This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft File: xOTw2gEK9YY3zFlihHHpmLckPFI.mft (raw, json) Hash identifier: OX9zfa2UuaXrhpIrY3LEp88LCCtF6JYBdEin8tZXjmw= Subject key identifier: 8A:3B:95:FD:B5:08:55:60:94:D6:57:03:0F:76:70:D2:54:CF:36:74 Authority key identifier: C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 Certificate issuer: /CN=A91D83D0/serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Certificate serial: 0963 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft Manifest number: 0949 Signing time: Sat 06 Dec 2025 19:23:05 +0000 Manifest this update: Sat 06 Dec 2025 19:23:04 +0000 Manifest next update: Sat 13 Dec 2025 19:23:04 +0000 Files and hashes: 1: xOTw2gEK9YY3zFlihHHpmLckPFI.crl (hash: ZIs8LcNZJMKdKXdFwRLBIlE+Yd3zjgp4toaKDkHEhhc=) 2: 5353EA28781F11EEBA05B17FC4F9AE02.roa (hash: Del+9YrkACA6yrhYJeSPVVuh01l/16gJ82iy69S9BRo=) 3: 863670328FD011EEB6FFC636C4F9AE02.roa (hash: PnqDvM4vjQdsVy80UhznbWoKhp/dlqh33E+GG+RU+dk=) 4: 03706138786411EC8624EB12C4F9AE02.roa (hash: qKXv165pzdK/WBxXfxqKy/V+953i+G1rFbe37yvanHk=) 5: F4E74AA8B99911EF9A0C3B63C4F9AE02.roa (hash: Ci305f1V47fRIRqmqjLy+EIi8DLnLoGCGpVVZ48v10E=) 6: 6A6E4770A10F11EF840C2548C4F9AE02.roa (hash: lvX9qWs0U9FJpaiKhdFBFudNcs3mWD37dbOmEs33Njk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2403 (0x963) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0, serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Validity Not Before: Dec 6 19:23:04 2025 GMT Not After : Dec 13 19:23:04 2025 GMT Subject: CN=69348298-7974 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:d0:a8:97:4b:29:cd:8c:05:0d:b4:12:d6:b6: 1e:3b:95:a0:df:59:e7:f4:aa:d4:e8:14:f9:6e:1d: 81:28:53:1d:0f:8a:4c:fa:cb:27:5a:57:9c:2c:c6: 8d:36:2f:f8:8a:c2:99:79:06:82:fd:bf:10:d1:5e: d4:79:71:85:75:40:1c:c8:98:86:f8:b4:d3:26:b9: e3:50:c6:5b:6d:b5:b9:c4:46:de:fe:85:04:fc:a6: 9b:8b:1c:17:a6:8f:fc:41:7b:f7:f9:df:5c:ea:53: 08:8a:2a:45:39:a0:2c:82:79:cc:bc:74:bc:57:b3: 00:22:a1:a1:83:16:59:f8:0b:ca:d9:49:78:dc:ae: e4:9b:1e:3d:57:2e:5a:99:b9:bc:4c:a1:91:a8:f7: 03:6a:68:74:0e:b8:93:bd:59:4f:0f:13:8b:9b:17: ec:9b:9e:76:c2:4d:f6:e6:13:ed:77:01:5d:81:9a: 07:75:e0:1b:0f:e4:4c:16:73:f5:a9:87:ff:fa:52: cb:9a:1a:ab:00:67:01:73:d8:f2:b1:c9:2e:ed:1b: 35:86:6d:1e:b5:66:0f:84:fb:93:72:20:b3:ce:ae: ec:04:ec:6e:c4:d6:a0:52:58:34:b6:5f:4a:25:bf: 36:51:d0:23:9a:8c:6f:a5:24:23:5d:6a:a0:87:56: c7:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:3B:95:FD:B5:08:55:60:94:D6:57:03:0F:76:70:D2:54:CF:36:74 X509v3 Authority Key Identifier: keyid:C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:70:0f:a5:22:47:05:f5:d2:ed:09:94:10:c3:35:1a:ed:3e: 26:c8:b6:07:f0:a0:18:86:6b:68:4c:9e:e3:74:46:9c:eb:20: 76:71:87:a8:6a:bb:89:cc:cd:f2:b8:18:7d:96:ae:a8:45:4f: 3b:0e:ad:d5:4a:18:ec:57:71:3d:09:f1:a9:96:ea:5a:62:36: 47:6e:ad:8e:4e:1e:27:fb:f8:14:00:83:a6:69:23:d8:34:8b: 17:95:ee:e6:c3:c2:22:ad:b3:7b:b5:9e:e4:d6:a4:62:57:96: 7c:50:fb:24:83:f2:3d:9f:54:fe:0c:41:0d:e3:b8:ca:8e:cf: 3b:ce:c0:ba:15:e7:03:71:65:39:62:b5:7f:a4:24:d9:30:8a: 25:33:4a:0c:ef:cf:f1:b4:6f:4b:e5:fc:c6:db:4b:e7:5a:a3: 99:0b:70:48:01:bd:76:4b:45:91:42:70:13:fe:0c:78:57:1d: 06:c6:36:7b:fd:00:f6:50:df:43:cf:ee:06:a4:56:b7:ef:ca: 62:72:54:ff:37:93:f2:e8:64:61:c1:aa:9c:4e:ed:dd:8e:04: fc:52:bb:e7:38:a4:98:e2:54:0a:df:ed:b0:09:34:7c:c0:13: 43:93:87:3c:00:b7:71:cb:59:57:97:09:0e:ba:1d:e9:c7:09: 6f:18:23:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKEM0RTRGMERBMDEwQUY1ODYzN0NDNTk2Mjg0NzFFOTk4 QjcyNDNDNTIwHhcNMjUxMjA2MTkyMzA0WhcNMjUxMjEzMTkyMzA0WjAYMRYwFAYD VQQDEw02OTM0ODI5OC03OTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn9Col0spzYwFDbQS1rYeO5Wg31nn9KrU6BT5bh2BKFMdD4pM+ssnWlecLMaN Ni/4isKZeQaC/b8Q0V7UeXGFdUAcyJiG+LTTJrnjUMZbbbW5xEbe/oUE/KabixwX po/8QXv3+d9c6lMIiipFOaAsgnnMvHS8V7MAIqGhgxZZ+AvK2Ul43K7kmx49Vy5a mbm8TKGRqPcDamh0DriTvVlPDxOLmxfsm552wk325hPtdwFdgZoHdeAbD+RMFnP1 qYf/+lLLmhqrAGcBc9jyscku7Rs1hm0etWYPhPuTciCzzq7sBOxuxNagUlg0tl9K Jb82UdAjmoxvpSQjXWqgh1bH5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIo7lf21 CFVglNZXAw92cNJUzzZ0MB8GA1UdIwQYMBaAFMTk8NoBCvWGN8xZYoRx6Zi3JDxS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wQTE2MjA4QUFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi94T1R3MmdFSzlZWTN6RmxpaEhIcG1MY2tQ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hPVHcyZ0VLOVlZM3pGbGloSEhwbUxja1BGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODNEMC8wQTE2MjA4QUFGQkMxMUVBQTk2MUNCODZDNEY5QUUwMi94T1R3MmdFSzlZ WTN6RmxpaEhIcG1MY2tQRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtcA+lIkcF9dLtCZQQwzUa7T4myLYH8KAYhmtoTJ7jdEac6yB2cYeo aruJzM3yuBh9lq6oRU87Dq3VShjsV3E9CfGplupaYjZHbq2OTh4n+/gUAIOmaSPY NIsXle7mw8IirbN7tZ7k1qRiV5Z8UPskg/I9n1T+DEEN47jKjs87zsC6FecDcWU5 YrV/pCTZMIolM0oM78/xtG9L5fzG20vnWqOZC3BIAb12S0WRQnAT/gx4Vx0GxjZ7 /QD2UN9Dz+4GpFa378piclT/N5Py6GRhwaqcTu3djgT8UrvnOKSY4lQK3+2wCTR8 wBNDk4c8ALdxy1lXlwkOuh3pxwlvGCMC -----END CERTIFICATE-----Generated at Sat Dec 6 23:02:12 2025 by rpki-client