This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft File: Omhmsd88LltfrK7gwJkrvHiMXQo.mft (raw, json) Hash identifier: CgGbZjx5aw5pznyf8E/CfIbZmqhSJDckhrWKjGAGFwQ= Subject key identifier: 2E:F4:6C:38:CD:33:EE:09:58:C5:6F:38:F4:F0:63:42:D4:8D:86:45 Authority key identifier: 3A:68:66:B1:DF:3C:2E:5B:5F:AC:AE:E0:C0:99:2B:BC:78:8C:5D:0A Certificate issuer: /CN=A911A6D6/serialNumber=3A6866B1DF3C2E5B5FACAEE0C0992BBC788C5D0A Certificate serial: 01DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Omhmsd88LltfrK7gwJkrvHiMXQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft Manifest number: 01D8 Signing time: Fri 05 Dec 2025 01:02:21 +0000 Manifest this update: Fri 05 Dec 2025 01:02:20 +0000 Manifest next update: Fri 12 Dec 2025 01:02:20 +0000 Files and hashes: 1: Omhmsd88LltfrK7gwJkrvHiMXQo.crl (hash: hDR30FD/L0bNZzQK2Mo2+G+dj3DgVGaqf0xAOwBZmCg=) 2: D4D3B47EA27811EE9C29A256C4F9AE02.roa (hash: QHRHGfrfRtZTCug8O+YvL4h2f3rUlXsvRTX9IxlC4gs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.crl rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Omhmsd88LltfrK7gwJkrvHiMXQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:02:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 475 (0x1db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A6D6, serialNumber=3A6866B1DF3C2E5B5FACAEE0C0992BBC788C5D0A Validity Not Before: Dec 5 01:02:20 2025 GMT Not After : Dec 12 01:02:20 2025 GMT Subject: CN=69322f1c-b1ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:1a:25:27:e9:cf:b1:ef:45:64:e4:d8:42:1f: 61:46:54:96:04:97:f0:40:e6:ac:bc:7e:e4:49:12: 2e:70:0e:f9:a3:8d:18:40:7d:6d:1b:0f:88:3b:b5: 32:f4:74:7b:3e:03:74:a6:07:17:df:e3:6d:75:dd: 61:50:f8:05:8e:5a:f7:b6:cd:e6:bb:4a:2f:af:d2: 11:c5:e2:d3:0a:59:a3:d2:c8:ef:50:2e:2c:91:cf: f7:7b:cd:5b:fc:44:f8:07:3c:82:aa:26:da:58:d7: 52:6f:32:3b:84:a8:5e:6a:9c:39:fe:d8:2d:a1:9f: b0:24:d3:c8:ad:83:fa:a7:1c:32:94:77:03:c7:d6: 0f:86:b6:68:6f:d7:7d:a0:c3:46:a8:3d:26:25:b9: f9:18:80:73:be:d5:5d:00:1c:91:26:91:fe:1d:48: 3d:8e:59:3d:6c:b0:a9:62:6a:70:6c:78:07:8e:9f: 80:85:62:02:38:23:50:9d:f3:be:74:5b:3b:2a:00: e8:80:99:a9:8a:51:9b:97:c8:df:32:29:64:aa:95: f3:e7:8a:a7:1a:e3:74:8f:a0:53:8d:00:d4:61:bf: 1f:f9:6f:0f:d9:4c:4e:10:38:12:dd:f3:ee:c4:b6: 87:a4:a1:6d:0e:db:8a:1b:ff:f8:13:62:4e:db:10: fc:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:F4:6C:38:CD:33:EE:09:58:C5:6F:38:F4:F0:63:42:D4:8D:86:45 X509v3 Authority Key Identifier: keyid:3A:68:66:B1:DF:3C:2E:5B:5F:AC:AE:E0:C0:99:2B:BC:78:8C:5D:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Omhmsd88LltfrK7gwJkrvHiMXQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:04:1c:2b:d0:79:1d:67:57:37:57:92:f8:15:04:c2:e1:4b: b2:36:32:98:af:1c:85:e0:29:42:dc:a2:95:a9:45:14:7d:d5: 70:29:bc:8c:0b:ef:9d:4c:17:1e:5e:7a:a5:78:c4:81:86:af: 6a:e9:3b:2b:3d:a7:7f:91:3b:8e:ac:39:6e:9b:da:8a:7e:43: 3b:50:13:20:6c:c7:3d:2c:08:2d:2e:21:d3:5e:2f:70:28:0a: 1b:94:40:96:a1:ac:3e:45:3f:ea:06:7a:28:6f:60:76:23:a4: 8a:4b:7a:37:ba:40:7d:ca:82:92:a5:a6:42:73:95:7f:b6:54: 2c:f6:a6:82:f5:5e:85:6d:fa:47:88:6b:55:7c:7e:4d:5e:d0: e6:90:73:7d:fd:7c:58:dd:98:b4:ff:7e:e8:17:1d:16:b0:2e: 4e:58:ef:99:33:79:d6:10:32:03:b6:66:8b:d9:87:3c:4a:c0: 99:0c:41:f1:ae:de:6e:74:72:ad:2d:4f:b4:8a:3d:4a:ed:5b: f5:77:2b:76:88:14:82:13:60:37:1c:b9:40:10:93:d3:45:95: 92:13:35:ac:bf:75:ba:93:fc:64:2c:0e:da:f9:2e:fb:8c:26: 56:4e:b5:60:5f:23:75:60:7a:43:13:58:88:d6:be:3c:69:4b: 09:f6:57:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE2RDYxMTAvBgNVBAUTKDNBNjg2NkIxREYzQzJFNUI1RkFDQUVFMEMwOTkyQkJD Nzg4QzVEMEEwHhcNMjUxMjA1MDEwMjIwWhcNMjUxMjEyMDEwMjIwWjAYMRYwFAYD VQQDEw02OTMyMmYxYy1iMWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnBolJ+nPse9FZOTYQh9hRlSWBJfwQOasvH7kSRIucA75o40YQH1tGw+IO7Uy 9HR7PgN0pgcX3+Ntdd1hUPgFjlr3ts3mu0ovr9IRxeLTClmj0sjvUC4skc/3e81b /ET4BzyCqibaWNdSbzI7hKheapw5/tgtoZ+wJNPIrYP6pxwylHcDx9YPhrZob9d9 oMNGqD0mJbn5GIBzvtVdAByRJpH+HUg9jlk9bLCpYmpwbHgHjp+AhWICOCNQnfO+ dFs7KgDogJmpilGbl8jfMilkqpXz54qnGuN0j6BTjQDUYb8f+W8P2UxOEDgS3fPu xLaHpKFtDtuKG//4E2JO2xD8YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC70bDjN M+4JWMVvOPTwY0LUjYZFMB8GA1UdIwQYMBaAFDpoZrHfPC5bX6yu4MCZK7x4jF0K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTZENi9ERTM0QzE3OEZD ODAxMUVEQTgzODIwNTJDNEY5QUUwMi9PbWhtc2Q4OExsdGZySzdnd0prcnZIaU1Y UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09taG1zZDg4TGx0ZnJLN2d3SmtydkhpTVhRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTZENi9ERTM0QzE3OEZDODAxMUVEQTgzODIwNTJDNEY5QUUwMi9PbWhtc2Q4OExs dGZySzdnd0prcnZIaU1YUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6BBwr0HkdZ1c3V5L4FQTC4UuyNjKYrxyF4ClC3KKVqUUUfdVwKbyM C++dTBceXnqleMSBhq9q6TsrPad/kTuOrDlum9qKfkM7UBMgbMc9LAgtLiHTXi9w KAoblECWoaw+RT/qBnoob2B2I6SKS3o3ukB9yoKSpaZCc5V/tlQs9qaC9V6FbfpH iGtVfH5NXtDmkHN9/XxY3Zi0/37oFx0WsC5OWO+ZM3nWEDIDtmaL2Yc8SsCZDEHx rt5udHKtLU+0ij1K7Vv1dyt2iBSCE2A3HLlAEJPTRZWSEzWsv3W6k/xkLA7a+S77 jCZWTrVgXyN1YHpDE1iI1r48aUsJ9len -----END CERTIFICATE-----Generated at Sat Dec 6 16:00:43 2025 by rpki-client