This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft File: oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft (raw, json) Hash identifier: UbJiYJ4iRd2zsZ9IoujcK0co8y/RKfnPgx9RoW3+B78= Subject key identifier: 91:6E:3C:B0:A7:5B:36:CF:92:BB:66:16:99:6D:AA:AB:EE:82:B6:14 Authority key identifier: A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 Certificate issuer: /CN=A91FA024/serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Certificate serial: 0848 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft Manifest number: 0840 Signing time: Mon 22 Dec 2025 20:07:06 +0000 Manifest this update: Mon 22 Dec 2025 20:07:06 +0000 Manifest next update: Mon 29 Dec 2025 20:07:06 +0000 Files and hashes: 1: oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl (hash: 5j+/bWPy6jvc8JWwX7Rs24rfCriulotVHDfSy2a/gpk=) 2: FE1FDB12BCD011EC8283681EC4F9AE02.roa (hash: 2wuY0yDKdmJN9ZQKTlSwz2efwa28k+u+9dd3owV3hlg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:07:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2120 (0x848) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA024, serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Validity Not Before: Dec 22 20:07:06 2025 GMT Not After : Dec 29 20:07:06 2025 GMT Subject: CN=6949a4ea-268e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f2:1d:c4:9e:0a:81:48:18:62:9d:68:6b:64: 34:9e:49:59:b0:0f:d6:6c:dd:ce:03:8c:7a:81:75: a8:d0:db:7b:99:ac:9f:30:59:43:40:74:e9:95:95: 9d:49:49:e2:03:b3:5b:06:dd:0b:5a:ae:d1:58:b3: 11:6c:bc:fc:10:56:ac:aa:92:30:6f:be:19:7b:f6: ec:7d:51:f6:65:51:27:cb:00:8f:31:58:19:2e:d7: db:9b:4e:87:d0:40:a8:99:95:ae:a3:05:3a:3b:fd: 03:25:38:be:f8:84:19:f1:46:20:51:b8:b3:97:98: be:2a:ec:97:f8:7c:61:95:2a:46:50:c7:c0:20:9a: 56:26:16:8b:91:14:fc:1b:c2:d2:17:85:e9:29:9e: 14:f4:e2:90:4a:eb:ce:6e:83:09:ab:09:52:cc:b7: 27:ff:8b:cd:07:f2:0c:6c:db:6c:1d:08:0d:b1:d7: 10:52:f9:fd:a6:37:d9:50:73:b6:4e:4a:f1:4b:24: c0:0d:d7:70:55:74:b4:f7:57:92:23:14:a1:b5:db: 31:8e:cb:0e:ba:f0:05:0e:9e:7a:d3:d6:37:a1:03: 33:93:83:e8:33:3b:27:93:e0:f9:6e:bb:b4:c5:c9: aa:94:66:3b:53:92:71:b8:92:b0:f8:26:54:18:7a: db:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:6E:3C:B0:A7:5B:36:CF:92:BB:66:16:99:6D:AA:AB:EE:82:B6:14 X509v3 Authority Key Identifier: keyid:A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:35:08:09:2d:c5:ea:99:50:fc:fe:87:93:aa:0a:d2:c0:3e: e2:33:01:82:3d:de:4f:dd:08:5e:6f:26:4b:6e:79:4b:ed:3f: e7:17:3f:e1:28:e8:ff:19:7c:dd:98:e6:d0:ee:cb:87:f8:5e: 9d:b7:5b:92:21:ff:dd:d2:d7:2c:4c:83:18:16:4b:b4:ac:4a: 93:53:b5:25:26:03:85:d9:3a:cd:88:5c:84:94:f0:a9:33:2a: 87:78:21:08:73:59:b7:38:95:26:21:3d:1a:0f:86:8b:75:02: ef:93:fb:3a:36:7a:7c:7d:41:2f:fb:b7:0a:26:bf:cd:ca:01: d3:0d:55:02:70:9e:ee:a6:88:88:9d:39:c8:26:ea:22:a1:07: d8:ff:5a:ba:cf:8d:0d:db:5a:9c:5c:31:db:1e:1e:76:c0:83: 1e:38:e6:89:61:3a:97:c9:e9:70:1c:46:51:7e:ec:2c:1b:0c: 1e:7d:99:d1:8a:2a:dd:87:a2:10:21:6d:69:97:63:56:3d:94: 8f:07:52:4a:ae:a7:b0:1b:88:12:e7:08:1b:20:1e:d3:f2:41: 82:a4:7a:19:32:49:28:de:9f:de:b5:f0:f4:02:62:72:78:4a: b4:a0:e0:32:05:b3:b7:86:57:19:fb:36:17:29:02:f3:a8:af: 34:af:29:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkEwMjQxMTAvBgNVBAUTKEEwQUM0MjdFOTU3QjM3NEQwMjY3RkE3NjQ4REQzRkY4 NTcwMkRBQjEwHhcNMjUxMjIyMjAwNzA2WhcNMjUxMjI5MjAwNzA2WjAYMRYwFAYD VQQDDA02OTQ5YTRlYS0yNjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtvIdxJ4KgUgYYp1oa2Q0nklZsA/WbN3OA4x6gXWo0Nt7mayfMFlDQHTplZWd SUniA7NbBt0LWq7RWLMRbLz8EFasqpIwb74Ze/bsfVH2ZVEnywCPMVgZLtfbm06H 0EComZWuowU6O/0DJTi++IQZ8UYgUbizl5i+KuyX+HxhlSpGUMfAIJpWJhaLkRT8 G8LSF4XpKZ4U9OKQSuvOboMJqwlSzLcn/4vNB/IMbNtsHQgNsdcQUvn9pjfZUHO2 TkrxSyTADddwVXS091eSIxShtdsxjssOuvAFDp5609Y3oQMzk4PoMzsnk+D5bru0 xcmqlGY7U5JxuJKw+CZUGHrb0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJFuPLCn WzbPkrtmFpltqqvugrYUMB8GA1UdIwQYMBaAFKCsQn6VezdNAmf6dkjdP/hXAtqx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTAyNC9EMzNBNDc5NEYx ODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04wMENaX3AyU04wXy1GY0My ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LeENmcFY3TjAwQ1pfcDJTTjBfLUZjQzJyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTAyNC9EMzNBNDc5NEYxODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04w MENaX3AyU04wXy1GY0MyckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDNQgJLcXqmVD8/oeTqgrSwD7iMwGCPd5P3QhebyZLbnlL7T/nFz/h KOj/GXzdmObQ7suH+F6dt1uSIf/d0tcsTIMYFku0rEqTU7UlJgOF2TrNiFyElPCp MyqHeCEIc1m3OJUmIT0aD4aLdQLvk/s6Nnp8fUEv+7cKJr/NygHTDVUCcJ7upoiI nTnIJuoioQfY/1q6z40N21qcXDHbHh52wIMeOOaJYTqXyelwHEZRfuwsGwwefZnR iirdh6IQIW1pl2NWPZSPB1JKrqewG4gS5wgbIB7T8kGCpHoZMkko3p/etfD0AmJy eEq0oOAyBbO3hlcZ+zYXKQLzqK80rylP -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:47 2025 by rpki-client