This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft File: oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft (raw, json) Hash identifier: hnXim4DRGKfDjn+q9Cxm3KuD2iziva3JPCrF8sIPq44= Subject key identifier: 12:28:BD:10:8B:8C:36:B5:09:8C:97:CD:CF:C9:A5:86:B8:7A:D7:24 Authority key identifier: A2:24:36:84:22:3D:2C:25:C6:AF:17:6A:5F:02:FA:02:B2:4F:68:0B Certificate issuer: /CN=A91E953B/serialNumber=A2243684223D2C25C6AF176A5F02FA02B24F680B Certificate serial: 019D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft Manifest number: 019A Signing time: Tue 23 Dec 2025 02:24:39 +0000 Manifest this update: Tue 23 Dec 2025 02:24:38 +0000 Manifest next update: Tue 30 Dec 2025 02:24:38 +0000 Files and hashes: 1: oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl (hash: Q4z/bszpPdpc0yu54/ilO9LN4b2dAf5cFy1uF2cQrO0=) 2: 12E1FD886C9C11EE9F3C5653C4F9AE02.roa (hash: jA0W89c1BQKBxWNTk4xZxdglmPbz/0n9ymbDdZwOT6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:24:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E953B, serialNumber=A2243684223D2C25C6AF176A5F02FA02B24F680B Validity Not Before: Dec 23 02:24:38 2025 GMT Not After : Dec 30 02:24:38 2025 GMT Subject: CN=6949fd67-f5bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:92:f2:f2:38:80:df:73:5e:61:1b:4b:b0:b1: 24:c5:6b:ed:18:14:8e:0c:85:0c:ac:d5:57:b4:c0: 88:4c:c4:eb:43:d0:56:99:9b:d3:a7:72:bf:b8:08: f2:e1:84:ed:2d:53:48:ce:fd:1f:c2:20:c3:a7:6c: 67:ed:86:c7:11:21:5d:0f:08:82:0c:f0:22:42:48: cb:79:60:3d:4e:fe:33:67:f2:25:ab:7a:80:75:db: a9:39:b5:57:04:8a:c5:23:73:57:9d:72:32:67:ce: 49:5c:2c:8e:1e:3d:ca:94:7a:9a:a0:63:6a:4d:b1: b1:b8:d6:e1:c0:8e:b5:9a:5a:49:5f:4f:b6:b1:8b: d0:26:7a:b8:54:d9:a7:11:c9:83:0a:65:25:05:73: 2b:c1:f8:e6:76:d1:f0:21:0f:55:ef:32:26:71:b5: d9:e2:fa:7d:2a:31:a7:d5:5b:fb:d2:11:af:52:27: a8:29:9f:fd:e2:1a:6e:3e:f2:73:f9:ab:ed:75:87: fa:c8:04:fe:3d:19:a7:b1:9d:b3:f1:d9:fa:c2:c6: 43:91:6c:52:6d:0a:6a:f3:12:fc:0f:74:42:f0:f2: 8b:5b:b9:f8:80:df:84:0a:ae:0b:56:82:4f:f2:0b: c0:78:1e:4f:49:08:b3:ee:6a:32:6c:6c:23:fc:26: f1:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:28:BD:10:8B:8C:36:B5:09:8C:97:CD:CF:C9:A5:86:B8:7A:D7:24 X509v3 Authority Key Identifier: keyid:A2:24:36:84:22:3D:2C:25:C6:AF:17:6A:5F:02:FA:02:B2:4F:68:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:1e:6f:25:fd:53:bd:27:8d:ad:5b:4e:9b:8d:3a:ee:21:2e: 8f:91:c4:02:3b:8c:00:4f:6d:e3:5a:2a:1e:d3:81:6a:c1:74: 02:6c:e2:64:f2:4e:0b:81:4b:d2:95:3a:77:e2:76:51:a0:ad: 58:3b:c8:0a:38:83:7a:8c:a8:e5:b7:89:c6:e2:b1:e9:f6:33: 19:c2:48:c1:28:da:0d:e8:f9:2a:f7:01:b0:7c:bf:d1:fc:e3: 97:75:73:f9:4c:64:7f:fc:8b:8e:e3:fc:8b:03:43:47:ce:69: 04:6f:ae:b5:4d:02:ec:64:cf:da:12:26:42:95:06:27:c7:5a: c0:01:a5:da:a6:74:d7:8d:6f:6d:22:47:69:92:c8:1f:ab:a0: bf:f1:ea:19:af:de:24:b7:b3:0a:f3:5b:4a:f6:4c:54:ba:71: 34:37:ee:e1:e6:70:86:8d:83:1a:9f:e2:77:97:19:2e:f7:a6: 98:3e:7c:2a:b5:8e:6b:65:7f:41:4a:53:7e:0a:a1:d3:c5:b1: 42:a2:79:9b:52:f4:26:d4:1e:8d:9c:13:ed:12:99:c4:6d:77: 85:f8:a9:b9:f3:af:ef:bb:63:0c:5d:ca:9c:33:e0:4f:06:1c: 5b:84:bb:06:f0:78:07:e1:03:38:bc:68:5b:87:26:8c:b4:17: 07:ae:91:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk1M0IxMTAvBgNVBAUTKEEyMjQzNjg0MjIzRDJDMjVDNkFGMTc2QTVGMDJGQTAy QjI0RjY4MEIwHhcNMjUxMjIzMDIyNDM4WhcNMjUxMjMwMDIyNDM4WjAYMRYwFAYD VQQDDA02OTQ5ZmQ2Ny1mNWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA45Ly8jiA33NeYRtLsLEkxWvtGBSODIUMrNVXtMCITMTrQ9BWmZvTp3K/uAjy 4YTtLVNIzv0fwiDDp2xn7YbHESFdDwiCDPAiQkjLeWA9Tv4zZ/Ilq3qAddupObVX BIrFI3NXnXIyZ85JXCyOHj3KlHqaoGNqTbGxuNbhwI61mlpJX0+2sYvQJnq4VNmn EcmDCmUlBXMrwfjmdtHwIQ9V7zImcbXZ4vp9KjGn1Vv70hGvUieoKZ/94hpuPvJz +avtdYf6yAT+PRmnsZ2z8dn6wsZDkWxSbQpq8xL8D3RC8PKLW7n4gN+ECq4LVoJP 8gvAeB5PSQiz7moybGwj/CbxUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBIovRCL jDa1CYyXzc/JpYa4etckMB8GA1UdIwQYMBaAFKIkNoQiPSwlxq8Xal8C+gKyT2gL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTUzQi9DOEQwMzkyMjZD OUExMUVFODVCRkRGNEZDNEY5QUUwMi9vaVEyaENJOUxDWEdyeGRxWHdMNkFySlBh QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29pUTJoQ0k5TENYR3J4ZHFYd0w2QXJKUGFBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTUzQi9DOEQwMzkyMjZDOUExMUVFODVCRkRGNEZDNEY5QUUwMi9vaVEyaENJOUxD WEdyeGRxWHdMNkFySlBhQXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAHm8l/VO9J42tW06bjTruIS6PkcQCO4wAT23jWioe04FqwXQCbOJk 8k4LgUvSlTp34nZRoK1YO8gKOIN6jKjlt4nG4rHp9jMZwkjBKNoN6Pkq9wGwfL/R /OOXdXP5TGR//IuO4/yLA0NHzmkEb661TQLsZM/aEiZClQYnx1rAAaXapnTXjW9t Ikdpksgfq6C/8eoZr94kt7MK81tK9kxUunE0N+7h5nCGjYMan+J3lxku96aYPnwq tY5rZX9BSlN+CqHTxbFConmbUvQm1B6NnBPtEpnEbXeF+Km586/vu2MMXcqcM+BP BhxbhLsG8HgH4QM4vGhbhyaMtBcHrpFm -----END CERTIFICATE-----Generated at Tue Dec 23 19:40:43 2025 by rpki-client