This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft File: oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft (raw, json) Hash identifier: ICg1UHPJPkd1/bEnQrm2n99j8NPUg76ulY9to4ar66k= Subject key identifier: 49:33:D3:B0:E5:F0:C0:BC:E2:D0:C0:C6:3E:02:A5:FC:32:11:D8:84 Authority key identifier: A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 Certificate issuer: /CN=A91E29CB/serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Certificate serial: 0305 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft Manifest number: 02F7 Signing time: Thu 04 Dec 2025 23:39:11 +0000 Manifest this update: Thu 04 Dec 2025 23:39:10 +0000 Manifest next update: Thu 11 Dec 2025 23:39:10 +0000 Files and hashes: 1: oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl (hash: f0cnRrzEjIn7h5wEdfKIc+hiulduhtJizcCamN3GA4I=) 2: C08A3ED6E03C11EF991E147AC4F9AE02.roa (hash: 2yxooHg2J0c3MSXXKFuW6gpFsAXkYNwDiL8UbiBNepU=) 3: C258B0D0E03C11EF991E147AC4F9AE02.roa (hash: laAl8Txo1gIHcxVocQuJwP60FGqDJ3pXtoHTwy2bFVE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:39:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 773 (0x305) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E29CB, serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Validity Not Before: Dec 4 23:39:10 2025 GMT Not After : Dec 11 23:39:10 2025 GMT Subject: CN=69321b9e-c833 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:86:4c:9a:16:57:03:9a:41:7e:05:33:61:89: ba:61:6b:5c:9f:0a:42:64:aa:cc:cb:a4:e9:15:f9: 3b:d5:68:0d:83:eb:0b:a1:41:e9:4b:2e:c9:82:39: 52:8e:b6:76:a4:15:13:e2:d6:40:3a:56:ca:71:5f: 16:c0:a2:b5:ff:e1:dc:13:70:ea:ba:5e:4d:f2:b2: 09:08:9e:42:47:01:cc:b3:b8:b2:97:db:8c:b2:6a: d5:a6:13:d2:70:07:b3:7a:ba:ef:07:19:49:f3:66: 32:e4:d5:0e:fb:15:8a:07:34:3c:80:51:ca:5c:5f: cc:d7:ca:f3:ba:4c:4a:09:93:cf:72:f4:57:9e:db: 4b:1c:ec:26:55:c1:ac:ff:94:8c:4f:f3:ca:1b:b1: f1:a1:38:2d:94:c4:81:c3:6f:88:ca:bb:ee:75:0b: 19:7b:c3:39:23:5b:ff:9d:92:4c:7e:5c:f7:1f:75: b9:6c:bf:46:a0:66:31:72:66:7a:e4:3d:66:c1:eb: 9b:7a:c6:25:20:ad:50:0a:29:17:c5:05:43:f4:e3: 12:35:d5:84:15:a2:25:5b:de:b6:19:36:2f:fa:f9: fb:ee:5c:52:e0:49:74:f0:46:02:05:d3:e4:fd:9b: 14:b6:eb:b3:bd:83:b6:02:51:dc:df:c4:b2:9e:16: e4:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:33:D3:B0:E5:F0:C0:BC:E2:D0:C0:C6:3E:02:A5:FC:32:11:D8:84 X509v3 Authority Key Identifier: keyid:A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:a8:75:65:67:2f:10:4f:29:2c:ed:01:77:cc:a5:dc:07:7b: b6:80:00:cd:20:81:0d:2e:4b:f6:40:2e:a5:08:69:4b:cb:ae: fd:7c:62:65:3d:aa:42:47:3d:20:bc:0c:3c:0c:ad:8c:c2:5c: dc:08:d3:97:11:9c:75:06:c2:b2:05:e9:91:f7:68:26:70:cd: 04:14:34:7d:74:cb:0b:89:0a:7d:de:8b:84:ad:ab:0e:9d:04: bc:79:14:79:4a:a2:6b:42:04:be:7e:b0:98:a2:86:fc:9b:b3: 90:8f:a9:e7:51:63:9a:81:74:23:27:32:c3:8d:1d:8d:bc:b4: 3c:e1:1e:33:72:0e:3d:9b:b6:b3:1c:93:d1:05:b3:67:05:94: 7a:25:9a:22:b5:1c:25:39:5a:a1:1b:ba:8e:2c:71:6e:77:e5: 16:89:6a:e8:b9:b6:81:2c:9b:d1:45:91:8f:4b:4f:dd:f8:a3: 05:05:24:95:bd:de:fc:c3:d9:03:10:6e:ad:b8:fa:c4:a5:e5: c6:59:04:91:68:c7:06:de:09:ad:68:71:e3:06:06:0b:04:55: 20:97:41:a5:30:39:48:7c:d5:19:8a:97:23:76:ef:c6:76:41: ff:66:e7:c2:81:98:60:7f:94:bd:3d:ee:63:f9:61:c6:f2:6f: 18:45:cc:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI5Q0IxMTAvBgNVBAUTKEEwN0FGMENDQjI5ODM1Q0M3NjQyOTc0QkFDOUUxNTAy QjlDRjgyRDAwHhcNMjUxMjA0MjMzOTEwWhcNMjUxMjExMjMzOTEwWjAYMRYwFAYD VQQDEw02OTMyMWI5ZS1jODMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA04ZMmhZXA5pBfgUzYYm6YWtcnwpCZKrMy6TpFfk71WgNg+sLoUHpSy7JgjlS jrZ2pBUT4tZAOlbKcV8WwKK1/+HcE3Dqul5N8rIJCJ5CRwHMs7iyl9uMsmrVphPS cAezerrvBxlJ82Yy5NUO+xWKBzQ8gFHKXF/M18rzukxKCZPPcvRXnttLHOwmVcGs /5SMT/PKG7HxoTgtlMSBw2+IyrvudQsZe8M5I1v/nZJMflz3H3W5bL9GoGYxcmZ6 5D1mweubesYlIK1QCikXxQVD9OMSNdWEFaIlW962GTYv+vn77lxS4El08EYCBdPk /ZsUtuuzvYO2AlHc38SynhbkKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEkz07Dl 8MC84tDAxj4CpfwyEdiEMB8GA1UdIwQYMBaAFKB68MyymDXMdkKXS6yeFQK5z4LQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjlDQi8xRjkwMkIwRTA1 QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5jeDJRcGRMcko0VkFyblBn dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Icnd6TEtZTmN4MlFwZExySjRWQXJuUGd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjlDQi8xRjkwMkIwRTA1QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5j eDJRcGRMcko0VkFyblBndEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQqHVlZy8QTyks7QF3zKXcB3u2gADNIIENLkv2QC6lCGlLy679fGJl PapCRz0gvAw8DK2MwlzcCNOXEZx1BsKyBemR92gmcM0EFDR9dMsLiQp93ouErasO nQS8eRR5SqJrQgS+frCYoob8m7OQj6nnUWOagXQjJzLDjR2NvLQ84R4zcg49m7az HJPRBbNnBZR6JZoitRwlOVqhG7qOLHFud+UWiWroubaBLJvRRZGPS0/d+KMFBSSV vd78w9kDEG6tuPrEpeXGWQSRaMcG3gmtaHHjBgYLBFUgl0GlMDlIfNUZipcjdu/G dkH/ZufCgZhgf5S9Pe5j+WHG8m8YRcwC -----END CERTIFICATE-----Generated at Sat Dec 6 17:28:37 2025 by rpki-client