24:8a:8f:d8:f4:60:f0:12:24: d7:93:8a:bb:bd:c6:55:5b:97:bd:17:01:05:e6:fa: a1:11:2e:15:79:04:77:57:c8:41:d3:f0:1b:ee:c5: 99:60:7d:9d:b2:1b:35:9a:e9:dc:7b:1f:b1:a4:0d: d8:4f:20:71:fc:c6:ed:7b:9c:bb:d5:59:66:2e:28: 3b:1d:48:9c:43:54:eb:35:4c:ca:2b:91:22:94:38: fd:a6:70:5d:35:7e:55:6b:0e:7e:e7:70:e3:11:7a: 65:f5:9a:34:b4:bb:a0:e6:b1:c9:f7:22:ac:43:27: 1b:24:ed:5b:74:5d:9d:95:55:ac:9e:4e:82:39:29: 6d:a2:80:c2:70:66:b1:dd:4b:f1:a0:fc:1f:3c:7a: 86:e3:01:90:e7:cb:4c:a7:f6:f3:d1:b5:b8:d4:35: a3:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:03:39:04:AE:08:CB:7A:78:25:A2:05:F1:78:F5:A8:92:A5:D9:B0 X509v3 Authority Key Identifier: keyid:A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:ab:43:80:ce:3d:1f:a0:b4:cf:70:3e:59:34:81:29:a2:74: c7:48:15:9a:d8:d2:27:51:62:d6:a8:9a:c5:14:c6:69:05:f1: b6:13:1e:4e:b5:95:35:ec:6a:21:e3:d9:92:df:57:0d:a7:fc: 56:6f:c9:98:cf:19:86:bd:76:25:b9:cd:1c:1c:51:f2:70:a7: ba:54:02:8c:a2:14:27:3a:2b:91:56:48:ff:1e:66:19:fd:76: 3e:a7:df:ad:87:57:b4:cf:f4:37:42:29:fe:23:20:d8:e3:af: f9:24:d1:8c:f1:e7:ec:bb:c7:ff:0e:e5:e2:0d:d5:3c:ba:7b: 3f:fd:05:6b:80:7a:08:ec:3f:e6:7c:1c:78:5e:17:78:14:fa: 98:ae:78:18:a4:4f:96:09:6d:c4:bb:b2:47:42:b6:b4:3b:47: cd:a0:16:f0:ea:17:33:59:e3:5c:38:5a:64:fe:19:45:51:be: 82:b6:7d:cd:0c:4b:1c:34:16:70:c7:33:2b:2c:42:b5:46:eb: ad:a2:d7:76:f6:2d:7e:a1:5c:7b:dc:e2:c2:13:91:d9:a1:29: 4f:3d:76:36:1d:c9:c0:b7:53:09:5d:a7:55:fe:e6:6b:80:76: 15:97:a7:d5:7d:a2:e0:00:e9:fb:ab:42:24:6d:62:2d:0f:15: 3f:5d:56:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI5Q0IxMTAvBgNVBAUTKEEwN0FGMENDQjI5ODM1Q0M3NjQyOTc0QkFDOUUxNTAy QjlDRjgyRDAwHhcNMjUxMjIxMDAyNjU0WhcNMjUxMjI4MDAyNjU0WjAYMRYwFAYD VQQDDA02OTQ3M2VjZi1iZTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1RmUKl8doSpm6Wpy1aC522Rownn8XVS18+wtc2X6GY/ySNlVxO6J7B3pg+wJ bU4HW6H3yEvwMimSSttG7wG8JjeX94/0Yuan4LDTdR5hBySKyrMRLSxpkJR/dYDx uLMkio/Y9GDwEiTXk4q7vcZVW5e9FwEF5vqhES4VeQR3V8hB0/Ab7sWZYH2dshs1 muncex+xpA3YTyBx/Mbte5y71VlmLig7HUicQ1TrNUzKK5EilDj9pnBdNX5Vaw5+ 53DjEXpl9Zo0tLug5rHJ9yKsQycbJO1bdF2dlVWsnk6COSltooDCcGax3UvxoPwf PHqG4wGQ58tMp/bz0bW41DWj8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDEDOQSu CMt6eCWiBfF49aiSpdmwMB8GA1UdIwQYMBaAFKB68MyymDXMdkKXS6yeFQK5z4LQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjlDQi8xRjkwMkIwRTA1 QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5jeDJRcGRMcko0VkFyblBn dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Icnd6TEtZTmN4MlFwZExySjRWQXJuUGd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjlDQi8xRjkwMkIwRTA1QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5j eDJRcGRMcko0VkFyblBndEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEq0OAzj0foLTPcD5ZNIEponTHSBWa2NInUWLWqJrFFMZpBfG2Ex5O tZU17Goh49mS31cNp/xWb8mYzxmGvXYluc0cHFHycKe6VAKMohQnOiuRVkj/HmYZ /XY+p9+th1e0z/Q3Qin+IyDY46/5JNGM8efsu8f/DuXiDdU8uns//QVrgHoI7D/m fBx4Xhd4FPqYrngYpE+WCW3Eu7JHQra0O0fNoBbw6hczWeNcOFpk/hlFUb6Ctn3N DEscNBZwxzMrLEK1Ruutotd29i1+oVx73OLCE5HZoSlPPXY2HcnAt1MJXadV/uZr gHYVl6fVfaLgAOn7q0IkbWItDxU/XVbW -----END CERTIFICATE-----Generated at Mon Dec 22 06:21:11 2025 by rpki-client