This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft File: onKsr-j6pPKpcApvwRQlkIx0PUs.mft (raw, json) Hash identifier: Nix9vCWqsp0u9IAj966dylRiYDE1CgKdxHTRPapEyfA= Subject key identifier: 61:D7:56:C2:08:49:54:DF:40:FB:70:A7:D7:E6:57:69:A2:CD:4F:40 Authority key identifier: A2:72:AC:AF:E8:FA:A4:F2:A9:70:0A:6F:C1:14:25:90:8C:74:3D:4B Certificate issuer: /CN=A91E3E27/serialNumber=A272ACAFE8FAA4F2A9700A6FC11425908C743D4B Certificate serial: 0B19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft Manifest number: 0AC8 Signing time: Thu 18 Dec 2025 19:10:59 +0000 Manifest this update: Thu 18 Dec 2025 19:10:59 +0000 Manifest next update: Thu 25 Dec 2025 19:10:59 +0000 Files and hashes: 1: onKsr-j6pPKpcApvwRQlkIx0PUs.crl (hash: yQKcToK6XtJ2hsoMyzkX/41tW6MF3VgZBq687mUGTxs=) 2: B379B0346F4711EA81200366C4F9AE02.roa (hash: 34aVw5Rt72hNPVd0d/UxB/shSl9fnFPWjJTO5/uz5ZU=) 3: 95BD9D90A56A11EFA5ABDC46C4F9AE02.roa (hash: 5hsatirdoTAMt8sVP/32NV6rGnCIOasP2d6dKTsMLr4=) 4: 879C6CC6BC0A11EF8387A57BC4F9AE02.roa (hash: GD8TE1iM2Ym7f93p/1VYDkqCG50V4KFtJCkioUpH7AI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.crl rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:10:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2841 (0xb19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E27, serialNumber=A272ACAFE8FAA4F2A9700A6FC11425908C743D4B Validity Not Before: Dec 18 19:10:59 2025 GMT Not After : Dec 25 19:10:59 2025 GMT Subject: CN=694451c3-f7f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:df:fa:fb:a6:30:a9:3c:14:bc:4d:bd:d2:dc: 19:f3:21:fc:e8:32:62:3a:d3:d3:20:ba:e2:9f:bf: 2c:5a:ef:32:44:14:91:fd:0f:78:33:fc:2f:48:29: 7e:00:1e:05:8a:de:77:20:15:8e:05:d3:ac:13:9f: 88:3b:81:83:58:bf:0b:41:14:cc:f9:49:65:dc:6c: bb:23:c3:90:51:5b:9d:04:de:d1:ea:d9:a6:9b:91: 9b:43:71:f0:92:6d:e2:77:b3:47:4d:5e:79:04:6e: e7:d0:12:f6:0d:60:24:da:a0:25:b7:9b:85:3a:c8: df:f2:4a:39:25:91:0c:3f:05:26:7c:dc:cc:9c:a4: 93:4e:97:1e:91:3f:8e:d3:8c:58:3f:9a:a6:5e:d5: e8:14:1c:c6:bc:17:f1:35:8c:b2:ad:86:43:22:20: a1:50:0a:26:11:3c:af:ba:e0:99:84:0a:a5:bd:eb: 13:e3:bb:24:b0:79:7c:8d:5e:af:0c:bf:bf:08:0f: e1:c0:a8:35:f8:57:22:fc:4d:b4:a7:d0:af:54:6d: e4:89:ca:9f:42:f3:1a:76:c7:6d:ed:7e:32:19:1c: 85:08:2f:9b:bf:6f:85:22:62:71:d7:3b:dc:6b:b9: 73:bd:3d:6a:af:e6:4f:68:6a:bb:2c:87:a0:c3:57: 04:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:D7:56:C2:08:49:54:DF:40:FB:70:A7:D7:E6:57:69:A2:CD:4F:40 X509v3 Authority Key Identifier: keyid:A2:72:AC:AF:E8:FA:A4:F2:A9:70:0A:6F:C1:14:25:90:8C:74:3D:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:22:b6:25:3a:3e:02:7a:d1:1e:75:58:49:0c:68:e9:d8:16: 54:78:8f:27:69:ca:13:54:9d:82:ba:17:70:17:8a:e1:bf:7f: aa:2f:51:e1:10:ff:34:1b:94:7d:bb:50:a0:77:cb:ad:f2:46: 05:08:8c:d8:06:70:72:a7:75:06:44:fc:85:c8:c7:f7:43:f4: d9:c7:7f:51:99:4c:7f:c0:c0:98:2a:ee:e1:a4:4f:47:b3:f5: d9:cd:2a:03:cb:48:ad:f0:e6:51:d4:a7:0e:f9:8e:7c:5f:53: e3:9b:37:57:02:33:a1:2c:a2:e2:85:38:10:d6:67:a5:ec:c2: 53:41:b2:7a:08:86:a7:a3:20:52:9e:75:90:45:47:8e:4d:98: 90:83:b7:b0:96:92:8c:59:9b:bc:13:8e:9a:80:36:c8:ff:ed: 26:68:42:08:75:58:cf:6a:b4:60:84:b6:cb:a3:58:1d:f4:b7: eb:3e:ba:1c:ec:1d:9f:07:5a:b8:ee:3c:28:22:86:e1:d7:21: 0f:38:a1:21:06:d1:f0:42:08:6e:dc:81:80:67:05:ce:9a:a1: 1e:3f:85:f3:e3:6c:ce:c1:5e:c8:2a:51:e1:32:f2:e1:9d:65: c0:10:a0:63:30:2b:f7:b4:6d:d5:4b:f1:fd:0d:f5:25:6f:12: b0:31:28:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNFMjcxMTAvBgNVBAUTKEEyNzJBQ0FGRThGQUE0RjJBOTcwMEE2RkMxMTQyNTkw OEM3NDNENEIwHhcNMjUxMjE4MTkxMDU5WhcNMjUxMjI1MTkxMDU5WjAYMRYwFAYD VQQDDA02OTQ0NTFjMy1mN2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2t/6+6YwqTwUvE290twZ8yH86DJiOtPTILrin78sWu8yRBSR/Q94M/wvSCl+ AB4Fit53IBWOBdOsE5+IO4GDWL8LQRTM+Ull3Gy7I8OQUVudBN7R6tmmm5GbQ3Hw km3id7NHTV55BG7n0BL2DWAk2qAlt5uFOsjf8ko5JZEMPwUmfNzMnKSTTpcekT+O 04xYP5qmXtXoFBzGvBfxNYyyrYZDIiChUAomETyvuuCZhAqlvesT47sksHl8jV6v DL+/CA/hwKg1+Fci/E20p9CvVG3kicqfQvMadsdt7X4yGRyFCC+bv2+FImJx1zvc a7lzvT1qr+ZPaGq7LIegw1cEMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGHXVsII SVTfQPtwp9fmV2mizU9AMB8GA1UdIwQYMBaAFKJyrK/o+qTyqXAKb8EUJZCMdD1L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0UyNy9GMzg4ODc2NjZG M0ExMUVBOTg0MDEzM0RDNEY5QUUwMi9vbktzci1qNnBQS3BjQXB2d1JRbGtJeDBQ VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29uS3NyLWo2cFBLcGNBcHZ3UlFsa0l4MFBVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0UyNy9GMzg4ODc2NjZGM0ExMUVBOTg0MDEzM0RDNEY5QUUwMi9vbktzci1qNnBQ S3BjQXB2d1JRbGtJeDBQVXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUIrYlOj4CetEedVhJDGjp2BZUeI8nacoTVJ2CuhdwF4rhv3+qL1Hh EP80G5R9u1Cgd8ut8kYFCIzYBnByp3UGRPyFyMf3Q/TZx39RmUx/wMCYKu7hpE9H s/XZzSoDy0it8OZR1KcO+Y58X1PjmzdXAjOhLKLihTgQ1mel7MJTQbJ6CIanoyBS nnWQRUeOTZiQg7ewlpKMWZu8E46agDbI/+0maEIIdVjParRghLbLo1gd9LfrProc 7B2fB1q47jwoIobh1yEPOKEhBtHwQghu3IGAZwXOmqEeP4Xz42zOwV7IKlHhMvLh nWXAEKBjMCv3tG3VS/H9DfUlbxKwMSiK -----END CERTIFICATE-----Generated at Sat Dec 20 05:16:22 2025 by rpki-client