This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft File: Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft (raw, json) Hash identifier: O8eLCozGKPq1SY1yuVv3sH+sc444BrL/dNP3hXdBqA0= Subject key identifier: B7:59:07:A4:FC:10:96:24:4E:08:B0:1D:EA:0E:08:80:C3:F1:9C:24 Authority key identifier: 3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C Certificate issuer: /CN=A91ACD4D/serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Certificate serial: 1696 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft Manifest number: 1684 Signing time: Thu 04 Dec 2025 16:21:14 +0000 Manifest this update: Thu 04 Dec 2025 16:21:13 +0000 Manifest next update: Thu 11 Dec 2025 16:21:13 +0000 Files and hashes: 1: Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl (hash: d+Ix0iInewg0qnpDy53fY+wGaVNsu+UXDykix8HcTRU=) 2: 268ECB3ED5BD11E894FFC250C4F9AE02.roa (hash: sJz6G/xstqw6p4gPUJK4gZEDHHsTgFb0oSV9wpMQ7es=) 3: 3DE1DBC4D81011EC892E8A79C4F9AE02.roa (hash: bW1tXZTK5POt+zZDGbG4YDsox5kPeg50QnLxOuLANNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 16:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5782 (0x1696) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD4D, serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Validity Not Before: Dec 4 16:21:13 2025 GMT Not After : Dec 11 16:21:13 2025 GMT Subject: CN=6931b4fa-7726 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a5:1f:9d:cf:eb:a2:0c:b5:95:98:ed:16:16: 14:22:77:52:8b:15:a4:88:2c:2a:6e:7b:c4:01:6c: a5:d7:e5:9f:b1:f2:bc:73:a6:55:e7:96:5b:f0:83: 9e:f2:f4:fe:24:b3:26:53:f2:1a:1f:f7:12:65:32: 03:db:b6:13:df:cf:46:f3:07:65:c5:b2:72:a4:b3: b1:c9:81:12:aa:dd:dd:47:93:67:79:0b:af:67:15: 76:ce:43:a4:c2:ab:b6:d6:ab:2e:d7:ec:a5:ce:34: 62:33:81:39:33:39:3e:c2:96:54:4c:17:67:20:d5: 5c:f0:1f:41:b3:dc:3b:00:d7:f2:c6:52:4e:39:ed: 2a:75:df:b5:e8:4b:41:61:06:68:31:9d:0f:e6:3b: 14:6b:ab:4d:30:16:af:5f:53:8d:86:53:1c:ee:17: 96:3c:14:64:a6:71:ec:42:20:ae:3e:59:d0:4c:a7: e2:b0:a4:70:cb:2b:3a:d5:8d:2a:cc:b5:bb:63:d2: 65:69:b7:6b:09:05:33:c8:d3:d3:54:f1:c0:7a:ef: 00:55:6d:19:e6:8d:f8:78:4d:7c:24:40:af:81:37: 8c:ed:ad:d6:8c:fb:ff:af:df:de:3e:f4:57:84:43: 3f:6f:e7:e5:99:dc:d7:41:0e:1d:65:de:e3:f2:3b: ba:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:59:07:A4:FC:10:96:24:4E:08:B0:1D:EA:0E:08:80:C3:F1:9C:24 X509v3 Authority Key Identifier: keyid:3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:8e:19:90:f0:63:6c:71:ee:c2:e0:a6:3a:5a:84:aa:41:de: 99:df:72:4e:10:c0:b9:a2:01:b1:3c:8a:ce:45:3e:28:07:59: 7b:a3:2c:2c:0f:9b:ce:82:46:f4:3b:f1:01:ba:f7:c1:f8:e7: 53:c8:8c:4f:a5:a5:3e:1c:a6:0a:fb:04:05:9f:64:d8:12:0b: 55:5c:70:99:85:06:22:a9:aa:bc:f3:4f:19:f6:7e:2e:fe:f8: be:d1:54:64:16:07:a1:27:20:a0:e6:51:61:4d:95:76:50:fd: 09:7e:05:e8:e7:6d:66:1e:f3:fa:7a:13:6f:be:cf:bd:a2:ef: 88:6c:a9:e2:2d:ef:96:fa:50:87:e7:2b:c9:a1:f7:8d:84:96: a7:69:65:14:13:d8:02:a7:83:f3:89:50:ac:99:b5:12:99:05: c2:11:5b:97:75:12:7d:30:93:1f:10:64:be:76:1c:39:fb:53: 0d:6d:1d:ad:d9:4f:16:96:4f:60:c1:78:42:87:33:86:d1:58: b3:63:eb:80:ff:68:88:a4:70:8b:08:93:61:de:49:e6:78:6c: 4d:bf:ec:7e:5d:de:79:81:0e:a9:d5:dd:10:52:2e:57:f5:2e: 99:cd:36:81:d6:a3:a9:94:e6:94:cf:98:9f:5a:45:f1:a9:a7: cd:38:db:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFpYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENEQxMTAvBgNVBAUTKDNBNDZGQjBGNDBGNjlENUUxREI3NUQyODUxRjA0MEMx OUY2NkYyMkMwHhcNMjUxMjA0MTYyMTEzWhcNMjUxMjExMTYyMTEzWjAYMRYwFAYD VQQDEw02OTMxYjRmYS03NzI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyaUfnc/rogy1lZjtFhYUIndSixWkiCwqbnvEAWyl1+WfsfK8c6ZV55Zb8IOe 8vT+JLMmU/IaH/cSZTID27YT389G8wdlxbJypLOxyYESqt3dR5NneQuvZxV2zkOk wqu21qsu1+ylzjRiM4E5Mzk+wpZUTBdnINVc8B9Bs9w7ANfyxlJOOe0qdd+16EtB YQZoMZ0P5jsUa6tNMBavX1ONhlMc7heWPBRkpnHsQiCuPlnQTKfisKRwyys61Y0q zLW7Y9JlabdrCQUzyNPTVPHAeu8AVW0Z5o34eE18JECvgTeM7a3WjPv/r9/ePvRX hEM/b+flmdzXQQ4dZd7j8ju6FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLdZB6T8 EJYkTgiwHeoOCIDD8ZwkMB8GA1UdIwQYMBaAFDpG+w9A9p1eHbddKFHwQMGfZvIs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q0RC8xMzdEMDBENDE2 MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5WNGR0MTBvVWZCQXdaOW04 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rYjdEMEQyblY0ZHQxMG9VZkJBd1o5bThpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0Q0RC8xMzdEMDBENDE2MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5W NGR0MTBvVWZCQXdaOW04aXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2jhmQ8GNsce7C4KY6WoSqQd6Z33JOEMC5ogGxPIrORT4oB1l7oyws D5vOgkb0O/EBuvfB+OdTyIxPpaU+HKYK+wQFn2TYEgtVXHCZhQYiqaq8808Z9n4u /vi+0VRkFgehJyCg5lFhTZV2UP0JfgXo521mHvP6ehNvvs+9ou+IbKniLe+W+lCH 5yvJofeNhJanaWUUE9gCp4PziVCsmbUSmQXCEVuXdRJ9MJMfEGS+dhw5+1MNbR2t 2U8Wlk9gwXhChzOG0VizY+uA/2iIpHCLCJNh3knmeGxNv+x+Xd55gQ6p1d0QUi5X 9S6ZzTaB1qOplOaUz5ifWkXxqafNONta -----END CERTIFICATE-----Generated at Sat Dec 6 08:15:23 2025 by rpki-client