This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft File: OhbEBL_tNHJEowpa__ZuSZKqKCE.mft (raw, json) Hash identifier: Cnr31LIHUdra7JSCHNko+NAsBDETf2CNQ+pFHkDLmMU= Subject key identifier: 4D:47:58:7D:E9:9A:C8:EF:96:7C:A8:59:87:25:77:F0:D8:83:F7:58 Authority key identifier: 3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21 Certificate issuer: /CN=A91A65C4/serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821 Certificate serial: 04A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft Manifest number: 04A2 Signing time: Thu 04 Dec 2025 22:30:23 +0000 Manifest this update: Thu 04 Dec 2025 22:30:22 +0000 Manifest next update: Thu 11 Dec 2025 22:30:22 +0000 Files and hashes: 1: OhbEBL_tNHJEowpa__ZuSZKqKCE.crl (hash: ohVpnSAkOP81i8yEEG6ApoAkriL1PX8+ppz8YgL7yBk=) 2: 9D77DCA4599A11ECA574BF52C4F9AE02.roa (hash: /fF1tdSaYFH2w1w+0HXHgYqEthaF4A0sGCD2uCBxpiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.crl rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:30:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1192 (0x4a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A65C4, serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821 Validity Not Before: Dec 4 22:30:22 2025 GMT Not After : Dec 11 22:30:22 2025 GMT Subject: CN=69320b7e-ec94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:05:e8:3a:5e:74:8a:df:4c:1e:8f:19:af:bc: c1:3e:1f:53:78:a7:d0:74:23:b0:0f:83:ed:3b:48: 1d:5f:b4:c2:41:70:75:9b:5c:75:3e:7c:fd:64:eb: e9:b5:6f:48:07:32:7f:65:23:9a:30:c2:f5:9b:8d: ef:29:b0:6a:f6:e7:33:9b:d1:31:5a:83:3b:68:90: 58:f1:a9:8f:73:0b:c4:ef:ef:59:22:53:3f:f2:18: 7e:d4:1d:72:1b:da:70:60:26:04:73:71:5c:59:5c: a1:7e:6d:74:db:78:c8:35:02:87:d9:aa:06:22:6b: 96:54:51:86:90:92:a0:17:4d:b6:95:9d:fe:dd:11: ac:83:76:59:20:21:dc:ce:f9:e4:21:5c:c0:c6:b0: d6:f4:04:47:e9:3d:af:84:82:6d:d7:ff:61:fe:22: 11:5e:82:59:2b:aa:79:14:fa:65:ce:c0:1c:6d:36: 78:5a:b6:c4:41:4f:5c:6c:71:21:b5:2d:e6:81:e0: 92:1d:13:93:a1:c3:79:14:cc:6d:30:89:f6:ca:3e: 60:c7:69:57:bd:60:d7:8b:dc:f7:7f:4a:21:60:7d: 40:0f:96:16:10:1c:19:34:da:a0:2b:b1:99:ce:88: 7d:c4:4c:70:2a:92:bf:ec:40:55:36:3e:68:99:bd: 27:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:47:58:7D:E9:9A:C8:EF:96:7C:A8:59:87:25:77:F0:D8:83:F7:58 X509v3 Authority Key Identifier: keyid:3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:e6:8e:8c:8e:1f:35:4f:b4:e2:85:a4:9b:4a:d3:12:e4:85: 08:bb:4e:fa:ab:4f:3e:33:fd:f5:e4:57:d7:88:0f:1e:b7:bf: 70:45:87:72:4e:35:83:92:3a:b8:a0:c8:d4:b3:fa:16:b3:6e: c9:e1:f7:ca:7a:a1:a2:62:ab:9c:d1:23:24:9f:14:17:59:a7: 28:04:dd:23:ae:77:31:d1:85:f2:a1:99:66:97:e2:97:96:de: 44:ce:e3:6d:0b:05:25:da:a6:db:d9:88:19:c4:95:49:f6:51: e9:29:87:39:a7:03:c9:3b:94:f9:12:db:10:62:bd:45:c3:65: fb:d4:26:27:dd:5f:be:ff:85:c5:b8:61:d2:39:0c:b5:db:02: 45:6b:18:38:e7:f4:ad:58:d6:16:d3:07:48:d0:f0:ec:9d:a2: 80:1a:f5:65:7b:cb:19:03:cd:fa:12:c2:98:41:ca:f6:58:47: 99:b5:2d:8b:41:51:b5:99:4f:51:26:21:c1:ad:ea:92:0d:89: 8a:4d:23:39:a3:82:8d:2f:d1:ff:d0:64:e1:26:80:3a:d6:e0: e3:44:a9:be:69:e6:32:1b:fc:45:25:72:7f:f8:c8:bd:44:eb: 5b:2e:47:8e:4f:8d:9a:bb:72:40:b5:43:10:4b:06:1b:02:8d: 99:1f:8f:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1QzQxMTAvBgNVBAUTKDNBMTZDNDA0QkZFRDM0NzI0NEEzMEE1QUZGRjY2RTQ5 OTJBQTI4MjEwHhcNMjUxMjA0MjIzMDIyWhcNMjUxMjExMjIzMDIyWjAYMRYwFAYD VQQDEw02OTMyMGI3ZS1lYzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9QXoOl50it9MHo8Zr7zBPh9TeKfQdCOwD4PtO0gdX7TCQXB1m1x1Pnz9ZOvp tW9IBzJ/ZSOaMML1m43vKbBq9uczm9ExWoM7aJBY8amPcwvE7+9ZIlM/8hh+1B1y G9pwYCYEc3FcWVyhfm1023jINQKH2aoGImuWVFGGkJKgF022lZ3+3RGsg3ZZICHc zvnkIVzAxrDW9ARH6T2vhIJt1/9h/iIRXoJZK6p5FPplzsAcbTZ4WrbEQU9cbHEh tS3mgeCSHROTocN5FMxtMIn2yj5gx2lXvWDXi9z3f0ohYH1AD5YWEBwZNNqgK7GZ zoh9xExwKpK/7EBVNj5omb0nQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE1HWH3p msjvlnyoWYcld/DYg/dYMB8GA1UdIwQYMBaAFDoWxAS/7TRyRKMKWv/2bkmSqigh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjVDNC8zRTNBNTUwMjU5 OTgxMUVDOTM5MUQ1NTBDNEY5QUUwMi9PaGJFQkxfdE5ISkVvd3BhX19adVNaS3FL Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09oYkVCTF90TkhKRW93cGFfX1p1U1pLcUtDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjVDNC8zRTNBNTUwMjU5OTgxMUVDOTM5MUQ1NTBDNEY5QUUwMi9PaGJFQkxfdE5I SkVvd3BhX19adVNaS3FLQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBB5o6Mjh81T7TihaSbStMS5IUIu076q08+M/315FfXiA8et79wRYdy TjWDkjq4oMjUs/oWs27J4ffKeqGiYquc0SMknxQXWacoBN0jrncx0YXyoZlml+KX lt5EzuNtCwUl2qbb2YgZxJVJ9lHpKYc5pwPJO5T5EtsQYr1Fw2X71CYn3V++/4XF uGHSOQy12wJFaxg45/StWNYW0wdI0PDsnaKAGvVle8sZA836EsKYQcr2WEeZtS2L QVG1mU9RJiHBreqSDYmKTSM5o4KNL9H/0GThJoA61uDjRKm+aeYyG/xFJXJ/+Mi9 ROtbLkeOT42au3JAtUMQSwYbAo2ZH49M -----END CERTIFICATE-----Generated at Sat Dec 6 22:24:57 2025 by rpki-client