This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft File: Od1jNTmfErgZIRzpGqfc9i9tgbw.mft (raw, json) Hash identifier: rSikxE95Eve4P2wXEdDMFFPM0p77rIZgTVQDazAlais= Subject key identifier: E7:02:25:36:5B:CF:A4:22:BE:F1:61:38:2B:05:58:8F:FA:18:FB:98 Authority key identifier: 39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC Certificate issuer: /CN=A91EBB2D/serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Certificate serial: 03C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft Manifest number: 03BB Signing time: Thu 04 Dec 2025 23:07:31 +0000 Manifest this update: Thu 04 Dec 2025 23:07:31 +0000 Manifest next update: Thu 11 Dec 2025 23:07:31 +0000 Files and hashes: 1: Od1jNTmfErgZIRzpGqfc9i9tgbw.crl (hash: 0hnXWNpTprzQQbiCOPdMNsaSjM/VuKN2IF+wGNGRVaE=) 2: 9233AB983ED411F0B38CCD78C4F9AE02.roa (hash: 9jPLiSrAv9CpBTipdqfUpD+haiGgsN7V6kZeTNfsQaQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:07:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 967 (0x3c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB2D, serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Validity Not Before: Dec 4 23:07:31 2025 GMT Not After : Dec 11 23:07:31 2025 GMT Subject: CN=69321433-85ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:03:05:fa:22:25:59:b6:79:30:2c:a4:48:1a: e6:d9:85:8e:03:85:96:fb:9e:ca:22:52:85:f8:36: ce:91:b6:53:57:ac:4e:16:6b:d0:fe:3f:1f:b4:c4: 1e:07:ee:9f:f5:74:72:45:94:f9:63:f5:1e:4a:ed: a4:35:d1:ea:ab:91:0a:9f:54:a5:ea:5d:6d:77:59: ff:ac:35:b3:eb:d0:97:62:da:63:1f:24:1f:46:a0: b0:21:65:63:b9:4e:4b:88:aa:59:07:00:a6:aa:7a: c6:63:0e:fc:0d:3c:2e:7d:61:59:0a:0c:20:3a:12: 49:c2:f1:33:42:c5:26:70:96:34:e8:ab:c9:44:db: 0d:31:94:57:6b:7f:53:10:ae:66:0b:ea:08:dc:3c: 88:d4:15:32:ae:90:60:21:f6:9e:f5:2f:cf:3a:51: a0:f0:80:31:29:22:6b:2a:28:0c:c9:ed:ce:3a:1e: 36:2f:b2:0c:df:4f:ea:98:ac:28:78:fa:75:80:c1: 41:85:9b:94:43:90:01:cb:40:f0:4d:f2:a8:7c:be: 64:f8:71:bd:a9:18:dc:1a:28:e4:61:4d:16:db:2b: e5:92:67:91:e1:15:63:13:63:13:ca:21:27:12:40: 24:5f:d8:51:20:4b:10:f4:d8:6d:ff:98:b1:20:cf: b1:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:02:25:36:5B:CF:A4:22:BE:F1:61:38:2B:05:58:8F:FA:18:FB:98 X509v3 Authority Key Identifier: keyid:39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:08:eb:83:fb:44:3d:d8:86:69:5f:31:67:81:5c:bc:50:f8: b9:87:99:62:78:75:b8:c1:7c:9f:e1:ed:9f:c1:9c:5c:e6:39: 8d:47:1f:1c:e0:48:b0:4d:93:da:82:2c:8d:63:88:be:d7:3e: e7:ed:ca:f4:90:71:75:d0:04:cf:d5:c8:10:84:b5:ee:0c:90: 85:53:47:54:dc:11:db:85:3e:43:1d:27:4e:cf:57:af:e4:3a: 87:54:f2:3a:d4:0c:ea:75:e8:da:99:0d:fb:c4:70:0a:4d:86: 68:b7:89:9b:bb:5c:d4:93:d1:46:c2:1e:f3:d1:19:0d:54:2e: 41:41:fc:97:22:fc:01:0f:ef:04:54:42:27:a2:af:11:cb:22: de:1d:ef:43:b6:c5:7c:1b:0f:94:4b:b0:70:eb:bf:df:e8:12: 4b:98:5c:06:a9:58:0d:57:f2:a6:aa:5f:fa:67:27:d0:51:40: ae:9b:ee:92:ef:36:04:b6:98:55:b1:ca:7c:09:c3:5b:da:1a: b0:97:3d:a2:41:76:4f:e5:9f:3c:bd:90:77:c7:11:e8:95:f0: ba:93:09:bd:ec:74:e9:90:09:9b:6e:51:a5:01:27:0c:4d:aa: ab:9b:77:c7:05:7f:a4:04:bd:d3:a0:66:09:cc:d3:e4:c3:77: 06:8d:84:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCMkQxMTAvBgNVBAUTKDM5REQ2MzM1Mzk5RjEyQjgxOTIxMUNFOTFBQTdEQ0Y2 MkY2RDgxQkMwHhcNMjUxMjA0MjMwNzMxWhcNMjUxMjExMjMwNzMxWjAYMRYwFAYD VQQDEw02OTMyMTQzMy04NWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtAMF+iIlWbZ5MCykSBrm2YWOA4WW+57KIlKF+DbOkbZTV6xOFmvQ/j8ftMQe B+6f9XRyRZT5Y/UeSu2kNdHqq5EKn1Sl6l1td1n/rDWz69CXYtpjHyQfRqCwIWVj uU5LiKpZBwCmqnrGYw78DTwufWFZCgwgOhJJwvEzQsUmcJY06KvJRNsNMZRXa39T EK5mC+oI3DyI1BUyrpBgIfae9S/POlGg8IAxKSJrKigMye3OOh42L7IM30/qmKwo ePp1gMFBhZuUQ5ABy0DwTfKofL5k+HG9qRjcGijkYU0W2yvlkmeR4RVjE2MTyiEn EkAkX9hRIEsQ9Nht/5ixIM+xaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOcCJTZb z6QivvFhOCsFWI/6GPuYMB8GA1UdIwQYMBaAFDndYzU5nxK4GSEc6Rqn3PYvbYG8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkIyRC85NjVCRDU3RUI4 OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVyZ1pJUnpwR3FmYzlpOXRn YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kMWpOVG1mRXJnWklSenBHcWZjOWk5dGdidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkIyRC85NjVCRDU3RUI4OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVy Z1pJUnpwR3FmYzlpOXRnYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUCOuD+0Q92IZpXzFngVy8UPi5h5lieHW4wXyf4e2fwZxc5jmNRx8c 4EiwTZPagiyNY4i+1z7n7cr0kHF10ATP1cgQhLXuDJCFU0dU3BHbhT5DHSdOz1ev 5DqHVPI61AzqdejamQ37xHAKTYZot4mbu1zUk9FGwh7z0RkNVC5BQfyXIvwBD+8E VEInoq8RyyLeHe9DtsV8Gw+US7Bw67/f6BJLmFwGqVgNV/Kmql/6ZyfQUUCum+6S 7zYEtphVscp8CcNb2hqwlz2iQXZP5Z88vZB3xxHolfC6kwm97HTpkAmbblGlAScM Taqrm3fHBX+kBL3ToGYJzNPkw3cGjYTS -----END CERTIFICATE-----Generated at Sat Dec 6 23:45:07 2025 by rpki-client