This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft File: orn_7UcMW3HFLztks7btpBm-E7M.mft (raw, json) Hash identifier: S+kjoQms49RYqKCEGgem7Le1ZSTWhZtw2Jiz+IGwklM= Subject key identifier: 11:CE:91:FB:CA:A9:5B:57:DD:24:20:38:E3:BD:B2:E3:A6:39:91:D9 Authority key identifier: A2:B9:FF:ED:47:0C:5B:71:C5:2F:3B:64:B3:B6:ED:A4:19:BE:13:B3 Certificate issuer: /CN=A91187C1/serialNumber=A2B9FFED470C5B71C52F3B64B3B6EDA419BE13B3 Certificate serial: 54 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft Manifest number: 53 Signing time: Fri 05 Dec 2025 05:05:55 +0000 Manifest this update: Fri 05 Dec 2025 05:05:54 +0000 Manifest next update: Fri 12 Dec 2025 05:05:54 +0000 Files and hashes: 1: orn_7UcMW3HFLztks7btpBm-E7M.crl (hash: AHi622i13NhKpeFevYfpFrj4+x1KvhebZ6ALaeqVyxg=) 2: C265A63A571211F092B99F2AC4F9AE02.roa (hash: mdIvnywtfDJvKSbbhgc4qSg7/SJGPr319lK/wnjqr9k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.crl rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:05:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91187C1, serialNumber=A2B9FFED470C5B71C52F3B64B3B6EDA419BE13B3 Validity Not Before: Dec 5 05:05:54 2025 GMT Not After : Dec 12 05:05:54 2025 GMT Subject: CN=69326832-b2a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:63:61:f4:b1:40:5e:ce:14:48:e6:0a:22:84: 52:8a:5c:f9:88:4f:af:a6:e7:08:dc:31:3f:6a:c2: 98:6e:51:f5:58:67:3d:69:bc:33:a0:9c:b5:11:a6: de:64:a0:9f:7c:90:04:da:66:87:97:b7:59:e1:62: f0:e3:e9:49:02:a8:5b:56:16:09:d0:10:a8:7c:47: a8:c9:9e:84:4e:6b:1d:82:6f:8b:d8:4e:fa:2f:46: e5:ad:0b:42:25:30:a7:84:75:9e:84:ce:16:d8:63: f9:15:6b:7d:8f:75:10:5a:10:62:9c:74:a8:67:be: b0:cd:41:00:a3:5b:7b:ba:0c:17:02:3f:f9:0c:fa: e9:87:10:33:ae:d0:1e:90:2f:e0:1a:38:9b:cc:00: 8f:18:e2:08:14:04:0a:cf:b1:26:60:e5:91:90:ee: e0:23:88:9b:8d:46:78:17:8c:3f:c1:ef:df:a2:0b: c5:22:8c:22:8c:7f:28:c7:67:4d:05:a4:f3:ab:a6: fc:1f:d6:ee:af:f7:97:7c:89:4e:c1:1b:cf:90:9d: 3d:00:2b:0c:93:24:eb:b8:01:70:28:3e:0b:f1:34: 89:ba:a4:f7:ce:a4:09:49:48:f8:b2:c7:cb:6b:fa: bf:68:42:97:5a:b1:72:73:70:83:01:22:68:51:b4: e8:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:CE:91:FB:CA:A9:5B:57:DD:24:20:38:E3:BD:B2:E3:A6:39:91:D9 X509v3 Authority Key Identifier: keyid:A2:B9:FF:ED:47:0C:5B:71:C5:2F:3B:64:B3:B6:ED:A4:19:BE:13:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:03:98:42:44:c9:54:bb:ea:0d:43:77:4c:ed:b4:2b:c1:db: 28:86:2b:e7:98:88:bd:30:f2:64:27:cb:0c:97:3f:0a:f2:cb: 7e:1e:b0:19:a1:a7:fb:2f:26:d6:89:fb:d5:b5:88:82:e6:1f: 31:4b:27:c7:b8:42:ec:3d:18:3d:aa:13:4b:1e:c4:e8:c4:0b: b0:0a:14:3a:82:e4:35:32:38:9e:e0:4a:35:96:e7:fb:00:d4: d6:87:5f:95:ec:26:4e:fd:32:ea:ea:5a:75:df:f2:5d:ed:e8: f1:4e:6e:01:47:f0:01:5c:3b:7f:d6:09:56:22:71:1e:56:35: 98:a7:c4:8c:50:3b:d0:0e:52:56:4a:dc:45:bd:13:03:cd:ca: 54:6b:40:80:6e:a7:42:1a:cc:df:0e:b4:c2:fe:09:28:8b:48: 68:49:37:c0:e0:2d:05:0b:51:dc:50:24:0d:d8:07:cb:4e:40: c7:04:ee:11:f2:05:94:bc:72:35:b0:93:95:00:be:df:64:fd: b7:5b:3e:7d:c8:d5:18:ce:92:59:17:09:0e:c8:46:36:93:e9: 68:7f:d1:3e:b0:55:a5:5f:40:2c:c2:a3:66:40:d1:37:69:45: d5:00:8a:db:16:e3:c5:47:e7:a2:ae:2a:fc:1b:8f:b8:3d:33: f4:e5:e6:15 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx ODdDMTExMC8GA1UEBRMoQTJCOUZGRUQ0NzBDNUI3MUM1MkYzQjY0QjNCNkVEQTQx OUJFMTNCMzAeFw0yNTEyMDUwNTA1NTRaFw0yNTEyMTIwNTA1NTRaMBgxFjAUBgNV BAMTDTY5MzI2ODMyLWIyYTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3Y2H0sUBezhRI5goihFKKXPmIT6+m5wjcMT9qwphuUfVYZz1pvDOgnLURpt5k oJ98kATaZoeXt1nhYvDj6UkCqFtWFgnQEKh8R6jJnoROax2Cb4vYTvovRuWtC0Il MKeEdZ6EzhbYY/kVa32PdRBaEGKcdKhnvrDNQQCjW3u6DBcCP/kM+umHEDOu0B6Q L+AaOJvMAI8Y4ggUBArPsSZg5ZGQ7uAjiJuNRngXjD/B79+iC8UijCKMfyjHZ00F pPOrpvwf1u6v95d8iU7BG8+QnT0AKwyTJOu4AXAoPgvxNIm6pPfOpAlJSPiyx8tr +r9oQpdasXJzcIMBImhRtOjvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEc6R+8qp W1fdJCA4472y46Y5kdkwHwYDVR0jBBgwFoAUorn/7UcMW3HFLztks7btpBm+E7Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4N0MxLzI2MzFDOEI0NTcw QTExRjBCNTM4Q0Y2NUM0RjlBRTAyL29ybl83VWNNVzNIRkx6dGtzN2J0cEJtLUU3 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvb3JuXzdVY01XM0hGTHp0a3M3YnRwQm0tRTdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4 N0MxLzI2MzFDOEI0NTcwQTExRjBCNTM4Q0Y2NUM0RjlBRTAyL29ybl83VWNNVzNI Rkx6dGtzN2J0cEJtLUU3TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADkDmEJEyVS76g1Dd0zttCvB2yiGK+eYiL0w8mQnywyXPwryy34esBmh p/svJtaJ+9W1iILmHzFLJ8e4Quw9GD2qE0sexOjEC7AKFDqC5DUyOJ7gSjWW5/sA 1NaHX5XsJk79MurqWnXf8l3t6PFObgFH8AFcO3/WCVYicR5WNZinxIxQO9AOUlZK 3EW9EwPNylRrQIBup0IazN8OtML+CSiLSGhJN8DgLQULUdxQJA3YB8tOQMcE7hHy BZS8cjWwk5UAvt9k/bdbPn3I1RjOklkXCQ7IRjaT6Wh/0T6wVaVfQCzCo2ZA0Tdp RdUAitsW48VH56KuKvwbj7g9M/Tl5hU= -----END CERTIFICATE-----Generated at Sun Dec 7 01:59:59 2025 by rpki-client