This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft File: ok2WODNZy0lmoVuakGkT61RWZXs.mft (raw, json) Hash identifier: 2fYPznQSmzAxztdRDeMf1UQsXdjHrQ13JjnNrBqeI1s= Subject key identifier: 04:FA:11:5E:E9:EC:8F:42:6C:99:27:9F:F7:39:51:29:C2:73:64:46 Authority key identifier: A2:4D:96:38:33:59:CB:49:66:A1:5B:9A:90:69:13:EB:54:56:65:7B Certificate issuer: /CN=A91C9C03/serialNumber=A24D96383359CB4966A15B9A906913EB5456657B Certificate serial: 71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft Manifest number: 6B Signing time: Fri 05 Dec 2025 04:55:25 +0000 Manifest this update: Fri 05 Dec 2025 04:55:24 +0000 Manifest next update: Fri 12 Dec 2025 04:55:24 +0000 Files and hashes: 1: ok2WODNZy0lmoVuakGkT61RWZXs.crl (hash: qWN1RO8s07pVLqXRnq6jIIbfn9PxOHtUZo+HhW/8RHo=) 2: 19088D04716211F0A531A51FC4F9AE02.roa (hash: UYhhmkQaI1q3+QjYEo/76mR50UYMRxm9p33lOpn/bSs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.crl rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:55:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9C03, serialNumber=A24D96383359CB4966A15B9A906913EB5456657B Validity Not Before: Dec 5 04:55:24 2025 GMT Not After : Dec 12 04:55:24 2025 GMT Subject: CN=693265bd-63d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:6d:b6:14:21:d0:0b:ac:37:0d:8d:4d:92:6a: 24:df:9a:47:d5:ca:a9:b7:56:19:95:d9:5e:62:9b: 0a:c5:c8:d1:20:d6:a8:13:e3:a8:37:92:e4:e2:9d: c0:63:1f:fd:ab:38:f7:c2:e1:1a:22:51:9c:4c:f1: 50:dc:a9:a8:21:af:8d:f1:40:df:16:1b:b7:49:88: 15:f2:ed:08:91:09:a0:e7:0d:4e:57:ac:f6:63:db: 44:ca:84:d7:b9:59:84:62:7c:02:ce:b3:48:b0:f7: 5e:00:9f:db:75:ca:99:85:38:70:ed:c4:12:0d:e2: 0e:42:e4:ac:d1:ea:14:db:b5:9d:28:fc:dc:22:3e: 2d:fd:89:c3:36:8f:4c:eb:3b:97:d1:a0:b9:dd:a5: 65:a5:80:60:bb:5c:ea:27:a1:fe:6d:13:ae:14:6a: 88:07:ff:0e:d2:78:e9:cf:99:b0:9c:aa:4a:8f:2c: 0e:5d:38:a2:42:48:d8:db:e3:53:66:d3:92:63:4a: 5a:73:d5:0b:82:5d:49:0b:d1:21:a3:1f:53:44:ce: bd:a4:cc:a1:53:74:5a:5d:0f:ff:53:d6:16:09:7d: 45:44:7e:e1:43:97:9a:dd:d3:9c:f5:78:8a:dd:af: 4f:e0:96:c5:77:36:53:b8:21:e6:5d:bd:56:7e:7b: a8:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:FA:11:5E:E9:EC:8F:42:6C:99:27:9F:F7:39:51:29:C2:73:64:46 X509v3 Authority Key Identifier: keyid:A2:4D:96:38:33:59:CB:49:66:A1:5B:9A:90:69:13:EB:54:56:65:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:79:2a:b7:d4:ad:05:59:1b:85:ef:ab:b4:7d:7e:79:20:42: e4:dc:0f:91:e4:d5:ff:2d:94:c1:82:db:b8:f5:36:bf:ba:13: f8:3f:20:01:1d:3b:10:a8:47:64:72:cb:42:fd:df:6a:3a:f6: 13:ae:05:a3:0a:2e:02:3a:1d:21:db:ab:e5:90:9c:e6:eb:db: 0f:ee:88:91:fa:e8:5f:b7:05:5b:97:28:c5:f9:0f:c3:ab:d5: 22:d2:68:14:b7:8d:9e:40:c2:08:49:3c:19:cb:99:bf:d7:4e: 8f:ae:eb:bd:8e:b5:0a:98:31:21:36:80:a1:d4:91:bf:47:a5: 8a:23:c1:a7:59:40:4e:87:7f:22:19:ac:3a:22:21:be:f0:1c: 46:e1:68:69:a8:8c:6f:75:43:eb:1c:ff:5a:47:ef:02:83:85: 8e:c5:91:8c:42:0f:cf:63:77:79:0f:21:b4:92:f6:d7:a9:b1: 76:55:ae:ca:99:bd:ec:81:83:9b:1e:fa:7c:21:29:3a:3a:5f: 7e:06:38:e6:ee:ee:f0:cc:16:e9:ae:f3:21:e8:56:ac:99:9a: 77:45:f7:cc:6c:15:2e:f4:f7:47:34:5d:e5:58:02:4a:cd:c3: 21:af:a7:44:ca:0c:c0:87:ae:0d:76:91:c8:34:b4:b3:0a:f8: 2d:76:68:60 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD OUMwMzExMC8GA1UEBRMoQTI0RDk2MzgzMzU5Q0I0OTY2QTE1QjlBOTA2OTEzRUI1 NDU2NjU3QjAeFw0yNTEyMDUwNDU1MjRaFw0yNTEyMTIwNDU1MjRaMBgxFjAUBgNV BAMTDTY5MzI2NWJkLTYzZDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRbbYUIdALrDcNjU2SaiTfmkfVyqm3VhmV2V5imwrFyNEg1qgT46g3kuTincBj H/2rOPfC4RoiUZxM8VDcqaghr43xQN8WG7dJiBXy7QiRCaDnDU5XrPZj20TKhNe5 WYRifALOs0iw914An9t1ypmFOHDtxBIN4g5C5KzR6hTbtZ0o/NwiPi39icM2j0zr O5fRoLndpWWlgGC7XOonof5tE64UaogH/w7SeOnPmbCcqkqPLA5dOKJCSNjb41Nm 05JjSlpz1QuCXUkL0SGjH1NEzr2kzKFTdFpdD/9T1hYJfUVEfuFDl5rd05z1eIrd r0/glsV3NlO4IeZdvVZ+e6ihAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBPoRXuns j0JsmSef9zlRKcJzZEYwHwYDVR0jBBgwFoAUok2WODNZy0lmoVuakGkT61RWZXsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5QzAzLzM3RDE4QTE2MzlB MzExRjBCQUQ3MkMzQ0M0RjlBRTAyL29rMldPRE5aeTBsbW9WdWFrR2tUNjFSV1pY cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb2syV09ETlp5MGxtb1Z1YWtHa1Q2MVJXWlhzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5 QzAzLzM3RDE4QTE2MzlBMzExRjBCQUQ3MkMzQ0M0RjlBRTAyL29rMldPRE5aeTBs bW9WdWFrR2tUNjFSV1pYcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHN5KrfUrQVZG4Xvq7R9fnkgQuTcD5Hk1f8tlMGC27j1Nr+6E/g/IAEd OxCoR2Ryy0L932o69hOuBaMKLgI6HSHbq+WQnObr2w/uiJH66F+3BVuXKMX5D8Or 1SLSaBS3jZ5AwghJPBnLmb/XTo+u672OtQqYMSE2gKHUkb9HpYojwadZQE6HfyIZ rDoiIb7wHEbhaGmojG91Q+sc/1pH7wKDhY7FkYxCD89jd3kPIbSS9tepsXZVrsqZ veyBg5se+nwhKTo6X34GOObu7vDMFumu8yHoVqyZmndF98xsFS7090c0XeVYAkrN wyGvp0TKDMCHrg12kcg0tLMK+C12aGA= -----END CERTIFICATE-----Generated at Sat Dec 6 11:22:10 2025 by rpki-client