This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft File: onKsr-j6pPKpcApvwRQlkIx0PUs.mft (raw, json) Hash identifier: dsNdusanLEiH3x/sSYQrPqlhIBJ3AVFa+liKDA/x7g8= Subject key identifier: AC:F3:27:CE:7D:3B:41:B5:E2:08:7B:B0:3D:35:4C:D2:3C:21:39:4F Authority key identifier: A2:72:AC:AF:E8:FA:A4:F2:A9:70:0A:6F:C1:14:25:90:8C:74:3D:4B Certificate issuer: /CN=A91E3E27/serialNumber=A272ACAFE8FAA4F2A9700A6FC11425908C743D4B Certificate serial: 0B12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft Manifest number: 0AC1 Signing time: Thu 04 Dec 2025 18:53:18 +0000 Manifest this update: Thu 04 Dec 2025 18:53:17 +0000 Manifest next update: Thu 11 Dec 2025 18:53:17 +0000 Files and hashes: 1: onKsr-j6pPKpcApvwRQlkIx0PUs.crl (hash: qKQGadykCqaz/fX1uPFf8npZ8hbdnmOOKUzdNBu0d68=) 2: 879C6CC6BC0A11EF8387A57BC4F9AE02.roa (hash: GD8TE1iM2Ym7f93p/1VYDkqCG50V4KFtJCkioUpH7AI=) 3: B379B0346F4711EA81200366C4F9AE02.roa (hash: 34aVw5Rt72hNPVd0d/UxB/shSl9fnFPWjJTO5/uz5ZU=) 4: 95BD9D90A56A11EFA5ABDC46C4F9AE02.roa (hash: 5hsatirdoTAMt8sVP/32NV6rGnCIOasP2d6dKTsMLr4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.crl rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:53:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2834 (0xb12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E27, serialNumber=A272ACAFE8FAA4F2A9700A6FC11425908C743D4B Validity Not Before: Dec 4 18:53:17 2025 GMT Not After : Dec 11 18:53:17 2025 GMT Subject: CN=6931d89d-f880 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:bc:3d:c8:a1:a2:9c:b6:e1:0a:c4:3c:51:cb: 60:c8:43:7d:d5:0f:56:92:3c:0a:79:4e:02:ea:f5: aa:24:f6:73:78:12:31:2c:ac:51:9b:99:0a:07:62: 15:58:e6:ae:3d:d9:b2:14:b9:fd:4c:70:50:95:1e: c4:d9:96:36:e6:96:6c:86:c5:7f:db:69:80:5c:94: 1c:d8:69:48:26:9e:79:59:65:0e:77:8f:3c:63:33: 7f:cb:1f:7f:1b:a5:e8:f3:aa:6d:a5:c5:78:ea:4f: 87:7a:cb:87:2d:0e:a5:5b:0e:b1:d3:ef:6e:d6:34: 7f:d0:91:7d:c4:b1:07:3b:31:65:f9:a8:80:b4:40: 70:d2:c2:0a:c7:79:98:dc:a7:2b:31:75:f7:47:a4: b4:d5:21:09:7a:b6:1d:ab:e9:38:8c:c6:93:73:ae: eb:c1:78:e6:5f:93:f6:e4:9f:e3:d4:c6:08:67:b2: f8:0a:77:d0:33:f2:37:a3:12:c6:67:38:07:3b:90: a3:49:bc:7b:1f:c7:9b:87:1c:9c:d2:32:2f:ab:44: 84:10:49:e7:b8:c0:92:0a:47:97:4b:7a:e7:ed:b2: 61:76:c8:9a:d1:03:d8:25:d8:95:ec:6e:d1:fd:7a: 69:5e:0b:6f:8e:d7:49:ea:61:7a:fb:41:58:bf:15: d0:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:F3:27:CE:7D:3B:41:B5:E2:08:7B:B0:3D:35:4C:D2:3C:21:39:4F X509v3 Authority Key Identifier: keyid:A2:72:AC:AF:E8:FA:A4:F2:A9:70:0A:6F:C1:14:25:90:8C:74:3D:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:15:45:b1:d1:d9:48:3a:06:59:92:ee:08:66:06:9b:4c:f9: a3:ab:32:b2:e7:52:05:6a:30:77:6e:c1:1c:f1:7e:00:02:88: 3f:8e:4b:43:1d:a8:5c:b9:55:3e:65:fd:34:98:dd:07:48:46: 6b:cf:8b:0f:dd:78:be:6c:cd:fc:9e:38:09:51:8b:9b:4c:0c: 20:cd:06:d2:da:f7:a3:a0:fe:3d:c2:d5:22:1a:b8:57:f5:31: 69:15:f4:c8:f6:c2:39:1b:4b:01:a9:6f:01:4c:be:36:5d:2b: b5:d3:17:aa:16:9d:a0:68:9e:ab:6c:86:db:ee:0a:2b:66:17: 31:5e:ff:50:b1:84:05:ad:65:ff:05:8f:57:ac:22:0a:6f:83: 71:b9:4e:6e:e7:4a:4e:b3:85:44:4d:45:62:2f:b2:67:71:eb: 10:68:9d:d7:47:ef:16:d3:e3:22:5f:d2:13:a8:f1:25:b5:b8: 16:25:af:b8:95:1e:76:c6:e9:66:88:58:38:6a:ae:2c:81:f6: ea:6d:c6:85:46:a5:f2:b5:bd:e5:d7:fa:39:2c:93:b4:47:f1: 6c:b9:24:46:73:7c:9e:c3:b2:bd:70:01:86:49:5c:cc:46:1d: db:c1:a3:b4:e7:7a:4e:ec:76:96:c7:f3:2b:9f:c1:2c:ae:c1: 94:37:c7:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNFMjcxMTAvBgNVBAUTKEEyNzJBQ0FGRThGQUE0RjJBOTcwMEE2RkMxMTQyNTkw OEM3NDNENEIwHhcNMjUxMjA0MTg1MzE3WhcNMjUxMjExMTg1MzE3WjAYMRYwFAYD VQQDEw02OTMxZDg5ZC1mODgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0bw9yKGinLbhCsQ8UctgyEN91Q9WkjwKeU4C6vWqJPZzeBIxLKxRm5kKB2IV WOauPdmyFLn9THBQlR7E2ZY25pZshsV/22mAXJQc2GlIJp55WWUOd488YzN/yx9/ G6Xo86ptpcV46k+HesuHLQ6lWw6x0+9u1jR/0JF9xLEHOzFl+aiAtEBw0sIKx3mY 3KcrMXX3R6S01SEJerYdq+k4jMaTc67rwXjmX5P25J/j1MYIZ7L4CnfQM/I3oxLG ZzgHO5CjSbx7H8ebhxyc0jIvq0SEEEnnuMCSCkeXS3rn7bJhdsia0QPYJdiV7G7R /XppXgtvjtdJ6mF6+0FYvxXQMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKzzJ859 O0G14gh7sD01TNI8ITlPMB8GA1UdIwQYMBaAFKJyrK/o+qTyqXAKb8EUJZCMdD1L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0UyNy9GMzg4ODc2NjZG M0ExMUVBOTg0MDEzM0RDNEY5QUUwMi9vbktzci1qNnBQS3BjQXB2d1JRbGtJeDBQ VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29uS3NyLWo2cFBLcGNBcHZ3UlFsa0l4MFBVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0UyNy9GMzg4ODc2NjZGM0ExMUVBOTg0MDEzM0RDNEY5QUUwMi9vbktzci1qNnBQ S3BjQXB2d1JRbGtJeDBQVXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHFUWx0dlIOgZZku4IZgabTPmjqzKy51IFajB3bsEc8X4AAog/jktD HahcuVU+Zf00mN0HSEZrz4sP3Xi+bM38njgJUYubTAwgzQbS2vejoP49wtUiGrhX 9TFpFfTI9sI5G0sBqW8BTL42XSu10xeqFp2gaJ6rbIbb7gorZhcxXv9QsYQFrWX/ BY9XrCIKb4NxuU5u50pOs4VETUViL7JncesQaJ3XR+8W0+MiX9ITqPEltbgWJa+4 lR52xulmiFg4aq4sgfbqbcaFRqXytb3l1/o5LJO0R/FsuSRGc3yew7K9cAGGSVzM Rh3bwaO053pO7HaWx/Mrn8EsrsGUN8dX -----END CERTIFICATE-----Generated at Sat Dec 6 18:49:49 2025 by rpki-client