This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft File: oKMiStDIKz-aYvNHrKP5RdsI8rA.mft (raw, json) Hash identifier: lrLXFDz4rHi6DgXOrblD52TFi22KY3CpMt3Lu5yy15A= Subject key identifier: C0:76:54:BF:4D:AC:25:19:7B:42:6C:99:C3:74:E0:70:DE:6A:F0:88 Authority key identifier: A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 Certificate issuer: /CN=A91B80BD/serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Certificate serial: 30BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft Manifest number: 308A Signing time: Sat 06 Dec 2025 15:15:43 +0000 Manifest this update: Sat 06 Dec 2025 15:15:42 +0000 Manifest next update: Sat 13 Dec 2025 15:15:42 +0000 Files and hashes: 1: oKMiStDIKz-aYvNHrKP5RdsI8rA.crl (hash: PKDcSjqeCnsnduQqDpTStgeZsnJAByuLZ4iWUzPy6tU=) 2: 583C1F6854F611E79DF7E643C4F9AE02.roa (hash: 1eHb69O06VCoxBVFTjIxU1eZxUsYuasvDB2d3Sv1+IY=) 3: 915E51B8F3BE11ED8B9B1450C4F9AE02.roa (hash: Q3pwtlHxQOfBNfjg0rXQ1DaKhtCgPEj+Sbwz9SrcaHA=) 4: 4C72E61CB0EC11E5A6934B42C4F9AE02.roa (hash: wILFdeIGXMZ8VMyQoHGFHEc5EcgVL0MxaSOGHfY+WMQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:15:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12475 (0x30bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80BD, serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Validity Not Before: Dec 6 15:15:42 2025 GMT Not After : Dec 13 15:15:42 2025 GMT Subject: CN=6934489e-5e16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:02:45:34:6b:69:e6:d1:a9:97:a0:96:68:5a: e0:c9:14:ea:43:4f:d6:69:f1:61:32:99:8b:08:e6: 90:b7:ac:80:76:4a:6f:2b:4f:11:e8:ec:f8:5f:9f: ae:8d:db:86:31:e4:6d:cc:50:1f:0e:d3:fd:85:e4: 06:a7:eb:e2:15:6d:b6:e6:2a:1c:dd:9c:41:9a:20: 12:9e:1e:eb:e8:4f:bd:88:17:81:cd:cb:39:82:7c: 6a:d9:e2:fa:22:c8:6c:cc:21:dc:66:cf:92:36:52: 10:6b:6a:6e:8f:d2:7e:8a:d4:ac:90:51:d2:59:29: bf:4f:a7:d2:e1:76:69:9b:af:f1:0f:5c:c1:ee:fc: e9:bd:bf:38:10:87:7a:00:51:49:7f:73:30:01:89: b5:34:22:fd:a0:86:5b:c6:ee:5c:4a:c6:99:f4:02: bb:67:88:d9:52:36:f5:40:77:70:19:c1:b7:be:93: d7:6a:74:b9:e4:cf:d5:21:ea:95:90:c2:32:69:fa: 1b:be:a8:b5:73:e0:27:c2:27:4a:10:b9:fd:e5:15: 0d:c4:dc:ef:d9:0b:91:4f:86:99:e5:8e:7a:53:b8: 50:78:ca:1f:e7:45:7a:57:2f:a9:a0:d7:31:20:93: e6:79:0e:05:5b:fb:0a:bc:3a:dd:54:e2:e3:7f:e3: a5:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:76:54:BF:4D:AC:25:19:7B:42:6C:99:C3:74:E0:70:DE:6A:F0:88 X509v3 Authority Key Identifier: keyid:A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:b6:41:be:64:76:db:06:78:4d:f3:bf:9a:5a:cb:26:85:06: b9:06:86:07:a1:97:6f:07:a5:ab:3d:23:0e:cb:54:46:f1:27: d9:d5:8f:cc:19:bc:36:c8:c9:91:f2:e4:ce:bb:b0:fd:90:ec: 52:46:85:b3:b6:79:a1:2c:69:43:0c:8b:ee:62:8a:a0:81:d3: ee:8f:59:d6:02:61:7f:8d:10:af:7d:52:3d:70:e0:65:a5:fd: 02:32:7e:60:29:ff:e5:a6:d1:ff:ed:9c:7c:e9:1e:9a:e6:48: c2:1b:79:64:ae:70:6f:45:df:bf:eb:fc:17:8f:f5:95:b8:e5: 3d:34:28:85:17:fc:42:49:31:af:09:cd:d7:3c:9d:e5:88:39: 97:2d:ff:c1:c6:d6:41:eb:38:ee:ab:04:ba:e6:c8:5e:67:f7: 7a:cd:cb:c2:5b:c0:07:0d:ef:b9:60:91:04:e0:9a:3c:bd:75: 6b:a9:a4:1b:9f:6b:9e:f2:aa:d9:9c:a0:ee:be:c8:0d:5f:d5: 41:de:f2:12:da:28:d9:0f:12:7f:d3:9f:7c:fb:52:91:2d:4b: d2:4b:2b:ec:a2:5b:31:ef:77:e2:ca:4f:26:f9:10:f6:9e:9d: 2d:d2:ed:1a:ef:c7:59:2b:05:ad:ad:d3:8d:59:83:ab:c5:1f: 85:8c:01:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMLswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQkQxMTAvBgNVBAUTKEEwQTMyMjRBRDBDODJCM0Y5QTYyRjM0N0FDQTNGOTQ1 REIwOEYyQjAwHhcNMjUxMjA2MTUxNTQyWhcNMjUxMjEzMTUxNTQyWjAYMRYwFAYD VQQDEw02OTM0NDg5ZS01ZTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqAJFNGtp5tGpl6CWaFrgyRTqQ0/WafFhMpmLCOaQt6yAdkpvK08R6Oz4X5+u jduGMeRtzFAfDtP9heQGp+viFW225ioc3ZxBmiASnh7r6E+9iBeBzcs5gnxq2eL6 IshszCHcZs+SNlIQa2puj9J+itSskFHSWSm/T6fS4XZpm6/xD1zB7vzpvb84EId6 AFFJf3MwAYm1NCL9oIZbxu5cSsaZ9AK7Z4jZUjb1QHdwGcG3vpPXanS55M/VIeqV kMIyafobvqi1c+AnwidKELn95RUNxNzv2QuRT4aZ5Y56U7hQeMof50V6Vy+poNcx IJPmeQ4FW/sKvDrdVOLjf+Ol3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMB2VL9N rCUZe0JsmcN04HDeavCIMB8GA1UdIwQYMBaAFKCjIkrQyCs/mmLzR6yj+UXbCPKw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBCRC9CNUE2MzZEOEZF NUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6LWFZdk5IcktQNVJkc0k4 ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LTWlTdERJS3otYVl2TkhyS1A1UmRzSThyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBCRC9CNUE2MzZEOEZFNUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6 LWFZdk5IcktQNVJkc0k4ckEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZtkG+ZHbbBnhN87+aWssmhQa5BoYHoZdvB6WrPSMOy1RG8SfZ1Y/M Gbw2yMmR8uTOu7D9kOxSRoWztnmhLGlDDIvuYoqggdPuj1nWAmF/jRCvfVI9cOBl pf0CMn5gKf/lptH/7Zx86R6a5kjCG3lkrnBvRd+/6/wXj/WVuOU9NCiFF/xCSTGv Cc3XPJ3liDmXLf/BxtZB6zjuqwS65sheZ/d6zcvCW8AHDe+5YJEE4Jo8vXVrqaQb n2ue8qrZnKDuvsgNX9VB3vIS2ijZDxJ/0598+1KRLUvSSyvsolsx73fiyk8m+RD2 np0t0u0a78dZKwWtrdONWYOrxR+FjAGt -----END CERTIFICATE-----Generated at Sun Dec 7 09:02:06 2025 by rpki-client