This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft File: oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft (raw, json) Hash identifier: rRsZi7XH8XPqHDSlKAPGnJqdikvwyDDd9EMCuW2n52Y= Subject key identifier: BA:91:F3:16:50:E1:79:C7:79:90:97:22:40:26:4A:7C:BB:93:AC:B3 Authority key identifier: A2:24:36:84:22:3D:2C:25:C6:AF:17:6A:5F:02:FA:02:B2:4F:68:0B Certificate issuer: /CN=A91E953B/serialNumber=A2243684223D2C25C6AF176A5F02FA02B24F680B Certificate serial: 0194 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft Manifest number: 0191 Signing time: Fri 05 Dec 2025 01:42:34 +0000 Manifest this update: Fri 05 Dec 2025 01:42:34 +0000 Manifest next update: Fri 12 Dec 2025 01:42:34 +0000 Files and hashes: 1: oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl (hash: HqnjXCatMLJe3nhqV/p3gfpn6YHmWNr/UDgBWh9AbTQ=) 2: 12E1FD886C9C11EE9F3C5653C4F9AE02.roa (hash: jA0W89c1BQKBxWNTk4xZxdglmPbz/0n9ymbDdZwOT6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:42:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 404 (0x194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E953B, serialNumber=A2243684223D2C25C6AF176A5F02FA02B24F680B Validity Not Before: Dec 5 01:42:34 2025 GMT Not After : Dec 12 01:42:34 2025 GMT Subject: CN=6932388a-58b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:14:7d:29:39:91:f9:59:43:06:02:d4:b4:1f: 7d:0c:cb:42:62:93:f4:08:07:1e:05:c2:b3:44:96: 15:b2:ba:22:82:41:76:b8:c5:9c:a9:8a:49:e3:07: 78:a4:88:16:90:5a:d7:89:48:cc:5a:24:df:2a:33: 3e:dc:08:0e:a9:78:d3:2c:25:93:5c:58:63:53:1f: 42:6b:d5:95:04:b5:96:c5:10:25:45:b3:d0:0e:5a: 18:e0:6b:f7:02:62:ae:5c:dc:d9:dc:7d:56:a9:a7: 66:78:70:e5:80:5d:40:e2:41:41:6c:c2:fa:cd:63: 35:23:47:fe:e0:f2:2c:4e:3b:15:5e:3d:0e:af:e3: 24:16:eb:2b:fb:00:d4:6b:94:37:80:d1:ce:1a:8a: 81:8f:a4:64:dd:72:ba:f2:ae:6d:c9:cf:2f:1d:cf: 54:ec:28:f3:eb:d2:82:64:5a:8c:3a:83:ca:e6:38: 8f:62:31:2b:f4:a4:78:fe:22:36:80:b2:7c:54:f7: bf:01:43:8a:09:b6:3b:18:4a:ab:cb:a3:a9:ec:92: 28:80:77:1c:18:27:f9:23:19:7e:db:39:a7:ee:5d: 4b:07:93:5e:3b:46:08:0c:84:15:42:f8:65:20:d3: 8a:c2:75:64:8c:09:ba:c6:68:d7:56:22:7d:a9:9c: 81:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:91:F3:16:50:E1:79:C7:79:90:97:22:40:26:4A:7C:BB:93:AC:B3 X509v3 Authority Key Identifier: keyid:A2:24:36:84:22:3D:2C:25:C6:AF:17:6A:5F:02:FA:02:B2:4F:68:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E953B/C8D039226C9A11EE85BFDF4FC4F9AE02/oiQ2hCI9LCXGrxdqXwL6ArJPaAs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:35:26:b2:bf:3d:e4:72:93:bc:06:c7:39:bc:20:9d:13:f6: 2e:07:f5:71:b6:7e:dd:56:6b:bc:24:2c:28:d1:a4:30:be:9b: b5:8e:6e:2c:91:f8:2c:92:95:a6:f8:2d:e7:dd:2b:a4:a9:bc: d3:d6:05:22:31:85:79:f9:e4:da:27:d7:29:d6:b0:14:4b:32: d4:c3:34:18:92:7c:6e:0a:7a:b7:ca:68:fb:b8:2c:fc:81:e1: c8:d2:29:93:76:f8:bc:37:3e:53:87:7d:44:2c:3f:71:e9:d4: be:d3:3f:f0:ce:1d:ad:ab:c0:33:44:55:09:3b:ff:da:5c:4f: a9:17:6d:f6:2a:76:b2:3d:38:de:3d:69:85:00:e4:03:95:9c: e9:46:7f:86:e6:18:b4:e6:83:af:72:4b:9c:80:22:91:7b:cb: ed:8c:50:27:60:cc:0d:47:74:f4:1a:5a:f3:2f:01:b5:61:4f: ed:19:9d:29:b8:92:c4:2f:a1:f9:c3:e6:05:de:41:d2:2c:e4: d1:6b:8a:aa:06:4a:60:c9:0b:fe:22:0d:5b:5a:3a:2f:14:42: 3a:8d:d4:30:32:f6:34:7d:0c:d6:ee:30:e0:e2:c2:4a:cc:25: e8:eb:88:78:77:90:11:fb:af:0a:44:a2:b1:ec:16:a8:b5:fb: 27:a5:99:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk1M0IxMTAvBgNVBAUTKEEyMjQzNjg0MjIzRDJDMjVDNkFGMTc2QTVGMDJGQTAy QjI0RjY4MEIwHhcNMjUxMjA1MDE0MjM0WhcNMjUxMjEyMDE0MjM0WjAYMRYwFAYD VQQDEw02OTMyMzg4YS01OGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwxR9KTmR+VlDBgLUtB99DMtCYpP0CAceBcKzRJYVsroigkF2uMWcqYpJ4wd4 pIgWkFrXiUjMWiTfKjM+3AgOqXjTLCWTXFhjUx9Ca9WVBLWWxRAlRbPQDloY4Gv3 AmKuXNzZ3H1WqadmeHDlgF1A4kFBbML6zWM1I0f+4PIsTjsVXj0Or+MkFusr+wDU a5Q3gNHOGoqBj6Rk3XK68q5tyc8vHc9U7Cjz69KCZFqMOoPK5jiPYjEr9KR4/iI2 gLJ8VPe/AUOKCbY7GEqry6Op7JIogHccGCf5Ixl+2zmn7l1LB5NeO0YIDIQVQvhl INOKwnVkjAm6xmjXViJ9qZyBBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLqR8xZQ 4XnHeZCXIkAmSny7k6yzMB8GA1UdIwQYMBaAFKIkNoQiPSwlxq8Xal8C+gKyT2gL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTUzQi9DOEQwMzkyMjZD OUExMUVFODVCRkRGNEZDNEY5QUUwMi9vaVEyaENJOUxDWEdyeGRxWHdMNkFySlBh QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29pUTJoQ0k5TENYR3J4ZHFYd0w2QXJKUGFBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTUzQi9DOEQwMzkyMjZDOUExMUVFODVCRkRGNEZDNEY5QUUwMi9vaVEyaENJOUxD WEdyeGRxWHdMNkFySlBhQXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0NSayvz3kcpO8Bsc5vCCdE/YuB/Vxtn7dVmu8JCwo0aQwvpu1jm4s kfgskpWm+C3n3SukqbzT1gUiMYV5+eTaJ9cp1rAUSzLUwzQYknxuCnq3ymj7uCz8 geHI0imTdvi8Nz5Th31ELD9x6dS+0z/wzh2tq8AzRFUJO//aXE+pF232KnayPTje PWmFAOQDlZzpRn+G5hi05oOvckucgCKRe8vtjFAnYMwNR3T0GlrzLwG1YU/tGZ0p uJLEL6H5w+YF3kHSLOTRa4qqBkpgyQv+Ig1bWjovFEI6jdQwMvY0fQzW7jDg4sJK zCXo64h4d5AR+68KRKKx7BaotfsnpZmc -----END CERTIFICATE-----Generated at Sat Dec 6 12:05:19 2025 by rpki-client