This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft File: OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft (raw, json) Hash identifier: rg739hTU9Fbetgk7Rp42ExH4leaJE3kSlYH9pyADD88= Subject key identifier: 49:B7:57:E7:7E:80:4E:C3:4A:D9:70:5B:CF:E7:26:AD:3D:A1:C8:BE Authority key identifier: 3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85 Certificate issuer: /CN=A91E6856/serialNumber=3A6823A10F03BFACA4068D3398444F3641085485 Certificate serial: 01B1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft Manifest number: 01AD Signing time: Sat 06 Dec 2025 17:07:52 +0000 Manifest this update: Sat 06 Dec 2025 17:07:52 +0000 Manifest next update: Sat 13 Dec 2025 17:07:52 +0000 Files and hashes: 1: OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl (hash: 0AihmlP7cG55VAmNRl1g7YhNeAij9i9K8BUW6areXlA=) 2: B2C9B10A881311EE8CFB5C43C4F9AE02.roa (hash: a5Y/yZKxW3IrKI0721MYV+ivPl5QgwwgGyen+XzCmBY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 17:07:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 433 (0x1b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6856, serialNumber=3A6823A10F03BFACA4068D3398444F3641085485 Validity Not Before: Dec 6 17:07:52 2025 GMT Not After : Dec 13 17:07:52 2025 GMT Subject: CN=693462e8-f624 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3b:82:c0:31:f5:05:34:fd:b2:a2:d3:15:b1: 46:80:49:5f:d9:d8:35:4c:d3:cc:8c:61:5d:ef:d3: 7a:09:4f:9f:08:cd:8c:14:51:24:c8:9c:d0:40:32: 2c:b5:14:cd:91:4a:b3:e8:12:a4:ce:c2:36:45:c8: 40:0d:8c:fb:03:c9:72:dc:18:56:4c:d5:2e:74:67: d8:73:34:b7:5d:af:2b:0a:df:07:cd:0a:bd:bf:23: a2:51:ea:ad:fd:bc:47:13:b3:31:46:75:84:84:56: 4f:22:9a:61:4b:16:7d:50:ba:c3:38:9c:45:03:b6: 67:e7:77:c6:97:12:16:98:7e:5e:d3:e7:d7:54:a3: e9:59:77:30:84:3d:a2:76:f4:6f:85:e7:7f:b5:26: 79:e8:24:25:4c:99:7b:02:74:71:a8:bd:87:cc:c7: 7a:83:2e:5b:18:ae:81:f7:16:9c:76:46:e1:64:ae: 6f:40:62:58:39:b4:d3:da:8d:7f:0b:2b:0c:83:92: 87:6a:28:d6:b1:be:fc:82:9b:c6:61:dc:d2:c7:7d: ed:95:45:08:67:82:53:9e:60:46:2b:c6:c4:72:1a: 56:18:d7:90:0a:9b:d9:18:37:1d:66:4a:ac:2d:e4: 52:c2:50:07:16:a1:09:3d:52:c3:cc:bb:25:21:6b: ac:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:B7:57:E7:7E:80:4E:C3:4A:D9:70:5B:CF:E7:26:AD:3D:A1:C8:BE X509v3 Authority Key Identifier: keyid:3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:be:0e:be:95:3d:22:9d:95:f8:1c:2d:df:51:3b:74:df:95: ed:f1:cf:1a:56:b4:12:b2:b7:ee:fa:d6:31:92:83:40:03:60: d6:3b:f9:1e:a6:fb:88:a8:1d:d4:61:84:17:56:83:a9:86:7b: e9:93:17:0f:19:bf:00:7e:4b:43:2b:5a:74:5d:ce:f7:45:1a: c4:49:64:59:d2:50:56:4e:f5:41:8e:1c:c0:b7:f4:f5:49:08: 2f:f0:71:5a:74:03:23:f6:68:1b:4a:30:04:86:c0:4f:c3:d1: 39:4c:35:66:8e:0b:17:b3:0d:2e:65:7a:fb:50:67:f7:e0:66: a6:5c:5e:f1:52:3e:79:1f:24:93:97:e2:ee:f9:b5:0b:59:db: 02:d3:01:a7:31:30:27:72:1d:0a:18:4f:db:ab:23:c4:07:cf: 4b:ee:b6:57:4a:49:c1:d6:9c:a4:65:5e:84:0c:0e:82:31:cd: d5:8a:0b:92:b9:04:c4:81:70:cf:80:68:fe:56:7b:ee:e7:64: c3:65:1b:d5:ad:a8:d5:d5:4f:de:00:ab:76:97:43:99:08:a2: a8:1f:c8:3d:2f:41:d2:00:0a:f8:4b:c9:88:5c:66:f7:92:8d: 62:cc:c3:8e:2b:19:05:e3:f4:11:84:f1:e2:11:0e:f9:17:f7: e5:5b:7e:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY4NTYxMTAvBgNVBAUTKDNBNjgyM0ExMEYwM0JGQUNBNDA2OEQzMzk4NDQ0RjM2 NDEwODU0ODUwHhcNMjUxMjA2MTcwNzUyWhcNMjUxMjEzMTcwNzUyWjAYMRYwFAYD VQQDEw02OTM0NjJlOC1mNjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvDuCwDH1BTT9sqLTFbFGgElf2dg1TNPMjGFd79N6CU+fCM2MFFEkyJzQQDIs tRTNkUqz6BKkzsI2RchADYz7A8ly3BhWTNUudGfYczS3Xa8rCt8HzQq9vyOiUeqt /bxHE7MxRnWEhFZPIpphSxZ9ULrDOJxFA7Zn53fGlxIWmH5e0+fXVKPpWXcwhD2i dvRvhed/tSZ56CQlTJl7AnRxqL2HzMd6gy5bGK6B9xacdkbhZK5vQGJYObTT2o1/ CysMg5KHaijWsb78gpvGYdzSx33tlUUIZ4JTnmBGK8bEchpWGNeQCpvZGDcdZkqs LeRSwlAHFqEJPVLDzLslIWusMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEm3V+d+ gE7DStlwW8/nJq09oci+MB8GA1UdIwQYMBaAFDpoI6EPA7+spAaNM5hETzZBCFSF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjg1Ni8yRERCNDI2RTQ4 NjMxMUVFQkMwQkQyMTNDNEY5QUUwMi9PbWdqb1E4RHY2eWtCbzB6bUVSUE5rRUlW SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09tZ2pvUThEdjZ5a0JvMHptRVJQTmtFSVZJVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Njg1Ni8yRERCNDI2RTQ4NjMxMUVFQkMwQkQyMTNDNEY5QUUwMi9PbWdqb1E4RHY2 eWtCbzB6bUVSUE5rRUlWSVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANvg6+lT0inZX4HC3fUTt035Xt8c8aVrQSsrfu+tYxkoNAA2DWO/ke pvuIqB3UYYQXVoOphnvpkxcPGb8AfktDK1p0Xc73RRrESWRZ0lBWTvVBjhzAt/T1 SQgv8HFadAMj9mgbSjAEhsBPw9E5TDVmjgsXsw0uZXr7UGf34GamXF7xUj55HyST l+Lu+bULWdsC0wGnMTAnch0KGE/bqyPEB89L7rZXSknB1pykZV6EDA6CMc3ViguS uQTEgXDPgGj+Vnvu52TDZRvVrajV1U/eAKt2l0OZCKKoH8g9L0HSAAr4S8mIXGb3 ko1izMOOKxkF4/QRhPHiEQ75F/flW370 -----END CERTIFICATE-----Generated at Mon Dec 8 03:04:29 2025 by rpki-client