This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft File: OhpAdHHRvxyhUl8h997PWmoqZNg.mft (raw, json) Hash identifier: 1AhpWUiC3UeG9OB+TWMOg/ur5GAPe1k7pHkpsKaGoRw= Subject key identifier: 78:B2:F8:BA:D4:E6:0D:07:7B:6E:32:DD:11:C4:35:19:6F:B4:84:8F Authority key identifier: 3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 Certificate issuer: /CN=A91B7B23/serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Certificate serial: 0182 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft Manifest number: 017A Signing time: Fri 05 Dec 2025 02:00:59 +0000 Manifest this update: Fri 05 Dec 2025 02:00:58 +0000 Manifest next update: Fri 12 Dec 2025 02:00:58 +0000 Files and hashes: 1: OhpAdHHRvxyhUl8h997PWmoqZNg.crl (hash: WE/PzvKY8cFUBwSGVp9nDa28UoDCiEzYfbaX1jhi+VQ=) 2: 7F6FE074B84811F091A01766C4F9AE02.roa (hash: Xgl6MR7u5W2huYUpGaD0galzVLmRgghmaKbymP8qDb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 386 (0x182) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7B23, serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Validity Not Before: Dec 5 02:00:58 2025 GMT Not After : Dec 12 02:00:58 2025 GMT Subject: CN=69323cda-f01b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:31:29:5f:1e:da:9a:50:b4:4d:98:b4:2b:6e: 1a:22:fa:fd:eb:0c:b0:fc:46:8d:07:d2:75:18:69: 48:df:46:01:22:d0:95:d5:ce:4d:f3:4f:64:29:cc: 1a:59:cf:a8:ac:36:4d:13:6f:46:4a:b5:8c:9e:0f: fb:d1:b2:38:6c:62:0c:15:24:a3:57:a4:e0:56:3d: a1:95:5e:b6:18:a4:c9:0f:72:76:89:20:e8:dd:a7: 5a:91:5e:95:58:74:5f:4b:e0:eb:ef:87:57:c2:8b: b2:fe:f2:b0:4d:2b:76:42:7c:6f:bb:fd:e6:b6:dd: e5:50:43:4f:96:cd:53:6c:09:5e:c8:4b:e3:90:b0: d1:62:14:33:17:1b:d0:8b:ce:56:fb:54:b7:eb:0d: 6b:4b:32:5a:28:68:0d:d1:31:9a:44:c9:37:c4:99: 63:f8:cd:39:30:ed:e9:6a:57:a7:f3:bf:b7:6d:2e: 16:d9:73:1f:da:78:f2:f2:ac:e0:c3:fa:f1:9e:91: ee:6b:f8:6f:9c:19:bb:09:5a:36:3f:da:dc:87:fc: 77:bc:4a:03:90:91:17:73:cb:e8:c3:12:27:cd:75: 6e:5d:f9:7b:83:ef:90:80:d2:26:fe:f9:65:ed:5c: 4e:4f:4a:c3:3b:85:38:a3:84:64:f6:eb:f2:9a:37: a1:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:B2:F8:BA:D4:E6:0D:07:7B:6E:32:DD:11:C4:35:19:6F:B4:84:8F X509v3 Authority Key Identifier: keyid:3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:9b:30:59:bd:cf:98:38:f0:41:ce:43:0e:d4:0f:71:a3:af: a1:a4:30:27:36:0c:34:97:a9:61:20:c4:e2:06:74:6f:c4:13: 58:cf:af:ab:90:27:cc:de:fb:87:5b:b9:5e:14:4b:1b:6b:12: 7c:3a:2d:42:ee:1e:3c:86:20:ed:62:81:ff:af:97:e6:b8:5a: a5:25:ac:3d:8b:a0:73:e9:45:2b:e6:1e:a4:99:7e:b7:44:67: ba:e8:48:b5:a3:bf:f1:4a:e9:1e:5d:b6:d6:76:2c:3d:3f:6a: 48:e5:cf:49:2e:e9:a6:9e:ab:49:a3:69:9d:4f:05:58:38:4f: 80:6b:6a:ce:ae:54:d5:20:d9:9b:13:c1:a9:63:05:a2:8d:3d: ca:ac:ff:58:de:cc:ca:f3:05:a4:72:a5:b0:b8:e8:aa:b6:6c: 3c:aa:c1:95:f7:6d:f1:b4:3a:51:b9:3e:b9:22:ca:13:10:7c: e9:e7:b4:04:9c:b0:0d:7b:95:80:7f:3c:d8:c6:ef:a2:52:05: 42:ba:e4:d3:2d:4d:93:b3:fe:ce:91:0b:d7:8f:ec:50:10:16: 6d:7b:5b:ed:0c:cb:8e:9a:ba:40:52:9a:be:3d:19:40:e5:16: d2:14:4c:9e:c0:28:e5:d8:4c:bd:0c:8c:8e:c1:b6:6c:5d:a5: 24:b6:19:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdCMjMxMTAvBgNVBAUTKDNBMUE0MDc0NzFEMUJGMUNBMTUyNUYyMUY3REVDRjVB NkEyQTY0RDgwHhcNMjUxMjA1MDIwMDU4WhcNMjUxMjEyMDIwMDU4WjAYMRYwFAYD VQQDEw02OTMyM2NkYS1mMDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3jEpXx7amlC0TZi0K24aIvr96wyw/EaNB9J1GGlI30YBItCV1c5N809kKcwa Wc+orDZNE29GSrWMng/70bI4bGIMFSSjV6TgVj2hlV62GKTJD3J2iSDo3adakV6V WHRfS+Dr74dXwouy/vKwTSt2Qnxvu/3mtt3lUENPls1TbAleyEvjkLDRYhQzFxvQ i85W+1S36w1rSzJaKGgN0TGaRMk3xJlj+M05MO3palen87+3bS4W2XMf2njy8qzg w/rxnpHua/hvnBm7CVo2P9rch/x3vEoDkJEXc8vowxInzXVuXfl7g++QgNIm/vll 7VxOT0rDO4U4o4Rk9uvymjehcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHiy+LrU 5g0He24y3RHENRlvtISPMB8GA1UdIwQYMBaAFDoaQHRx0b8coVJfIffez1pqKmTY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0IyMy83NTQ1RjAzQTk3 RDMxMUVFQTIzQzY2MEJDNEY5QUUwMi9PaHBBZEhIUnZ4eWhVbDhoOTk3UFdtb3Fa TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ocEFkSEhSdnh5aFVsOGg5OTdQV21vcVpOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0IyMy83NTQ1RjAzQTk3RDMxMUVFQTIzQzY2MEJDNEY5QUUwMi9PaHBBZEhIUnZ4 eWhVbDhoOTk3UFdtb3FaTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALmzBZvc+YOPBBzkMO1A9xo6+hpDAnNgw0l6lhIMTiBnRvxBNYz6+r kCfM3vuHW7leFEsbaxJ8Oi1C7h48hiDtYoH/r5fmuFqlJaw9i6Bz6UUr5h6kmX63 RGe66Ei1o7/xSukeXbbWdiw9P2pI5c9JLummnqtJo2mdTwVYOE+Aa2rOrlTVINmb E8GpYwWijT3KrP9Y3szK8wWkcqWwuOiqtmw8qsGV923xtDpRuT65IsoTEHzp57QE nLANe5WAfzzYxu+iUgVCuuTTLU2Ts/7OkQvXj+xQEBZte1vtDMuOmrpAUpq+PRlA 5RbSFEyewCjl2Ey9DIyOwbZsXaUkthnj -----END CERTIFICATE-----Generated at Sat Dec 6 22:42:21 2025 by rpki-client