This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft File: Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft (raw, json) Hash identifier: V9r/E8y9IDd1ppG0zqz9Tzvg3pOjgboI751GWoA7vx8= Subject key identifier: C7:16:6B:38:40:24:59:83:3D:5F:6D:C5:71:A1:B5:C5:D4:F5:99:B6 Authority key identifier: 39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 Certificate issuer: /CN=A91DF863/serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Certificate serial: 3384 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft Manifest number: 332E Signing time: Sat 20 Dec 2025 15:18:33 +0000 Manifest this update: Sat 20 Dec 2025 15:18:32 +0000 Manifest next update: Sat 27 Dec 2025 15:18:32 +0000 Files and hashes: 1: Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl (hash: oeDww0aA+LkTZDKokmALn/xJuppqILdtoTYu44RH28E=) 2: 844CFD1C5BAA11EFBAF22B7FC4F9AE02.roa (hash: F0EI0pjKdFSXXJaNRIeZAVVcc/1UvTOq8MA6ZbeocbA=) 3: 909AA4DC567011EFA451BD7CC4F9AE02.roa (hash: eNA7hmO0iaDh6B8QriE+uJJoAJhe22m7Y0RORTwFmBQ=) 4: 902F4AAC567011EFA451BD7CC4F9AE02.roa (hash: qmlGrSLmYcGa18yom8d6PeePfMWIiWVkajsGQGVwEAE=) 5: 834D7D565BAA11EFBAF22B7FC4F9AE02.roa (hash: TJYAsaduMNFlCfCtpHImQhHzTtlz3kZi3/4L+kmyEYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 15:18:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13188 (0x3384) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF863, serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Validity Not Before: Dec 20 15:18:32 2025 GMT Not After : Dec 27 15:18:32 2025 GMT Subject: CN=6946be49-d6a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f3:3a:48:a5:13:de:39:0b:ea:bc:29:9c:3f: 08:5d:a3:79:f6:d9:21:bb:7f:64:3e:66:64:be:16: a2:be:b1:02:47:a7:8c:28:26:4d:41:0b:50:a9:09: 28:42:1f:d6:61:cd:02:6b:57:a6:87:79:6f:fa:2a: 07:c6:4d:af:a6:9e:e9:83:6f:cf:9b:3c:e2:3e:d3: 22:15:43:6e:1d:69:6b:e2:d0:a4:8d:9f:e8:4d:5c: 8c:95:e5:1d:94:be:d1:50:c6:31:b3:80:43:ae:34: 0b:d7:0d:2b:47:ae:b8:60:f2:30:2c:a6:0f:95:5b: b4:7f:21:ca:42:89:ed:88:85:a8:d8:85:41:39:26: 76:b1:1b:31:c3:47:49:57:f2:71:51:e6:93:ab:f1: d3:6a:37:8a:36:1b:42:b6:6b:8f:09:3c:a9:7a:ad: 66:ed:06:34:6b:f3:51:93:38:bd:1a:64:cb:59:43: 37:eb:79:91:b9:69:cc:69:ff:d1:52:7c:8d:2e:9c: 22:a8:24:a5:91:56:66:2d:bf:8e:3b:ba:12:aa:43: 74:67:15:58:03:de:34:03:7c:25:ec:e0:59:0f:a0: ac:ce:0f:f8:26:eb:38:02:d7:45:37:3b:d0:57:ed: 48:3c:b0:f4:c2:97:a0:e0:62:f0:92:03:67:bc:5b: 33:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:16:6B:38:40:24:59:83:3D:5F:6D:C5:71:A1:B5:C5:D4:F5:99:B6 X509v3 Authority Key Identifier: keyid:39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:56:50:27:73:21:58:b2:bc:a3:6a:11:dd:16:b6:ea:d6:02: f5:0d:53:7c:9e:ae:1a:8e:99:b6:af:35:c4:13:1c:f8:49:b2: 3e:f8:1a:77:61:8b:a8:18:54:a6:63:f9:05:7b:26:ab:0f:b2: e0:9d:ff:2a:9a:86:96:41:35:70:31:ee:8b:e6:35:ee:d7:33: f4:d6:fe:7b:32:84:29:56:25:00:db:53:eb:9c:82:4e:13:04: 5e:36:19:7f:14:53:1b:2a:f4:8b:ec:8f:bf:f4:d4:ac:6b:68: db:5e:7f:fb:45:49:c5:60:a0:88:a1:1d:1b:10:22:94:0f:5c: 7d:c7:be:d7:e6:73:2d:d3:f9:3e:b6:78:ed:90:f1:0c:be:82: 35:dc:e3:bc:e9:7a:c9:e6:91:62:8c:d6:96:7d:30:6a:69:88: 7e:94:ff:e6:18:3b:7b:fd:ca:1c:b4:8d:6f:5c:b1:81:79:4d: c2:58:06:13:38:b4:ee:fe:3a:de:50:02:bc:9f:21:75:a2:b7: f5:71:35:da:06:1b:4e:2f:05:cf:28:a1:0f:aa:1e:65:a3:47: fe:bd:a5:bf:1c:29:f2:47:6f:9f:6d:9f:f4:89:7b:e2:b3:2a: 5c:49:8c:0e:51:9d:f0:8b:de:c4:91:7a:98:07:0f:73:46:2e: a5:8e:71:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM4QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NjMxMTAvBgNVBAUTKDM5Q0UxNURCMzY3MzlBMjJDQUVFNjRFMENGOEJBMzFG NUE2QjkzNDgwHhcNMjUxMjIwMTUxODMyWhcNMjUxMjI3MTUxODMyWjAYMRYwFAYD VQQDDA02OTQ2YmU0OS1kNmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq/M6SKUT3jkL6rwpnD8IXaN59tkhu39kPmZkvhaivrECR6eMKCZNQQtQqQko Qh/WYc0Ca1emh3lv+ioHxk2vpp7pg2/PmzziPtMiFUNuHWlr4tCkjZ/oTVyMleUd lL7RUMYxs4BDrjQL1w0rR664YPIwLKYPlVu0fyHKQontiIWo2IVBOSZ2sRsxw0dJ V/JxUeaTq/HTajeKNhtCtmuPCTypeq1m7QY0a/NRkzi9GmTLWUM363mRuWnMaf/R UnyNLpwiqCSlkVZmLb+OO7oSqkN0ZxVYA940A3wl7OBZD6Cszg/4Jus4AtdFNzvQ V+1IPLD0wpeg4GLwkgNnvFszXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMcWazhA JFmDPV9txXGhtcXU9Zm2MB8GA1UdIwQYMBaAFDnOFds2c5oiyu5k4M+Lox9aa5NI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg2My9CRkU1NEE2ODgx NUIxMUUyOUI1OEE3M0IzMjkyQjVFOC9PYzRWMnpaem1pTEs3bVRnejR1akgxcHJr MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jNFYyelp6bWlMSzdtVGd6NHVqSDFwcmswZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Rjg2My9CRkU1NEE2ODgxNUIxMUUyOUI1OEE3M0IzMjkyQjVFOC9PYzRWMnpaem1p TEs3bVRnejR1akgxcHJrMGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARVlAncyFYsryjahHdFrbq1gL1DVN8nq4ajpm2rzXEExz4SbI++Bp3 YYuoGFSmY/kFeyarD7Lgnf8qmoaWQTVwMe6L5jXu1zP01v57MoQpViUA21PrnIJO EwReNhl/FFMbKvSL7I+/9NSsa2jbXn/7RUnFYKCIoR0bECKUD1x9x77X5nMt0/k+ tnjtkPEMvoI13OO86XrJ5pFijNaWfTBqaYh+lP/mGDt7/coctI1vXLGBeU3CWAYT OLTu/jreUAK8nyF1orf1cTXaBhtOLwXPKKEPqh5lo0f+vaW/HCnyR2+fbZ/0iXvi sypcSYwOUZ3wi97EkXqYBw9zRi6ljnFt -----END CERTIFICATE-----Generated at Sun Dec 21 01:48:25 2025 by rpki-client