This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft File: O407UYT_W0gbWw5ZsLIpzAbWCR4.mft (raw, json) Hash identifier: /MF/Y5mnrpeZsyYrvEiClGp77D3JvCcj8LA0j134/Gc= Subject key identifier: 85:D5:A5:22:84:E3:6C:C1:F8:FD:19:46:0B:A2:56:C4:2D:A7:AD:7D Authority key identifier: 3B:8D:3B:51:84:FF:5B:48:1B:5B:0E:59:B0:B2:29:CC:06:D6:09:1E Certificate issuer: /CN=A91EA944/serialNumber=3B8D3B5184FF5B481B5B0E59B0B229CC06D6091E Certificate serial: 10CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O407UYT_W0gbWw5ZsLIpzAbWCR4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft Manifest number: 10C5 Signing time: Mon 22 Dec 2025 17:00:24 +0000 Manifest this update: Mon 22 Dec 2025 17:00:23 +0000 Manifest next update: Mon 29 Dec 2025 17:00:23 +0000 Files and hashes: 1: O407UYT_W0gbWw5ZsLIpzAbWCR4.crl (hash: pcHttvoPjxwWP4knW28HXXTtrIjWc0EBO9oJ+K21iAE=) 2: E3272FE036B911E99F4D9A5CC4F9AE02.roa (hash: zsPveXQ2Zd6a9Te4YhLc43ZEsJlTYYnv+fpeJR8IN2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.crl rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O407UYT_W0gbWw5ZsLIpzAbWCR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4302 (0x10ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA944, serialNumber=3B8D3B5184FF5B481B5B0E59B0B229CC06D6091E Validity Not Before: Dec 22 17:00:23 2025 GMT Not After : Dec 29 17:00:23 2025 GMT Subject: CN=69497928-7a7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e0:a1:35:53:44:1a:28:29:d4:dc:72:02:53: bf:1d:1d:5c:74:e6:99:ac:af:80:48:27:e4:89:7c: 5f:d2:e7:11:3e:3a:d8:d1:aa:6e:f5:46:20:a0:73: da:3d:be:3e:db:16:dc:8e:15:c8:b2:15:45:d1:18: a4:d9:c3:ed:f3:c8:08:d9:15:29:da:4c:cc:a7:ef: 42:a3:4f:07:74:5f:3f:70:f0:36:80:99:c8:81:29: 08:8b:99:80:58:21:91:0b:90:8d:6d:32:70:73:ac: 59:4d:ac:a5:4c:fc:36:11:d5:6b:8f:04:02:ad:6f: 66:ae:7d:12:78:48:a1:78:df:54:5b:5b:e1:cf:c3: 33:76:93:70:f4:30:8d:8d:c4:fa:8c:e8:07:bc:a9: 14:c1:1d:45:66:ee:bb:2d:26:89:a3:99:a5:39:8d: 97:66:52:a9:3a:0a:ff:9f:d9:63:54:08:58:81:d1: d7:7c:3b:b9:d6:cd:10:dc:11:43:e4:09:96:32:ff: 9a:27:6b:4e:34:e6:ef:0f:26:f0:54:63:92:c4:5e: 1e:92:7b:7c:90:39:f0:38:a7:a8:df:f9:a9:5f:49: 78:5e:c9:6e:0d:aa:97:d3:a5:84:74:86:cf:11:c9: 8c:4f:7a:fc:6c:5d:18:37:ff:c5:25:0e:d4:e4:7b: d8:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:D5:A5:22:84:E3:6C:C1:F8:FD:19:46:0B:A2:56:C4:2D:A7:AD:7D X509v3 Authority Key Identifier: keyid:3B:8D:3B:51:84:FF:5B:48:1B:5B:0E:59:B0:B2:29:CC:06:D6:09:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O407UYT_W0gbWw5ZsLIpzAbWCR4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA944/796C9D7436B911E9984B765CC4F9AE02/O407UYT_W0gbWw5ZsLIpzAbWCR4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:0c:ca:ba:62:f5:6a:de:47:77:e8:c6:f7:9b:73:aa:48:9c: 65:78:8a:01:ff:bd:e6:5f:f5:13:da:24:5f:ca:99:7b:fd:07: cd:43:55:c0:b3:58:b3:5f:1e:4c:98:52:52:4b:c2:1c:28:02: a6:1d:65:34:ba:fb:0a:d3:4c:f6:f9:68:48:d0:6c:de:85:4d: 7d:28:57:06:3a:df:69:74:1e:95:4a:ae:d6:20:c0:d3:dd:49: 1a:42:d8:1a:36:6b:fb:a0:ff:91:e7:df:b5:c3:00:ff:9b:32: 38:81:a0:ea:6a:4a:bb:2c:4b:4d:fa:04:fb:39:0e:80:81:e0: ad:61:cb:a4:07:cc:b8:8e:35:3f:87:49:00:db:df:82:21:96: 36:70:bf:a4:42:91:11:13:c7:78:a9:6e:e5:9e:1f:51:b0:92: e9:55:db:84:e8:be:be:3c:f9:52:6c:0b:2f:a3:5e:e8:89:28: 6c:34:1c:ff:15:38:ea:be:ca:1d:eb:37:c5:0c:af:71:b8:52: 26:39:21:f5:1a:81:86:b9:da:f7:13:af:bd:97:70:d8:6a:06: 74:dd:80:a6:55:03:12:0c:98:42:d2:a4:f4:bb:11:fa:15:7c: ae:17:c6:82:69:35:ab:fc:d7:6d:2f:8c:39:00:cc:8c:b7:ce: cd:d1:ab:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5NDQxMTAvBgNVBAUTKDNCOEQzQjUxODRGRjVCNDgxQjVCMEU1OUIwQjIyOUND MDZENjA5MUUwHhcNMjUxMjIyMTcwMDIzWhcNMjUxMjI5MTcwMDIzWjAYMRYwFAYD VQQDDA02OTQ5NzkyOC03YTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1OChNVNEGigp1NxyAlO/HR1cdOaZrK+ASCfkiXxf0ucRPjrY0apu9UYgoHPa Pb4+2xbcjhXIshVF0Rik2cPt88gI2RUp2kzMp+9Co08HdF8/cPA2gJnIgSkIi5mA WCGRC5CNbTJwc6xZTaylTPw2EdVrjwQCrW9mrn0SeEiheN9UW1vhz8MzdpNw9DCN jcT6jOgHvKkUwR1FZu67LSaJo5mlOY2XZlKpOgr/n9ljVAhYgdHXfDu51s0Q3BFD 5AmWMv+aJ2tONObvDybwVGOSxF4eknt8kDnwOKeo3/mpX0l4XsluDaqX06WEdIbP EcmMT3r8bF0YN//FJQ7U5HvYmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIXVpSKE 42zB+P0ZRguiVsQtp619MB8GA1UdIwQYMBaAFDuNO1GE/1tIG1sOWbCyKcwG1gke MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTk0NC83OTZDOUQ3NDM2 QjkxMUU5OTg0Qjc2NUNDNEY5QUUwMi9PNDA3VVlUX1cwZ2JXdzVac0xJcHpBYldD UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL080MDdVWVRfVzBnYld3NVpzTElwekFiV0NSNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTk0NC83OTZDOUQ3NDM2QjkxMUU5OTg0Qjc2NUNDNEY5QUUwMi9PNDA3VVlUX1cw Z2JXdzVac0xJcHpBYldDUjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIDMq6YvVq3kd36Mb3m3OqSJxleIoB/73mX/UT2iRfypl7/QfNQ1XA s1izXx5MmFJSS8IcKAKmHWU0uvsK00z2+WhI0GzehU19KFcGOt9pdB6VSq7WIMDT 3UkaQtgaNmv7oP+R59+1wwD/mzI4gaDqakq7LEtN+gT7OQ6AgeCtYcukB8y4jjU/ h0kA29+CIZY2cL+kQpERE8d4qW7lnh9RsJLpVduE6L6+PPlSbAsvo17oiShsNBz/ FTjqvsod6zfFDK9xuFImOSH1GoGGudr3E6+9l3DYagZ03YCmVQMSDJhC0qT0uxH6 FXyuF8aCaTWr/NdtL4w5AMyMt87N0avj -----END CERTIFICATE-----Generated at Wed Dec 24 16:01:00 2025 by rpki-client