This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft File: o5jf1NOXXquW_TgDOWgkbkdeKLM.mft (raw, json) Hash identifier: aTODy4jWAveHTyGmUk+w2sgfTyzpYAZO+kmugAImFR4= Subject key identifier: 7B:36:C5:3E:50:80:50:65:1D:4F:59:68:39:F0:72:16:17:F2:BF:D7 Authority key identifier: A3:98:DF:D4:D3:97:5E:AB:96:FD:38:03:39:68:24:6E:47:5E:28:B3 Certificate issuer: /CN=A91B915D/serialNumber=A398DFD4D3975EAB96FD38033968246E475E28B3 Certificate serial: 044C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5jf1NOXXquW_TgDOWgkbkdeKLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft Manifest number: 0447 Signing time: Thu 04 Dec 2025 22:42:44 +0000 Manifest this update: Thu 04 Dec 2025 22:42:44 +0000 Manifest next update: Thu 11 Dec 2025 22:42:44 +0000 Files and hashes: 1: o5jf1NOXXquW_TgDOWgkbkdeKLM.crl (hash: mLOWoNIploTAkgWmmvm+tJ6fCdH2F2ee137y5SnPNRE=) 2: 8CA3BAEC7DCB11EC99806E25C4F9AE02.roa (hash: 7VcZosPp1uH1LHkRjpyCPhzaiPyFOlncH9YUjxzCpg4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.crl rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5jf1NOXXquW_TgDOWgkbkdeKLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:42:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1100 (0x44c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B915D, serialNumber=A398DFD4D3975EAB96FD38033968246E475E28B3 Validity Not Before: Dec 4 22:42:44 2025 GMT Not After : Dec 11 22:42:44 2025 GMT Subject: CN=69320e64-ba69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:58:dd:32:ba:ab:26:9e:29:ba:2f:ac:b4:4d: 02:1e:73:25:60:a3:be:6b:ca:27:4e:f0:38:1e:77: 6d:9b:f0:e5:7f:aa:66:cf:03:25:33:33:8f:56:b6: ab:57:ae:64:88:06:31:37:68:8e:e5:97:68:d6:36: 3e:5e:f3:34:0d:a0:27:d3:ff:e7:ed:f0:ff:d4:bb: 11:42:38:d2:7c:1c:6c:fe:1e:80:a5:2d:e7:8b:84: 8e:9e:26:00:7d:3f:72:a1:86:5b:d3:7e:56:8e:b2: e9:1b:d4:e3:92:72:2e:3a:54:54:6e:4b:64:11:02: a8:09:0c:86:ec:3c:ce:66:95:30:f6:44:ce:69:26: 48:d8:e4:d2:80:a4:7f:3f:dd:ea:32:67:63:5b:44: 33:16:03:fd:63:94:33:2d:ee:9d:14:07:d1:cc:cf: 1f:29:51:8e:e3:ff:9f:76:d8:f3:38:94:57:5a:f1: 3a:38:0b:1a:5a:d1:44:a7:1a:56:90:14:95:67:ea: e8:ea:7f:a0:1d:b2:34:af:0c:bf:66:50:05:45:cb: 49:73:bc:12:6a:ee:49:87:db:a7:71:82:b7:bc:ad: a0:73:7d:21:59:8d:4a:b3:12:3b:2b:8a:ff:92:06: d0:ff:3e:72:c6:db:f1:f9:32:68:9d:9b:be:cc:ec: 56:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:36:C5:3E:50:80:50:65:1D:4F:59:68:39:F0:72:16:17:F2:BF:D7 X509v3 Authority Key Identifier: keyid:A3:98:DF:D4:D3:97:5E:AB:96:FD:38:03:39:68:24:6E:47:5E:28:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5jf1NOXXquW_TgDOWgkbkdeKLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption eb:12:b9:7a:50:5b:98:8f:6e:46:a2:45:aa:c6:5b:ac:4e:76: 0d:8e:3e:ab:87:03:3f:3a:39:85:dc:10:11:a5:04:3a:34:53: db:9b:20:81:ab:6a:4c:a9:b6:f4:69:8c:1a:5b:f4:6e:27:e5: 38:39:f7:30:c9:ce:b7:e2:a4:32:4c:ad:8b:6f:84:ae:cb:e8: e2:51:d9:0a:6e:14:17:96:ca:f1:a3:ed:8e:86:ee:c1:b9:5a: e8:f8:3c:57:73:00:f2:8f:6f:93:f9:48:99:96:7d:88:81:f7: 83:0b:5b:cc:16:c7:c7:1e:70:f4:ca:66:7f:8f:8f:5b:97:3f: 95:7e:a8:98:f0:8a:54:f9:c9:d5:14:54:3d:a0:43:2e:4c:ec: cb:06:0f:be:74:e1:ee:cd:b3:fc:5e:47:fd:95:dd:ed:f0:b2: 89:f3:eb:93:bc:af:1d:0d:92:1f:b2:b3:e6:1f:c7:d0:85:cf: af:a5:fb:dc:19:7c:02:8c:4a:df:12:3a:d3:d6:89:04:81:c6: 07:cd:cc:f8:b8:11:67:ca:cc:c0:8e:eb:29:fa:58:37:bf:6a: 7f:cb:01:e1:04:b2:95:58:51:d0:5a:bf:35:6c:24:76:48:bd: 31:f0:42:9f:6d:6d:b4:a5:08:78:15:2d:37:23:0c:50:e2:8f: 01:8b:ec:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkxNUQxMTAvBgNVBAUTKEEzOThERkQ0RDM5NzVFQUI5NkZEMzgwMzM5NjgyNDZF NDc1RTI4QjMwHhcNMjUxMjA0MjI0MjQ0WhcNMjUxMjExMjI0MjQ0WjAYMRYwFAYD VQQDEw02OTMyMGU2NC1iYTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApFjdMrqrJp4pui+stE0CHnMlYKO+a8onTvA4Hndtm/Dlf6pmzwMlMzOPVrar V65kiAYxN2iO5Zdo1jY+XvM0DaAn0//n7fD/1LsRQjjSfBxs/h6ApS3ni4SOniYA fT9yoYZb035WjrLpG9TjknIuOlRUbktkEQKoCQyG7DzOZpUw9kTOaSZI2OTSgKR/ P93qMmdjW0QzFgP9Y5QzLe6dFAfRzM8fKVGO4/+fdtjzOJRXWvE6OAsaWtFEpxpW kBSVZ+ro6n+gHbI0rwy/ZlAFRctJc7wSau5Jh9uncYK3vK2gc30hWY1KsxI7K4r/ kgbQ/z5yxtvx+TJonZu+zOxWUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHs2xT5Q gFBlHU9ZaDnwchYX8r/XMB8GA1UdIwQYMBaAFKOY39TTl16rlv04AzloJG5HXiiz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTE1RC83MTA5RUZDNDdE QzkxMUVDQkJGQjZGMjRDNEY5QUUwMi9vNWpmMU5PWFhxdVdfVGdET1dna2JrZGVL TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL281amYxTk9YWHF1V19UZ0RPV2drYmtkZUtMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTE1RC83MTA5RUZDNDdEQzkxMUVDQkJGQjZGMjRDNEY5QUUwMi9vNWpmMU5PWFhx dVdfVGdET1dna2JrZGVLTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDrErl6UFuYj25GokWqxlusTnYNjj6rhwM/OjmF3BARpQQ6NFPbmyCB q2pMqbb0aYwaW/RuJ+U4Ofcwyc634qQyTK2Lb4Suy+jiUdkKbhQXlsrxo+2Ohu7B uVro+DxXcwDyj2+T+UiZln2IgfeDC1vMFsfHHnD0ymZ/j49blz+VfqiY8IpU+cnV FFQ9oEMuTOzLBg++dOHuzbP8Xkf9ld3t8LKJ8+uTvK8dDZIfsrPmH8fQhc+vpfvc GXwCjErfEjrT1okEgcYHzcz4uBFnyszAjusp+lg3v2p/ywHhBLKVWFHQWr81bCR2 SL0x8EKfbW20pQh4FS03IwxQ4o8Bi+yc -----END CERTIFICATE-----Generated at Sat Dec 6 20:06:36 2025 by rpki-client