This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft File: Od1jNTmfErgZIRzpGqfc9i9tgbw.mft (raw, json) Hash identifier: FkXIKVk+NZaIAaSHZYurgfcZW7h5ZJcBP6cucwvLeIE= Subject key identifier: B4:FA:35:0D:63:09:18:8F:0D:FB:55:0D:A7:4C:28:C6:5F:6E:D6:07 Authority key identifier: 39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC Certificate issuer: /CN=A91EBB2D/serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Certificate serial: 03C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft Manifest number: 03BC Signing time: Sat 06 Dec 2025 23:18:43 +0000 Manifest this update: Sat 06 Dec 2025 23:18:42 +0000 Manifest next update: Sat 13 Dec 2025 23:18:42 +0000 Files and hashes: 1: Od1jNTmfErgZIRzpGqfc9i9tgbw.crl (hash: XTTnIMLt6VE0MjNkF9YXKQ/eZNXwesxH3Va4rcyVBNg=) 2: 9233AB983ED411F0B38CCD78C4F9AE02.roa (hash: 9jPLiSrAv9CpBTipdqfUpD+haiGgsN7V6kZeTNfsQaQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:31:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 968 (0x3c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB2D, serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Validity Not Before: Dec 6 23:18:42 2025 GMT Not After : Dec 13 23:18:42 2025 GMT Subject: CN=6934b9d2-7162 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:83:94:3b:fc:75:99:67:74:92:70:f7:c8:2d: 34:43:ac:9b:0d:30:e3:b7:09:dc:0b:11:7e:d4:9e: a0:b7:0a:da:a3:8a:3a:5d:8b:88:af:b0:1e:d9:c9: 94:de:a2:75:3d:a4:09:b4:fd:8a:34:05:7f:b5:a9: 22:9b:ff:93:62:b3:94:36:a7:2f:65:bf:31:5d:da: 3f:ce:27:c5:d9:dd:4c:23:5e:17:71:2d:97:cb:90: 94:a8:60:6b:21:96:6a:1a:ad:a2:09:b1:46:c5:ba: 1b:53:a0:7d:9c:b2:27:a3:32:cd:b8:96:87:d9:76: a0:f8:67:d7:c1:bb:ea:6a:e1:2f:d2:2b:1e:eb:c8: 2f:83:4d:a0:4b:76:04:06:3d:f7:74:ed:10:b8:52: 9c:52:48:ef:f8:14:da:4e:a2:a1:1e:a0:13:de:57: a9:25:91:f3:88:24:66:d4:b5:ca:5e:b9:69:dd:cf: 3d:cc:6b:65:ea:af:30:6e:8e:9b:8c:88:47:db:c7: c9:78:ad:52:bd:2d:c4:7c:1b:ce:5c:79:56:13:4d: ab:3a:74:88:93:4d:aa:14:68:bf:9c:cd:ae:bf:d2: a9:c0:1b:f2:3c:cf:09:9a:73:45:5b:8f:d9:41:f8: 2e:dd:df:2f:d7:b3:5e:8c:6d:9e:d3:f2:93:31:6e: 22:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:FA:35:0D:63:09:18:8F:0D:FB:55:0D:A7:4C:28:C6:5F:6E:D6:07 X509v3 Authority Key Identifier: keyid:39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:f4:16:bd:70:9b:cd:ec:7b:59:f5:07:e5:ef:c7:08:15:ae: 89:f0:5e:22:60:b3:90:3d:c3:c7:1c:b5:32:b5:2e:a6:fc:90: 9a:75:d5:f0:be:3b:f6:8a:a1:e1:04:54:49:77:6f:59:6d:6e: a4:70:bc:bb:12:00:d0:53:9b:19:39:a9:14:c2:8d:21:77:9f: 15:54:71:12:7e:07:86:ba:c7:0d:29:6e:c5:8e:7d:b7:3b:d0: ea:b4:c8:00:28:7b:07:9f:3a:07:e4:71:22:e9:19:d2:d3:8b: e7:c3:7c:c3:71:73:47:67:bd:1a:97:c4:07:75:77:f5:dd:07: e3:9c:81:e4:ee:ab:c4:6c:41:d2:be:c0:ba:e8:b7:2c:7a:12: 3d:c7:87:b7:09:d9:05:7d:10:f6:5e:f5:c8:86:e3:de:12:17: 6f:2b:12:25:78:57:aa:a1:1c:53:5f:f7:a9:f1:6b:a5:93:49: a1:45:f2:3a:c5:56:b4:65:b1:4d:49:7d:10:e4:6e:ed:be:4c: 16:e2:37:4b:e8:ef:ff:e1:39:4c:71:08:fe:e3:db:50:59:3e: 34:c7:9e:0c:13:84:87:b9:a5:08:61:13:81:e3:b8:e6:d3:bc: 86:d0:1f:a7:ab:de:af:5c:46:c5:8a:29:b0:a5:27:d1:a5:5a: 56:da:18:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCMkQxMTAvBgNVBAUTKDM5REQ2MzM1Mzk5RjEyQjgxOTIxMUNFOTFBQTdEQ0Y2 MkY2RDgxQkMwHhcNMjUxMjA2MjMxODQyWhcNMjUxMjEzMjMxODQyWjAYMRYwFAYD VQQDEw02OTM0YjlkMi03MTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4OUO/x1mWd0knD3yC00Q6ybDTDjtwncCxF+1J6gtwrao4o6XYuIr7Ae2cmU 3qJ1PaQJtP2KNAV/takim/+TYrOUNqcvZb8xXdo/zifF2d1MI14XcS2Xy5CUqGBr IZZqGq2iCbFGxbobU6B9nLInozLNuJaH2Xag+GfXwbvqauEv0ise68gvg02gS3YE Bj33dO0QuFKcUkjv+BTaTqKhHqAT3lepJZHziCRm1LXKXrlp3c89zGtl6q8wbo6b jIhH28fJeK1SvS3EfBvOXHlWE02rOnSIk02qFGi/nM2uv9KpwBvyPM8JmnNFW4/Z Qfgu3d8v17NejG2e0/KTMW4i1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLT6NQ1j CRiPDftVDadMKMZfbtYHMB8GA1UdIwQYMBaAFDndYzU5nxK4GSEc6Rqn3PYvbYG8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkIyRC85NjVCRDU3RUI4 OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVyZ1pJUnpwR3FmYzlpOXRn YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kMWpOVG1mRXJnWklSenBHcWZjOWk5dGdidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkIyRC85NjVCRDU3RUI4OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVy Z1pJUnpwR3FmYzlpOXRnYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAp9Ba9cJvN7HtZ9Qfl78cIFa6J8F4iYLOQPcPHHLUytS6m/JCaddXw vjv2iqHhBFRJd29ZbW6kcLy7EgDQU5sZOakUwo0hd58VVHESfgeGuscNKW7Fjn23 O9DqtMgAKHsHnzoH5HEi6RnS04vnw3zDcXNHZ70al8QHdXf13QfjnIHk7qvEbEHS vsC66LcsehI9x4e3CdkFfRD2XvXIhuPeEhdvKxIleFeqoRxTX/ep8Wulk0mhRfI6 xVa0ZbFNSX0Q5G7tvkwW4jdL6O//4TlMcQj+49tQWT40x54ME4SHuaUIYROB47jm 07yG0B+nq96vXEbFiimwpSfRpVpW2hju -----END CERTIFICATE-----Generated at Sun Dec 7 01:58:57 2025 by rpki-client