This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft File: oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft (raw, json) Hash identifier: D2oGyDZUbGghN1/hlgFG+ES7kYxIg7QFMyFdzk653hs= Subject key identifier: A8:78:8E:08:C1:5B:5C:AE:E9:30:46:B3:D5:E5:43:56:53:01:CB:72 Authority key identifier: A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 Certificate issuer: /CN=A91D9D8B/serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Certificate serial: 0232 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft Manifest number: 022C Signing time: Fri 05 Dec 2025 00:23:03 +0000 Manifest this update: Fri 05 Dec 2025 00:23:03 +0000 Manifest next update: Fri 12 Dec 2025 00:23:03 +0000 Files and hashes: 1: oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl (hash: TF9jFmsg6FOod0NdeUvUty6vMZiXsfyI/ILMXi+RhQ8=) 2: 95C4C7AA7F7911ED9C1EAE19C4F9AE02.roa (hash: 9UBDG0nK7dNXHoswvyDP2323eSe7RBcMWWQgGNewLxg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:23:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 562 (0x232) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9D8B, serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Validity Not Before: Dec 5 00:23:03 2025 GMT Not After : Dec 12 00:23:03 2025 GMT Subject: CN=693225e7-e14e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:28:f4:6d:f2:a1:04:a8:39:7c:7d:29:bc:fc: 0b:4a:43:39:08:a7:13:ed:78:d0:af:08:cb:e6:f5: 28:be:29:9b:b6:28:17:84:eb:7b:45:93:58:70:8c: ae:bd:dd:f9:ab:27:de:c0:53:72:73:6b:33:dd:bc: 24:9a:9f:b8:9c:75:13:28:4c:ed:24:20:9a:79:16: 26:ce:46:d8:50:7b:a1:90:c4:17:e9:9b:7d:93:df: 9e:9b:0c:31:bb:96:4b:07:a2:ea:2d:e3:a7:eb:15: 8f:d2:05:d7:2e:9b:fb:ea:a2:57:3c:80:b8:00:fe: e8:07:85:85:e9:d5:63:c8:2a:ac:fe:b8:41:6b:c0: a4:d6:55:36:5f:88:88:63:16:db:64:a5:07:e4:8f: db:60:e3:da:d1:5e:2b:ff:a6:e5:6d:53:71:61:dc: 81:de:b4:ab:f9:de:45:08:c0:05:2e:e8:7e:5e:ca: 5f:45:75:51:0e:b0:90:df:a9:b6:6d:4c:68:23:10: 2e:6a:b7:f2:9d:60:94:6a:36:ae:d6:2d:e4:c1:8a: 41:26:14:b2:37:7a:15:30:88:24:08:95:31:d8:61: 78:00:2c:1e:19:e9:59:59:e1:ea:c7:25:27:54:ba: ed:43:95:6f:b6:d4:83:bd:33:ac:2e:28:f7:ba:27: 2b:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:78:8E:08:C1:5B:5C:AE:E9:30:46:B3:D5:E5:43:56:53:01:CB:72 X509v3 Authority Key Identifier: keyid:A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:b3:7c:3f:6c:e8:67:71:b8:92:46:3d:41:b7:77:51:41:06: 28:bf:66:2b:23:83:f6:a4:de:c6:b1:b0:87:0b:4e:2b:97:22: 74:8b:63:f4:f2:a8:48:85:5a:eb:1c:38:eb:3b:1b:fb:cd:de: 53:eb:b2:f5:33:83:05:92:0e:b5:21:f9:a2:54:9a:95:4c:e9: 05:fb:c3:db:8c:ed:0d:15:ab:11:88:30:03:32:ba:11:7a:c0: d3:4b:45:a8:c0:b0:d4:bd:09:d7:41:55:bd:c0:56:ca:b3:a4: 91:23:2c:47:eb:68:9a:b9:a4:59:dc:0c:ba:d8:8c:4f:7f:89: 77:79:ce:65:b8:ce:ce:a1:b6:01:07:3e:4e:7b:83:7a:b8:7e: b9:b9:1b:7a:80:2c:5b:f3:55:de:12:55:6a:ef:3c:13:7b:95: ee:03:26:f2:db:e2:8e:30:2c:f7:fc:7c:d9:9a:1e:40:49:06: ae:78:7e:19:d9:e9:92:2b:c0:26:b7:6b:80:e9:ec:5d:e5:1a: 90:a8:65:bf:47:35:68:62:11:7c:d4:b3:ae:d8:0b:4b:04:42: e1:3e:69:ad:4a:ef:3c:5c:af:12:41:05:f8:26:08:ac:62:1c: ed:c7:86:07:93:b9:77:58:5d:12:6e:9e:2b:8a:e8:5b:5a:93: 86:a7:4f:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlEOEIxMTAvBgNVBAUTKEExOTM4QzkxMkFDMkY0QTk1OEI5M0RBRjhGNEIyNzIw MTVCMEQ4RDgwHhcNMjUxMjA1MDAyMzAzWhcNMjUxMjEyMDAyMzAzWjAYMRYwFAYD VQQDEw02OTMyMjVlNy1lMTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApij0bfKhBKg5fH0pvPwLSkM5CKcT7XjQrwjL5vUovimbtigXhOt7RZNYcIyu vd35qyfewFNyc2sz3bwkmp+4nHUTKEztJCCaeRYmzkbYUHuhkMQX6Zt9k9+emwwx u5ZLB6LqLeOn6xWP0gXXLpv76qJXPIC4AP7oB4WF6dVjyCqs/rhBa8Ck1lU2X4iI YxbbZKUH5I/bYOPa0V4r/6blbVNxYdyB3rSr+d5FCMAFLuh+XspfRXVRDrCQ36m2 bUxoIxAuarfynWCUajau1i3kwYpBJhSyN3oVMIgkCJUx2GF4ACweGelZWeHqxyUn VLrtQ5VvttSDvTOsLij3uicrTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKh4jgjB W1yu6TBGs9XlQ1ZTActyMB8GA1UdIwQYMBaAFKGTjJEqwvSpWLk9r49LJyAVsNjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUQ4Qi81RjExRTAyQTdG NzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlLbFl1VDJ2ajBzbklCV3cy TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29aT01rU3JDOUtsWXVUMnZqMHNuSUJXdzJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUQ4Qi81RjExRTAyQTdGNzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlL bFl1VDJ2ajBzbklCV3cyTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRs3w/bOhncbiSRj1Bt3dRQQYov2YrI4P2pN7GsbCHC04rlyJ0i2P0 8qhIhVrrHDjrOxv7zd5T67L1M4MFkg61IfmiVJqVTOkF+8PbjO0NFasRiDADMroR esDTS0WowLDUvQnXQVW9wFbKs6SRIyxH62iauaRZ3Ay62IxPf4l3ec5luM7OobYB Bz5Oe4N6uH65uRt6gCxb81XeElVq7zwTe5XuAyby2+KOMCz3/HzZmh5ASQaueH4Z 2emSK8Amt2uA6exd5RqQqGW/RzVoYhF81LOu2AtLBELhPmmtSu88XK8SQQX4Jgis Yhztx4YHk7l3WF0Sbp4riuhbWpOGp082 -----END CERTIFICATE-----Generated at Sat Dec 6 15:08:44 2025 by rpki-client