This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft File: o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft (raw, json) Hash identifier: poPFm1w7SlQbXkgp8Ce1ernKGaDsrrrxi8Co9XIB+LU= Subject key identifier: 01:F2:E7:02:91:BB:0B:AE:98:4C:71:1F:AB:C6:61:FA:9C:CF:0C:72 Authority key identifier: A3:55:61:DA:45:A9:55:F0:2D:12:2A:0D:88:E8:C7:62:39:ED:F9:20 Certificate issuer: /CN=A91AFB4B/serialNumber=A35561DA45A955F02D122A0D88E8C76239EDF920 Certificate serial: 038E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1Vh2kWpVfAtEioNiOjHYjnt-SA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft Manifest number: 038A Signing time: Sat 06 Dec 2025 23:25:17 +0000 Manifest this update: Sat 06 Dec 2025 23:25:17 +0000 Manifest next update: Sat 13 Dec 2025 23:25:17 +0000 Files and hashes: 1: o1Vh2kWpVfAtEioNiOjHYjnt-SA.crl (hash: lytudqzFkxa0BRQJ9NUimrbjb9Avb8UC7RzMRfEWHJM=) 2: E2F2A470C76411EC85896F5EC4F9AE02.roa (hash: hSEOk4wSvcqkKWJUmunbhE8NC6T2P49jnE2eWh8/b4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.crl rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1Vh2kWpVfAtEioNiOjHYjnt-SA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 23:25:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 910 (0x38e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFB4B, serialNumber=A35561DA45A955F02D122A0D88E8C76239EDF920 Validity Not Before: Dec 6 23:25:17 2025 GMT Not After : Dec 13 23:25:17 2025 GMT Subject: CN=6934bb5d-2632 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:b7:2a:10:ac:e4:e3:6f:7f:6f:87:49:03:30: fd:99:1f:c5:0b:92:47:f5:f4:1c:7e:3a:c1:a4:16: 30:26:8f:35:72:ec:5d:08:29:d2:8d:22:be:49:44: 1b:de:2f:e4:8a:19:40:04:0a:9b:b6:2d:1d:39:87: 25:79:ff:77:73:e6:20:72:b3:a9:61:e6:4d:32:51: 3e:93:46:ac:34:de:97:61:9e:19:70:f3:0b:29:42: fc:94:97:3f:57:f0:a6:b1:5f:eb:8b:f3:4d:6b:1a: a9:6f:9a:f5:33:a5:69:c5:86:d2:b2:0e:b2:6f:11: b7:3f:c7:4c:66:c4:61:bc:7d:0b:d3:1e:ee:89:2b: b8:89:ed:4a:da:60:82:f0:71:6e:d9:16:64:ec:0c: e2:61:02:df:db:a3:4c:be:b7:6a:05:e5:a2:bf:2f: f4:c0:81:8c:0a:24:21:52:b9:9f:40:2e:18:df:60: 52:3f:7d:1b:c1:1e:0e:30:9f:26:a2:a3:e8:bb:03: ee:c7:61:21:f1:ad:57:1b:5c:4d:91:98:3f:23:ac: 84:a7:31:4f:a5:89:36:b4:fb:07:c9:08:77:5c:f2: c9:1a:0b:51:11:49:ab:14:d6:2f:00:51:54:30:a5: 94:98:80:95:03:00:2c:b0:b4:55:c2:cf:73:6b:ed: 54:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:F2:E7:02:91:BB:0B:AE:98:4C:71:1F:AB:C6:61:FA:9C:CF:0C:72 X509v3 Authority Key Identifier: keyid:A3:55:61:DA:45:A9:55:F0:2D:12:2A:0D:88:E8:C7:62:39:ED:F9:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1Vh2kWpVfAtEioNiOjHYjnt-SA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFB4B/8E162430C76011EC8E7D9629C4F9AE02/o1Vh2kWpVfAtEioNiOjHYjnt-SA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:7b:4d:bb:44:be:f7:4c:1c:ba:f9:44:fa:01:96:fc:29:45: b2:40:94:51:b7:96:5c:51:21:22:68:71:f0:3a:0f:fe:20:1a: 23:0f:b5:4b:61:2a:77:72:06:81:79:08:46:96:7e:48:99:4c: d1:14:19:82:b2:d6:49:9a:c0:a0:4b:cc:b2:50:f7:da:41:c8: 1f:f3:f0:f1:32:eb:45:c7:6c:ed:88:6f:9f:cd:b5:14:0f:cc: b6:f7:07:3d:a3:4b:83:27:dc:7a:e4:4a:63:1e:3e:b3:b8:cd: d0:b6:8f:6f:7e:41:c3:dc:89:d2:d6:50:c9:1d:c6:30:e3:43: ca:ba:f6:4b:74:cd:d1:5e:52:6d:6e:61:88:4e:6e:46:e0:22: 4b:2e:35:ff:b7:7c:8b:1b:06:7d:df:37:54:59:d0:e5:d5:b2: 50:17:08:24:b9:ea:27:db:f0:e4:da:f4:62:33:5d:87:c5:6e: 19:4e:9d:f2:cd:9d:a1:33:eb:fa:2d:9a:6d:5d:f9:5c:be:ea: 42:67:6b:65:aa:1f:17:72:1d:78:86:10:a9:9e:06:8a:09:60: 05:9b:be:fb:0d:a1:ba:3b:c5:c0:e6:c6:57:03:72:03:f5:61: ff:94:54:ba:bf:9e:f7:0c:e0:7a:61:c7:35:e9:c6:52:b7:62: 77:e5:93:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCNEIxMTAvBgNVBAUTKEEzNTU2MURBNDVBOTU1RjAyRDEyMkEwRDg4RThDNzYy MzlFREY5MjAwHhcNMjUxMjA2MjMyNTE3WhcNMjUxMjEzMjMyNTE3WjAYMRYwFAYD VQQDEw02OTM0YmI1ZC0yNjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy7cqEKzk429/b4dJAzD9mR/FC5JH9fQcfjrBpBYwJo81cuxdCCnSjSK+SUQb 3i/kihlABAqbti0dOYclef93c+YgcrOpYeZNMlE+k0asNN6XYZ4ZcPMLKUL8lJc/ V/CmsV/ri/NNaxqpb5r1M6VpxYbSsg6ybxG3P8dMZsRhvH0L0x7uiSu4ie1K2mCC 8HFu2RZk7AziYQLf26NMvrdqBeWivy/0wIGMCiQhUrmfQC4Y32BSP30bwR4OMJ8m oqPouwPux2Eh8a1XG1xNkZg/I6yEpzFPpYk2tPsHyQh3XPLJGgtREUmrFNYvAFFU MKWUmICVAwAssLRVws9za+1U4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAHy5wKR uwuumExxH6vGYfqczwxyMB8GA1UdIwQYMBaAFKNVYdpFqVXwLRIqDYjox2I57fkg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkI0Qi84RTE2MjQzMEM3 NjAxMUVDOEU3RDk2MjlDNEY5QUUwMi9vMVZoMmtXcFZmQXRFaW9OaU9qSFlqbnQt U0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28xVmgya1dwVmZBdEVpb05pT2pIWWpudC1TQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkI0Qi84RTE2MjQzMEM3NjAxMUVDOEU3RDk2MjlDNEY5QUUwMi9vMVZoMmtXcFZm QXRFaW9OaU9qSFlqbnQtU0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBte027RL73TBy6+UT6AZb8KUWyQJRRt5ZcUSEiaHHwOg/+IBojD7VL YSp3cgaBeQhGln5ImUzRFBmCstZJmsCgS8yyUPfaQcgf8/DxMutFx2ztiG+fzbUU D8y29wc9o0uDJ9x65EpjHj6zuM3Qto9vfkHD3InS1lDJHcYw40PKuvZLdM3RXlJt bmGITm5G4CJLLjX/t3yLGwZ93zdUWdDl1bJQFwgkueon2/Dk2vRiM12HxW4ZTp3y zZ2hM+v6LZptXflcvupCZ2tlqh8Xch14hhCpngaKCWAFm777DaG6O8XA5sZXA3ID 9WH/lFS6v573DOB6Ycc16cZSt2J35ZNx -----END CERTIFICATE-----Generated at Sun Dec 7 03:32:23 2025 by rpki-client