This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft File: oRR-hHvP7urdnompeo2fM2ecp-I.mft (raw, json) Hash identifier: tjsTw5yKE0zqz1SVC2o27V0y2yGwGXHLRnPMhuNaqI4= Subject key identifier: 74:36:61:2A:4A:E4:F0:AF:B1:AB:F5:07:4F:29:9D:39:29:FD:53:8F Authority key identifier: A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 Certificate issuer: /CN=A91EAD80/serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Certificate serial: DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft Manifest number: DA Signing time: Tue 23 Dec 2025 04:35:20 +0000 Manifest this update: Tue 23 Dec 2025 04:35:19 +0000 Manifest next update: Tue 30 Dec 2025 04:35:19 +0000 Files and hashes: 1: oRR-hHvP7urdnompeo2fM2ecp-I.crl (hash: lIUp1HCdLVxBim+K9CbUGqSu/Ryt2CB3owLDLeqtLBo=) 2: 52DF0E62B2FA11EFA36E0387C4F9AE02.roa (hash: zOW380YmpQpMtSyWb7ghqrZ9YCinfgNDwAX0rgUwhPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:35:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAD80, serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Validity Not Before: Dec 23 04:35:19 2025 GMT Not After : Dec 30 04:35:19 2025 GMT Subject: CN=694a1c08-f41b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:96:85:17:51:e2:1c:aa:c0:3e:94:00:c6:e3: 2a:3a:26:04:d0:7c:fb:e4:73:b1:ca:87:2e:a6:46: 24:d9:b4:59:52:73:03:fc:f3:4f:02:30:70:63:c4: 4c:6d:d9:47:df:37:4f:f0:29:01:2e:fe:c0:6b:60: 12:60:cf:1e:46:1f:b3:d5:9f:b9:f8:c4:f6:16:b4: c5:fd:63:ec:04:57:92:d0:69:52:82:62:ee:a0:87: 11:5c:ff:7f:4e:67:c9:28:5f:26:d4:74:fe:51:a0: 8e:bc:ff:6d:e9:1c:3c:51:3a:30:96:06:28:de:89: 90:08:15:95:f8:bc:3a:59:42:d6:98:b1:88:df:b9: d4:dd:fa:b0:96:d0:25:77:f7:11:00:84:cd:1d:e8: 25:f8:d3:10:69:11:92:cb:c9:2c:32:c9:ae:b8:02: 9f:b2:f3:b6:a2:a1:26:37:38:2d:65:a4:3d:68:f7: 16:8a:29:74:a7:d6:98:56:24:ea:f2:5e:21:91:93: aa:c1:0f:62:06:22:2b:bf:43:ba:b2:9f:92:47:84: 8e:8f:53:80:bf:ee:ba:ab:72:30:87:06:9c:56:ff: 93:62:84:58:44:46:14:dd:2e:c6:ca:a4:55:ed:e2: 26:66:db:52:c9:9b:60:1c:e6:d9:e0:9c:4e:e1:39: 1e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:36:61:2A:4A:E4:F0:AF:B1:AB:F5:07:4F:29:9D:39:29:FD:53:8F X509v3 Authority Key Identifier: keyid:A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:ce:b4:ec:89:b6:56:ed:65:6a:88:05:cc:a8:51:34:e9:48: 18:fa:95:e5:e1:02:01:78:55:40:bb:9c:43:ab:c0:cc:17:59: eb:a6:66:96:b2:15:ec:3f:25:49:a1:fc:e7:60:42:3b:95:90: 9e:bf:fc:41:32:3e:cb:86:4f:89:33:17:1f:a1:21:33:e2:bb: 4e:fe:64:2e:85:ec:ce:a4:ac:c6:dc:58:05:8d:2f:47:de:d0: a4:3d:33:c9:6e:04:ca:23:58:ba:90:36:20:cb:79:8a:7e:1c: a8:ca:9f:82:21:c8:7f:a2:b4:a0:ce:fa:20:75:14:a2:a4:53: 2d:45:cd:4e:ad:18:c9:c0:b4:77:d5:64:8a:50:f6:0e:9b:fe: 31:4d:ef:db:da:43:0e:70:f7:bc:f5:67:76:e9:7d:6f:00:66: 12:76:dc:cc:98:7b:60:be:38:c2:73:02:1c:fb:ee:3f:9c:62: b0:f9:18:65:36:e7:a0:1e:68:0f:df:80:4b:4c:41:80:67:1d: 39:d1:86:b7:bf:20:4c:db:01:05:d8:bb:cd:66:5c:89:b7:dc: 90:f9:5f:37:4e:30:15:c3:a1:61:24:04:77:e5:33:dd:b0:88: c2:52:b1:64:32:f9:b1:48:fe:0a:cc:93:5e:2b:9d:ce:53:7a: e3:67:b9:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFEODAxMTAvBgNVBAUTKEExMTQ3RTg0N0JDRkVFRUFERDlFODlBOTdBOEQ5RjMz Njc5Q0E3RTIwHhcNMjUxMjIzMDQzNTE5WhcNMjUxMjMwMDQzNTE5WjAYMRYwFAYD VQQDDA02OTRhMWMwOC1mNDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZaFF1HiHKrAPpQAxuMqOiYE0Hz75HOxyocupkYk2bRZUnMD/PNPAjBwY8RM bdlH3zdP8CkBLv7Aa2ASYM8eRh+z1Z+5+MT2FrTF/WPsBFeS0GlSgmLuoIcRXP9/ TmfJKF8m1HT+UaCOvP9t6Rw8UTowlgYo3omQCBWV+Lw6WULWmLGI37nU3fqwltAl d/cRAITNHegl+NMQaRGSy8ksMsmuuAKfsvO2oqEmNzgtZaQ9aPcWiil0p9aYViTq 8l4hkZOqwQ9iBiIrv0O6sp+SR4SOj1OAv+66q3IwhwacVv+TYoRYREYU3S7GyqRV 7eImZttSyZtgHObZ4JxO4TkekwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHQ2YSpK 5PCvsav1B08pnTkp/VOPMB8GA1UdIwQYMBaAFKEUfoR7z+7q3Z6JqXqNnzNnnKfi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUQ4MC9EMjIzQzVBRTk0 QzkxMUVGOTJDRDcyNThDNEY5QUUwMi9vUlItaEh2UDd1cmRub21wZW8yZk0yZWNw LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29SUi1oSHZQN3VyZG5vbXBlbzJmTTJlY3AtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUQ4MC9EMjIzQzVBRTk0QzkxMUVGOTJDRDcyNThDNEY5QUUwMi9vUlItaEh2UDd1 cmRub21wZW8yZk0yZWNwLUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRzrTsibZW7WVqiAXMqFE06UgY+pXl4QIBeFVAu5xDq8DMF1nrpmaW shXsPyVJofznYEI7lZCev/xBMj7Lhk+JMxcfoSEz4rtO/mQuhezOpKzG3FgFjS9H 3tCkPTPJbgTKI1i6kDYgy3mKfhyoyp+CIch/orSgzvogdRSipFMtRc1OrRjJwLR3 1WSKUPYOm/4xTe/b2kMOcPe89Wd26X1vAGYSdtzMmHtgvjjCcwIc++4/nGKw+Rhl NuegHmgP34BLTEGAZx050Ya3vyBM2wEF2LvNZlyJt9yQ+V83TjAVw6FhJAR35TPd sIjCUrFkMvmxSP4KzJNeK53OU3rjZ7mF -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:41 2025 by rpki-client