This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.mft File: o2UtnlTpZGiyMEeTcxf6Ts17Nkg.mft (raw, json) Hash identifier: 0lkMXpt8tgM2a/ls8PULtM0NWTQsF3VTKOmnWNsHIvA= Subject key identifier: 95:6B:22:D8:16:B1:C1:5F:07:D0:3D:29:58:4E:0D:5A:9C:3C:C0:7B Authority key identifier: A3:65:2D:9E:54:E9:64:68:B2:30:47:93:73:17:FA:4E:CD:7B:36:48 Certificate issuer: /CN=A91A36A7/serialNumber=A3652D9E54E96468B23047937317FA4ECD7B3648 Certificate serial: 0643 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.mft Manifest number: 063C Signing time: Sat 06 Dec 2025 21:34:47 +0000 Manifest this update: Sat 06 Dec 2025 21:34:46 +0000 Manifest next update: Sat 13 Dec 2025 21:34:46 +0000 Files and hashes: 1: o2UtnlTpZGiyMEeTcxf6Ts17Nkg.crl (hash: qWWF4FGN6MEAnU7aluu6MBI207OwOdAfKGRFcYL1hAk=) 2: F0CA090EB94A11EBAF5BDD5AC4F9AE02.roa (hash: AxnCXioU+pzcVhOQczSiGNqFZn1BtxYji3/Mt/svcQU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.crl rsync://rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:34:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1603 (0x643) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A36A7, serialNumber=A3652D9E54E96468B23047937317FA4ECD7B3648 Validity Not Before: Dec 6 21:34:46 2025 GMT Not After : Dec 13 21:34:46 2025 GMT Subject: CN=6934a177-7cb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:83:c6:7a:a8:94:a1:83:8e:1f:81:eb:17:74: cd:49:99:b6:1e:84:c4:41:a1:8d:95:40:d8:fb:44: af:57:a5:69:16:cf:06:31:ce:ef:e5:99:19:fa:58: cb:98:c1:42:d4:6a:b2:8f:1c:74:d1:93:48:d4:04: 9a:a1:8d:92:2f:d9:d5:cc:8d:84:ef:cf:1f:a6:7d: 49:77:0c:a5:92:3e:e9:da:d2:98:18:c8:d9:ba:45: 73:fd:4f:4f:7c:11:87:b9:ee:86:aa:a5:ff:a6:07: 02:0a:6e:fb:26:67:83:de:af:d9:31:5f:bb:1b:c9: 8f:a8:28:4b:a0:2b:7a:32:55:91:f5:ba:ac:90:f0: 17:99:f5:ca:29:d5:91:46:2e:14:6b:21:ad:e0:3d: 5c:b8:ac:6f:f1:b0:3e:7b:1b:54:b2:a9:c7:52:b3: a7:1f:c7:b0:f1:9d:c1:b4:1a:d7:ae:f1:07:70:98: 9c:c7:0d:e3:c3:75:f7:16:35:f4:8f:11:b8:b8:21: f9:33:0b:af:99:b7:e9:23:a3:62:73:c6:d3:2c:97: 86:68:14:29:77:ee:3f:3e:9f:f2:a7:6c:df:29:f2: cb:66:2d:92:2e:75:cd:5a:c7:07:12:f6:c1:ab:2a: c4:08:39:78:df:8c:a3:d9:90:17:24:4d:61:2f:73: c7:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:6B:22:D8:16:B1:C1:5F:07:D0:3D:29:58:4E:0D:5A:9C:3C:C0:7B X509v3 Authority Key Identifier: keyid:A3:65:2D:9E:54:E9:64:68:B2:30:47:93:73:17:FA:4E:CD:7B:36:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:fb:f5:e8:0f:c2:04:33:41:1a:67:0d:7f:c5:de:1b:4a:95: 14:dd:38:bd:93:a5:30:bf:9d:ab:79:91:9a:5e:01:2c:2b:b7: 44:20:26:6c:e9:2d:cf:b5:8b:01:29:72:43:e9:1f:99:87:07: f2:8f:f2:d4:ab:7d:a0:4f:25:b1:b6:64:2b:fa:5c:44:b1:85: f8:85:14:f3:d4:01:e6:26:5a:8f:40:3d:c9:1e:20:3c:9a:52: f1:be:27:82:9a:61:f3:88:f8:d9:a3:4a:de:7d:94:90:b1:10: ff:33:0f:30:01:7e:c4:25:ed:77:db:53:17:51:02:02:32:e4: f0:72:66:a1:7b:1e:5e:8d:9c:1f:d6:de:31:02:95:a0:1b:70: fa:7f:f2:a7:6b:e7:22:99:6d:7b:7c:ac:03:af:c9:27:3e:4d: 60:08:f1:46:83:9c:46:d1:35:d2:fa:ae:53:be:4e:e0:07:68: af:80:02:ab:d8:4a:70:2d:37:a4:86:ac:2d:c0:5b:da:9a:15: e1:26:79:80:9b:3b:ad:b6:d7:8e:6d:69:3b:2b:f4:ac:16:5c: 61:b1:ff:86:71:0c:94:a9:b2:35:8c:98:05:42:2d:80:f0:37: 69:e1:4f:c1:63:6b:ef:56:62:98:27:62:0c:25:c9:3d:2c:b0: 47:f7:43:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM2QTcxMTAvBgNVBAUTKEEzNjUyRDlFNTRFOTY0NjhCMjMwNDc5MzczMTdGQTRF Q0Q3QjM2NDgwHhcNMjUxMjA2MjEzNDQ2WhcNMjUxMjEzMjEzNDQ2WjAYMRYwFAYD VQQDEw02OTM0YTE3Ny03Y2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1IPGeqiUoYOOH4HrF3TNSZm2HoTEQaGNlUDY+0SvV6VpFs8GMc7v5ZkZ+ljL mMFC1Gqyjxx00ZNI1ASaoY2SL9nVzI2E788fpn1Jdwylkj7p2tKYGMjZukVz/U9P fBGHue6GqqX/pgcCCm77JmeD3q/ZMV+7G8mPqChLoCt6MlWR9bqskPAXmfXKKdWR Ri4UayGt4D1cuKxv8bA+extUsqnHUrOnH8ew8Z3BtBrXrvEHcJicxw3jw3X3FjX0 jxG4uCH5MwuvmbfpI6Nic8bTLJeGaBQpd+4/Pp/yp2zfKfLLZi2SLnXNWscHEvbB qyrECDl434yj2ZAXJE1hL3PHCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJVrItgW scFfB9A9KVhODVqcPMB7MB8GA1UdIwQYMBaAFKNlLZ5U6WRosjBHk3MX+k7NezZI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzZBNy84QUE2NUFGQ0I5 NDkxMUVCQkJCMzI1NUFDNEY5QUUwMi9vMlV0bmxUcFpHaXlNRWVUY3hmNlRzMTdO a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28yVXRubFRwWkdpeU1FZVRjeGY2VHMxN05rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzZBNy84QUE2NUFGQ0I5NDkxMUVCQkJCMzI1NUFDNEY5QUUwMi9vMlV0bmxUcFpH aXlNRWVUY3hmNlRzMTdOa2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1+/XoD8IEM0EaZw1/xd4bSpUU3Ti9k6Uwv52reZGaXgEsK7dEICZs 6S3PtYsBKXJD6R+Zhwfyj/LUq32gTyWxtmQr+lxEsYX4hRTz1AHmJlqPQD3JHiA8 mlLxvieCmmHziPjZo0refZSQsRD/Mw8wAX7EJe1321MXUQICMuTwcmahex5ejZwf 1t4xApWgG3D6f/Kna+cimW17fKwDr8knPk1gCPFGg5xG0TXS+q5Tvk7gB2ivgAKr 2EpwLTekhqwtwFvamhXhJnmAmzuttteObWk7K/SsFlxhsf+GcQyUqbI1jJgFQi2A 8Ddp4U/BY2vvVmKYJ2IMJck9LLBH90MV -----END CERTIFICATE-----Generated at Sun Dec 7 08:31:42 2025 by rpki-client