This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.mft File: oBOxOIo5M74Qa-rt3-nzuDRtN0g.mft (raw, json) Hash identifier: m0Tpar8VoIuFJKFu7gAn4VzrCDdutV775qCyqyoGX10= Subject key identifier: 1D:C8:3A:39:59:48:63:F7:11:58:CF:11:ED:AF:B6:B8:52:A4:D0:C5 Authority key identifier: A0:13:B1:38:8A:39:33:BE:10:6B:EA:ED:DF:E9:F3:B8:34:6D:37:48 Certificate issuer: /CN=A91D5F2D/serialNumber=A013B1388A3933BE106BEAEDDFE9F3B8346D3748 Certificate serial: 0425 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBOxOIo5M74Qa-rt3-nzuDRtN0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.mft Manifest number: 040F Signing time: Thu 04 Dec 2025 22:54:20 +0000 Manifest this update: Thu 04 Dec 2025 22:54:20 +0000 Manifest next update: Thu 11 Dec 2025 22:54:20 +0000 Files and hashes: 1: oBOxOIo5M74Qa-rt3-nzuDRtN0g.crl (hash: NZltdpc/k01NTbHmrfyweFQ95bd1XsY+lW+T2XczteM=) 2: 5A76CDC2989511EC821F343DC4F9AE02.roa (hash: PFHGyRpc2XbCpMP3oZwcoRFS7cS4eDGCTFH+DmvXr+c=) 3: 17D3C6A89B2611EC8880303EC4F9AE02.roa (hash: dmwskcX+7K87R4MLVSKhbA64Ib5h40ZpO651aHbL2xA=) 4: 8F5EABBE919F11EDA7387A37C4F9AE02.roa (hash: 8Wa5zRD8JBVDnPrtDrMM10W+ePzBdP7fVD0dPyvthC0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.crl rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBOxOIo5M74Qa-rt3-nzuDRtN0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:54:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1061 (0x425) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5F2D, serialNumber=A013B1388A3933BE106BEAEDDFE9F3B8346D3748 Validity Not Before: Dec 4 22:54:20 2025 GMT Not After : Dec 11 22:54:20 2025 GMT Subject: CN=6932111c-4c75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a8:88:b3:39:0c:b5:bd:ce:d2:3d:f0:51:af: c1:0b:43:53:f5:64:a3:17:39:aa:21:a1:b4:a6:6b: 56:ce:11:26:95:bb:c0:6b:ed:f4:ae:77:56:01:e3: 36:e6:08:d2:77:94:01:11:72:47:eb:fc:20:cd:14: 04:55:81:27:c4:c2:e4:b4:1d:e1:5e:6b:94:57:95: 12:0c:43:19:0a:bf:09:f0:74:80:15:20:c9:14:a3: d7:ed:77:db:f5:fb:73:df:2d:d6:de:ac:3d:8b:ed: 1d:8e:ac:57:c6:50:31:48:97:12:75:5c:34:c3:ab: 4a:6c:63:e8:0e:50:7d:85:d6:8b:75:4b:b1:c1:69: 8c:38:98:38:40:06:78:cd:e4:96:ec:9b:0f:8a:76: 0e:78:e8:ff:ff:aa:a3:2e:52:e0:06:75:6f:2a:aa: f9:aa:d0:a7:c4:0c:3d:88:9b:b9:77:32:09:a8:a8: ee:6b:03:f2:7e:3a:4d:1c:50:51:f6:51:f8:a1:3e: 9c:f0:4c:18:85:6a:45:19:65:85:9b:1a:68:66:74: 04:90:0e:7f:6e:ed:d6:a3:e5:da:4e:e6:d1:39:db: 19:0c:44:ac:e4:d3:a0:5d:38:57:35:5c:96:1c:50: 7a:3f:10:07:47:02:17:c8:94:b9:17:eb:a2:b5:0a: d7:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:C8:3A:39:59:48:63:F7:11:58:CF:11:ED:AF:B6:B8:52:A4:D0:C5 X509v3 Authority Key Identifier: keyid:A0:13:B1:38:8A:39:33:BE:10:6B:EA:ED:DF:E9:F3:B8:34:6D:37:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBOxOIo5M74Qa-rt3-nzuDRtN0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:e3:1e:04:ac:50:d7:64:fe:c1:9e:2d:9a:70:e9:7a:b8:fd: 14:6b:10:ac:2c:9f:e7:f2:50:8b:ba:ef:c3:9e:52:b7:a5:a5: cf:0b:57:e3:41:02:36:ab:cb:59:05:b0:df:e1:6e:bb:72:3e: 94:ac:5d:c2:ac:db:2a:48:67:d1:eb:85:30:62:91:07:a1:d7: 2f:16:d9:df:f2:0a:4c:99:95:c0:22:29:c2:2f:e5:7c:2d:13: 17:96:70:ae:aa:dc:69:89:d7:77:5e:8f:88:10:4b:33:b0:db: 71:ff:59:e4:0e:89:1d:5f:1c:23:ff:c0:f5:04:7c:28:6b:f9: d0:86:be:20:8d:ae:33:93:66:f5:78:a3:d2:43:8d:e2:07:ab: 4a:80:ed:46:41:28:10:9b:c7:7d:8d:4e:df:82:39:00:5e:4f: 83:39:d2:0d:b4:ac:f7:26:50:b9:92:b8:26:2d:f1:63:af:e6: d8:9f:9a:e5:ac:3e:88:d7:27:5e:c8:dc:6e:9c:63:ad:da:0c: 09:9b:3d:10:71:8f:18:85:5b:14:49:80:9a:b2:99:4a:72:b4: 44:b3:2e:f7:ba:bd:b0:8d:9b:8c:b6:d7:a5:ec:f6:7f:fc:65: 7d:33:97:12:a6:34:a4:3c:0b:06:8e:24:79:73:bd:c4:bf:9c: 08:f9:7f:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVGMkQxMTAvBgNVBAUTKEEwMTNCMTM4OEEzOTMzQkUxMDZCRUFFRERGRTlGM0I4 MzQ2RDM3NDgwHhcNMjUxMjA0MjI1NDIwWhcNMjUxMjExMjI1NDIwWjAYMRYwFAYD VQQDEw02OTMyMTExYy00Yzc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvaiIszkMtb3O0j3wUa/BC0NT9WSjFzmqIaG0pmtWzhEmlbvAa+30rndWAeM2 5gjSd5QBEXJH6/wgzRQEVYEnxMLktB3hXmuUV5USDEMZCr8J8HSAFSDJFKPX7Xfb 9ftz3y3W3qw9i+0djqxXxlAxSJcSdVw0w6tKbGPoDlB9hdaLdUuxwWmMOJg4QAZ4 zeSW7JsPinYOeOj//6qjLlLgBnVvKqr5qtCnxAw9iJu5dzIJqKjuawPyfjpNHFBR 9lH4oT6c8EwYhWpFGWWFmxpoZnQEkA5/bu3Wo+XaTubROdsZDESs5NOgXThXNVyW HFB6PxAHRwIXyJS5F+uitQrXhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB3IOjlZ SGP3EVjPEe2vtrhSpNDFMB8GA1UdIwQYMBaAFKATsTiKOTO+EGvq7d/p87g0bTdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUYyRC9DRDZENkU1Njk4 OTIxMUVDOEY5MzU3M0JDNEY5QUUwMi9vQk94T0lvNU03NFFhLXJ0My1uenVEUnRO MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29CT3hPSW81TTc0UWEtcnQzLW56dURSdE4wZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUYyRC9DRDZENkU1Njk4OTIxMUVDOEY5MzU3M0JDNEY5QUUwMi9vQk94T0lvNU03 NFFhLXJ0My1uenVEUnROMGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDS4x4ErFDXZP7Bni2acOl6uP0UaxCsLJ/n8lCLuu/DnlK3paXPC1fj QQI2q8tZBbDf4W67cj6UrF3CrNsqSGfR64UwYpEHodcvFtnf8gpMmZXAIinCL+V8 LRMXlnCuqtxpidd3Xo+IEEszsNtx/1nkDokdXxwj/8D1BHwoa/nQhr4gja4zk2b1 eKPSQ43iB6tKgO1GQSgQm8d9jU7fgjkAXk+DOdINtKz3JlC5krgmLfFjr+bYn5rl rD6I1ydeyNxunGOt2gwJmz0QcY8YhVsUSYCasplKcrREsy73ur2wjZuMttel7PZ/ /GV9M5cSpjSkPAsGjiR5c73Ev5wI+X/X -----END CERTIFICATE-----Generated at Sat Dec 6 15:57:25 2025 by rpki-client