This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft File: Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft (raw, json) Hash identifier: 7ea2SO5t5mEhLnRvpVXWGQnM/GcMR62vpvkav5oR7b0= Subject key identifier: 0C:A6:50:A8:1A:D7:6F:72:1A:8C:56:3D:DC:FB:B3:96:34:6D:72:6F Authority key identifier: 3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 Certificate issuer: /CN=A91C4F06/serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Certificate serial: 35CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft Manifest number: 3566 Signing time: Sat 06 Dec 2025 14:43:35 +0000 Manifest this update: Sat 06 Dec 2025 14:43:35 +0000 Manifest next update: Sat 13 Dec 2025 14:43:35 +0000 Files and hashes: 1: Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl (hash: 4gRNJRvTutE+KmQlY6A2kizvkh4cA9CnuQn9VQIYbTc=) 2: 1600DBF659C311E9A04B846FC4F9AE02.roa (hash: Rp2RG1hF6yB5oGrywiGWXTiVHqNq8sdwd+lk50rYEfg=) 3: 5A318E06F6A111EBB6318B7EC4F9AE02.roa (hash: g01plAkOdieV4NPIP7/omEljoKEhVOT/UK1CPH/JcfQ=) 4: 6F1612BE562511EB9470B150C4F9AE02.roa (hash: BrIt4ULt/nWqzogqGuBCD8Hp7rvk2fEABSPjkLFLvVw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:43:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13770 (0x35ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4F06, serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Validity Not Before: Dec 6 14:43:35 2025 GMT Not After : Dec 13 14:43:35 2025 GMT Subject: CN=69344117-7d10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:33:5a:5f:4c:2a:aa:ff:f0:7d:72:6b:49:3c: bc:87:fb:1c:ae:77:e7:4a:2d:f5:b1:9f:6f:b0:ee: 9c:8c:2b:e6:70:f1:08:9e:29:fb:44:7a:47:48:7e: 51:5a:04:c4:79:11:f2:0d:94:98:ea:60:36:88:85: a9:0e:10:52:58:4a:2b:8d:1b:d8:37:c1:87:88:bc: 01:a9:f1:fb:55:0a:21:b4:be:bf:64:02:f0:18:64: 9a:1e:fb:fb:2b:29:f2:65:56:64:c3:14:8e:e9:97: 33:0c:c2:a0:44:f1:a0:99:09:fe:2a:c2:c9:ea:a5: 6b:93:60:95:e1:7d:38:e3:c5:38:9f:42:9d:40:32: 71:6a:d6:98:d0:94:6b:c4:99:85:be:64:8b:7f:7c: b1:eb:51:a7:2e:0e:8a:1e:4f:3f:c2:ae:59:45:3c: 59:34:78:ae:44:10:bd:df:7a:76:04:c4:22:bc:b8: 4e:c9:7f:f9:46:b0:cc:68:01:cc:d1:1c:84:78:45: a5:bb:34:5a:e5:81:f6:5b:a5:bf:a5:29:d6:8f:1d: 9c:76:82:cb:ae:46:c5:40:b1:64:91:95:6b:16:a7: e9:3b:16:b3:f8:ba:ab:93:42:21:b9:19:e5:de:51: 94:49:cd:0c:5d:c5:fb:b3:93:21:49:59:f9:51:27: cd:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:A6:50:A8:1A:D7:6F:72:1A:8C:56:3D:DC:FB:B3:96:34:6D:72:6F X509v3 Authority Key Identifier: keyid:3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:4b:b4:54:18:59:8b:71:5d:e9:31:b3:61:d2:a2:c8:c8:ec: 97:5e:51:85:dc:26:43:ec:65:17:4d:e5:4a:97:10:1c:c2:24: dd:63:92:b5:e8:29:6d:a6:85:43:d1:11:dd:2c:6d:22:0e:91: 2e:65:16:74:f1:4b:f1:e1:f9:1d:63:9b:a1:bf:10:aa:7f:5f: c6:ed:be:ad:a4:b8:dc:0b:39:15:e9:d2:90:ec:85:b8:76:d1: a3:0d:df:0e:fb:95:29:19:9c:59:f8:2b:31:47:a7:21:8a:83: 90:a7:06:84:cb:4f:fd:81:2c:b2:23:4d:75:d9:88:f9:9c:76: 53:d3:a9:dc:03:c5:4c:16:40:03:fa:f9:d2:88:8e:53:7e:76: 46:e3:3c:58:cd:dc:12:cc:17:b8:f2:b1:db:98:bd:cb:c0:06: a3:51:70:98:33:60:bf:f8:12:c5:7e:0a:52:16:66:eb:f9:75: 56:2c:97:b3:3c:f8:37:58:4b:24:04:7a:bc:07:d8:f4:e7:10: 68:ec:93:4b:94:b8:e1:a7:39:65:4c:f9:5b:6e:9f:a0:53:a4: 4c:0e:77:49:ce:59:4a:73:2e:76:f6:25:32:e0:3e:ac:5a:1d: dd:8e:ca:11:52:4c:d1:3e:96:0f:a2:80:00:28:b9:03:60:bf: c0:59:a1:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRGMDYxMTAvBgNVBAUTKDNBQUY4MEVBOTdFOTlCOTUyNUIzM0JDMTMzNUJCMDk1 QzJEMjc4QTcwHhcNMjUxMjA2MTQ0MzM1WhcNMjUxMjEzMTQ0MzM1WjAYMRYwFAYD VQQDEw02OTM0NDExNy03ZDEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTNaX0wqqv/wfXJrSTy8h/scrnfnSi31sZ9vsO6cjCvmcPEInin7RHpHSH5R WgTEeRHyDZSY6mA2iIWpDhBSWEorjRvYN8GHiLwBqfH7VQohtL6/ZALwGGSaHvv7 KynyZVZkwxSO6ZczDMKgRPGgmQn+KsLJ6qVrk2CV4X0448U4n0KdQDJxataY0JRr xJmFvmSLf3yx61GnLg6KHk8/wq5ZRTxZNHiuRBC933p2BMQivLhOyX/5RrDMaAHM 0RyEeEWluzRa5YH2W6W/pSnWjx2cdoLLrkbFQLFkkZVrFqfpOxaz+Lqrk0IhuRnl 3lGUSc0MXcX7s5MhSVn5USfNAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAymUKga 129yGoxWPdz7s5Y0bXJvMB8GA1UdIwQYMBaAFDqvgOqX6ZuVJbM7wTNbsJXC0nin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEYwNi83NkUxQzQ3RTFE OTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01VWxzenZCTTF1d2xjTFNl S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xLUE2cGZwbTVVbHN6dkJNMXV3bGNMU2VLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NEYwNi83NkUxQzQ3RTFEOTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01 VWxzenZCTTF1d2xjTFNlS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvS7RUGFmLcV3pMbNh0qLIyOyXXlGF3CZD7GUXTeVKlxAcwiTdY5K1 6CltpoVD0RHdLG0iDpEuZRZ08Uvx4fkdY5uhvxCqf1/G7b6tpLjcCzkV6dKQ7IW4 dtGjDd8O+5UpGZxZ+CsxR6chioOQpwaEy0/9gSyyI0112Yj5nHZT06ncA8VMFkAD +vnSiI5TfnZG4zxYzdwSzBe48rHbmL3LwAajUXCYM2C/+BLFfgpSFmbr+XVWLJez PPg3WEskBHq8B9j05xBo7JNLlLjhpzllTPlbbp+gU6RMDndJzllKcy529iUy4D6s Wh3djsoRUkzRPpYPooAAKLkDYL/AWaFJ -----END CERTIFICATE-----Generated at Sun Dec 7 00:04:09 2025 by rpki-client