This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft File: OBfP4ApfGsw2O0cvT2nag761ZhM.mft (raw, json) Hash identifier: emKXGmVw10GlN2QmteTh/LScn6/3xM9dOCO1E9vsxVo= Subject key identifier: 83:56:27:79:48:23:34:CB:E9:13:50:56:1F:89:31:3E:88:80:78:21 Authority key identifier: 38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13 Certificate issuer: /CN=A91B9AB9/serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613 Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft Manifest number: E8 Signing time: Fri 05 Dec 2025 03:26:05 +0000 Manifest this update: Fri 05 Dec 2025 03:26:04 +0000 Manifest next update: Fri 12 Dec 2025 03:26:04 +0000 Files and hashes: 1: OBfP4ApfGsw2O0cvT2nag761ZhM.crl (hash: MB6rts2bVGckkNxQvVIwR1gDpllXLij5jerCRwW130A=) 2: A06AB21E6E8811EF95434073C4F9AE02.roa (hash: Aikvd4VQaZ5YWJuoaQst8o1un+A8abkdzu+IgmJpwMU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:26:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9AB9, serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613 Validity Not Before: Dec 5 03:26:04 2025 GMT Not After : Dec 12 03:26:04 2025 GMT Subject: CN=693250cd-bd8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2f:af:68:dc:c9:5a:fb:68:2f:b3:80:10:a4: 9b:3b:33:da:e4:b4:70:7e:a2:30:00:0e:07:e2:fd: 06:29:37:81:2b:23:7b:fe:76:90:d3:a8:c1:55:30: a6:ad:bc:2a:e7:cf:76:5c:1a:42:4a:ea:58:c0:b7: 25:fa:d6:ca:3e:2c:ec:32:35:ca:f8:63:3a:14:9d: 10:c3:be:8d:ab:cc:78:b8:ff:f0:f0:80:b6:bb:1a: 61:49:55:43:71:e1:59:a5:75:24:ff:28:c8:38:0c: c2:5a:cf:e1:f9:35:89:b1:15:58:8c:a0:19:7e:fc: e7:85:c4:9b:be:10:1c:d3:23:c4:37:58:71:9d:33: b1:95:48:65:3f:ef:c2:a5:93:bd:7c:69:c5:8f:b7: cf:bd:da:2e:11:d8:c0:62:b3:e3:60:37:6d:fd:8a: fc:c6:3a:c7:cb:dc:b7:7d:5b:e4:42:a0:11:7f:4d: ec:7d:61:7b:3c:33:13:fa:fd:d4:1c:9e:79:ad:7d: fa:42:a3:3a:1e:4d:c2:10:1d:de:52:6b:10:55:45: ba:4b:eb:f5:ee:7e:0a:c9:cf:01:c4:59:5f:c4:db: 0c:4f:6f:2d:c1:5a:6b:98:fa:3d:1e:93:5f:b5:b2: 1c:7a:b3:56:62:f9:3c:31:c3:f6:6c:a7:a7:57:36: 3e:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:56:27:79:48:23:34:CB:E9:13:50:56:1F:89:31:3E:88:80:78:21 X509v3 Authority Key Identifier: keyid:38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:41:66:91:2f:4d:71:62:06:43:af:34:4e:f1:51:d9:21:65: ce:f7:64:fa:45:c0:bb:c1:3b:e7:a0:07:af:b7:df:26:50:2f: 42:79:d9:54:25:c2:2c:ac:07:46:c9:e9:65:58:51:c7:ad:e8: bf:71:7f:9b:c3:de:f0:19:51:cd:aa:b6:22:c6:e1:de:f9:4a: 6b:74:24:a0:86:56:09:4c:4c:1a:94:85:d1:6d:63:bd:95:34: 5a:5f:3e:71:0f:f2:8f:15:a8:b7:b6:34:9a:f8:22:2c:f7:5c: fd:bd:5a:fe:9e:e6:13:73:75:f9:55:46:ff:99:90:17:37:64: 8e:41:8f:03:e0:fa:78:84:91:8d:9b:e8:38:b6:e4:af:23:0a: 19:f1:f6:d9:bf:ea:24:66:d0:dd:d5:24:a8:55:2e:77:23:80: a6:b2:c7:8f:8e:10:cc:46:63:bf:53:8d:ed:a5:d5:a3:5f:4a: b1:ca:1d:0b:f7:28:66:e4:c2:0a:1b:1b:88:87:00:44:63:8e: eb:85:09:cf:5f:3c:83:c1:49:be:f7:08:08:4c:be:a5:6b:99: 8b:0c:23:98:5c:a9:57:53:f2:fd:6f:e2:43:29:81:67:22:8d: 2a:7f:2f:5b:e0:8d:95:aa:eb:39:2a:0b:71:48:ac:33:08:18: cd:84:80:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlBQjkxMTAvBgNVBAUTKDM4MTdDRkUwMEE1RjFBQ0MzNjNCNDcyRjRGNjlEQTgz QkVCNTY2MTMwHhcNMjUxMjA1MDMyNjA0WhcNMjUxMjEyMDMyNjA0WjAYMRYwFAYD VQQDEw02OTMyNTBjZC1iZDhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtS+vaNzJWvtoL7OAEKSbOzPa5LRwfqIwAA4H4v0GKTeBKyN7/naQ06jBVTCm rbwq5892XBpCSupYwLcl+tbKPizsMjXK+GM6FJ0Qw76Nq8x4uP/w8IC2uxphSVVD ceFZpXUk/yjIOAzCWs/h+TWJsRVYjKAZfvznhcSbvhAc0yPEN1hxnTOxlUhlP+/C pZO9fGnFj7fPvdouEdjAYrPjYDdt/Yr8xjrHy9y3fVvkQqARf03sfWF7PDMT+v3U HJ55rX36QqM6Hk3CEB3eUmsQVUW6S+v17n4Kyc8BxFlfxNsMT28twVprmPo9HpNf tbIcerNWYvk8McP2bKenVzY+cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFINWJ3lI IzTL6RNQVh+JMT6IgHghMB8GA1UdIwQYMBaAFDgXz+AKXxrMNjtHL09p2oO+tWYT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUFCOS9EMTE4QzBCQzZF ODQxMUVGQTNDRDk4M0ZDNEY5QUUwMi9PQmZQNEFwZkdzdzJPMGN2VDJuYWc3NjFa aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CZlA0QXBmR3N3Mk8wY3ZUMm5hZzc2MVpoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUFCOS9EMTE4QzBCQzZFODQxMUVGQTNDRDk4M0ZDNEY5QUUwMi9PQmZQNEFwZkdz dzJPMGN2VDJuYWc3NjFaaE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKQWaRL01xYgZDrzRO8VHZIWXO92T6RcC7wTvnoAevt98mUC9CedlU JcIsrAdGyellWFHHrei/cX+bw97wGVHNqrYixuHe+UprdCSghlYJTEwalIXRbWO9 lTRaXz5xD/KPFai3tjSa+CIs91z9vVr+nuYTc3X5VUb/mZAXN2SOQY8D4Pp4hJGN m+g4tuSvIwoZ8fbZv+okZtDd1SSoVS53I4CmssePjhDMRmO/U43tpdWjX0qxyh0L 9yhm5MIKGxuIhwBEY47rhQnPXzyDwUm+9wgITL6la5mLDCOYXKlXU/L9b+JDKYFn Io0qfy9b4I2Vqus5KgtxSKwzCBjNhIBp -----END CERTIFICATE-----Generated at Sat Dec 6 19:06:05 2025 by rpki-client