This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft File: ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft (raw, json) Hash identifier: XjyzC5nBmeoNMNrFczupVZp5AaZqNn+/uopsonji61I= Subject key identifier: 2C:18:A6:D8:C1:EE:B0:FB:79:EA:17:A4:A1:45:FA:BF:FB:B9:7A:0D Authority key identifier: A3:3C:CA:81:B5:5E:04:65:5D:1B:5A:7E:2C:E6:88:C3:E4:6F:C5:30 Certificate issuer: /CN=A91EDF00/serialNumber=A33CCA81B55E04655D1B5A7E2CE688C3E46FC530 Certificate serial: 04CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozzKgbVeBGVdG1p-LOaIw-RvxTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft Manifest number: 04C7 Signing time: Sat 20 Dec 2025 23:06:38 +0000 Manifest this update: Sat 20 Dec 2025 23:06:37 +0000 Manifest next update: Sat 27 Dec 2025 23:06:37 +0000 Files and hashes: 1: ozzKgbVeBGVdG1p-LOaIw-RvxTA.crl (hash: Gypq5wRUTAju5cDGliGGeShURlXTOWBcGMEhxaEbCDA=) 2: 1B97FEB84E8111ECA3589560C4F9AE02.roa (hash: xAvVS/7W7xtAjphmjIYm8eiwHHWi2VdeCNpBEO7D7og=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.crl rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozzKgbVeBGVdG1p-LOaIw-RvxTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 22:14:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1227 (0x4cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDF00, serialNumber=A33CCA81B55E04655D1B5A7E2CE688C3E46FC530 Validity Not Before: Dec 20 23:06:37 2025 GMT Not After : Dec 27 23:06:37 2025 GMT Subject: CN=69472bfe-a40a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:95:d9:59:04:7a:fe:b8:8e:a5:81:ea:70:37: 30:93:c8:a9:78:9f:30:c9:bc:ec:7d:39:e3:31:48: b5:8d:97:d9:90:7d:92:9d:17:0a:e9:db:85:08:6c: 0a:8b:5e:6b:6f:a3:9d:01:92:d4:76:56:7b:3b:72: 9e:bf:c8:2a:be:a9:5d:ff:61:d3:81:18:42:22:6d: 89:02:dd:fc:db:1c:3e:14:ea:31:d8:2f:57:4d:50: 7d:00:8c:26:2a:bf:16:f8:4e:e4:59:aa:64:28:4b: b7:d5:f9:37:16:03:cf:78:30:74:26:68:60:75:33: 7d:ba:a5:c1:2f:9c:f8:a0:fe:a5:e0:6e:52:a8:60: 31:03:5c:71:f2:dc:63:f6:08:ea:e1:1d:27:8a:0d: da:d0:b8:37:ce:bf:9f:b1:e3:f8:92:37:a0:c0:78: 51:88:4d:61:dc:e7:90:81:d0:ef:25:f9:8e:1b:7e: 4f:94:45:10:1d:77:1b:e0:15:bb:d5:33:e3:0b:f7: 12:6a:7a:c5:ec:3a:85:cf:47:a2:54:08:0b:20:77: 16:55:70:db:d4:87:e5:d7:24:a8:76:df:1a:dc:b9: fd:34:eb:bc:1d:9a:29:83:96:e8:d2:67:a1:b7:8a: cb:89:42:5e:ba:a7:a6:18:dd:8c:1b:d8:7b:1d:b1: fb:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:18:A6:D8:C1:EE:B0:FB:79:EA:17:A4:A1:45:FA:BF:FB:B9:7A:0D X509v3 Authority Key Identifier: keyid:A3:3C:CA:81:B5:5E:04:65:5D:1B:5A:7E:2C:E6:88:C3:E4:6F:C5:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozzKgbVeBGVdG1p-LOaIw-RvxTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:ae:52:29:b7:64:ed:0c:d3:29:82:72:77:8d:28:c9:d1:88: 90:74:68:b1:3d:bb:0b:4d:89:e6:13:fd:54:cd:f2:ad:46:de: 14:37:08:1b:68:82:b4:c9:b9:47:d0:0c:24:59:82:cf:96:e5: 23:55:0e:e1:fe:f2:91:7c:60:69:d3:a2:d6:11:bc:b4:65:38: aa:d2:e1:52:5a:0b:c7:b1:3d:3c:d7:78:0c:68:7f:e4:64:7f: 51:fe:51:bb:a4:c4:24:9b:b8:ec:cb:7e:10:2d:96:18:af:3e: bb:49:67:a5:43:a1:9f:83:dd:21:e5:77:48:6a:c3:62:e1:79: 4d:0c:db:e9:bd:60:49:88:76:3f:a9:0b:23:47:22:4c:a0:73: 1b:10:f6:13:6c:0c:68:7f:b9:4b:57:a5:12:e2:b0:fd:c9:a9: 10:c5:62:9a:41:2a:17:2d:fb:c9:4a:89:1e:a3:46:f2:b6:81: 36:31:a5:d2:26:b3:d1:b2:08:84:f3:99:eb:0c:35:24:bb:21: d2:c4:52:09:2d:ad:94:11:39:43:a5:cf:a3:d4:b8:bb:68:76: 36:7f:02:e2:08:93:a4:b8:de:9d:cd:3a:5b:25:96:35:c3:72: 8a:3d:4f:e8:56:83:71:86:f5:c8:77:89:76:03:a0:74:ed:2f: 94:f0:24:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURGMDAxMTAvBgNVBAUTKEEzM0NDQTgxQjU1RTA0NjU1RDFCNUE3RTJDRTY4OEMz RTQ2RkM1MzAwHhcNMjUxMjIwMjMwNjM3WhcNMjUxMjI3MjMwNjM3WjAYMRYwFAYD VQQDDA02OTQ3MmJmZS1hNDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7ZXZWQR6/riOpYHqcDcwk8ipeJ8wybzsfTnjMUi1jZfZkH2SnRcK6duFCGwK i15rb6OdAZLUdlZ7O3Kev8gqvqld/2HTgRhCIm2JAt382xw+FOox2C9XTVB9AIwm Kr8W+E7kWapkKEu31fk3FgPPeDB0JmhgdTN9uqXBL5z4oP6l4G5SqGAxA1xx8txj 9gjq4R0nig3a0Lg3zr+fseP4kjegwHhRiE1h3OeQgdDvJfmOG35PlEUQHXcb4BW7 1TPjC/cSanrF7DqFz0eiVAgLIHcWVXDb1Ifl1ySodt8a3Ln9NOu8HZopg5bo0meh t4rLiUJeuqemGN2MG9h7HbH7zwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCwYptjB 7rD7eeoXpKFF+r/7uXoNMB8GA1UdIwQYMBaAFKM8yoG1XgRlXRtafizmiMPkb8Uw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREYwMC8zQUUwMDM0QTRF N0UxMUVDOUUyOTg0MjlDNEY5QUUwMi9venpLZ2JWZUJHVmRHMXAtTE9hSXctUnZ4 VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL296ektnYlZlQkdWZEcxcC1MT2FJdy1SdnhUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF REYwMC8zQUUwMDM0QTRFN0UxMUVDOUUyOTg0MjlDNEY5QUUwMi9venpLZ2JWZUJH VmRHMXAtTE9hSXctUnZ4VEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmrlIpt2TtDNMpgnJ3jSjJ0YiQdGixPbsLTYnmE/1UzfKtRt4UNwgb aIK0yblH0AwkWYLPluUjVQ7h/vKRfGBp06LWEby0ZTiq0uFSWgvHsT0813gMaH/k ZH9R/lG7pMQkm7jsy34QLZYYrz67SWelQ6Gfg90h5XdIasNi4XlNDNvpvWBJiHY/ qQsjRyJMoHMbEPYTbAxof7lLV6US4rD9yakQxWKaQSoXLfvJSokeo0bytoE2MaXS JrPRsgiE85nrDDUkuyHSxFIJLa2UETlDpc+j1Li7aHY2fwLiCJOkuN6dzTpbJZY1 w3KKPU/oVoNxhvXId4l2A6B07S+U8CSO -----END CERTIFICATE-----Generated at Sun Dec 21 02:23:17 2025 by rpki-client