This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft File: OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft (raw, json) Hash identifier: yov9warDk/V9C0BvkJPxfMvQN9ro05uU5B0UWBolI0E= Subject key identifier: 87:49:BF:86:EF:93:CB:22:27:70:74:2A:6B:A8:A2:92:D7:E5:0D:0A Authority key identifier: 3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85 Certificate issuer: /CN=A91E6856/serialNumber=3A6823A10F03BFACA4068D3398444F3641085485 Certificate serial: 01B8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft Manifest number: 01B4 Signing time: Sat 20 Dec 2025 17:22:22 +0000 Manifest this update: Sat 20 Dec 2025 17:22:22 +0000 Manifest next update: Sat 27 Dec 2025 17:22:22 +0000 Files and hashes: 1: OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl (hash: qbchOQ/1JDxIlijtKSBsyqw+aVyG0zaG1+ckYt1hFe8=) 2: B2C9B10A881311EE8CFB5C43C4F9AE02.roa (hash: a5Y/yZKxW3IrKI0721MYV+ivPl5QgwwgGyen+XzCmBY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 17:22:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 440 (0x1b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6856, serialNumber=3A6823A10F03BFACA4068D3398444F3641085485 Validity Not Before: Dec 20 17:22:22 2025 GMT Not After : Dec 27 17:22:22 2025 GMT Subject: CN=6946db4e-c39c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:3d:41:76:b4:a6:ac:bc:b1:ea:ca:66:33:09: 56:19:6b:aa:76:df:a4:c6:1e:4c:4f:53:e0:f6:a3: 6d:90:b2:74:2b:97:2f:17:be:eb:8f:9e:de:14:4a: 20:86:75:c4:e5:78:2d:a0:43:60:ba:89:b1:ce:e7: 18:ae:da:5b:e3:0a:c3:34:92:3b:af:17:36:ea:e5: 5d:60:a1:07:0f:1f:51:8b:d2:8b:16:89:e7:98:c7: 8c:91:74:84:84:93:16:28:73:ad:bb:94:6a:9d:0a: c0:35:8f:03:1c:2b:d8:1a:be:20:ef:98:c6:9b:bf: f8:ec:2a:7b:5e:76:12:f7:8a:03:99:65:d1:4e:91: 32:20:cb:76:f1:ec:57:be:71:8d:b4:c5:25:aa:b9: 9f:9b:ce:1f:83:61:10:5f:38:e1:1b:99:37:4e:ea: 32:42:d2:cc:7f:b2:e8:56:8d:7c:77:b1:00:a4:9c: a4:cb:58:34:df:f3:a5:10:6a:1b:2b:3c:43:34:43: de:40:d4:d5:63:8f:8a:0f:d8:37:55:93:63:d6:4d: ec:4c:6b:42:eb:b3:a1:26:23:1c:a3:87:1a:dc:a3: 4a:98:6b:d1:39:40:c7:0f:85:6a:14:d4:88:ea:db: 52:6d:fb:dd:d1:d9:dd:ae:c2:48:32:f5:ea:30:25: 76:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:49:BF:86:EF:93:CB:22:27:70:74:2A:6B:A8:A2:92:D7:E5:0D:0A X509v3 Authority Key Identifier: keyid:3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e5:d9:f4:c6:26:6d:2b:ee:5b:e0:1c:95:c2:f9:73:3c:15:01: d6:c1:7a:a5:38:62:59:8b:4e:62:2f:e4:dd:80:a0:eb:91:b3: 0f:e6:a5:0e:01:66:42:1e:78:f4:25:b9:d2:f0:e0:64:54:5f: ba:f7:6b:ab:2a:a3:75:16:cc:ef:9b:fe:dd:e6:42:cf:ac:a1: f7:65:21:49:b7:eb:da:d7:06:58:b2:c5:3a:3b:ac:87:19:90: ef:71:e9:9a:da:fe:86:30:97:7f:9e:8c:16:2a:01:43:0b:fc: b1:69:38:af:92:6a:e8:9f:87:ae:fc:f4:29:4f:2d:4b:2a:3f: 2f:cd:82:e8:8f:ce:cb:85:63:18:17:45:c3:98:bb:f2:87:29: 92:9f:24:a3:80:5f:b2:6f:19:77:b0:2e:ec:04:96:e6:27:5e: 44:11:f2:70:8c:a4:61:87:eb:c1:08:25:d1:fe:ca:f4:4f:ff: 59:79:af:03:6b:a0:fe:43:8e:e3:84:0d:d3:f3:52:55:49:13: a2:17:ee:4e:7c:21:5b:f9:91:39:42:76:5f:7b:ae:8d:d7:65: 0e:da:09:82:14:ce:5d:cc:af:e5:86:fa:cb:fc:e1:3b:f9:ca: 13:ff:d7:0d:13:ff:da:76:64:50:2e:08:c9:32:4f:86:17:ad: 1c:b9:46:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY4NTYxMTAvBgNVBAUTKDNBNjgyM0ExMEYwM0JGQUNBNDA2OEQzMzk4NDQ0RjM2 NDEwODU0ODUwHhcNMjUxMjIwMTcyMjIyWhcNMjUxMjI3MTcyMjIyWjAYMRYwFAYD VQQDDA02OTQ2ZGI0ZS1jMzljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzj1BdrSmrLyx6spmMwlWGWuqdt+kxh5MT1Pg9qNtkLJ0K5cvF77rj57eFEog hnXE5XgtoENguomxzucYrtpb4wrDNJI7rxc26uVdYKEHDx9Ri9KLFonnmMeMkXSE hJMWKHOtu5RqnQrANY8DHCvYGr4g75jGm7/47Cp7XnYS94oDmWXRTpEyIMt28exX vnGNtMUlqrmfm84fg2EQXzjhG5k3TuoyQtLMf7LoVo18d7EApJyky1g03/OlEGob KzxDNEPeQNTVY4+KD9g3VZNj1k3sTGtC67OhJiMco4ca3KNKmGvROUDHD4VqFNSI 6ttSbfvd0dndrsJIMvXqMCV2wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIdJv4bv k8siJ3B0KmuoopLX5Q0KMB8GA1UdIwQYMBaAFDpoI6EPA7+spAaNM5hETzZBCFSF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjg1Ni8yRERCNDI2RTQ4 NjMxMUVFQkMwQkQyMTNDNEY5QUUwMi9PbWdqb1E4RHY2eWtCbzB6bUVSUE5rRUlW SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09tZ2pvUThEdjZ5a0JvMHptRVJQTmtFSVZJVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Njg1Ni8yRERCNDI2RTQ4NjMxMUVFQkMwQkQyMTNDNEY5QUUwMi9PbWdqb1E4RHY2 eWtCbzB6bUVSUE5rRUlWSVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDl2fTGJm0r7lvgHJXC+XM8FQHWwXqlOGJZi05iL+TdgKDrkbMP5qUO AWZCHnj0JbnS8OBkVF+692urKqN1Fszvm/7d5kLPrKH3ZSFJt+va1wZYssU6O6yH GZDvcema2v6GMJd/nowWKgFDC/yxaTivkmron4eu/PQpTy1LKj8vzYLoj87LhWMY F0XDmLvyhymSnySjgF+ybxl3sC7sBJbmJ15EEfJwjKRhh+vBCCXR/sr0T/9Zea8D a6D+Q47jhA3T81JVSROiF+5OfCFb+ZE5QnZfe66N12UO2gmCFM5dzK/lhvrL/OE7 +coT/9cNE//admRQLgjJMk+GF60cuUbZ -----END CERTIFICATE-----Generated at Sun Dec 21 21:50:29 2025 by rpki-client