This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4B6A/B481334284D711EC8E07416DC4F9AE02/ogavyWamnnC0ibOPEEg9wfpdPiI.mft File: ogavyWamnnC0ibOPEEg9wfpdPiI.mft (raw, json) Hash identifier: ibCoTKw2XyuvbhlRd++q/6Ei1uRiLNZUe10JQ3qxjwQ= Subject key identifier: 09:4B:9A:18:64:B3:E1:98:48:86:CD:8C:71:B5:61:12:19:50:91:03 Authority key identifier: A2:06:AF:C9:66:A6:9E:70:B4:89:B3:8F:10:48:3D:C1:FA:5D:3E:22 Certificate issuer: /CN=A91E4B6A/serialNumber=A206AFC966A69E70B489B38F10483DC1FA5D3E22 Certificate serial: 043F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogavyWamnnC0ibOPEEg9wfpdPiI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4B6A/B481334284D711EC8E07416DC4F9AE02/ogavyWamnnC0ibOPEEg9wfpdPiI.mft Manifest number: 043B Signing time: Sat 20 Dec 2025 23:31:34 +0000 Manifest this update: Sat 20 Dec 2025 23:31:34 +0000 Manifest next update: Sat 27 Dec 2025 23:31:34 +0000 Files and hashes: 1: ogavyWamnnC0ibOPEEg9wfpdPiI.crl (hash: 0zvW+7gjOV+9ysVvzXvbrGkJrmZ09tKj+L7x9PnAYAI=) 2: F7335D9484D911EC89E5246EC4F9AE02.roa (hash: zIQCvO1cYT9GDGEyMPF0tBOYTt1JAajUXmcBSrFDxrs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4B6A/B481334284D711EC8E07416DC4F9AE02/ogavyWamnnC0ibOPEEg9wfpdPiI.crl rsync://rpki.apnic.net/member_repository/A91E4B6A/B481334284D711EC8E07416DC4F9AE02/ogavyWamnnC0ibOPEEg9wfpdPiI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogavyWamnnC0ibOPEEg9wfpdPiI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 23:31:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1087 (0x43f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4B6A, serialNumber=A206AFC966A69E70B489B38F10483DC1FA5D3E22 Validity Not Before: Dec 20 23:31:34 2025 GMT Not After : Dec 27 23:31:34 2025 GMT Subject: CN=694731d6-a0d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b3:54:46:e8:44:1d:bb:89:a1:92:24:a9:22: 9c:c3:d8:21:f4:15:65:ce:d0:3b:07:bf:2f:5b:b3: 31:8f:4a:d9:96:15:9d:cd:0a:2a:1b:91:d2:6e:2a: 2c:2a:7f:0f:34:5f:1a:aa:44:22:ff:b0:6e:5f:19: 91:08:2d:16:88:16:b4:d3:5b:56:38:c1:10:21:de: 79:50:28:d8:63:c0:34:01:fe:dd:2e:a4:55:9c:ae: 3b:76:8e:e3:da:dc:ec:57:b0:e4:0f:a7:44:74:dc: 26:9e:ea:3d:96:57:b7:36:60:72:27:ee:68:b8:20: 5f:24:6a:53:73:4a:ca:1b:4e:21:2d:27:d4:2d:c5: d7:3e:d0:49:b1:09:a1:5e:57:b3:7b:dd:01:b9:1b: c3:6d:f8:69:c7:78:0a:10:f2:ab:7b:d2:a3:45:32: d2:50:3c:a0:38:cb:ec:ab:c6:f2:d6:be:08:8c:fc: 3d:e0:1c:54:24:d3:2e:2f:61:bc:ac:14:ba:36:a9: 4b:24:df:18:0e:cf:da:5a:b9:79:94:08:f4:bb:7d: 7d:9e:4c:58:40:25:11:56:80:53:86:9d:dc:50:73: a9:76:39:2a:43:84:50:ab:39:45:45:30:b7:30:f6: d1:6b:ab:b2:a8:50:43:98:f1:22:e9:55:4e:80:4a: e8:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:4B:9A:18:64:B3:E1:98:48:86:CD:8C:71:B5:61:12:19:50:91:03 X509v3 Authority Key Identifier: keyid:A2:06:AF:C9:66:A6:9E:70:B4:89:B3:8F:10:48:3D:C1:FA:5D:3E:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4B6A/B481334284D711EC8E07416DC4F9AE02/ogavyWamnnC0ibOPEEg9wfpdPiI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogavyWamnnC0ibOPEEg9wfpdPiI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4B6A/B481334284D711EC8E07416DC4F9AE02/ogavyWamnnC0ibOPEEg9wfpdPiI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:f1:0a:f1:0a:8c:f6:c7:25:b5:79:89:d6:6e:db:83:75:d8: be:3f:9b:4d:5f:36:e0:aa:45:63:cc:43:65:a6:31:4e:7b:d2: 5b:74:aa:27:00:d5:a3:f3:77:2d:2f:60:e3:b0:f2:12:c9:53: d6:cd:76:2b:7d:ac:21:39:de:0f:16:17:0c:91:db:ac:99:86: 4d:2d:c3:8e:ce:3e:8b:73:37:b8:75:1a:fb:40:6a:47:bb:db: de:30:7a:1e:e1:4a:b6:f7:cb:eb:bb:1c:99:98:03:2e:46:65: f8:04:ea:ed:25:86:85:59:3c:ca:82:37:9d:b5:e0:39:50:27: 97:9d:50:22:c3:09:fd:e9:a9:b2:74:01:65:04:51:ca:f6:50: 70:8a:7e:c5:d1:6f:ee:b9:ef:85:d8:69:84:ef:63:ea:53:5b: 8b:ae:7a:dd:a0:8f:ab:0b:0b:70:98:e8:43:ea:61:7a:79:04: f1:85:ea:3d:32:6b:b0:30:4a:4d:7a:aa:5d:d4:b7:84:4b:ff: a1:fe:75:3c:37:f1:e1:52:d0:77:4b:fc:30:a9:03:6d:f9:84: 81:a7:92:d5:50:c5:8d:18:af:c4:c1:f3:91:8b:94:86:f0:0d: e3:47:73:73:c5:6d:ea:cb:f1:27:6b:63:92:ff:52:bf:d3:9b: 20:95:5d:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBD8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRCNkExMTAvBgNVBAUTKEEyMDZBRkM5NjZBNjlFNzBCNDg5QjM4RjEwNDgzREMx RkE1RDNFMjIwHhcNMjUxMjIwMjMzMTM0WhcNMjUxMjI3MjMzMTM0WjAYMRYwFAYD VQQDDA02OTQ3MzFkNi1hMGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07NURuhEHbuJoZIkqSKcw9gh9BVlztA7B78vW7Mxj0rZlhWdzQoqG5HSbios Kn8PNF8aqkQi/7BuXxmRCC0WiBa001tWOMEQId55UCjYY8A0Af7dLqRVnK47do7j 2tzsV7DkD6dEdNwmnuo9lle3NmByJ+5ouCBfJGpTc0rKG04hLSfULcXXPtBJsQmh Xleze90BuRvDbfhpx3gKEPKre9KjRTLSUDygOMvsq8by1r4IjPw94BxUJNMuL2G8 rBS6NqlLJN8YDs/aWrl5lAj0u319nkxYQCURVoBThp3cUHOpdjkqQ4RQqzlFRTC3 MPbRa6uyqFBDmPEi6VVOgEroXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAlLmhhk s+GYSIbNjHG1YRIZUJEDMB8GA1UdIwQYMBaAFKIGr8lmpp5wtImzjxBIPcH6XT4i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEI2QS9CNDgxMzM0Mjg0 RDcxMUVDOEUwNzQxNkRDNEY5QUUwMi9vZ2F2eVdhbW5uQzBpYk9QRUVnOXdmcGRQ aUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29nYXZ5V2Ftbm5DMGliT1BFRWc5d2ZwZFBpSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEI2QS9CNDgxMzM0Mjg0RDcxMUVDOEUwNzQxNkRDNEY5QUUwMi9vZ2F2eVdhbW5u QzBpYk9QRUVnOXdmcGRQaUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA48QrxCoz2xyW1eYnWbtuDddi+P5tNXzbgqkVjzENlpjFOe9JbdKon ANWj83ctL2DjsPISyVPWzXYrfawhOd4PFhcMkdusmYZNLcOOzj6Lcze4dRr7QGpH u9veMHoe4Uq298vruxyZmAMuRmX4BOrtJYaFWTzKgjedteA5UCeXnVAiwwn96amy dAFlBFHK9lBwin7F0W/uue+F2GmE72PqU1uLrnrdoI+rCwtwmOhD6mF6eQTxheo9 MmuwMEpNeqpd1LeES/+h/nU8N/HhUtB3S/wwqQNt+YSBp5LVUMWNGK/EwfORi5SG 8A3jR3NzxW3qy/Ena2OS/1K/05sglV1J -----END CERTIFICATE-----Generated at Sun Dec 21 19:21:16 2025 by rpki-client