This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft File: OIes3fccvvSnUh2EUe7LrrJRnv0.mft (raw, json) Hash identifier: RafJFnpxAyev8BopK+35SUdcl4FqR6AOHKUn9OVvP7g= Subject key identifier: B4:E5:EA:64:1B:DC:55:DD:EA:13:95:59:F8:95:4E:E5:1A:E9:3C:18 Authority key identifier: 38:87:AC:DD:F7:1C:BE:F4:A7:52:1D:84:51:EE:CB:AE:B2:51:9E:FD Certificate issuer: /CN=A91778D4/serialNumber=3887ACDDF71CBEF4A7521D8451EECBAEB2519EFD Certificate serial: 041C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft Manifest number: 0417 Signing time: Thu 04 Dec 2025 22:51:52 +0000 Manifest this update: Thu 04 Dec 2025 22:51:52 +0000 Manifest next update: Thu 11 Dec 2025 22:51:52 +0000 Files and hashes: 1: OIes3fccvvSnUh2EUe7LrrJRnv0.crl (hash: dK0NsgmZxt/BVtxuKVKRLP/BOBuMjYVxUhvSkPvBwag=) 2: 13F9F650905511EC9A978D19C4F9AE02.roa (hash: LsezswxbsYTDkD8XmvSpL4OSBTZlfRn5UeJiOefMqvA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.crl rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:51:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1052 (0x41c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91778D4, serialNumber=3887ACDDF71CBEF4A7521D8451EECBAEB2519EFD Validity Not Before: Dec 4 22:51:52 2025 GMT Not After : Dec 11 22:51:52 2025 GMT Subject: CN=69321088-72de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:08:a5:f3:82:61:66:ed:db:48:45:83:ec:89: a9:17:d0:17:52:c5:cb:9f:3b:ac:d7:79:6e:2e:cf: 17:c8:ec:55:91:e4:3a:eb:63:94:b2:e4:00:0d:b6: bb:b8:f4:d2:1e:b4:c4:8f:45:b2:37:77:44:5e:2c: ad:37:96:fe:55:08:a0:10:d5:eb:5f:a5:d3:70:7f: c3:59:6b:ea:41:6b:b6:0d:46:32:a8:d8:d4:02:ea: 62:9b:30:48:7c:dc:e2:f8:cd:66:4b:96:09:f4:9e: 87:7a:46:17:ed:7b:c3:84:65:35:a4:ed:67:58:4c: 5c:b1:98:9a:91:c3:42:0e:a5:a6:ee:ef:14:28:54: 80:2e:99:dd:8d:05:1a:81:fb:cb:d2:70:39:46:83: fd:c7:67:a0:36:be:8e:21:51:84:ea:a0:2b:23:03: 95:90:be:5a:00:47:e9:e8:19:d5:8e:29:90:98:e6: e9:4b:6e:6f:e5:1c:ae:9d:a4:12:d4:95:9c:b2:38: 97:91:c6:02:60:34:b5:71:20:72:37:51:85:4a:1a: 3a:0d:92:2c:cf:65:ae:aa:1c:c2:d0:b5:7d:2f:fb: 99:c2:32:8d:4a:ac:7a:bc:4c:b6:88:ee:75:95:b6: 86:e5:bf:0f:0c:c1:e1:c3:46:76:b6:d0:92:4f:0b: c4:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:E5:EA:64:1B:DC:55:DD:EA:13:95:59:F8:95:4E:E5:1A:E9:3C:18 X509v3 Authority Key Identifier: keyid:38:87:AC:DD:F7:1C:BE:F4:A7:52:1D:84:51:EE:CB:AE:B2:51:9E:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:04:67:b4:0b:85:63:9e:38:c2:fc:a9:f9:55:fb:7e:b1:c5: de:85:e5:cc:ba:6f:6d:bf:a5:87:45:a7:64:1b:75:96:c7:0d: 34:b5:41:85:c6:dd:9e:59:2e:99:4b:51:5e:12:31:4f:02:0c: 15:40:fa:37:19:23:58:bf:0b:2c:0b:c4:4e:bf:f6:4b:cd:a6: 21:f4:5d:87:f6:6f:e0:81:fa:1b:d1:ca:10:31:7a:d9:2d:55: 7a:8b:b9:82:12:f0:7f:ce:59:e3:ce:ac:10:46:fa:dd:7a:9f: d3:a6:3a:ba:3a:bc:59:70:f7:16:75:5a:b7:99:5f:6f:36:b9: 25:11:d8:19:15:96:ee:b2:3f:ba:28:c1:28:43:30:0b:4f:01: fb:f9:30:ac:65:71:3a:35:dd:59:8a:ed:92:1e:b8:ef:c9:57: 69:11:12:fd:20:99:92:b4:e7:d3:0e:19:33:97:24:dd:4d:d3: 4c:cc:96:63:90:c0:23:f9:f9:0d:5e:12:d2:ee:6f:5f:c5:22: 42:fa:1e:a3:60:08:e4:77:be:51:35:3f:c0:f6:20:d7:c3:00: 9d:80:01:24:9b:b4:94:d7:6a:1b:83:fb:8f:3e:3c:78:59:f5: cb:8e:0c:9a:69:75:02:b2:6c:8e:fb:33:3b:5b:1e:9f:bb:e0: 83:dc:3b:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc4RDQxMTAvBgNVBAUTKDM4ODdBQ0RERjcxQ0JFRjRBNzUyMUQ4NDUxRUVDQkFF QjI1MTlFRkQwHhcNMjUxMjA0MjI1MTUyWhcNMjUxMjExMjI1MTUyWjAYMRYwFAYD VQQDEw02OTMyMTA4OC03MmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxgil84JhZu3bSEWD7ImpF9AXUsXLnzus13luLs8XyOxVkeQ662OUsuQADba7 uPTSHrTEj0WyN3dEXiytN5b+VQigENXrX6XTcH/DWWvqQWu2DUYyqNjUAupimzBI fNzi+M1mS5YJ9J6HekYX7XvDhGU1pO1nWExcsZiakcNCDqWm7u8UKFSALpndjQUa gfvL0nA5RoP9x2egNr6OIVGE6qArIwOVkL5aAEfp6BnVjimQmObpS25v5RyunaQS 1JWcsjiXkcYCYDS1cSByN1GFSho6DZIsz2WuqhzC0LV9L/uZwjKNSqx6vEy2iO51 lbaG5b8PDMHhw0Z2ttCSTwvEdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLTl6mQb 3FXd6hOVWfiVTuUa6TwYMB8GA1UdIwQYMBaAFDiHrN33HL70p1IdhFHuy66yUZ79 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzhENC9EOUQ1NjkzQTkw NTExMUVDQTM2OTk2MTVDNEY5QUUwMi9PSWVzM2ZjY3Z2U25VaDJFVWU3THJySlJu djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09JZXMzZmNjdnZTblVoMkVVZTdMcnJKUm52MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzhENC9EOUQ1NjkzQTkwNTExMUVDQTM2OTk2MTVDNEY5QUUwMi9PSWVzM2ZjY3Z2 U25VaDJFVWU3THJySlJudjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhBGe0C4VjnjjC/Kn5Vft+scXeheXMum9tv6WHRadkG3WWxw00tUGF xt2eWS6ZS1FeEjFPAgwVQPo3GSNYvwssC8ROv/ZLzaYh9F2H9m/ggfob0coQMXrZ LVV6i7mCEvB/zlnjzqwQRvrdep/Tpjq6OrxZcPcWdVq3mV9vNrklEdgZFZbusj+6 KMEoQzALTwH7+TCsZXE6Nd1Ziu2SHrjvyVdpERL9IJmStOfTDhkzlyTdTdNMzJZj kMAj+fkNXhLS7m9fxSJC+h6jYAjkd75RNT/A9iDXwwCdgAEkm7SU12obg/uPPjx4 WfXLjgyaaXUCsmyO+zM7Wx6fu+CD3Dt2 -----END CERTIFICATE-----Generated at Sat Dec 6 11:21:08 2025 by rpki-client