This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4401/1B882160AA7011F0B428E663C4F9AE02/o5mhLEjADkJh0o4MV_1OPkcNLrc.mft File: o5mhLEjADkJh0o4MV_1OPkcNLrc.mft (raw, json) Hash identifier: 3eSCbOCDPBL+WJC/mjIfyWQGSjI6Tl3txKWb5Egf7bQ= Subject key identifier: A3:E4:B6:A7:9A:A3:CB:FF:06:3D:5E:C3:1A:3E:42:83:D4:79:CF:F5 Authority key identifier: A3:99:A1:2C:48:C0:0E:42:61:D2:8E:0C:57:FD:4E:3E:47:0D:2E:B7 Certificate issuer: /CN=A91C4401/serialNumber=A399A12C48C00E4261D28E0C57FD4E3E470D2EB7 Certificate serial: 1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5mhLEjADkJh0o4MV_1OPkcNLrc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4401/1B882160AA7011F0B428E663C4F9AE02/o5mhLEjADkJh0o4MV_1OPkcNLrc.mft Manifest number: 1B Signing time: Fri 05 Dec 2025 05:38:08 +0000 Manifest this update: Fri 05 Dec 2025 05:38:08 +0000 Manifest next update: Fri 12 Dec 2025 05:38:08 +0000 Files and hashes: 1: o5mhLEjADkJh0o4MV_1OPkcNLrc.crl (hash: j4MAS9t/LX1U8u8KbHpUg6r+swCBvA7WLBNNza8xDgc=) 2: C0FD1FF0AA7111F0B4546269C4F9AE02.roa (hash: tb9Z/1utdPuZydG4QyPURJ2Dph5uJmmV+jlmkscDXF8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4401/1B882160AA7011F0B428E663C4F9AE02/o5mhLEjADkJh0o4MV_1OPkcNLrc.crl rsync://rpki.apnic.net/member_repository/A91C4401/1B882160AA7011F0B428E663C4F9AE02/o5mhLEjADkJh0o4MV_1OPkcNLrc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5mhLEjADkJh0o4MV_1OPkcNLrc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:38:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4401, serialNumber=A399A12C48C00E4261D28E0C57FD4E3E470D2EB7 Validity Not Before: Dec 5 05:38:08 2025 GMT Not After : Dec 12 05:38:08 2025 GMT Subject: CN=69326fc0-b2a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:38:0a:7b:0f:93:8f:ac:7f:2d:24:99:db:f6: 0d:86:db:04:6c:fd:f6:28:00:2a:dc:0a:1b:67:51: 5e:f6:83:c8:ba:a8:77:49:24:58:7b:c4:18:83:26: 8f:3c:80:92:ef:3e:10:09:2c:1d:7e:5e:b4:41:5c: 19:8e:88:b6:3b:ec:7a:c0:3a:01:02:4b:37:7f:81: 28:a3:d5:b0:a0:83:30:50:33:e6:0c:64:7b:fd:1f: ac:2d:23:d4:ae:00:45:e9:30:36:08:25:8d:1c:71: 69:7c:c5:15:0d:d8:18:f2:bf:4d:02:8c:f1:0d:8a: 6b:1c:54:44:91:d1:71:5e:b0:7d:cd:ab:9c:a3:7a: d2:ad:3e:25:e5:d9:11:d7:42:1b:99:33:9e:48:9d: 1c:b0:7b:7a:73:ff:d5:1d:17:34:fa:1e:19:5d:6f: 28:ce:9e:4c:84:75:27:6a:e2:37:b4:1e:b4:56:90: 6e:99:62:e0:4c:7d:b0:0c:cc:b1:2c:19:02:d5:56: fc:05:9e:f2:aa:c1:be:13:da:1a:4d:2a:d5:3a:a5: 38:f6:bc:cb:d4:01:c4:46:5b:64:c3:b4:10:17:7e: dd:71:a3:ac:24:c5:c6:05:94:fc:01:04:7c:79:17: ca:b8:66:b9:79:0a:bc:57:85:9d:af:48:f4:34:41: 3c:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:E4:B6:A7:9A:A3:CB:FF:06:3D:5E:C3:1A:3E:42:83:D4:79:CF:F5 X509v3 Authority Key Identifier: keyid:A3:99:A1:2C:48:C0:0E:42:61:D2:8E:0C:57:FD:4E:3E:47:0D:2E:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4401/1B882160AA7011F0B428E663C4F9AE02/o5mhLEjADkJh0o4MV_1OPkcNLrc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5mhLEjADkJh0o4MV_1OPkcNLrc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4401/1B882160AA7011F0B428E663C4F9AE02/o5mhLEjADkJh0o4MV_1OPkcNLrc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:18:34:d3:e5:3f:b6:99:31:e0:ca:e8:36:46:3d:10:1a:94: 05:d7:86:b3:4c:c4:8b:e5:00:16:5d:12:ed:17:5d:7f:f5:21: e9:b8:65:45:1f:8a:4e:ba:92:2d:14:47:0f:92:ab:ce:5e:b2: 2b:b2:aa:4f:50:8d:f9:5a:8a:e7:d8:d5:84:c9:b0:54:cb:2e: 2f:6b:8b:9e:97:f9:e2:38:14:6e:0a:d7:43:30:d7:72:06:76: 6e:97:6a:3a:b9:15:66:cf:5e:72:9a:50:a9:e3:67:7e:f6:9e: 9d:19:ef:f5:d1:5b:e9:b3:ae:cc:5f:ad:9e:d8:db:30:4d:61: cf:73:2b:db:d3:1c:ad:26:34:55:f5:53:55:ef:31:34:e0:5c: f7:36:25:72:21:fb:2d:c3:e0:c8:91:ab:53:50:c2:b9:1c:75: d6:41:2e:15:95:14:e9:c0:31:10:5c:04:16:f9:77:5d:25:51: 06:32:5a:d0:28:b5:fd:61:7b:59:86:26:dc:e2:59:fe:53:44: 18:fe:84:1a:a1:42:a7:f8:09:bc:01:19:a9:07:f2:ea:e3:cf: 2c:96:03:73:89:2a:c6:1e:1d:d3:f6:c5:77:98:1c:6e:04:11: e2:8c:46:22:73:3a:50:d5:e0:7b:cc:12:18:ff:eb:c5:24:1c: d1:eb:03:fb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NDQwMTExMC8GA1UEBRMoQTM5OUExMkM0OEMwMEU0MjYxRDI4RTBDNTdGRDRFM0U0 NzBEMkVCNzAeFw0yNTEyMDUwNTM4MDhaFw0yNTEyMTIwNTM4MDhaMBgxFjAUBgNV BAMTDTY5MzI2ZmMwLWIyYTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHOAp7D5OPrH8tJJnb9g2G2wRs/fYoACrcChtnUV72g8i6qHdJJFh7xBiDJo88 gJLvPhAJLB1+XrRBXBmOiLY77HrAOgECSzd/gSij1bCggzBQM+YMZHv9H6wtI9Su AEXpMDYIJY0ccWl8xRUN2Bjyv00CjPENimscVESR0XFesH3Nq5yjetKtPiXl2RHX QhuZM55InRywe3pz/9UdFzT6HhldbyjOnkyEdSdq4je0HrRWkG6ZYuBMfbAMzLEs GQLVVvwFnvKqwb4T2hpNKtU6pTj2vMvUAcRGW2TDtBAXft1xo6wkxcYFlPwBBHx5 F8q4Zrl5CrxXhZ2vSPQ0QTw9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUo+S2p5qj y/8GPV7DGj5Cg9R5z/UwHwYDVR0jBBgwFoAUo5mhLEjADkJh0o4MV/1OPkcNLrcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0NDAxLzFCODgyMTYwQUE3 MDExRjBCNDI4RTY2M0M0RjlBRTAyL281bWhMRWpBRGtKaDBvNE1WXzFPUGtjTkxy Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbzVtaExFakFEa0poMG80TVZfMU9Qa2NOTHJjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0 NDAxLzFCODgyMTYwQUE3MDExRjBCNDI4RTY2M0M0RjlBRTAyL281bWhMRWpBRGtK aDBvNE1WXzFPUGtjTkxyYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG4YNNPlP7aZMeDK6DZGPRAalAXXhrNMxIvlABZdEu0XXX/1Iem4ZUUf ik66ki0URw+Sq85esiuyqk9QjflaiufY1YTJsFTLLi9ri56X+eI4FG4K10Mw13IG dm6Xajq5FWbPXnKaUKnjZ372np0Z7/XRW+mzrsxfrZ7Y2zBNYc9zK9vTHK0mNFX1 U1XvMTTgXPc2JXIh+y3D4MiRq1NQwrkcddZBLhWVFOnAMRBcBBb5d10lUQYyWtAo tf1he1mGJtziWf5TRBj+hBqhQqf4CbwBGakH8urjzyyWA3OJKsYeHdP2xXeYHG4E EeKMRiJzOlDV4HvMEhj/68UkHNHrA/s= -----END CERTIFICATE-----Generated at Sun Dec 7 00:04:00 2025 by rpki-client