This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft File: oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft (raw, json) Hash identifier: Vo1knMT3JWMagmLAW4snGZDlsTBzWFVAkr7kx6UpmA8= Subject key identifier: CF:D1:9B:47:75:0E:81:F3:6C:3F:07:11:28:71:47:F5:2C:2D:D7:00 Authority key identifier: A0:FA:66:F6:93:4A:A2:81:3E:1A:1F:00:73:95:90:C6:35:7D:40:DA Certificate issuer: /CN=A91F5804/serialNumber=A0FA66F6934AA2813E1A1F00739590C6357D40DA Certificate serial: 01B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft Manifest number: 01AB Signing time: Tue 23 Dec 2025 02:14:14 +0000 Manifest this update: Tue 23 Dec 2025 02:14:14 +0000 Manifest next update: Tue 30 Dec 2025 02:14:14 +0000 Files and hashes: 1: oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl (hash: l6iNeW4Qre1n1u83eVeJ5wl7LR1a4s8n/LZ7FmiVEJE=) 2: 599F65C652C011EEAAE0CD34C4F9AE02.roa (hash: RkTUA678ggeVul1y+nwQF7cmzTi/KyCvH3jL9UTL73c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:14:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 433 (0x1b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5804, serialNumber=A0FA66F6934AA2813E1A1F00739590C6357D40DA Validity Not Before: Dec 23 02:14:14 2025 GMT Not After : Dec 30 02:14:14 2025 GMT Subject: CN=6949faf6-8283 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:bb:46:2b:cb:c7:ff:6f:4e:fd:b9:6c:02:ad: 42:0d:19:dd:c5:88:9c:3f:0c:cd:4c:a3:c3:17:e4: 0e:c3:01:e4:50:fb:3f:82:1a:50:ff:1a:56:89:70: 11:ed:1a:b6:41:ea:37:45:bc:a7:d3:e5:f3:f3:04: c9:99:9b:76:12:cf:ac:1c:8f:87:30:2e:e4:53:66: 2e:37:72:c6:43:16:79:41:c7:04:0a:00:08:6a:b8: 2e:86:ed:0a:a5:2a:8c:4b:c1:c6:79:5e:a2:ac:0b: 63:60:d8:69:65:d3:7c:2f:ea:37:6b:8f:07:af:46: 86:00:50:4e:24:48:70:38:03:0d:22:1a:82:a6:2e: b4:3b:a3:3a:2d:19:84:59:e1:7a:92:87:49:7f:4b: 3c:bc:9f:58:ba:46:dc:e7:e6:0e:c9:6d:5d:c5:0b: c4:00:91:fd:32:f9:46:aa:11:0c:b9:a5:aa:09:af: 15:8e:3b:d3:bf:fd:d4:da:47:eb:fd:bd:fd:05:ee: 0a:89:2d:7d:f2:32:b8:00:4b:d8:e8:5d:0f:56:bd: f6:3a:bf:3d:50:d5:91:a9:48:34:4d:99:5c:60:f5: e1:84:24:db:46:56:a2:e6:21:27:46:7c:2c:ec:16: 4c:ae:0e:8d:43:ff:51:7a:f1:9c:09:02:7b:b4:a2: 41:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:D1:9B:47:75:0E:81:F3:6C:3F:07:11:28:71:47:F5:2C:2D:D7:00 X509v3 Authority Key Identifier: keyid:A0:FA:66:F6:93:4A:A2:81:3E:1A:1F:00:73:95:90:C6:35:7D:40:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:f0:12:01:a4:c2:a2:eb:93:5a:b8:2e:14:36:5a:78:ae:68: ab:4b:be:d7:ca:5b:76:1d:69:88:fc:4e:33:a7:d8:ac:2e:28: e7:12:96:af:4e:8e:95:f0:af:36:d0:09:76:38:35:0a:a4:61: 9b:10:2f:d0:4e:cd:bd:a0:c6:f7:12:3e:cf:82:6e:a5:31:3a: fe:cd:92:fb:97:37:d2:ba:b2:8f:4f:c3:22:8e:12:8f:a3:73: 18:9d:79:0f:c1:98:b8:79:2f:4c:50:5c:24:33:9e:7e:2a:a8: 8e:28:01:68:d5:ac:68:33:54:a9:df:0c:c7:06:e2:37:7d:a5: 10:f8:ad:c5:68:dc:c0:46:de:4a:bc:34:f3:50:f3:c8:55:a9: 3f:b2:12:04:88:f1:a1:b7:a4:00:7f:a3:7f:af:a7:28:3e:43: 80:a3:7e:56:09:38:63:e2:9f:3e:f2:a1:e2:95:35:00:93:0f: 0c:87:36:2d:a0:0f:76:84:67:d0:b8:9e:97:2b:b3:c2:f4:a5: 10:be:5d:bb:d4:d7:76:af:88:2c:d3:67:7f:07:73:24:49:06: 62:85:aa:98:05:17:5e:5d:ca:09:9f:24:fb:81:c8:53:35:15: 19:74:a0:3b:c1:fd:0e:bb:bd:e9:28:5a:d1:ed:37:84:ed:34: 5d:7b:cc:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU4MDQxMTAvBgNVBAUTKEEwRkE2NkY2OTM0QUEyODEzRTFBMUYwMDczOTU5MEM2 MzU3RDQwREEwHhcNMjUxMjIzMDIxNDE0WhcNMjUxMjMwMDIxNDE0WjAYMRYwFAYD VQQDDA02OTQ5ZmFmNi04MjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2btGK8vH/29O/blsAq1CDRndxYicPwzNTKPDF+QOwwHkUPs/ghpQ/xpWiXAR 7Rq2Qeo3Rbyn0+Xz8wTJmZt2Es+sHI+HMC7kU2YuN3LGQxZ5QccECgAIarguhu0K pSqMS8HGeV6irAtjYNhpZdN8L+o3a48Hr0aGAFBOJEhwOAMNIhqCpi60O6M6LRmE WeF6kodJf0s8vJ9Yukbc5+YOyW1dxQvEAJH9MvlGqhEMuaWqCa8VjjvTv/3U2kfr /b39Be4KiS198jK4AEvY6F0PVr32Or89UNWRqUg0TZlcYPXhhCTbRlai5iEnRnws 7BZMrg6NQ/9RevGcCQJ7tKJBlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM/Rm0d1 DoHzbD8HEShxR/UsLdcAMB8GA1UdIwQYMBaAFKD6ZvaTSqKBPhofAHOVkMY1fUDa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTgwNC9DMjEzOEQ0MDUy QkYxMUVFOEU0NEFBMUJDNEY5QUUwMi9vUHBtOXBOS29vRS1HaDhBYzVXUXhqVjlR Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29QcG05cE5Lb29FLUdoOEFjNVdReGpWOVFOby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTgwNC9DMjEzOEQ0MDUyQkYxMUVFOEU0NEFBMUJDNEY5QUUwMi9vUHBtOXBOS29v RS1HaDhBYzVXUXhqVjlRTm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAT8BIBpMKi65NauC4UNlp4rmirS77Xylt2HWmI/E4zp9isLijnEpav To6V8K820Al2ODUKpGGbEC/QTs29oMb3Ej7Pgm6lMTr+zZL7lzfSurKPT8MijhKP o3MYnXkPwZi4eS9MUFwkM55+KqiOKAFo1axoM1Sp3wzHBuI3faUQ+K3FaNzARt5K vDTzUPPIVak/shIEiPGht6QAf6N/r6coPkOAo35WCThj4p8+8qHilTUAkw8MhzYt oA92hGfQuJ6XK7PC9KUQvl271Nd2r4gs02d/B3MkSQZihaqYBRdeXcoJnyT7gchT NRUZdKA7wf0Ou73pKFrR7TeE7TRde8xb -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:25 2025 by rpki-client