This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB74D/D359568CA8DC11EB979DA50EC4F9AE02/OvCdKMpIepMmYxpr6b2b26oY2nU.mft File: OvCdKMpIepMmYxpr6b2b26oY2nU.mft (raw, json) Hash identifier: fsg/8xYwMtSA4BDqfbEWTCNuqgasYx+I2dG6eRyPkzk= Subject key identifier: 0B:EB:21:70:6A:14:F0:13:6A:4F:53:38:09:67:F5:24:DF:FA:1D:5E Authority key identifier: 3A:F0:9D:28:CA:48:7A:93:26:63:1A:6B:E9:BD:9B:DB:AA:18:DA:75 Certificate issuer: /CN=A91AB74D/serialNumber=3AF09D28CA487A9326631A6BE9BD9BDBAA18DA75 Certificate serial: 0673 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OvCdKMpIepMmYxpr6b2b26oY2nU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB74D/D359568CA8DC11EB979DA50EC4F9AE02/OvCdKMpIepMmYxpr6b2b26oY2nU.mft Manifest number: 0668 Signing time: Sat 06 Dec 2025 21:27:10 +0000 Manifest this update: Sat 06 Dec 2025 21:27:09 +0000 Manifest next update: Sat 13 Dec 2025 21:27:09 +0000 Files and hashes: 1: OvCdKMpIepMmYxpr6b2b26oY2nU.crl (hash: 8++zMKYScDwBKQSRRbQRp4aSru4jP9j5rNtEyDdVQqs=) 2: 1A704D8CADB511EBB5CFE734C4F9AE02.roa (hash: vcP/S0izUQbA7Z/0jbMqfJjGpHZIaNp2jddGsZhjHPI=) 3: 1B16F1A0ADB511EBB5CFE734C4F9AE02.roa (hash: EoEXlCI1GOehyvV1dOn2OebjZ7e0VJ5M5h2oFDhhyXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB74D/D359568CA8DC11EB979DA50EC4F9AE02/OvCdKMpIepMmYxpr6b2b26oY2nU.crl rsync://rpki.apnic.net/member_repository/A91AB74D/D359568CA8DC11EB979DA50EC4F9AE02/OvCdKMpIepMmYxpr6b2b26oY2nU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OvCdKMpIepMmYxpr6b2b26oY2nU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1651 (0x673) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB74D, serialNumber=3AF09D28CA487A9326631A6BE9BD9BDBAA18DA75 Validity Not Before: Dec 6 21:27:09 2025 GMT Not After : Dec 13 21:27:09 2025 GMT Subject: CN=69349fad-4874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:40:0c:c4:90:f9:0d:ae:54:a8:89:c2:6e:be: dd:34:06:f2:e6:17:ff:d4:42:71:49:44:d1:f0:41: 4c:1c:3c:56:8f:cc:f0:f7:e9:12:02:68:96:74:1f: cf:de:7b:54:94:23:26:be:54:0d:29:06:08:52:98: 47:b6:68:84:31:c5:dd:42:5d:07:6e:47:12:1e:a3: 71:5f:e6:f9:38:11:2c:ba:d3:bc:6d:96:9a:99:f1: 00:93:48:fb:dc:c8:69:9b:db:ad:df:57:44:f8:80: 78:86:0f:e3:b3:44:1e:8f:1a:7d:14:32:7c:41:ca: 23:c9:56:bb:a4:8c:95:f0:f1:41:6a:e7:ff:d8:da: 0a:2f:ac:bc:c0:1f:74:de:e2:55:8d:7d:39:03:fc: 59:80:21:ab:fa:1c:8b:43:35:33:63:06:ff:11:7c: 4d:53:ed:2c:81:1e:ce:83:fd:e7:c6:90:8a:23:71: c5:b4:97:73:98:15:cd:ba:7e:fa:cf:10:e8:df:d0: 4f:19:76:31:23:04:d4:40:73:4a:0b:27:df:39:91: 98:40:82:46:80:75:89:ac:09:cb:23:ea:3d:d7:1b: 5d:5c:b2:d9:8f:6e:7c:c4:9f:83:49:71:81:42:f6: 9b:a1:a8:66:2a:1b:f5:5d:cd:82:3d:fb:24:85:ef: ee:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:EB:21:70:6A:14:F0:13:6A:4F:53:38:09:67:F5:24:DF:FA:1D:5E X509v3 Authority Key Identifier: keyid:3A:F0:9D:28:CA:48:7A:93:26:63:1A:6B:E9:BD:9B:DB:AA:18:DA:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB74D/D359568CA8DC11EB979DA50EC4F9AE02/OvCdKMpIepMmYxpr6b2b26oY2nU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OvCdKMpIepMmYxpr6b2b26oY2nU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB74D/D359568CA8DC11EB979DA50EC4F9AE02/OvCdKMpIepMmYxpr6b2b26oY2nU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:e7:5d:b4:2c:cb:d1:65:83:02:e1:a2:bb:7c:7d:d4:92:39: 63:94:81:e2:c2:27:03:d9:20:73:35:ab:7b:04:89:83:e0:00: c5:55:eb:91:4d:ad:62:54:60:26:b1:77:29:3a:b5:56:5a:da: 2a:65:a4:e2:85:05:3c:25:c8:29:0a:91:d2:a0:4c:df:a6:08: 48:dd:91:3c:7d:1c:8e:77:41:0f:a2:fe:8f:57:c4:59:08:e7: f4:6c:e6:93:8d:5f:a2:4a:28:06:4a:d2:ea:5c:28:18:dc:2f: 49:d0:c9:6f:48:5c:0c:bf:16:07:ce:9a:50:73:25:0b:1c:72: e7:26:88:00:6a:e6:7f:74:1f:51:64:52:66:78:1c:c9:40:df: 41:fe:2d:96:6c:f9:8e:5f:5b:88:31:58:41:6e:6b:9e:f1:80: 15:7a:42:da:88:9d:cc:c9:d5:b0:e8:05:f4:6f:a3:6a:96:d2: 95:84:d1:e4:86:60:d2:92:d5:cf:ae:7b:44:92:74:57:9b:63: 13:c2:88:09:64:9a:0e:3a:99:50:ee:73:1f:25:62:d8:d1:58: b1:b7:9f:f1:1c:7c:9f:7a:e0:e8:35:e9:79:3f:3a:e9:99:50: 75:8b:ba:fa:12:91:ba:1b:72:5b:81:ae:88:46:e1:e7:55:04: de:66:3b:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NEQxMTAvBgNVBAUTKDNBRjA5RDI4Q0E0ODdBOTMyNjYzMUE2QkU5QkQ5QkRC QUExOERBNzUwHhcNMjUxMjA2MjEyNzA5WhcNMjUxMjEzMjEyNzA5WjAYMRYwFAYD VQQDEw02OTM0OWZhZC00ODc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3UAMxJD5Da5UqInCbr7dNAby5hf/1EJxSUTR8EFMHDxWj8zw9+kSAmiWdB/P 3ntUlCMmvlQNKQYIUphHtmiEMcXdQl0HbkcSHqNxX+b5OBEsutO8bZaamfEAk0j7 3Mhpm9ut31dE+IB4hg/js0Qejxp9FDJ8QcojyVa7pIyV8PFBauf/2NoKL6y8wB90 3uJVjX05A/xZgCGr+hyLQzUzYwb/EXxNU+0sgR7Og/3nxpCKI3HFtJdzmBXNun76 zxDo39BPGXYxIwTUQHNKCyffOZGYQIJGgHWJrAnLI+o91xtdXLLZj258xJ+DSXGB QvaboahmKhv1Xc2CPfskhe/uZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAvrIXBq FPATak9TOAln9STf+h1eMB8GA1UdIwQYMBaAFDrwnSjKSHqTJmMaa+m9m9uqGNp1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0RC9EMzU5NTY4Q0E4 REMxMUVCOTc5REE1MEVDNEY5QUUwMi9PdkNkS01wSWVwTW1ZeHByNmIyYjI2b1ky blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL092Q2RLTXBJZXBNbVl4cHI2YjJiMjZvWTJuVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qjc0RC9EMzU5NTY4Q0E4REMxMUVCOTc5REE1MEVDNEY5QUUwMi9PdkNkS01wSWVw TW1ZeHByNmIyYjI2b1kyblUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAR5120LMvRZYMC4aK7fH3UkjljlIHiwicD2SBzNat7BImD4ADFVeuR Ta1iVGAmsXcpOrVWWtoqZaTihQU8JcgpCpHSoEzfpghI3ZE8fRyOd0EPov6PV8RZ COf0bOaTjV+iSigGStLqXCgY3C9J0MlvSFwMvxYHzppQcyULHHLnJogAauZ/dB9R ZFJmeBzJQN9B/i2WbPmOX1uIMVhBbmue8YAVekLaiJ3MydWw6AX0b6NqltKVhNHk hmDSktXPrntEknRXm2MTwogJZJoOOplQ7nMfJWLY0Vixt5/xHHyfeuDoNel5Pzrp mVB1i7r6EpG6G3Jbga6IRuHnVQTeZjuJ -----END CERTIFICATE-----Generated at Sat Dec 6 23:15:10 2025 by rpki-client