This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft File: oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft (raw, json) Hash identifier: 0HtRecaH4UKQ6tVxByDNqXWbrVOx78hZQSHf17KygpI= Subject key identifier: C5:77:93:1D:89:DC:64:62:D7:F8:CC:3E:D9:86:1C:D7:F9:F5:5C:10 Authority key identifier: A1:8C:D3:FE:82:AD:21:80:3C:1F:0B:13:2D:AD:83:D1:C3:54:93:4B Certificate issuer: /CN=A91F6D55/serialNumber=A18CD3FE82AD21803C1F0B132DAD83D1C354934B Certificate serial: 02C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft Manifest number: 02BF Signing time: Thu 04 Dec 2025 23:47:25 +0000 Manifest this update: Thu 04 Dec 2025 23:47:25 +0000 Manifest next update: Thu 11 Dec 2025 23:47:25 +0000 Files and hashes: 1: oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl (hash: LJ+3Q31t0qsOckbbm+Cfd3dsVmzCRPOl0fOQX3D77jQ=) 2: 929D0EB616A611ED86A3EF0CC4F9AE02.roa (hash: 00Bb5TLyF/J2CWzHDjxZA81Dz6rMiVp4bUBC6ncoYxk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:47:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 707 (0x2c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6D55, serialNumber=A18CD3FE82AD21803C1F0B132DAD83D1C354934B Validity Not Before: Dec 4 23:47:25 2025 GMT Not After : Dec 11 23:47:25 2025 GMT Subject: CN=69321d8d-db0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ac:8b:fe:7a:5b:62:9e:05:4a:a5:03:d5:e8: 3a:20:c1:f4:a4:b9:58:dc:ef:f4:5c:06:0d:9f:aa: d1:68:f8:ce:6c:91:38:f0:99:91:a2:71:ad:5f:45: 9b:49:bb:9a:7b:b5:05:8e:ed:bb:0c:40:21:84:61: 19:33:6d:69:41:d7:61:ca:2b:af:2e:b2:3a:d2:9d: 0d:59:28:ff:d7:df:81:53:28:30:8b:53:09:bf:ec: 32:48:fa:1e:f7:4f:c6:96:77:4c:63:6e:b8:24:ed: 26:b2:50:0f:9e:7b:b1:5f:b3:d0:44:b0:28:e2:00: 14:3f:96:87:c4:bf:c3:72:06:c2:97:e1:d2:56:64: 57:9a:c4:b9:4c:9c:cf:ad:ff:15:2a:64:bc:e2:62: f5:b5:29:7c:7b:62:f7:ce:09:90:a5:48:80:0d:d6: f3:a6:65:e2:b8:c2:7f:5d:9d:f4:21:9d:f0:1d:f5: 7b:2d:72:a6:c0:8e:ea:9e:08:13:6a:5c:f7:76:e6: 8d:2a:c8:a5:d7:28:49:e5:f2:9c:38:23:11:00:df: 9a:d4:b7:17:d7:e6:e5:d5:7a:a8:aa:ff:a5:a2:8b: 37:72:5f:d7:6f:18:90:3e:ee:af:9b:9c:c6:1b:c5: c1:1b:2f:df:6a:7f:bc:9e:92:27:a5:71:2d:8d:53: 74:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:77:93:1D:89:DC:64:62:D7:F8:CC:3E:D9:86:1C:D7:F9:F5:5C:10 X509v3 Authority Key Identifier: keyid:A1:8C:D3:FE:82:AD:21:80:3C:1F:0B:13:2D:AD:83:D1:C3:54:93:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:c6:83:29:fa:01:9c:44:4c:48:df:ba:b3:41:91:5b:a3:dc: c7:f8:cd:cb:22:a2:70:e1:7d:ef:7d:22:d9:7d:76:9e:4a:86: 7c:03:e7:94:3a:52:e0:ab:71:32:2a:35:5b:b9:c6:4a:eb:23: 35:83:bb:14:6c:ce:70:d4:ce:93:80:0d:79:a0:88:83:9a:31: 6b:f2:40:1b:f3:2b:1b:af:cd:cb:af:30:db:87:4e:02:2b:43: ad:d4:86:88:71:c4:6e:ea:18:e9:16:27:4a:00:ca:5f:20:aa: 46:34:4b:b8:2c:3b:59:15:07:f0:e4:5e:66:07:5f:ff:7c:96: b6:7a:2e:ec:31:63:19:cb:fd:92:b6:b5:f8:c4:9c:97:b0:0b: a6:6e:21:4c:83:d4:e3:64:c8:35:80:26:31:fa:ec:aa:5d:a7: 9d:0f:2f:22:cf:9b:80:41:d3:8c:9a:8f:2c:de:bc:8d:e1:90: 1c:94:ab:24:2e:b7:a0:4e:dd:f2:65:7d:4d:f5:8d:24:87:cb: 0d:9d:e4:01:b2:c2:f7:6b:15:6b:f4:59:d8:eb:e3:c6:28:c1: 35:43:dc:8f:48:d6:54:bd:a2:8c:9a:b1:84:06:03:24:b1:2e: b0:bb:ff:ba:89:2e:5b:9a:93:e5:63:a7:dc:5b:7f:c6:b2:95: 02:eb:68:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZENTUxMTAvBgNVBAUTKEExOENEM0ZFODJBRDIxODAzQzFGMEIxMzJEQUQ4M0Qx QzM1NDkzNEIwHhcNMjUxMjA0MjM0NzI1WhcNMjUxMjExMjM0NzI1WjAYMRYwFAYD VQQDEw02OTMyMWQ4ZC1kYjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtKyL/npbYp4FSqUD1eg6IMH0pLlY3O/0XAYNn6rRaPjObJE48JmRonGtX0Wb Sbuae7UFju27DEAhhGEZM21pQddhyiuvLrI60p0NWSj/19+BUygwi1MJv+wySPoe 90/GlndMY264JO0mslAPnnuxX7PQRLAo4gAUP5aHxL/DcgbCl+HSVmRXmsS5TJzP rf8VKmS84mL1tSl8e2L3zgmQpUiADdbzpmXiuMJ/XZ30IZ3wHfV7LXKmwI7qnggT alz3duaNKsil1yhJ5fKcOCMRAN+a1LcX1+bl1Xqoqv+loos3cl/XbxiQPu6vm5zG G8XBGy/fan+8npInpXEtjVN0kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMV3kx2J 3GRi1/jMPtmGHNf59VwQMB8GA1UdIwQYMBaAFKGM0/6CrSGAPB8LEy2tg9HDVJNL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkQ1NS8yQkE3Mzk1RTE2 QTQxMUVEQTgzODExMEJDNEY5QUUwMi9vWXpUX29LdElZQThId3NUTGEyRDBjTlVr MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29ZelRfb0t0SVlBOEh3c1RMYTJEMGNOVWswcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkQ1NS8yQkE3Mzk1RTE2QTQxMUVEQTgzODExMEJDNEY5QUUwMi9vWXpUX29LdElZ QThId3NUTGEyRDBjTlVrMHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUxoMp+gGcRExI37qzQZFbo9zH+M3LIqJw4X3vfSLZfXaeSoZ8A+eU OlLgq3EyKjVbucZK6yM1g7sUbM5w1M6TgA15oIiDmjFr8kAb8ysbr83LrzDbh04C K0Ot1IaIccRu6hjpFidKAMpfIKpGNEu4LDtZFQfw5F5mB1//fJa2ei7sMWMZy/2S trX4xJyXsAumbiFMg9TjZMg1gCYx+uyqXaedDy8iz5uAQdOMmo8s3ryN4ZAclKsk LregTt3yZX1N9Y0kh8sNneQBssL3axVr9FnY6+PGKME1Q9yPSNZUvaKMmrGEBgMk sS6wu/+6iS5bmpPlY6fcW3/GspUC62gM -----END CERTIFICATE-----Generated at Sat Dec 6 15:19:17 2025 by rpki-client