This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft File: OxaIpfe3JKr754IKLGPZey6o5SI.mft (raw, json) Hash identifier: zNqQIf7odpJs+E1S1YJ34o8bBuoIDgvhAJwjm74izy4= Subject key identifier: AF:BE:DD:DE:73:6E:2F:F1:70:50:1D:EE:99:E5:16:E7:8A:C3:95:C8 Authority key identifier: 3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 Certificate issuer: /CN=A91772FA/serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Certificate serial: 0382 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft Manifest number: 037A Signing time: Thu 04 Dec 2025 23:16:21 +0000 Manifest this update: Thu 04 Dec 2025 23:16:20 +0000 Manifest next update: Thu 11 Dec 2025 23:16:20 +0000 Files and hashes: 1: OxaIpfe3JKr754IKLGPZey6o5SI.crl (hash: QJADDaZnnwtlI+6yLPs9gVK5WgNoIi+6Q2GA9KxxlXo=) 2: 2D613294CD7611EC83259862C4F9AE02.roa (hash: HUqC6JNil8MpabByxXZUWUh1z061818LFUdkHBUaghY=) 3: EF8CB49CD78F11EC91680D49C4F9AE02.roa (hash: m1T9GaVF/kOA3y3lDclBiCBdGMqPbCm1SzZbjGctr8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:16:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 898 (0x382) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91772FA, serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Validity Not Before: Dec 4 23:16:20 2025 GMT Not After : Dec 11 23:16:20 2025 GMT Subject: CN=69321644-56f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:35:9e:e0:80:5c:db:e3:a6:fa:fe:08:2f:3d: 6b:c9:9d:a1:e4:84:d8:17:5c:a0:e6:f9:8e:f7:a8: 5e:f2:03:06:91:93:ff:91:13:7e:db:71:e7:a3:dd: 7a:e5:6f:40:8e:b9:a3:1b:57:74:75:27:12:cb:72: b7:3f:84:04:93:f8:8f:20:13:de:fb:e3:1a:b4:63: 8a:5b:94:90:54:70:69:b3:61:82:a0:b7:79:2a:fb: 09:b2:cb:d5:1a:24:51:7d:df:ae:eb:9a:a7:d2:45: 67:ff:17:34:7c:6b:0c:e8:77:bb:c7:bb:ca:db:db: aa:e4:63:77:41:eb:07:f2:d0:3c:c8:00:87:eb:b5: c1:e5:d4:94:99:bf:d7:e7:48:f7:03:d7:67:d4:15: 57:0a:97:95:43:03:88:7c:5a:a7:fa:07:9a:2c:16: f3:b1:18:cf:9a:7b:56:b6:47:9d:7a:87:0b:3c:39: 83:05:24:48:e2:22:5c:14:61:d6:5e:ad:f1:f0:e7: 3c:13:bc:06:f1:a3:45:ae:3f:a2:bb:99:68:85:01: 46:bd:ee:7e:cb:ff:d4:38:b1:4c:6d:ff:1c:a4:f8: 21:e7:31:c4:dc:b6:20:66:0d:34:50:e0:0e:88:35: 86:14:f3:62:b4:02:ba:3d:ff:3f:34:a3:f8:e1:13: 41:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:BE:DD:DE:73:6E:2F:F1:70:50:1D:EE:99:E5:16:E7:8A:C3:95:C8 X509v3 Authority Key Identifier: keyid:3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:2f:13:91:b3:31:64:49:26:89:3a:0e:83:03:09:67:2c:fa: c8:ae:e7:da:28:e8:fb:68:12:2a:12:54:de:a8:b0:0c:de:96: 0a:bd:99:a1:dc:a0:3a:65:4a:be:b2:7a:69:b1:e4:26:7f:f7: ef:8c:77:11:b2:6d:7d:1f:45:01:ce:4b:da:9a:48:a6:e3:f8: d9:ca:30:86:2a:84:0d:d1:9a:9f:10:71:67:70:55:0e:6c:ae: 1c:ac:73:2d:04:1d:2c:fe:99:d8:03:83:40:30:01:80:23:50: 26:07:59:de:e0:02:58:69:73:c3:b8:4b:41:52:7b:b3:6a:c4: 54:af:70:3d:0b:a1:6a:c0:1c:db:ec:7a:f3:29:68:53:87:63: af:c5:fd:8c:cf:f2:5c:3a:7a:94:c2:9b:e9:67:ab:a0:d8:3f: 41:ba:31:8c:26:c2:e3:b2:e7:e4:b3:91:53:f2:de:90:a0:62: 00:fa:22:4d:3a:3c:66:10:bf:f4:65:16:c6:68:6f:3d:2c:39: e7:b1:84:8e:68:a8:c4:60:09:b5:de:0f:c4:dd:3a:82:a8:47: 22:97:b7:3d:17:4d:5a:72:94:36:06:0e:ff:e5:74:9d:15:43: e4:13:fc:cf:ae:2f:ee:48:f2:f1:4f:1f:b0:49:1a:58:72:09: 5e:52:4b:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcyRkExMTAvBgNVBAUTKDNCMTY4OEE1RjdCNzI0QUFGQkU3ODIwQTJDNjNEOTdC MkVBOEU1MjIwHhcNMjUxMjA0MjMxNjIwWhcNMjUxMjExMjMxNjIwWjAYMRYwFAYD VQQDEw02OTMyMTY0NC01NmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmzWe4IBc2+Om+v4ILz1ryZ2h5ITYF1yg5vmO96he8gMGkZP/kRN+23Hno916 5W9AjrmjG1d0dScSy3K3P4QEk/iPIBPe++MatGOKW5SQVHBps2GCoLd5KvsJssvV GiRRfd+u65qn0kVn/xc0fGsM6He7x7vK29uq5GN3QesH8tA8yACH67XB5dSUmb/X 50j3A9dn1BVXCpeVQwOIfFqn+geaLBbzsRjPmntWtkedeocLPDmDBSRI4iJcFGHW Xq3x8Oc8E7wG8aNFrj+iu5lohQFGve5+y//UOLFMbf8cpPgh5zHE3LYgZg00UOAO iDWGFPNitAK6Pf8/NKP44RNBbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK++3d5z bi/xcFAd7pnlFueKw5XIMB8GA1UdIwQYMBaAFDsWiKX3tySq++eCCixj2XsuqOUi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzJGQS9ENzI0NDU2MkNE NzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pLcjc1NElLTEdQWmV5Nm81 U0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL094YUlwZmUzSktyNzU0SUtMR1BaZXk2bzVTSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzJGQS9ENzI0NDU2MkNENzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pL cjc1NElLTEdQWmV5Nm81U0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqLxORszFkSSaJOg6DAwlnLPrIrufaKOj7aBIqElTeqLAM3pYKvZmh 3KA6ZUq+snppseQmf/fvjHcRsm19H0UBzkvamkim4/jZyjCGKoQN0ZqfEHFncFUO bK4crHMtBB0s/pnYA4NAMAGAI1AmB1ne4AJYaXPDuEtBUnuzasRUr3A9C6FqwBzb 7HrzKWhTh2Ovxf2Mz/JcOnqUwpvpZ6ug2D9BujGMJsLjsufks5FT8t6QoGIA+iJN OjxmEL/0ZRbGaG89LDnnsYSOaKjEYAm13g/E3TqCqEcil7c9F01acpQ2Bg7/5XSd FUPkE/zPri/uSPLxTx+wSRpYcgleUksX -----END CERTIFICATE-----Generated at Sat Dec 6 23:21:08 2025 by rpki-client