This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft File: Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft (raw, json) Hash identifier: EAmiXU+aG8jeiYcX9p4t15qiauNnajFoiW/JfqF9osQ= Subject key identifier: 33:D7:7A:D7:8B:D1:9D:26:05:E7:10:5B:FC:E0:F3:87:19:91:D2:D3 Authority key identifier: 39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 Certificate issuer: /CN=A91DF863/serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Certificate serial: 337C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft Manifest number: 3326 Signing time: Thu 04 Dec 2025 15:14:22 +0000 Manifest this update: Thu 04 Dec 2025 15:14:21 +0000 Manifest next update: Thu 11 Dec 2025 15:14:21 +0000 Files and hashes: 1: Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl (hash: bq9PZUOpkUXs+ifawcv4xW2aHS4X/VzZcA9JkDiLFQc=) 2: 844CFD1C5BAA11EFBAF22B7FC4F9AE02.roa (hash: F0EI0pjKdFSXXJaNRIeZAVVcc/1UvTOq8MA6ZbeocbA=) 3: 902F4AAC567011EFA451BD7CC4F9AE02.roa (hash: qmlGrSLmYcGa18yom8d6PeePfMWIiWVkajsGQGVwEAE=) 4: 909AA4DC567011EFA451BD7CC4F9AE02.roa (hash: eNA7hmO0iaDh6B8QriE+uJJoAJhe22m7Y0RORTwFmBQ=) 5: 834D7D565BAA11EFBAF22B7FC4F9AE02.roa (hash: TJYAsaduMNFlCfCtpHImQhHzTtlz3kZi3/4L+kmyEYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 15:14:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13180 (0x337c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF863, serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Validity Not Before: Dec 4 15:14:21 2025 GMT Not After : Dec 11 15:14:21 2025 GMT Subject: CN=6931a54e-45f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:51:13:76:fe:c2:d0:a0:a2:a4:72:2f:82:ec: ac:5e:09:88:40:b3:e1:de:78:8b:38:d4:5c:cd:1a: f0:2a:65:78:f7:db:a0:16:5a:ca:37:be:5f:d6:94: c0:4a:f2:b5:ac:fa:b9:9d:be:61:93:1e:20:04:93: cc:8b:8a:c3:29:8f:09:48:90:d2:73:f4:1d:95:ca: 03:2c:ef:04:f8:bd:09:31:9d:55:9f:d0:c4:e7:d9: af:a5:8d:9d:11:b1:8e:95:81:d3:d4:47:81:e0:2d: 77:5f:68:f0:d6:58:6d:e8:7c:35:47:9e:71:6f:2b: 33:db:3d:00:ad:b5:55:88:71:06:86:39:01:22:ed: f9:9d:03:e9:4c:69:05:07:71:bf:c2:4b:68:1c:25: 01:69:56:69:d5:50:76:00:08:98:16:d1:ba:2c:e0: 10:ee:38:14:3f:f8:6b:bc:e2:21:8d:6c:5c:b3:31: 2e:91:b5:a4:cf:8b:d2:c6:d4:dd:24:af:8e:58:4b: d8:ca:c6:16:a1:f0:68:65:fe:25:61:4d:3c:1e:41: cc:30:4b:79:4a:b8:2d:5c:5d:0c:43:92:d0:4b:b6: e8:94:4e:86:ae:15:5c:df:65:8f:ac:f5:a6:04:d7: eb:a6:f4:15:f8:f7:8f:86:69:c6:98:2e:91:11:a6: fd:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:D7:7A:D7:8B:D1:9D:26:05:E7:10:5B:FC:E0:F3:87:19:91:D2:D3 X509v3 Authority Key Identifier: keyid:39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:8f:7f:e0:ab:5f:a9:72:cd:ce:a1:71:ea:22:d4:30:6c:da: 4b:98:52:99:0e:9c:a5:c1:30:39:24:86:cd:5f:d8:87:e3:53: 23:db:06:27:be:36:5d:4c:b9:1c:b7:8c:f1:3a:55:db:53:33: 98:b6:bd:a0:9a:58:dc:fc:a8:24:7d:9a:2c:2e:72:b7:de:bc: 7b:d2:72:3b:7b:45:32:4d:94:df:6d:f8:a5:3d:ff:c8:0e:82: a6:f8:c7:1a:fb:fd:92:1e:d0:a0:9b:fb:10:5c:ca:ca:ef:d9: 94:44:59:f1:19:a1:f4:77:ef:95:a2:aa:f3:a0:26:cc:82:34: d7:ec:4b:b2:28:cd:f8:f6:98:c1:2c:f3:f5:f3:26:7a:16:15: be:ad:1f:66:97:8e:a1:b3:bc:fe:36:d5:68:96:71:51:31:41: 17:96:df:ce:4e:f4:e4:02:68:97:75:9f:1d:50:16:b3:30:b7: c8:99:ed:c2:25:db:6f:69:ea:fb:e1:4b:14:9e:97:40:d8:01: 08:72:2d:e7:b9:82:75:2b:e1:6b:ee:c2:ad:ea:39:6d:37:70: 52:fa:9d:b9:54:43:ed:50:b3:2c:d3:4b:fc:4f:fb:ea:35:15: f7:2f:fb:41:1e:ae:90:15:b7:d9:45:16:ee:e8:d7:e1:17:aa: 1a:c6:35:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM3wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NjMxMTAvBgNVBAUTKDM5Q0UxNURCMzY3MzlBMjJDQUVFNjRFMENGOEJBMzFG NUE2QjkzNDgwHhcNMjUxMjA0MTUxNDIxWhcNMjUxMjExMTUxNDIxWjAYMRYwFAYD VQQDEw02OTMxYTU0ZS00NWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwlETdv7C0KCipHIvguysXgmIQLPh3niLONRczRrwKmV499ugFlrKN75f1pTA SvK1rPq5nb5hkx4gBJPMi4rDKY8JSJDSc/QdlcoDLO8E+L0JMZ1Vn9DE59mvpY2d EbGOlYHT1EeB4C13X2jw1lht6Hw1R55xbysz2z0ArbVViHEGhjkBIu35nQPpTGkF B3G/wktoHCUBaVZp1VB2AAiYFtG6LOAQ7jgUP/hrvOIhjWxcszEukbWkz4vSxtTd JK+OWEvYysYWofBoZf4lYU08HkHMMEt5SrgtXF0MQ5LQS7bolE6GrhVc32WPrPWm BNfrpvQV+PePhmnGmC6REab9awIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDPXeteL 0Z0mBecQW/zg84cZkdLTMB8GA1UdIwQYMBaAFDnOFds2c5oiyu5k4M+Lox9aa5NI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg2My9CRkU1NEE2ODgx NUIxMUUyOUI1OEE3M0IzMjkyQjVFOC9PYzRWMnpaem1pTEs3bVRnejR1akgxcHJr MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jNFYyelp6bWlMSzdtVGd6NHVqSDFwcmswZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Rjg2My9CRkU1NEE2ODgxNUIxMUUyOUI1OEE3M0IzMjkyQjVFOC9PYzRWMnpaem1p TEs3bVRnejR1akgxcHJrMGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmj3/gq1+pcs3OoXHqItQwbNpLmFKZDpylwTA5JIbNX9iH41Mj2wYn vjZdTLkct4zxOlXbUzOYtr2gmljc/KgkfZosLnK33rx70nI7e0UyTZTfbfilPf/I DoKm+Mca+/2SHtCgm/sQXMrK79mURFnxGaH0d++VoqrzoCbMgjTX7EuyKM349pjB LPP18yZ6FhW+rR9ml46hs7z+NtVolnFRMUEXlt/OTvTkAmiXdZ8dUBazMLfIme3C Jdtvaer74UsUnpdA2AEIci3nuYJ1K+Fr7sKt6jltN3BS+p25VEPtULMs00v8T/vq NRX3L/tBHq6QFbfZRRbu6NfhF6oaxjVj -----END CERTIFICATE-----Generated at Sat Dec 6 13:52:39 2025 by rpki-client