This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft File: oqIX1KQS-1OPXJGjSzbOcYed22U.mft (raw, json) Hash identifier: eCZ4wmIoh0W4FKSL0tgVurHzfib8pyVTjzJ3RDLuUK8= Subject key identifier: 8E:51:4C:D6:D8:F0:59:5B:7A:48:F2:C6:06:ED:B5:7B:3B:2A:6E:B8 Authority key identifier: A2:A2:17:D4:A4:12:FB:53:8F:5C:91:A3:4B:36:CE:71:87:9D:DB:65 Certificate issuer: /CN=A91CF9B0/serialNumber=A2A217D4A412FB538F5C91A34B36CE71879DDB65 Certificate serial: 018E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft Manifest number: 017F Signing time: Sun 07 Dec 2025 02:16:46 +0000 Manifest this update: Sun 07 Dec 2025 02:16:46 +0000 Manifest next update: Sun 14 Dec 2025 02:16:46 +0000 Files and hashes: 1: oqIX1KQS-1OPXJGjSzbOcYed22U.crl (hash: z5lyon0Mikxh+O6bjTFos8gLEqw+pOsl0JTPaqv/VGg=) 2: 84D917FC9F4911EEA0C5C856C4F9AE02.roa (hash: NmyQHlBil47JzTSCPQYz/6ZBa9AnAtiDqsHIcZPO3dA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.crl rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 02:16:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 398 (0x18e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF9B0, serialNumber=A2A217D4A412FB538F5C91A34B36CE71879DDB65 Validity Not Before: Dec 7 02:16:46 2025 GMT Not After : Dec 14 02:16:46 2025 GMT Subject: CN=6934e38e-2aba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c8:9c:58:f0:c2:1e:38:2d:09:70:ea:28:a8: f0:72:a1:95:e5:4a:b7:6a:c3:ae:ad:80:28:d7:fa: c7:93:57:1c:5d:7d:59:08:7e:13:74:24:69:f8:e5: ca:b4:b7:15:50:5e:85:64:3c:3d:a5:c8:27:3e:e2: ae:1f:d5:a0:51:4d:f9:69:19:78:be:99:d9:c4:13: 06:f5:83:58:6e:89:0e:a2:6c:32:4b:38:fc:dc:58: 6e:5a:0a:0f:f5:b9:7e:ea:7a:bd:7b:bb:0c:58:e0: 63:48:05:00:a5:35:bd:5d:86:ad:bb:a9:a0:3b:ab: f8:02:f8:80:4c:ad:79:38:56:1a:ac:99:db:c2:0d: 47:e3:f6:d3:84:f5:01:c1:25:96:c6:84:31:8c:38: 4f:ab:1b:e1:ae:7f:7b:91:8c:de:9d:cf:31:02:2e: bc:6c:a4:1b:71:30:93:b5:64:fc:4a:2e:b4:69:a7: 8b:2a:99:5f:8d:56:07:b4:f7:88:0d:fd:3d:86:34: d5:3c:4d:14:70:8a:d1:03:35:9e:2a:39:e1:50:4d: bf:01:36:80:76:8e:05:f1:6c:8f:d8:28:b9:fe:c8: e1:e3:b2:3d:b1:7e:73:b2:2f:d9:cd:bc:37:5e:ec: 6e:0c:76:f7:ce:74:61:3c:c6:29:3d:56:77:55:84: da:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:51:4C:D6:D8:F0:59:5B:7A:48:F2:C6:06:ED:B5:7B:3B:2A:6E:B8 X509v3 Authority Key Identifier: keyid:A2:A2:17:D4:A4:12:FB:53:8F:5C:91:A3:4B:36:CE:71:87:9D:DB:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oqIX1KQS-1OPXJGjSzbOcYed22U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF9B0/14C9496E9F3F11EE801B1D62C4F9AE02/oqIX1KQS-1OPXJGjSzbOcYed22U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:c5:65:c6:65:d3:1d:d8:19:29:77:84:18:2e:4a:26:1b:96: ef:92:12:44:ab:62:d3:36:ef:ff:68:39:b0:ba:c2:9d:12:8a: 4d:89:0e:b7:45:06:b7:08:14:26:0a:b1:2c:86:8e:57:59:15: 34:e9:cd:2d:aa:24:c1:f9:bf:49:a2:e6:20:bc:39:e1:04:4d: 67:dd:06:ed:97:69:a0:08:a4:42:48:a8:35:e3:8d:a1:6c:27: 9c:e0:ec:d8:95:60:f7:dd:b5:de:d5:f4:8c:af:8d:e8:9e:e1: eb:13:d2:54:a2:8b:8c:c6:62:7f:d6:6c:36:89:a6:f6:f4:10: cf:d5:93:13:2c:db:f7:33:9c:65:2b:f2:2c:1e:d6:54:3e:79: 8c:7a:3e:cb:ed:b6:05:15:17:be:13:f3:ab:ac:08:9a:0a:66: 76:c6:82:d0:5d:23:14:0b:67:a4:5b:d2:41:d6:3d:4e:a7:06: 98:61:8b:58:44:da:97:d5:1e:29:f0:2d:57:30:d9:70:80:86: 68:a9:af:2e:03:01:77:f1:38:99:28:7a:78:87:25:24:a8:5b: 3a:c8:ce:a3:c9:f8:a5:7b:9d:63:3d:5e:67:de:8d:ab:ea:c0: 8b:bc:dc:33:24:77:6a:4f:7a:c5:cf:b9:ca:81:60:b7:dd:0d: 4e:1b:91:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y5QjAxMTAvBgNVBAUTKEEyQTIxN0Q0QTQxMkZCNTM4RjVDOTFBMzRCMzZDRTcx ODc5RERCNjUwHhcNMjUxMjA3MDIxNjQ2WhcNMjUxMjE0MDIxNjQ2WjAYMRYwFAYD VQQDEw02OTM0ZTM4ZS0yYWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvcicWPDCHjgtCXDqKKjwcqGV5Uq3asOurYAo1/rHk1ccXX1ZCH4TdCRp+OXK tLcVUF6FZDw9pcgnPuKuH9WgUU35aRl4vpnZxBMG9YNYbokOomwySzj83FhuWgoP 9bl+6nq9e7sMWOBjSAUApTW9XYatu6mgO6v4AviATK15OFYarJnbwg1H4/bThPUB wSWWxoQxjDhPqxvhrn97kYzenc8xAi68bKQbcTCTtWT8Si60aaeLKplfjVYHtPeI Df09hjTVPE0UcIrRAzWeKjnhUE2/ATaAdo4F8WyP2Ci5/sjh47I9sX5zsi/Zzbw3 XuxuDHb3znRhPMYpPVZ3VYTalwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI5RTNbY 8FlbekjyxgbttXs7Km64MB8GA1UdIwQYMBaAFKKiF9SkEvtTj1yRo0s2znGHndtl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjlCMC8xNEM5NDk2RTlG M0YxMUVFODAxQjFENjJDNEY5QUUwMi9vcUlYMUtRUy0xT1BYSkdqU3piT2NZZWQy MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29xSVgxS1FTLTFPUFhKR2pTemJPY1llZDIyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjlCMC8xNEM5NDk2RTlGM0YxMUVFODAxQjFENjJDNEY5QUUwMi9vcUlYMUtRUy0x T1BYSkdqU3piT2NZZWQyMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAxWXGZdMd2Bkpd4QYLkomG5bvkhJEq2LTNu//aDmwusKdEopNiQ63 RQa3CBQmCrEsho5XWRU06c0tqiTB+b9JouYgvDnhBE1n3Qbtl2mgCKRCSKg1442h bCec4OzYlWD33bXe1fSMr43onuHrE9JUoouMxmJ/1mw2iab29BDP1ZMTLNv3M5xl K/IsHtZUPnmMej7L7bYFFRe+E/OrrAiaCmZ2xoLQXSMUC2ekW9JB1j1OpwaYYYtY RNqX1R4p8C1XMNlwgIZoqa8uAwF38TiZKHp4hyUkqFs6yM6jyfile51jPV5n3o2r 6sCLvNwzJHdqT3rFz7nKgWC33Q1OG5EI -----END CERTIFICATE-----Generated at Sun Dec 7 07:49:49 2025 by rpki-client