This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft File: o1D687bxS8juGymW7tSOJwIOEIM.mft (raw, json) Hash identifier: jMmHXk+AStOHeEl3GAGHTnpau9ftEWEMPkQnK14hleI= Subject key identifier: 32:67:62:BF:4D:C0:72:19:55:CC:5A:0E:AE:9F:40:A8:70:4F:FF:FB Authority key identifier: A3:50:FA:F3:B6:F1:4B:C8:EE:1B:29:96:EE:D4:8E:27:02:0E:10:83 Certificate issuer: /CN=A91D4834/serialNumber=A350FAF3B6F14BC8EE1B2996EED48E27020E1083 Certificate serial: 08C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft Manifest number: 08B3 Signing time: Sat 06 Dec 2025 19:39:25 +0000 Manifest this update: Sat 06 Dec 2025 19:39:24 +0000 Manifest next update: Sat 13 Dec 2025 19:39:24 +0000 Files and hashes: 1: o1D687bxS8juGymW7tSOJwIOEIM.crl (hash: E/aSf0xeDnGDWJ/fhPaDskg7BZhNT9LzOpOnXzN06aY=) 2: C5E7AA2289A011F08D995D74C4F9AE02.roa (hash: jS53WXHjCoys1e1t5l2xcO16jh1u3l1FTq8ZOUzIH88=) 3: ECE8975685D811F09A4FFA45C4F9AE02.roa (hash: kbQycqq6uhbmllHh50J5L3MKomIfAJJoAz4btbBqKyw=) 4: D32DB3AE7FC111F0B3BEC06AC4F9AE02.roa (hash: /uldeOBBVv+zaXl5jNRHeGbB+ckh7FIYfUU0p3GU20E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.crl rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:39:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2248 (0x8c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4834, serialNumber=A350FAF3B6F14BC8EE1B2996EED48E27020E1083 Validity Not Before: Dec 6 19:39:24 2025 GMT Not After : Dec 13 19:39:24 2025 GMT Subject: CN=6934866d-4c5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:5f:aa:e3:5c:34:75:f0:83:22:35:54:13:90: 2f:a2:07:9e:fb:fa:19:e7:fb:f1:11:5f:64:8f:01: 91:8f:b5:d8:d5:7f:79:a1:66:d6:0e:dc:11:32:b2: e4:e9:7f:99:14:b8:6b:47:2f:8d:b0:d5:fc:57:94: ae:36:fe:c8:2b:7b:7b:af:8d:07:ea:4d:39:7b:43: 45:a2:4b:42:f3:4a:75:27:74:de:d0:1c:95:06:22: 3f:59:62:ec:3e:56:a9:63:36:26:22:f3:2c:99:fd: 0a:5f:12:f5:6e:a5:0a:ea:7d:f3:cc:14:dd:60:8a: 9e:8b:bc:39:f0:75:7a:e1:1b:d8:e9:2e:a5:c7:d1: c6:c4:22:d1:94:87:b0:87:5a:2d:8c:a0:b4:60:14: db:3b:bd:3b:85:9e:b2:e4:d8:98:ab:80:e0:94:91: 1f:27:a5:ec:e7:f9:b7:41:54:d1:8e:da:9a:3d:8b: a2:b6:73:7f:9f:ab:67:22:8d:c0:9a:f5:ea:38:cf: 22:b9:0d:de:d2:26:9e:8a:6f:14:0b:0c:8a:e0:2f: be:a7:7a:db:56:b1:35:38:95:85:78:e7:fe:f8:5b: b2:99:e7:09:51:46:3c:ac:4f:a6:d4:af:21:25:f4: 76:a7:cc:2c:10:00:34:08:0e:93:4a:55:7d:b1:e9: 4f:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:67:62:BF:4D:C0:72:19:55:CC:5A:0E:AE:9F:40:A8:70:4F:FF:FB X509v3 Authority Key Identifier: keyid:A3:50:FA:F3:B6:F1:4B:C8:EE:1B:29:96:EE:D4:8E:27:02:0E:10:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:2e:ee:90:c7:e5:ce:0f:1a:82:1f:6e:21:d0:3d:e0:0d:f7: 59:b9:9f:0c:fb:a1:db:a9:a9:47:8e:e7:04:b0:0c:1d:6a:4c: 85:b1:05:49:ba:3b:14:57:18:ed:51:40:67:9d:e2:2e:14:97: a1:2d:43:98:dc:d5:40:ce:fb:ed:1b:32:d0:ed:40:9f:ff:dc: 0b:d9:49:9a:f2:1b:f6:c3:d0:99:9b:2e:a1:4a:6b:4a:d4:41: 57:ef:64:13:99:03:05:b7:c8:9e:2c:82:86:10:ce:4f:99:cd: 10:44:8d:69:0f:bd:c9:f9:16:ed:ea:ec:97:4d:e8:e3:18:58: f5:68:6a:25:fc:6a:58:20:03:22:db:51:54:47:9a:13:5a:7c: 83:f6:3b:c8:d3:9a:40:06:8e:a9:b0:a1:84:7a:5f:89:48:5b: a7:38:81:46:e4:c5:3d:d3:0f:e1:5e:9b:aa:e7:8d:bc:b0:2d: de:73:1e:e2:7a:58:f3:a1:c0:61:d1:4b:3e:3b:14:04:de:7a: af:f0:ab:75:dc:9d:8a:df:da:87:12:57:7e:d8:74:4e:2d:71: 1f:12:90:5f:a4:98:88:b6:ac:c2:fb:e0:da:66:88:de:8f:b9: de:59:78:82:ea:c4:33:1d:e7:a5:36:ad:db:53:a9:6d:08:fe: b8:14:81:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ4MzQxMTAvBgNVBAUTKEEzNTBGQUYzQjZGMTRCQzhFRTFCMjk5NkVFRDQ4RTI3 MDIwRTEwODMwHhcNMjUxMjA2MTkzOTI0WhcNMjUxMjEzMTkzOTI0WjAYMRYwFAYD VQQDEw02OTM0ODY2ZC00YzVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwV+q41w0dfCDIjVUE5Avogee+/oZ5/vxEV9kjwGRj7XY1X95oWbWDtwRMrLk 6X+ZFLhrRy+NsNX8V5SuNv7IK3t7r40H6k05e0NFoktC80p1J3Te0ByVBiI/WWLs PlapYzYmIvMsmf0KXxL1bqUK6n3zzBTdYIqei7w58HV64RvY6S6lx9HGxCLRlIew h1otjKC0YBTbO707hZ6y5NiYq4DglJEfJ6Xs5/m3QVTRjtqaPYuitnN/n6tnIo3A mvXqOM8iuQ3e0iaeim8UCwyK4C++p3rbVrE1OJWFeOf++FuymecJUUY8rE+m1K8h JfR2p8wsEAA0CA6TSlV9selPkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDJnYr9N wHIZVcxaDq6fQKhwT//7MB8GA1UdIwQYMBaAFKNQ+vO28UvI7hsplu7UjicCDhCD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDgzNC81MUJFREZDNEND OEQxMUVBQUZGRURCMzZDNEY5QUUwMi9vMUQ2ODdieFM4anVHeW1XN3RTT0p3SU9F SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28xRDY4N2J4UzhqdUd5bVc3dFNPSndJT0VJTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDgzNC81MUJFREZDNENDOEQxMUVBQUZGRURCMzZDNEY5QUUwMi9vMUQ2ODdieFM4 anVHeW1XN3RTT0p3SU9FSU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDHLu6Qx+XODxqCH24h0D3gDfdZuZ8M+6HbqalHjucEsAwdakyFsQVJ ujsUVxjtUUBnneIuFJehLUOY3NVAzvvtGzLQ7UCf/9wL2Uma8hv2w9CZmy6hSmtK 1EFX72QTmQMFt8ieLIKGEM5Pmc0QRI1pD73J+Rbt6uyXTejjGFj1aGol/GpYIAMi 21FUR5oTWnyD9jvI05pABo6psKGEel+JSFunOIFG5MU90w/hXpuq5428sC3ecx7i eljzocBh0Us+OxQE3nqv8Kt13J2K39qHEld+2HROLXEfEpBfpJiItqzC++DaZoje j7neWXiC6sQzHeelNq3bU6ltCP64FIH2 -----END CERTIFICATE-----Generated at Sun Dec 7 01:54:40 2025 by rpki-client