This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft File: OQo4N6umkSos8p5hDaSVVd8sb6U.mft (raw, json) Hash identifier: PAKfKme49tTK8uVv92EbXYLjfMN3RB3NIV7lrd2s0Ag= Subject key identifier: 12:E2:76:67:F0:ED:84:0E:02:F4:1C:2D:4D:FE:BB:2B:E3:D6:CD:24 Authority key identifier: 39:0A:38:37:AB:A6:91:2A:2C:F2:9E:61:0D:A4:95:55:DF:2C:6F:A5 Certificate issuer: /CN=A91982B6/serialNumber=390A3837ABA6912A2CF29E610DA49555DF2C6FA5 Certificate serial: CB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft Manifest number: BE Signing time: Fri 05 Dec 2025 04:08:39 +0000 Manifest this update: Fri 05 Dec 2025 04:08:38 +0000 Manifest next update: Fri 12 Dec 2025 04:08:38 +0000 Files and hashes: 1: OQo4N6umkSos8p5hDaSVVd8sb6U.crl (hash: cqnaeGgEGy7IV9+tA1sBmrvOrrVbqVNvyHqU304iejk=) 2: 8CC6B54CB44011F0ACFB4D45C4F9AE02.roa (hash: dqRzvsYYzS0ot/6HGxMcWMe4B7L97QuQgSdCQiuHa2U=) 3: 4B34CDD888EB11F09EC0EE50C4F9AE02.roa (hash: p4wINUwzjfYN0Bo2oW/pH90dIns+xH2+FFOhnoxyjpY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.crl rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:08:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91982B6, serialNumber=390A3837ABA6912A2CF29E610DA49555DF2C6FA5 Validity Not Before: Dec 5 04:08:38 2025 GMT Not After : Dec 12 04:08:38 2025 GMT Subject: CN=69325ac7-ef23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:0f:a6:c0:5c:23:b8:6c:a5:1f:e1:74:8d:a4: c0:d8:6e:ad:db:20:33:f0:b8:f6:5f:68:09:4b:e2: 62:a4:64:ff:8f:e6:b1:88:4a:67:5c:ed:bf:f5:04: 4a:58:b7:ab:16:7f:b3:41:9a:92:80:98:08:9e:f4: c9:dd:94:04:37:ec:17:f7:01:53:ed:40:47:26:26: 3b:12:3c:46:f2:fb:b3:0e:87:dd:2e:ce:6d:4a:04: 1b:00:4d:bf:de:d1:77:1f:bc:7a:0e:65:02:91:b0: ce:fa:40:e5:4d:6f:f5:02:ce:40:21:75:fe:f1:c9: 50:8a:03:f0:d9:b4:a8:06:c4:26:85:19:da:8e:8a: d0:0b:1f:41:a8:1f:1b:e4:21:d3:a0:10:62:d5:b3: 82:cb:7b:c1:26:94:1a:9d:b3:91:26:27:c8:f6:92: 73:0f:08:ae:29:90:49:08:fd:0c:da:55:92:2f:25: 92:97:b9:a8:f8:5f:3d:cd:d0:32:10:4e:28:b2:9b: 94:65:b7:2e:e9:2b:f0:6a:fa:7d:b7:24:73:e7:a1: e1:71:47:5c:ad:06:c8:83:85:d0:49:fe:52:a4:bb: 4c:a5:21:9e:46:88:1a:28:03:68:9c:a2:39:13:c2: 8a:ba:44:3f:8f:1c:8a:a7:66:45:c1:22:fc:79:89: 8b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:E2:76:67:F0:ED:84:0E:02:F4:1C:2D:4D:FE:BB:2B:E3:D6:CD:24 X509v3 Authority Key Identifier: keyid:39:0A:38:37:AB:A6:91:2A:2C:F2:9E:61:0D:A4:95:55:DF:2C:6F:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:a8:09:68:c2:1f:3a:04:48:f0:95:36:9f:bc:b4:1e:2b:b0: 26:74:16:b2:5a:65:14:cb:b4:c4:0f:ea:2c:ac:8e:22:03:30: 71:94:77:e6:2b:4c:02:34:6b:d2:8d:03:69:de:79:06:23:ad: af:fa:f6:ae:80:fa:48:55:80:5d:42:b6:82:8e:4c:d2:5e:5a: dc:11:e9:43:83:9d:74:c4:3a:f4:d5:11:e4:27:bd:82:9f:c9: fc:72:ba:29:51:59:ae:f1:c5:6e:4a:64:3e:a5:23:c4:d5:8e: d2:8c:47:de:42:ed:f9:2f:2f:9e:f6:ec:60:98:6a:b9:2e:16: 81:19:b4:47:14:d8:ab:93:bb:7b:82:65:81:51:4f:bf:2b:ec: d4:1e:e0:48:6c:42:18:55:28:c3:c0:2e:b5:b8:1c:1a:11:2b: e4:ba:11:69:39:9e:85:70:20:ed:f4:29:ec:22:f3:c1:21:c8: 15:e1:28:27:f3:23:98:51:06:29:ef:6e:b2:8a:47:da:89:ec: 42:4a:0d:58:ef:41:ee:ab:9e:5b:71:cd:25:0b:ba:ec:40:25: 28:f3:cf:cc:1c:d0:6f:e8:ae:df:5a:76:ac:68:7c:bf:b8:70: 91:6d:75:76:6f:2e:a7:c1:ae:eb:6d:18:d3:b5:5b:5c:93:c7: 24:52:73:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgyQjYxMTAvBgNVBAUTKDM5MEEzODM3QUJBNjkxMkEyQ0YyOUU2MTBEQTQ5NTU1 REYyQzZGQTUwHhcNMjUxMjA1MDQwODM4WhcNMjUxMjEyMDQwODM4WjAYMRYwFAYD VQQDEw02OTMyNWFjNy1lZjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Q+mwFwjuGylH+F0jaTA2G6t2yAz8Lj2X2gJS+JipGT/j+axiEpnXO2/9QRK WLerFn+zQZqSgJgInvTJ3ZQEN+wX9wFT7UBHJiY7EjxG8vuzDofdLs5tSgQbAE2/ 3tF3H7x6DmUCkbDO+kDlTW/1As5AIXX+8clQigPw2bSoBsQmhRnajorQCx9BqB8b 5CHToBBi1bOCy3vBJpQanbORJifI9pJzDwiuKZBJCP0M2lWSLyWSl7mo+F89zdAy EE4ospuUZbcu6Svwavp9tyRz56HhcUdcrQbIg4XQSf5SpLtMpSGeRogaKANonKI5 E8KKukQ/jxyKp2ZFwSL8eYmL/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBLidmfw 7YQOAvQcLU3+uyvj1s0kMB8GA1UdIwQYMBaAFDkKODerppEqLPKeYQ2klVXfLG+l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODJCNi9ERTdFMzIxRUNC NTkxMUVGODY5MTVCNjFDNEY5QUUwMi9PUW80TjZ1bWtTb3M4cDVoRGFTVlZkOHNi NlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09RbzRONnVta1NvczhwNWhEYVNWVmQ4c2I2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODJCNi9ERTdFMzIxRUNCNTkxMUVGODY5MTVCNjFDNEY5QUUwMi9PUW80TjZ1bWtT b3M4cDVoRGFTVlZkOHNiNlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSqAlowh86BEjwlTafvLQeK7AmdBayWmUUy7TED+osrI4iAzBxlHfm K0wCNGvSjQNp3nkGI62v+vaugPpIVYBdQraCjkzSXlrcEelDg510xDr01RHkJ72C n8n8cropUVmu8cVuSmQ+pSPE1Y7SjEfeQu35Ly+e9uxgmGq5LhaBGbRHFNirk7t7 gmWBUU+/K+zUHuBIbEIYVSjDwC61uBwaESvkuhFpOZ6FcCDt9CnsIvPBIcgV4Sgn 8yOYUQYp726yikfaiexCSg1Y70Huq55bcc0lC7rsQCUo88/MHNBv6K7fWnasaHy/ uHCRbXV2by6nwa7rbRjTtVtck8ckUnOc -----END CERTIFICATE-----Generated at Sun Dec 7 01:51:57 2025 by rpki-client