This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft File: o7CyBZyzB2t17aMkt2UH08KVUoM.mft (raw, json) Hash identifier: pc3uayg4BVrO+grvyBT0W/xYdAAdZofR7PvqcePjXuo= Subject key identifier: 79:02:1F:B5:C8:BA:30:A1:94:03:54:AB:AF:EC:24:71:7D:2E:7C:C7 Authority key identifier: A3:B0:B2:05:9C:B3:07:6B:75:ED:A3:24:B7:65:07:D3:C2:95:52:83 Certificate issuer: /CN=A91C2AAE/serialNumber=A3B0B2059CB3076B75EDA324B76507D3C2955283 Certificate serial: 0A8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7CyBZyzB2t17aMkt2UH08KVUoM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft Manifest number: 0A81 Signing time: Sat 06 Dec 2025 18:50:16 +0000 Manifest this update: Sat 06 Dec 2025 18:50:15 +0000 Manifest next update: Sat 13 Dec 2025 18:50:15 +0000 Files and hashes: 1: o7CyBZyzB2t17aMkt2UH08KVUoM.crl (hash: P3/Xd0d3Qxeb60QJCVG5A02P4/+yRemFLMUO12Nep4c=) 2: 62B22A709D2511F092B08685C4F9AE02.roa (hash: 3Ui4cpTHHeKfz+ZmJHpf6SoxkqjlYYO57sXCMQDXSvQ=) 3: 631E45669D2511F092B08685C4F9AE02.roa (hash: 7FJFv2Mx+1Xt7OR8AiHSTaeUg0YXybdvrKVZMy3KEE4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.crl rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7CyBZyzB2t17aMkt2UH08KVUoM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2698 (0xa8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2AAE, serialNumber=A3B0B2059CB3076B75EDA324B76507D3C2955283 Validity Not Before: Dec 6 18:50:15 2025 GMT Not After : Dec 13 18:50:15 2025 GMT Subject: CN=69347ae7-2aef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e4:10:4d:e5:30:da:24:44:7f:ee:c2:2c:9e: 5d:b5:01:fb:ce:5b:3d:b8:be:3a:8c:39:e1:ef:67: 9f:72:ce:7c:a4:c0:d9:10:dd:79:5c:09:70:01:12: 3b:b9:60:7f:00:77:bf:cd:c7:2c:fa:a9:c2:c5:c9: 5b:f2:fb:cc:f8:4b:9c:de:70:46:c4:ab:36:15:2c: 6d:e3:94:a4:94:48:b4:b6:8d:55:5f:9e:9f:c8:fa: 37:50:db:66:1d:a3:84:60:bf:80:bc:76:40:d8:a2: 26:99:1c:89:e3:9d:07:cb:bc:1a:79:e3:83:b1:3d: db:79:d5:73:c3:e7:45:15:2b:03:0d:da:1d:a7:16: 55:84:bd:cb:35:cb:92:9c:ab:d0:b4:26:27:e7:16: b5:2f:c3:a0:96:72:d3:58:8f:e0:ed:e0:58:5f:f1: f0:3d:6c:27:f7:33:17:95:46:3c:0d:c5:3c:45:1c: 99:e2:69:29:7b:68:4c:11:b3:53:89:f4:1c:f7:dc: 0d:e1:07:80:80:e0:41:e2:4d:ef:58:47:37:78:fd: 14:69:7e:e0:e7:39:0e:45:8b:7e:4e:34:84:08:53: 62:9e:2f:f7:38:4a:78:d0:70:a1:84:0f:48:8f:2b: aa:b2:62:41:3c:2a:eb:05:73:ab:fd:85:be:89:29: a0:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:02:1F:B5:C8:BA:30:A1:94:03:54:AB:AF:EC:24:71:7D:2E:7C:C7 X509v3 Authority Key Identifier: keyid:A3:B0:B2:05:9C:B3:07:6B:75:ED:A3:24:B7:65:07:D3:C2:95:52:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7CyBZyzB2t17aMkt2UH08KVUoM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:8f:49:6d:91:2f:e0:bb:1d:e6:f7:25:60:50:c1:fb:34:8a: 27:77:13:d5:dc:7e:e3:47:d6:cf:57:64:7a:28:0e:c8:8c:99: d3:fc:bf:43:08:83:50:f5:0b:9e:ca:4c:6f:d5:b9:ce:64:b1: 4d:67:7a:80:17:d4:71:d6:b8:5c:39:33:be:6f:3c:e0:0d:43: 56:12:2d:46:d2:06:94:71:37:60:ed:e1:20:7c:9b:35:97:a5: b2:b2:e8:8a:93:32:0b:b7:13:d4:39:0f:c6:cb:3e:e9:76:5f: 2b:9d:d1:b8:d2:0f:95:00:95:fd:e6:dc:ab:06:82:ce:5c:57: cb:2a:95:77:6e:64:df:c4:51:f2:77:13:4b:ce:5a:fe:4a:d6: 06:48:cd:5c:89:3d:e4:b4:b7:f3:42:66:14:d0:9d:84:74:89: a0:26:98:0f:6d:f2:1d:44:f1:0d:b9:6f:94:a6:de:86:bb:4d: 44:43:63:ea:ee:94:63:dd:ba:77:a5:6a:be:87:03:a8:e3:86: 06:0b:09:ff:76:0c:ad:00:16:4f:58:75:7f:1e:c2:6c:88:10: 68:37:7e:1d:0f:ae:99:44:b1:9f:6e:7d:07:1c:ac:fc:16:ec: 6c:b3:83:b9:36:6e:1b:c2:f8:f1:c6:5b:6f:24:90:b1:d2:aa: 0a:d0:03:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCoowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJBQUUxMTAvBgNVBAUTKEEzQjBCMjA1OUNCMzA3NkI3NUVEQTMyNEI3NjUwN0Qz QzI5NTUyODMwHhcNMjUxMjA2MTg1MDE1WhcNMjUxMjEzMTg1MDE1WjAYMRYwFAYD VQQDEw02OTM0N2FlNy0yYWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAveQQTeUw2iREf+7CLJ5dtQH7zls9uL46jDnh72efcs58pMDZEN15XAlwARI7 uWB/AHe/zccs+qnCxclb8vvM+Euc3nBGxKs2FSxt45SklEi0to1VX56fyPo3UNtm HaOEYL+AvHZA2KImmRyJ450Hy7waeeODsT3bedVzw+dFFSsDDdodpxZVhL3LNcuS nKvQtCYn5xa1L8OglnLTWI/g7eBYX/HwPWwn9zMXlUY8DcU8RRyZ4mkpe2hMEbNT ifQc99wN4QeAgOBB4k3vWEc3eP0UaX7g5zkORYt+TjSECFNini/3OEp40HChhA9I jyuqsmJBPCrrBXOr/YW+iSmgowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHkCH7XI ujChlANUq6/sJHF9LnzHMB8GA1UdIwQYMBaAFKOwsgWcswdrde2jJLdlB9PClVKD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkFBRS81NzUzN0Q1RTcw NDUxMUVBOEE5NDFEMUFDNEY5QUUwMi9vN0N5Qlp5ekIydDE3YU1rdDJVSDA4S1ZV b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL283Q3lCWnl6QjJ0MTdhTWt0MlVIMDhLVlVvTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkFBRS81NzUzN0Q1RTcwNDUxMUVBOEE5NDFEMUFDNEY5QUUwMi9vN0N5Qlp5ekIy dDE3YU1rdDJVSDA4S1ZVb00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhj0ltkS/gux3m9yVgUMH7NIondxPV3H7jR9bPV2R6KA7IjJnT/L9D CINQ9Queykxv1bnOZLFNZ3qAF9Rx1rhcOTO+bzzgDUNWEi1G0gaUcTdg7eEgfJs1 l6WysuiKkzILtxPUOQ/Gyz7pdl8rndG40g+VAJX95tyrBoLOXFfLKpV3bmTfxFHy dxNLzlr+StYGSM1ciT3ktLfzQmYU0J2EdImgJpgPbfIdRPENuW+Upt6Gu01EQ2Pq 7pRj3bp3pWq+hwOo44YGCwn/dgytABZPWHV/HsJsiBBoN34dD66ZRLGfbn0HHKz8 Fuxss4O5Nm4bwvjxxltvJJCx0qoK0AMb -----END CERTIFICATE-----Generated at Sat Dec 6 22:27:25 2025 by rpki-client