This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft File: Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft (raw, json) Hash identifier: 1Hp4QZ6ISPsGboAHqmSFo6DBvyTahNT7B9f9QSm5yh4= Subject key identifier: 01:EF:64:22:E5:71:22:C1:AD:99:E6:B3:15:26:C6:E2:59:E0:A3:D8 Authority key identifier: 39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41 Certificate issuer: /CN=A91DC302/serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541 Certificate serial: 268C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft Manifest number: 266F Signing time: Thu 04 Dec 2025 15:30:16 +0000 Manifest this update: Thu 04 Dec 2025 15:30:15 +0000 Manifest next update: Thu 11 Dec 2025 15:30:15 +0000 Files and hashes: 1: Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl (hash: WyIiDWRNS3UW3GOcjF1rE407mBWe285YuVEWqR6/QBM=) 2: E54E5FF6632311ED8D313442C4F9AE02.roa (hash: juVS2WdVoEjnoooIFlUN1TcwOWE6yqS4du37XkdB8V8=) 3: BA61C87692D911F083913E3DC4F9AE02.roa (hash: EKR2JpxoTtOKBdOLpKLtMGV12OxD/NRUd9Y6lPYeylI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 15:30:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9868 (0x268c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC302, serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541 Validity Not Before: Dec 4 15:30:15 2025 GMT Not After : Dec 11 15:30:15 2025 GMT Subject: CN=6931a907-ade8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f9:2a:10:b8:f1:7f:e3:94:fb:b7:04:60:6a: bb:7e:c8:b1:a0:82:69:4e:d9:e4:77:48:a7:7e:39: af:c9:b0:e5:71:89:f6:c9:20:c8:0f:57:f3:08:13: e2:db:2d:1d:a0:14:d8:f0:77:f2:85:7f:fa:ea:4e: 0f:e4:22:37:ce:d4:f7:de:b7:d3:e0:1a:2c:5e:21: 3e:06:33:ad:b4:b5:07:fc:1a:72:af:0e:9f:55:e3: 11:a6:54:a1:b8:85:8e:d0:a3:8b:63:47:a5:f9:71: 69:2a:87:b4:45:bc:b7:a6:1f:ab:83:0e:18:93:ab: 82:c3:65:85:e9:4c:23:27:f4:67:2c:80:0f:82:77: a4:03:25:71:ce:23:02:ba:4f:bf:a0:22:da:31:f3: b5:50:43:3a:08:d8:85:65:89:70:1d:a8:43:76:ac: f0:b3:aa:3a:ab:02:a1:14:9a:0f:8c:22:f0:84:a6: 6a:4e:df:a2:90:02:33:3b:4d:62:96:6f:83:f0:ce: 40:e1:25:9e:07:a6:13:94:c2:89:3b:02:9f:35:24: 87:1c:70:1b:c2:8d:0b:19:40:1d:0a:7a:44:bc:e7: 96:ac:01:8b:24:f8:41:14:b1:b5:55:5b:da:b7:3a: 27:2d:68:07:97:97:38:5e:ad:73:20:87:f7:40:22: 4b:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:EF:64:22:E5:71:22:C1:AD:99:E6:B3:15:26:C6:E2:59:E0:A3:D8 X509v3 Authority Key Identifier: keyid:39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:6c:68:bc:a1:06:0d:c5:51:28:32:f6:b0:03:de:67:33:b5: a2:83:ec:2e:4c:5f:ae:b2:1e:c2:c9:a5:19:cf:8a:03:e2:e9: c5:42:0f:63:87:d0:70:60:c8:81:22:86:81:ec:28:d8:61:16: 48:25:5e:3a:d8:0f:60:37:dc:da:c6:74:e2:5a:5e:3a:49:83: b3:1f:e3:f6:e4:4f:59:b6:dc:2a:60:e0:e2:79:2c:8b:2d:90: e3:96:a2:68:97:11:50:9f:69:bd:12:f9:df:a3:76:4d:2e:b0: 02:30:a1:b0:b6:61:6a:fb:15:18:13:e2:c3:37:64:e8:1b:ef: e3:60:81:5b:80:c4:6e:03:d0:80:e1:1c:ad:59:c0:77:8c:4f: ff:bd:01:dc:7c:a8:d8:96:3b:5b:12:7e:5b:8e:b4:5b:81:a6: b1:3f:f3:95:a9:09:5a:b7:b9:6c:88:16:53:1d:88:79:88:dc: 1e:00:03:12:b4:c9:f5:9e:25:2d:23:f0:d5:85:96:39:5f:83: f3:7e:cd:83:a0:95:c3:9f:f8:79:8b:3e:3d:f0:77:21:7f:4b: 97:05:e4:81:b3:4f:7d:15:5f:ac:3f:ff:34:90:54:ba:d9:b9: 0c:6d:dd:fd:24:67:fd:da:c3:e0:38:83:85:84:67:b5:9b:9c: 8d:15:c3:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzMDIxMTAvBgNVBAUTKDM5QkY5Njk5NEFCNEM1NEM5ODNFRTBGNTEwMzY1RjRG RDk4NDE1NDEwHhcNMjUxMjA0MTUzMDE1WhcNMjUxMjExMTUzMDE1WjAYMRYwFAYD VQQDEw02OTMxYTkwNy1hZGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuvkqELjxf+OU+7cEYGq7fsixoIJpTtnkd0infjmvybDlcYn2ySDID1fzCBPi 2y0doBTY8HfyhX/66k4P5CI3ztT33rfT4BosXiE+BjOttLUH/Bpyrw6fVeMRplSh uIWO0KOLY0el+XFpKoe0Rby3ph+rgw4Yk6uCw2WF6UwjJ/RnLIAPgnekAyVxziMC uk+/oCLaMfO1UEM6CNiFZYlwHahDdqzws6o6qwKhFJoPjCLwhKZqTt+ikAIzO01i lm+D8M5A4SWeB6YTlMKJOwKfNSSHHHAbwo0LGUAdCnpEvOeWrAGLJPhBFLG1VVva tzonLWgHl5c4Xq1zIIf3QCJLkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAHvZCLl cSLBrZnmsxUmxuJZ4KPYMB8GA1UdIwQYMBaAFDm/lplKtMVMmD7g9RA2X0/ZhBVB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMwMi80RUE0OEU4NEZC QTkxMUU0QThCMzRDMjNDNEY5QUUwMi9PYi1XbVVxMHhVeVlQdUQxRURaZlQ5bUVG VUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09iLVdtVXEweFV5WVB1RDFFRFpmVDltRUZVRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzMwMi80RUE0OEU4NEZCQTkxMUU0QThCMzRDMjNDNEY5QUUwMi9PYi1XbVVxMHhV eVlQdUQxRURaZlQ5bUVGVUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbbGi8oQYNxVEoMvawA95nM7Wig+wuTF+ush7CyaUZz4oD4unFQg9j h9BwYMiBIoaB7CjYYRZIJV462A9gN9zaxnTiWl46SYOzH+P25E9ZttwqYODieSyL LZDjlqJolxFQn2m9Evnfo3ZNLrACMKGwtmFq+xUYE+LDN2ToG+/jYIFbgMRuA9CA 4RytWcB3jE//vQHcfKjYljtbEn5bjrRbgaaxP/OVqQlat7lsiBZTHYh5iNweAAMS tMn1niUtI/DVhZY5X4Pzfs2DoJXDn/h5iz498Hchf0uXBeSBs099FV+sP/80kFS6 2bkMbd39JGf92sPgOIOFhGe1m5yNFcPZ -----END CERTIFICATE-----Generated at Sat Dec 6 12:23:43 2025 by rpki-client