This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.mft File: oYXAxXSCnF_NcURUSeU0za70E5Y.mft (raw, json) Hash identifier: qgxiGEfJpDuQPiAzoCQbNYiUWksKlkw2OU4BhSI2/xk= Subject key identifier: A9:02:12:C3:62:95:AB:50:36:31:20:C5:4F:EF:DA:6B:C3:F1:F6:DE Authority key identifier: A1:85:C0:C5:74:82:9C:5F:CD:71:44:54:49:E5:34:CD:AE:F4:13:96 Certificate issuer: /CN=A91E4E32/serialNumber=A185C0C574829C5FCD71445449E534CDAEF41396 Certificate serial: 03A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.mft Manifest number: 0352 Signing time: Sat 06 Dec 2025 23:45:39 +0000 Manifest this update: Sat 06 Dec 2025 23:45:38 +0000 Manifest next update: Sat 13 Dec 2025 23:45:38 +0000 Files and hashes: 1: oYXAxXSCnF_NcURUSeU0za70E5Y.crl (hash: iigvNYtwXQ4Ak1uOV23PINt0/hkK9GkbHPGYitXoFwU=) 2: 212691F85C8A11F09D065A67C4F9AE02.roa (hash: iyDMS6tOGnY0vV2tRBpkImtDJt2yb1m8IIZ76sEjG28=) 3: AF5AD402224711F0B0CDB07DC4F9AE02.roa (hash: Rd9F0rhnVp5Iq5KfDW7kM6BcAp4B6e5cA4C+HDxhcWk=) 4: 2D153A4648B711F0B6D4592EC4F9AE02.roa (hash: 2idrkUiE1glbbdM/t25K//0O3gKsqe5+guvE9Yfyva4=) 5: 1C8BEF04E24511EF96354978C4F9AE02.roa (hash: emdOoNHeNPd2I/1TXnCpTax46mU70PVq1qcXN4YL9To=) 6: DEBDCC60BC4111F0A8ADE55FC4F9AE02.roa (hash: ZOfUt+OdJGvMmJWbCvq/OToGXjq0ZC1a/eXbPl1yA+k=) 7: A2352892BC4111F083435F5FC4F9AE02.roa (hash: PoXBvNvM11S30fAsOdLEwE7p0pDVh/CtWMksgnZYa0Y=) 8: B111111288B411EF80480527C4F9AE02.roa (hash: qLIDrHWS/i6A8fwW8H8k+xkymy4Akbi61wq5s13V2Ww=) 9: A3571FDE47EC11EFB51C3666C4F9AE02.roa (hash: oa1DI9U4A4Nx6Hk3PHDp1mXpYhzRJyPS5jmqfG2Om0Y=) 10: 836865ECD0DB11F086463D52C4F9AE02.roa (hash: dSfere7QhRvtorz+gmreSnCGYZIH1WofndwPCRU2nxo=) 11: 205AD1805C8A11F09D065A67C4F9AE02.roa (hash: /HSo5jxbj7peidwO9alg4qXB6CLHjHvT7Exk5bMgxFc=) 12: CD90ED68057211F0B6E2301BC4F9AE02.roa (hash: DFlr8Tn/hG96eJuSS2hv0WiijRfajfy1iDPzEugU79I=) 13: 5F9F1738A37B11F0B0ADF652C4F9AE02.roa (hash: CJ9YN6FLH2mWQGJEIYwUy4MU0VtOp9beQcxD+Nz5y9o=) 14: F9C0DF84BC4111F09D031660C4F9AE02.roa (hash: IpxcD4cHmOeodB8ybIfLf30tVWg9Lc/8x7ghIc66rAM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.crl rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 23:45:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 933 (0x3a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4E32, serialNumber=A185C0C574829C5FCD71445449E534CDAEF41396 Validity Not Before: Dec 6 23:45:38 2025 GMT Not After : Dec 13 23:45:38 2025 GMT Subject: CN=6934c022-9d32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:1e:21:31:28:5a:78:ee:cc:4e:fd:5f:6e:bc: 06:d3:81:81:be:d6:8f:ed:29:6c:68:f1:77:50:55: d6:5f:57:a7:cd:35:a4:3b:38:22:14:f5:7f:ad:46: 13:1c:3a:5b:a7:6d:f1:09:38:3e:83:eb:25:a2:fc: fe:95:3f:34:40:10:d5:9e:5a:68:7c:cf:8a:94:15: 36:44:2c:58:62:c2:48:04:19:21:3b:ca:67:cf:e8: cc:52:a4:67:7e:86:bc:6c:9b:ac:15:a5:00:8c:ed: 53:ba:f3:f9:3e:f5:69:f9:77:03:e9:5e:26:3e:9c: 28:58:e1:02:e3:e7:17:69:82:73:fc:af:06:b5:8c: 8f:f6:28:af:44:1a:a5:58:0c:93:14:f5:70:11:f8: 95:2e:7e:34:18:5c:16:18:ff:c4:dd:f2:7e:7d:0e: c4:28:52:00:8c:7c:2a:80:51:9f:4b:10:fe:03:77: 57:26:55:a4:3f:0f:ee:b8:d9:6b:d6:f4:c5:67:ac: 4b:dc:65:6b:14:4b:d2:56:5e:13:75:38:fa:57:6b: 26:c6:ba:81:ac:23:6e:a9:9e:34:6b:b0:ce:3e:9f: 86:18:f2:89:3c:d2:04:f1:66:ed:d8:18:fd:4e:fb: b2:1e:49:72:47:51:2f:d0:8b:a9:58:c8:1f:11:71: 3d:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:02:12:C3:62:95:AB:50:36:31:20:C5:4F:EF:DA:6B:C3:F1:F6:DE X509v3 Authority Key Identifier: keyid:A1:85:C0:C5:74:82:9C:5F:CD:71:44:54:49:E5:34:CD:AE:F4:13:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:73:ea:4c:d0:59:fe:c3:f1:6b:f3:cf:49:9b:45:e8:38:b2: fc:5a:e7:22:5e:bf:49:d7:2a:38:f3:57:43:91:32:dd:e8:7e: da:ad:8d:c9:3b:a0:a4:2a:9c:96:81:f1:bc:96:b8:45:25:87: 6b:d4:48:2a:c3:71:37:81:dc:ba:9b:6c:4d:1a:06:1a:b4:0e: c9:3d:30:1e:a3:32:cc:a3:00:79:73:64:e2:ab:9f:d0:04:d8: de:05:9a:7f:07:1c:48:be:e9:ec:cc:c0:29:67:7a:42:37:58: ff:3a:e9:0a:3b:b5:78:41:be:5a:e7:56:52:b7:b1:69:04:8d: d8:5b:b0:81:ab:94:d3:77:45:a4:8a:0d:91:60:1b:24:56:f4: ed:f9:05:0b:ff:2b:6b:47:c3:4e:b7:75:b5:d9:9a:11:93:1f: b0:ab:83:d4:e7:e5:3f:e1:95:a4:96:e9:3a:3a:41:39:a7:92: 91:7f:e9:c0:f7:88:a2:c7:81:04:5b:b6:f0:55:0f:83:04:d8: 93:69:c2:3b:c1:28:1c:47:89:a9:c6:ec:10:cd:45:b8:5d:c2: 2f:22:25:fa:2e:96:fc:e5:b4:4d:70:5b:bb:08:40:a8:c4:50: 13:56:2e:96:6d:d5:3b:89:9e:92:54:1c:b7:ad:83:b7:16:3d: 59:3a:bb:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRFMzIxMTAvBgNVBAUTKEExODVDMEM1NzQ4MjlDNUZDRDcxNDQ1NDQ5RTUzNENE QUVGNDEzOTYwHhcNMjUxMjA2MjM0NTM4WhcNMjUxMjEzMjM0NTM4WjAYMRYwFAYD VQQDEw02OTM0YzAyMi05ZDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8R4hMShaeO7MTv1fbrwG04GBvtaP7SlsaPF3UFXWX1enzTWkOzgiFPV/rUYT HDpbp23xCTg+g+slovz+lT80QBDVnlpofM+KlBU2RCxYYsJIBBkhO8pnz+jMUqRn foa8bJusFaUAjO1TuvP5PvVp+XcD6V4mPpwoWOEC4+cXaYJz/K8GtYyP9iivRBql WAyTFPVwEfiVLn40GFwWGP/E3fJ+fQ7EKFIAjHwqgFGfSxD+A3dXJlWkPw/uuNlr 1vTFZ6xL3GVrFEvSVl4TdTj6V2smxrqBrCNuqZ40a7DOPp+GGPKJPNIE8Wbt2Bj9 TvuyHklyR1Ev0IupWMgfEXE9TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKkCEsNi latQNjEgxU/v2mvD8fbeMB8GA1UdIwQYMBaAFKGFwMV0gpxfzXFEVEnlNM2u9BOW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEUzMi83MjA5NTlGQzAx QzAxMUVEQkQ3QzZGNThDNEY5QUUwMi9vWVhBeFhTQ25GX05jVVJVU2VVMHphNzBF NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29ZWEF4WFNDbkZfTmNVUlVTZVUwemE3MEU1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEUzMi83MjA5NTlGQzAxQzAxMUVEQkQ3QzZGNThDNEY5QUUwMi9vWVhBeFhTQ25G X05jVVJVU2VVMHphNzBFNVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvc+pM0Fn+w/Fr889Jm0XoOLL8WuciXr9J1yo481dDkTLd6H7arY3J O6CkKpyWgfG8lrhFJYdr1Egqw3E3gdy6m2xNGgYatA7JPTAeozLMowB5c2Tiq5/Q BNjeBZp/BxxIvunszMApZ3pCN1j/OukKO7V4Qb5a51ZSt7FpBI3YW7CBq5TTd0Wk ig2RYBskVvTt+QUL/ytrR8NOt3W12ZoRkx+wq4PU5+U/4ZWkluk6OkE5p5KRf+nA 94iix4EEW7bwVQ+DBNiTacI7wSgcR4mpxuwQzUW4XcIvIiX6Lpb85bRNcFu7CECo xFATVi6WbdU7iZ6SVBy3rYO3Fj1ZOrsm -----END CERTIFICATE-----Generated at Sun Dec 7 03:44:35 2025 by rpki-client