This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft File: oCcZWkgg89cmSk1X7pqdTCoQySM.mft (raw, json) Hash identifier: ZKQHPEeNsMWlqYh9tueDpVIhzE9RVukQSvcKKUOGyvU= Subject key identifier: AA:7B:7F:C8:90:A1:9F:71:D9:4B:56:97:B1:D2:C7:40:5E:20:05:F6 Authority key identifier: A0:27:19:5A:48:20:F3:D7:26:4A:4D:57:EE:9A:9D:4C:2A:10:C9:23 Certificate issuer: /CN=A91C1621/serialNumber=A027195A4820F3D7264A4D57EE9A9D4C2A10C923 Certificate serial: B3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft Manifest number: B0 Signing time: Sat 06 Dec 2025 14:16:02 +0000 Manifest this update: Sat 06 Dec 2025 14:16:01 +0000 Manifest next update: Sat 13 Dec 2025 14:16:01 +0000 Files and hashes: 1: oCcZWkgg89cmSk1X7pqdTCoQySM.crl (hash: 5Djx5IOeK4wJshhR1/e7KyQkpt3apDC4/kqkTrdxMMk=) 2: 81E4D4A2053011F09C73001FC4F9AE02.roa (hash: BG8Qcl3ND1x5a+MIHh/xpmjjxkGhO2Fu+dtsOmd2KRo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.crl rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:16:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 179 (0xb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1621, serialNumber=A027195A4820F3D7264A4D57EE9A9D4C2A10C923 Validity Not Before: Dec 6 14:16:01 2025 GMT Not After : Dec 13 14:16:01 2025 GMT Subject: CN=69343aa2-0e0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:5f:e9:44:16:36:ab:a3:15:65:ef:d6:dd:88: 05:fe:43:8a:26:c4:78:73:70:16:0a:f5:4e:c5:cb: c5:03:2d:04:14:71:b7:3d:52:ad:84:ca:86:ab:47: 9f:1e:d9:7d:05:d2:ba:0e:4c:31:c7:ec:eb:90:d8: a8:ea:78:24:e1:2c:7d:a1:da:0b:fb:4e:ae:77:c5: d2:07:cc:c6:91:9c:22:ff:1b:d1:0a:5d:2f:66:80: 71:d6:bd:49:2b:06:18:1b:aa:ea:69:36:9a:cf:40: 64:54:80:1a:d2:3f:ff:6f:2b:ef:75:c9:b4:9e:84: 66:4e:29:15:d8:45:e9:dd:b6:4e:1f:c7:ab:47:2c: 8f:60:ff:1f:e2:af:71:53:cd:56:39:0f:8e:40:50: 3f:dc:33:80:89:b1:4a:e6:2d:c0:5a:08:db:9e:9e: c6:d1:97:cf:be:ee:23:29:13:35:40:b9:85:36:03: 8f:af:84:62:32:0c:e9:62:2a:a0:5d:57:d9:e9:72: 6e:a5:1b:0c:85:39:9a:43:ed:fd:0b:43:62:fe:04: ff:cd:d1:71:c9:ba:95:6a:93:69:ef:97:5d:35:33: 0a:01:03:ca:97:77:f8:9c:24:df:68:4a:ca:2e:25: 3a:f4:7e:78:47:a4:8b:72:dd:58:ee:a5:59:29:9e: 7b:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:7B:7F:C8:90:A1:9F:71:D9:4B:56:97:B1:D2:C7:40:5E:20:05:F6 X509v3 Authority Key Identifier: keyid:A0:27:19:5A:48:20:F3:D7:26:4A:4D:57:EE:9A:9D:4C:2A:10:C9:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oCcZWkgg89cmSk1X7pqdTCoQySM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1621/35EDA92ECF0D11EF92F1EC36C4F9AE02/oCcZWkgg89cmSk1X7pqdTCoQySM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:5a:68:20:83:00:73:9f:df:fb:1c:c2:a3:81:25:d7:89:32: b7:0d:cb:e5:89:c3:fc:3c:8a:94:ce:28:2f:ed:c0:37:ce:51: b3:7d:79:1d:d6:1a:ff:25:a1:0c:a0:31:17:6f:be:f1:5e:5e: 40:88:68:d9:92:82:da:03:36:df:33:f5:22:12:6c:cb:6c:2a: c6:1b:f1:ae:71:25:04:6d:3f:5c:e7:c8:77:b4:61:f6:ed:41: 0c:22:c6:24:e6:da:0e:ac:4a:8a:46:aa:f1:3b:78:fa:b8:d1: d7:88:80:d9:e7:b9:4e:d8:7b:9d:21:3c:be:d6:c2:9a:bd:7b: ef:77:e5:98:cc:2d:1b:c3:7f:7d:61:59:7c:a2:07:a1:c1:99: 38:63:30:47:35:06:db:14:d0:37:00:03:57:43:66:5b:87:0f: 87:b6:af:a0:60:3c:e1:b5:11:d1:87:d5:7a:21:a4:36:b6:b9: ce:67:4b:08:19:79:70:b1:aa:5b:f1:92:0f:e7:79:f9:e6:0f: 1f:84:35:aa:d6:e1:d9:9f:12:4b:ed:82:71:d2:f7:60:f2:21: 99:01:ff:e5:21:ea:7f:c0:33:69:8f:5f:80:30:bb:1c:ad:6b: 1f:12:87:ff:e8:8e:d9:74:e6:50:2f:42:f4:ff:21:ec:53:03: 28:46:49:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE2MjExMTAvBgNVBAUTKEEwMjcxOTVBNDgyMEYzRDcyNjRBNEQ1N0VFOUE5RDRD MkExMEM5MjMwHhcNMjUxMjA2MTQxNjAxWhcNMjUxMjEzMTQxNjAxWjAYMRYwFAYD VQQDEw02OTM0M2FhMi0wZTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz1/pRBY2q6MVZe/W3YgF/kOKJsR4c3AWCvVOxcvFAy0EFHG3PVKthMqGq0ef Htl9BdK6Dkwxx+zrkNio6ngk4Sx9odoL+06ud8XSB8zGkZwi/xvRCl0vZoBx1r1J KwYYG6rqaTaaz0BkVIAa0j//byvvdcm0noRmTikV2EXp3bZOH8erRyyPYP8f4q9x U81WOQ+OQFA/3DOAibFK5i3AWgjbnp7G0ZfPvu4jKRM1QLmFNgOPr4RiMgzpYiqg XVfZ6XJupRsMhTmaQ+39C0Ni/gT/zdFxybqVapNp75ddNTMKAQPKl3f4nCTfaErK LiU69H54R6SLct1Y7qVZKZ575wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKp7f8iQ oZ9x2UtWl7HSx0BeIAX2MB8GA1UdIwQYMBaAFKAnGVpIIPPXJkpNV+6anUwqEMkj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTYyMS8zNUVEQTkyRUNG MEQxMUVGOTJGMUVDMzZDNEY5QUUwMi9vQ2NaV2tnZzg5Y21TazFYN3BxZFRDb1F5 U00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29DY1pXa2dnODljbVNrMVg3cHFkVENvUXlTTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTYyMS8zNUVEQTkyRUNGMEQxMUVGOTJGMUVDMzZDNEY5QUUwMi9vQ2NaV2tnZzg5 Y21TazFYN3BxZFRDb1F5U00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbWmgggwBzn9/7HMKjgSXXiTK3DcvlicP8PIqUzigv7cA3zlGzfXkd 1hr/JaEMoDEXb77xXl5AiGjZkoLaAzbfM/UiEmzLbCrGG/GucSUEbT9c58h3tGH2 7UEMIsYk5toOrEqKRqrxO3j6uNHXiIDZ57lO2HudITy+1sKavXvvd+WYzC0bw399 YVl8ogehwZk4YzBHNQbbFNA3AANXQ2Zbhw+Htq+gYDzhtRHRh9V6IaQ2trnOZ0sI GXlwsapb8ZIP53n55g8fhDWq1uHZnxJL7YJx0vdg8iGZAf/lIep/wDNpj1+AMLsc rWsfEof/6I7ZdOZQL0L0/yHsUwMoRkn6 -----END CERTIFICATE-----Generated at Sat Dec 6 20:28:58 2025 by rpki-client