This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft File: Od1jNTmfErgZIRzpGqfc9i9tgbw.mft (raw, json) Hash identifier: UyAtfBmbEF35ZdBg1CrSvesQ2xj5wqyaNH6uHtpITew= Subject key identifier: F0:48:81:00:EF:DC:48:48:BC:00:7F:60:60:03:42:E1:CE:63:14:FD Authority key identifier: 39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC Certificate issuer: /CN=A91EBB2D/serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Certificate serial: 03D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft Manifest number: 03C4 Signing time: Mon 22 Dec 2025 23:41:46 +0000 Manifest this update: Mon 22 Dec 2025 23:41:45 +0000 Manifest next update: Mon 29 Dec 2025 23:41:45 +0000 Files and hashes: 1: Od1jNTmfErgZIRzpGqfc9i9tgbw.crl (hash: el+ffbt622oUmwCCXF8fRkq9Xw8towlidjlfTsGx6Ys=) 2: 9233AB983ED411F0B38CCD78C4F9AE02.roa (hash: 9jPLiSrAv9CpBTipdqfUpD+haiGgsN7V6kZeTNfsQaQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:41:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 976 (0x3d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB2D, serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Validity Not Before: Dec 22 23:41:45 2025 GMT Not After : Dec 29 23:41:45 2025 GMT Subject: CN=6949d73a-a1e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:03:56:ba:9d:dc:e6:bd:33:79:37:d2:de:be: 11:79:5c:26:8d:23:ce:73:7b:7a:6d:3a:61:9f:a6: c9:00:d0:c7:e7:aa:9a:c9:d2:f1:07:4c:56:c2:ca: 76:9b:07:66:72:ce:13:eb:fb:34:b0:83:66:03:0e: e0:dd:2a:39:15:a1:55:bb:c3:64:d0:60:b3:ef:26: 38:a3:ae:13:21:38:61:81:29:74:11:48:87:5f:bb: 3e:af:0a:b1:67:36:83:c9:7d:96:f7:a7:7a:15:4f: 34:72:a8:9d:71:f4:a5:6f:36:9e:8b:f1:98:8c:5d: 02:df:b1:34:92:8b:80:40:54:7e:cb:a0:7a:15:14: 7a:cd:b9:61:30:6d:9d:31:fc:55:61:b1:d1:72:32: 16:67:7f:53:4c:65:d6:73:a4:58:67:2a:55:43:c2: 8b:d0:de:c9:44:ec:39:97:2e:a7:5c:f8:8e:9c:3d: c7:94:5f:fe:55:42:6d:23:aa:0e:09:d4:d3:7c:16: 15:2e:d7:86:75:1c:93:2f:87:11:c1:1c:a3:44:c8: de:0d:74:24:c6:cc:a7:fa:40:e4:f7:e6:5e:a8:10: 0d:9f:e9:df:6f:ff:c8:ed:84:96:33:14:89:c1:82: 47:93:28:30:d7:14:c1:a1:59:ae:a7:79:56:4a:54: ec:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:48:81:00:EF:DC:48:48:BC:00:7F:60:60:03:42:E1:CE:63:14:FD X509v3 Authority Key Identifier: keyid:39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:6a:bf:9c:22:60:f3:28:5c:39:c3:82:5e:a7:dd:ad:9e:c6: f5:04:0a:b9:ba:5e:9d:df:d1:41:cf:b9:e6:ae:6c:32:a0:9f: 4a:da:0a:74:e3:5f:e3:60:ca:c8:cc:ae:ca:79:59:e0:5f:61: e2:f5:40:a9:82:8e:1f:08:29:b2:9c:da:fe:0e:2e:4f:83:84: 5d:f1:58:53:cb:14:f1:e9:be:5a:f1:3b:65:f3:c9:7c:46:35: 4d:de:97:51:67:fb:5c:64:00:1c:38:3a:7d:d5:d6:35:1f:6f: 79:9f:59:69:65:f5:fd:91:72:a5:1f:c4:d3:84:3c:7a:23:b2: 0d:6d:00:6b:85:52:a6:e5:e4:a3:58:34:9a:a7:3c:56:56:50: 08:ed:ea:53:c0:b6:3b:0e:ea:2d:3c:50:dd:63:72:f2:55:5b: 47:b7:39:e6:51:41:0d:d2:33:2b:9a:b9:bd:09:54:e8:6e:cb: 4b:97:90:53:db:e0:bb:3e:3c:cb:32:99:3b:a2:49:32:54:4f: 36:70:54:43:f8:66:44:3c:b4:68:7d:b4:e4:19:25:50:4f:21: 72:e1:03:d8:22:70:40:f8:67:43:29:d9:04:bc:3b:b0:e8:86: 46:7b:9d:1e:e3:32:8b:a5:61:91:22:45:04:18:d3:27:0d:ef: 99:0b:37:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCMkQxMTAvBgNVBAUTKDM5REQ2MzM1Mzk5RjEyQjgxOTIxMUNFOTFBQTdEQ0Y2 MkY2RDgxQkMwHhcNMjUxMjIyMjM0MTQ1WhcNMjUxMjI5MjM0MTQ1WjAYMRYwFAYD VQQDDA02OTQ5ZDczYS1hMWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAswNWup3c5r0zeTfS3r4ReVwmjSPOc3t6bTphn6bJANDH56qaydLxB0xWwsp2 mwdmcs4T6/s0sINmAw7g3So5FaFVu8Nk0GCz7yY4o64TIThhgSl0EUiHX7s+rwqx ZzaDyX2W96d6FU80cqidcfSlbzaei/GYjF0C37E0kouAQFR+y6B6FRR6zblhMG2d MfxVYbHRcjIWZ39TTGXWc6RYZypVQ8KL0N7JROw5ly6nXPiOnD3HlF/+VUJtI6oO CdTTfBYVLteGdRyTL4cRwRyjRMjeDXQkxsyn+kDk9+ZeqBANn+nfb//I7YSWMxSJ wYJHkygw1xTBoVmup3lWSlTsfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPBIgQDv 3EhIvAB/YGADQuHOYxT9MB8GA1UdIwQYMBaAFDndYzU5nxK4GSEc6Rqn3PYvbYG8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkIyRC85NjVCRDU3RUI4 OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVyZ1pJUnpwR3FmYzlpOXRn YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kMWpOVG1mRXJnWklSenBHcWZjOWk5dGdidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkIyRC85NjVCRDU3RUI4OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVy Z1pJUnpwR3FmYzlpOXRnYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDar+cImDzKFw5w4Jep92tnsb1BAq5ul6d39FBz7nmrmwyoJ9K2gp0 41/jYMrIzK7KeVngX2Hi9UCpgo4fCCmynNr+Di5Pg4Rd8VhTyxTx6b5a8Ttl88l8 RjVN3pdRZ/tcZAAcODp91dY1H295n1lpZfX9kXKlH8TThDx6I7INbQBrhVKm5eSj WDSapzxWVlAI7epTwLY7DuotPFDdY3LyVVtHtznmUUEN0jMrmrm9CVTobstLl5BT 2+C7PjzLMpk7okkyVE82cFRD+GZEPLRofbTkGSVQTyFy4QPYInBA+GdDKdkEvDuw 6IZGe50e4zKLpWGRIkUEGNMnDe+ZCzcr -----END CERTIFICATE-----Generated at Tue Dec 23 05:53:52 2025 by rpki-client