This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft File: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft (raw, json) Hash identifier: Gl7loF2MKh4H2DOiqOCRE7nOo15VBJhYli+n63dpC/8= Subject key identifier: 67:31:C5:A9:21:2A:85:CD:86:8D:35:59:A7:EA:09:03:E0:38:76:42 Authority key identifier: 3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 Certificate issuer: /CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Certificate serial: 224F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft Manifest number: 2203 Signing time: Mon 15 Dec 2025 15:03:17 +0000 Manifest this update: Mon 15 Dec 2025 15:03:17 +0000 Manifest next update: Mon 22 Dec 2025 15:03:17 +0000 Files and hashes: 1: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl (hash: Er2t26IEjTW2AMLagHLJn8ZG2teHKk3Q93v4xIUmcVU=) 2: 586B33AEF44611EBA78C117AC4F9AE02.roa (hash: W3kQqETMCmWx1rkG4UQFdMD9AvtHip25lMvzH/UT/O4=) 3: 5EDC2B56F27E11EE8704D12FC4F9AE02.roa (hash: IkaJ8i577C8HJn9L10GXsDg7dnEgDNc7V/0u1lmvtUc=) 4: A73C0BF6D93511E6B2617F7BC4F9AE02.roa (hash: tha3MuUqAY4uta6oQkpRf/6b/EDrjv+89kT9R3U6DBE=) 5: 63BFE4C0292811EEAF894530C4F9AE02.roa (hash: 8CfQ0/1GwUUp0J0kvZBXA7fizuzpoZuw6UptgYm1mO8=) 6: 11DE1CDA467611EC988CDC09C4F9AE02.roa (hash: VRoVKZ5apQPibJfYuezBj0SVEXkfapSpmG0vCNALPFk=) 7: 5F649D88F27E11EE8704D12FC4F9AE02.roa (hash: 9qbnU5NoZnRKr5UON4q3pztK39xd0U7HOmGKLDSw1XM=) 8: 2D477384D9C711F098E1B70271D3641D.roa (hash: DE+aX0zYPSkZlOiHZwp9PIbSMR2LTCu2LXvGYzXa9NQ=) 9: 5480D316764D11EA8CB5C039C4F9AE02.roa (hash: pHTu337dbSxJnT3CyDhgI/d9oBjNP9lN6T+b/cHszRk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 15:03:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8783 (0x224f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0EBF, serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Validity Not Before: Dec 15 15:03:17 2025 GMT Not After : Dec 22 15:03:17 2025 GMT Subject: CN=69402335-d482 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:89:ad:48:ea:81:2b:87:fe:dd:ca:8b:f4:d6: b0:3d:a0:e3:29:6d:44:6b:5d:e4:18:e2:ad:87:77: 1c:bb:a9:95:b9:c6:1b:d5:58:26:5e:b6:d7:53:65: 17:bc:f7:89:de:bb:38:c5:5d:c1:57:23:3c:5a:21: 56:f0:1a:0c:0a:e0:a5:90:68:c0:5c:9d:e6:13:27: d5:79:91:2f:aa:aa:6c:64:0e:2e:19:1c:4d:0b:43: 5a:f6:b5:69:cd:dd:77:2b:02:2b:40:42:1f:b6:7c: 59:c0:21:7b:fb:9f:87:50:7e:03:c6:d0:89:cd:0a: d5:3c:93:25:af:a5:3c:5f:4c:fd:56:7c:0c:c3:1a: ec:ef:cd:e2:77:fb:97:91:72:5c:36:2e:23:28:e3: 75:68:30:73:31:e5:47:50:cf:06:c7:8c:17:80:43: ef:92:46:26:e1:17:88:92:30:6d:6d:eb:e1:64:bf: ba:c8:09:d3:24:96:ce:4d:09:65:f6:4b:79:d5:8a: c7:75:4f:71:87:e7:6a:ce:f3:f7:5e:8c:6b:e2:06: b3:01:35:f1:68:05:a4:ba:e8:cd:ce:fa:4a:e5:09: 3c:71:24:89:87:1b:d9:74:b5:8e:72:c6:ee:f0:6d: 4f:19:d7:81:59:8d:28:7b:f0:0c:a3:e4:f7:5f:e8: bb:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:31:C5:A9:21:2A:85:CD:86:8D:35:59:A7:EA:09:03:E0:38:76:42 X509v3 Authority Key Identifier: keyid:3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:ac:02:99:76:a8:a6:b5:f5:49:56:47:df:a4:f0:36:85:cd: 14:db:39:6d:b7:e6:46:b0:17:70:ec:ae:df:00:2c:6f:b8:5b: de:24:6d:43:fa:56:b8:b9:21:2a:de:34:93:85:bd:38:25:85: 79:68:67:fc:87:4e:7b:6f:e5:2d:65:4c:63:b7:3b:99:0a:e0: 78:6b:f1:7b:db:30:1c:c4:bd:11:5e:65:90:fd:d4:83:d4:16: 9f:56:cc:fd:07:cb:9c:b9:04:c6:ba:3c:68:ea:b3:35:41:a9: 22:f0:9d:9c:30:3f:b8:61:37:72:3d:e0:40:2e:03:9b:fb:f3: e3:30:55:9c:66:9e:37:3f:e8:21:51:14:c6:04:35:e6:f0:8b: 21:f0:5e:c7:d6:13:6e:da:bf:a1:70:cf:ff:53:81:48:da:6d: a6:d9:d3:24:37:f6:cb:a0:6a:db:74:e3:20:1c:8b:b5:98:e7: 1c:57:17:31:0e:53:21:00:cf:21:b8:5f:14:d6:63:4c:72:72: 79:a2:e2:37:bb:91:cf:be:61:1a:25:3a:10:16:37:c8:99:b4: 9f:b0:ab:7a:c6:3a:fe:10:c0:f2:28:6b:ef:7f:2c:40:8f:6c: 3b:66:ae:3d:a5:3c:19:05:93:3e:6c:5f:95:5b:44:07:9d:56: cf:ce:44:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBFQkYxMTAvBgNVBAUTKDNBQ0NCNjk1MzlBQzlGNDI4OEJDRDBGMEE1NDI1MEQ1 OTJGNTQwRDQwHhcNMjUxMjE1MTUwMzE3WhcNMjUxMjIyMTUwMzE3WjAYMRYwFAYD VQQDDA02OTQwMjMzNS1kNDgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApomtSOqBK4f+3cqL9NawPaDjKW1Ea13kGOKth3ccu6mVucYb1VgmXrbXU2UX vPeJ3rs4xV3BVyM8WiFW8BoMCuClkGjAXJ3mEyfVeZEvqqpsZA4uGRxNC0Na9rVp zd13KwIrQEIftnxZwCF7+5+HUH4DxtCJzQrVPJMlr6U8X0z9VnwMwxrs783id/uX kXJcNi4jKON1aDBzMeVHUM8Gx4wXgEPvkkYm4ReIkjBtbevhZL+6yAnTJJbOTQll 9kt51YrHdU9xh+dqzvP3Xoxr4gazATXxaAWkuujNzvpK5Qk8cSSJhxvZdLWOcsbu 8G1PGdeBWY0oe/AMo+T3X+i78wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGcxxakh KoXNho01WafqCQPgOHZCMB8GA1UdIwQYMBaAFDrMtpU5rJ9CiLzQ8KVCUNWS9UDU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEVCRi81Rjg0RDdEOERC ODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24wS0l2TkR3cFVKUTFaTDFR TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09zeTJsVG1zbjBLSXZORHdwVUpRMVpMMVFOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEVCRi81Rjg0RDdEOERCODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24w S0l2TkR3cFVKUTFaTDFRTlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyrAKZdqimtfVJVkffpPA2hc0U2zltt+ZGsBdw7K7fACxvuFveJG1D +la4uSEq3jSThb04JYV5aGf8h057b+UtZUxjtzuZCuB4a/F72zAcxL0RXmWQ/dSD 1BafVsz9B8ucuQTGujxo6rM1Qaki8J2cMD+4YTdyPeBALgOb+/PjMFWcZp43P+gh URTGBDXm8Ish8F7H1hNu2r+hcM//U4FI2m2m2dMkN/bLoGrbdOMgHIu1mOccVxcx DlMhAM8huF8U1mNMcnJ5ouI3u5HPvmEaJToQFjfImbSfsKt6xjr+EMDyKGvvfyxA j2w7Zq49pTwZBZM+bF+VW0QHnVbPzkSt -----END CERTIFICATE-----Generated at Tue Dec 16 12:14:28 2025 by rpki-client