This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft File: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft (raw, json) Hash identifier: MSBw3qQWV44TIMdsXGSHvADa3zvJM5ZNzysIc1U392c= Subject key identifier: DD:76:15:8B:C0:C5:2B:7C:32:C7:1D:02:1E:F5:0F:0E:B4:67:63:24 Authority key identifier: A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 Certificate issuer: /CN=A91B65AC/serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Certificate serial: 014B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft Manifest number: 0147 Signing time: Fri 05 Dec 2025 02:28:47 +0000 Manifest this update: Fri 05 Dec 2025 02:28:46 +0000 Manifest next update: Fri 12 Dec 2025 02:28:46 +0000 Files and hashes: 1: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl (hash: SyB4ZL28YQ5+ZnqTIahmCYC3tPgT8+18zPbg+tj2MsI=) 2: 48005D9EE5AE11EE9ECE4023C4F9AE02.roa (hash: MrPqjHlMCM5b67h4IqKRm22f4PuZXIPWzDsfWbxNY08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:28:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 331 (0x14b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65AC, serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Validity Not Before: Dec 5 02:28:46 2025 GMT Not After : Dec 12 02:28:46 2025 GMT Subject: CN=6932435f-65fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:79:a0:b3:72:75:44:5e:cc:48:31:ff:04:5c: 89:a5:f6:48:29:62:f4:27:af:ae:fb:db:53:fe:43: 34:d9:93:07:b8:34:d7:4d:f9:87:bd:c8:cc:cc:9d: ad:b2:15:3f:96:e8:3f:d7:a3:a0:0f:4d:42:75:fd: bf:58:c0:54:00:92:e5:93:a0:2c:72:27:d5:6b:a4: fe:e5:f5:65:11:a0:18:6a:cd:6e:31:35:44:63:bd: 66:b2:86:2e:71:f4:24:34:4f:06:66:45:5b:fb:db: 21:90:c1:40:9e:49:e0:3b:40:82:cf:4d:d3:f3:8e: b6:6e:41:06:30:ac:55:9c:9c:8e:4a:71:f1:2c:a7: 09:d2:0f:07:65:e4:ef:d5:e1:3d:2e:28:21:5e:b4: 02:15:d7:37:18:02:e3:9b:6b:8f:ac:c2:44:23:90: e4:4a:88:e8:05:b2:75:e0:27:7b:e3:0a:c9:68:3c: 61:b8:2c:11:9f:96:41:ec:2e:98:f1:5e:44:6a:db: 21:d8:d5:93:1c:f7:c6:97:54:56:2d:5b:84:7d:bc: 3c:57:d2:ae:c6:54:70:43:94:61:ed:ad:d0:02:6e: 96:c9:3d:0f:da:97:79:b8:57:6b:f3:69:05:4a:2d: fc:fc:1f:e3:d9:9d:0f:d5:62:91:8a:1f:78:41:66: 75:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:76:15:8B:C0:C5:2B:7C:32:C7:1D:02:1E:F5:0F:0E:B4:67:63:24 X509v3 Authority Key Identifier: keyid:A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:0e:88:b7:67:84:03:bc:25:0e:af:14:d0:9a:f6:43:3e:cd: 47:bd:16:5d:8c:83:92:26:f0:a6:f5:6a:fb:a8:56:c3:66:7a: 2a:44:ab:3a:74:f9:0a:dd:00:62:f0:f4:c8:86:de:39:b6:ab: ae:6f:0c:79:4d:da:20:9d:94:ae:e5:e3:f3:f9:ba:89:79:e2: dc:65:cf:ef:21:ef:aa:dc:c8:43:ec:25:ca:22:3b:60:2a:c4: f0:4b:a4:4a:77:06:84:3d:75:47:5a:57:61:7c:5e:de:2c:b6: e2:46:cc:aa:3c:bb:02:82:e8:d0:cc:6f:e7:01:42:3f:c6:0f: 33:75:f2:50:d1:db:57:6c:5e:08:7b:88:44:69:1a:1d:d3:ce: 00:c6:ca:7b:c4:d1:cc:31:51:3a:d3:ef:d8:1f:ee:6c:79:3e: b0:e7:f8:c9:9f:35:e4:40:86:11:8d:36:1c:72:9b:86:18:91: 8a:90:f5:72:57:4f:6f:9d:e2:88:3b:61:8d:74:a9:3b:af:db: 97:30:d6:69:2e:3e:a5:a2:f6:62:fd:0c:59:ed:ba:b6:8f:a9: 93:ae:3e:09:21:89:e9:d7:05:55:bc:24:be:77:42:3b:dc:45: a0:09:bd:80:cd:58:8f:65:6d:ac:06:59:4f:cc:d9:42:17:9b: 29:a5:ae:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1QUMxMTAvBgNVBAUTKEExMEY1NzgzQzhGOUE2RDk0RDI5QjRBQTkwQzU2RTAx NkJCNTE0NTYwHhcNMjUxMjA1MDIyODQ2WhcNMjUxMjEyMDIyODQ2WjAYMRYwFAYD VQQDEw02OTMyNDM1Zi02NWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Hmgs3J1RF7MSDH/BFyJpfZIKWL0J6+u+9tT/kM02ZMHuDTXTfmHvcjMzJ2t shU/lug/16OgD01Cdf2/WMBUAJLlk6AscifVa6T+5fVlEaAYas1uMTVEY71msoYu cfQkNE8GZkVb+9shkMFAnkngO0CCz03T8462bkEGMKxVnJyOSnHxLKcJ0g8HZeTv 1eE9LighXrQCFdc3GALjm2uPrMJEI5DkSojoBbJ14Cd74wrJaDxhuCwRn5ZB7C6Y 8V5Eatsh2NWTHPfGl1RWLVuEfbw8V9KuxlRwQ5Rh7a3QAm6WyT0P2pd5uFdr82kF Si38/B/j2Z0P1WKRih94QWZ1gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN12FYvA xSt8MscdAh71Dw60Z2MkMB8GA1UdIwQYMBaAFKEPV4PI+abZTSm0qpDFbgFrtRRW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVBQy9DQjc0RjhCRUUx RTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0bE5LYlNxa01WdUFXdTFG RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29ROVhnOGo1cHRsTktiU3FrTVZ1QVd1MUZGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVBQy9DQjc0RjhCRUUxRTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0 bE5LYlNxa01WdUFXdTFGRlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvDoi3Z4QDvCUOrxTQmvZDPs1HvRZdjIOSJvCm9Wr7qFbDZnoqRKs6 dPkK3QBi8PTIht45tquubwx5TdognZSu5ePz+bqJeeLcZc/vIe+q3MhD7CXKIjtg KsTwS6RKdwaEPXVHWldhfF7eLLbiRsyqPLsCgujQzG/nAUI/xg8zdfJQ0dtXbF4I e4hEaRod084Axsp7xNHMMVE60+/YH+5seT6w5/jJnzXkQIYRjTYccpuGGJGKkPVy V09vneKIO2GNdKk7r9uXMNZpLj6lovZi/QxZ7bq2j6mTrj4JIYnp1wVVvCS+d0I7 3EWgCb2AzViPZW2sBllPzNlCF5sppa4S -----END CERTIFICATE-----Generated at Sun Dec 7 03:23:57 2025 by rpki-client