This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft File: Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft (raw, json) Hash identifier: LcmQUk5Zdxa23rjC8Zcsy466O5z5P0GgLIX3v1pIsKs= Subject key identifier: CF:16:A6:87:59:A2:CA:3E:93:70:50:42:AD:D9:EC:C8:56:99:A1:D7 Authority key identifier: 3A:AF:FB:B7:EA:4A:60:D7:7B:B4:42:84:AC:BF:25:C3:98:BA:9A:6D Certificate issuer: /CN=A91F8E3D/serialNumber=3AAFFBB7EA4A60D77BB44284ACBF25C398BA9A6D Certificate serial: 04D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq_7t-pKYNd7tEKErL8lw5i6mm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft Manifest number: 04BD Signing time: Thu 04 Dec 2025 22:29:29 +0000 Manifest this update: Thu 04 Dec 2025 22:29:29 +0000 Manifest next update: Thu 11 Dec 2025 22:29:29 +0000 Files and hashes: 1: Oq_7t-pKYNd7tEKErL8lw5i6mm0.crl (hash: sZh5QyiRAhTbExaL/4lx3NQ8kra7AVHCc1BxIzfFESw=) 2: FF9D89B6AB4C11ECB0C94F67C4F9AE02.roa (hash: p5RWbmc3OrbusuGd87uXwNNKECyHXGRqb7DFbO3Zzjc=) 3: 451AF9F2E3DC11ECB9410B43C4F9AE02.roa (hash: PvyXkvk9rsG65qDLSBUO/zxV1I1w1ViEmt67rzLWH3U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.crl rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq_7t-pKYNd7tEKErL8lw5i6mm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:29:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1232 (0x4d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E3D, serialNumber=3AAFFBB7EA4A60D77BB44284ACBF25C398BA9A6D Validity Not Before: Dec 4 22:29:29 2025 GMT Not After : Dec 11 22:29:29 2025 GMT Subject: CN=69320b49-2163 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:10:5e:c4:90:6c:34:04:46:67:05:38:cf:41: 09:b4:e2:39:00:a3:e3:08:af:73:a2:7a:9c:47:d2: c1:38:37:b6:22:bd:c7:7e:67:31:17:62:99:72:e8: 04:c6:1a:ab:02:46:2f:fe:0a:ff:90:80:68:17:0d: de:83:f0:e8:23:32:26:55:8e:e9:5d:6e:49:32:de: 3a:20:b8:5f:33:b9:b7:6c:4c:36:39:41:de:a4:0e: a9:06:88:42:8a:8d:12:68:ec:cf:2b:66:48:58:2b: 97:14:34:c7:cb:f6:d2:7f:e9:58:74:47:78:2a:75: 87:6d:2c:33:78:78:19:5b:c9:4e:c7:d6:2d:dd:c7: 3e:ff:b3:3c:a7:4c:db:69:31:7b:c7:f0:98:d8:0b: aa:f8:e1:61:e3:7f:1d:57:18:a6:f9:da:fc:16:a3: 1a:66:7d:ca:cc:08:ac:57:66:5a:b8:f5:7f:2a:f0: a6:1c:5e:4e:0c:d3:d6:32:53:92:c8:ac:73:d4:67: cc:40:02:f1:47:e6:8c:81:2f:5c:4e:a0:44:86:ff: 62:76:20:5c:c1:9d:ed:f5:92:7e:eb:fe:53:91:1d: c3:c1:be:31:8d:6b:06:84:86:e3:c0:c5:d4:4c:83: 8a:2a:7c:a3:b2:7f:20:e9:bd:f7:39:41:e6:25:6d: cf:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:16:A6:87:59:A2:CA:3E:93:70:50:42:AD:D9:EC:C8:56:99:A1:D7 X509v3 Authority Key Identifier: keyid:3A:AF:FB:B7:EA:4A:60:D7:7B:B4:42:84:AC:BF:25:C3:98:BA:9A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq_7t-pKYNd7tEKErL8lw5i6mm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E3D/0AB4386A584E11EC9FCF1779C4F9AE02/Oq_7t-pKYNd7tEKErL8lw5i6mm0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:ae:10:f1:4c:71:28:9d:db:a9:08:cf:66:cd:3d:89:27:a3: 5d:b9:e8:e7:6c:4b:68:09:cc:f9:02:52:c9:42:90:fa:87:60: 06:ef:22:33:ca:8d:23:d2:96:5e:0d:ff:5a:3d:9c:c0:73:4f: e0:ce:63:34:d2:2c:d9:e9:45:6a:d4:e8:5c:f9:df:ad:2e:bb: 9e:0b:e0:32:4d:c1:30:ff:c9:e6:03:ce:e7:fb:07:44:c5:f5: 0c:e0:fc:16:90:df:8c:d2:1f:74:17:62:48:f2:de:05:26:5f: d7:42:95:39:08:65:3d:12:d3:f8:a2:8e:f3:b6:73:fe:57:f6: 59:95:a8:93:6b:aa:46:bc:f8:96:26:0d:a0:eb:c2:0c:64:9f: 35:6b:99:ae:8a:dc:4a:ec:fd:ab:1e:6d:17:c3:30:56:90:d8: 3c:8d:02:e5:93:ff:98:00:c7:12:8e:47:03:28:15:09:f3:5a: a8:74:ac:ce:21:46:6c:73:59:78:80:53:84:68:56:de:62:bb: fd:c3:36:c7:ee:82:a4:6f:a6:2c:e7:88:38:b4:ee:d0:ca:0b: 9d:15:1a:dd:9f:d3:dc:33:31:0d:b4:fa:3a:19:d7:d1:b6:db: 83:0d:f4:b0:4d:97:2c:69:83:8f:a5:78:de:d0:19:34:63:a1: 31:d4:66:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFM0QxMTAvBgNVBAUTKDNBQUZGQkI3RUE0QTYwRDc3QkI0NDI4NEFDQkYyNUMz OThCQTlBNkQwHhcNMjUxMjA0MjIyOTI5WhcNMjUxMjExMjIyOTI5WjAYMRYwFAYD VQQDEw02OTMyMGI0OS0yMTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsRBexJBsNARGZwU4z0EJtOI5AKPjCK9zonqcR9LBODe2Ir3HfmcxF2KZcugE xhqrAkYv/gr/kIBoFw3eg/DoIzImVY7pXW5JMt46ILhfM7m3bEw2OUHepA6pBohC io0SaOzPK2ZIWCuXFDTHy/bSf+lYdEd4KnWHbSwzeHgZW8lOx9Yt3cc+/7M8p0zb aTF7x/CY2Auq+OFh438dVxim+dr8FqMaZn3KzAisV2ZauPV/KvCmHF5ODNPWMlOS yKxz1GfMQALxR+aMgS9cTqBEhv9idiBcwZ3t9ZJ+6/5TkR3Dwb4xjWsGhIbjwMXU TIOKKnyjsn8g6b33OUHmJW3PKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM8WpodZ oso+k3BQQq3Z7MhWmaHXMB8GA1UdIwQYMBaAFDqv+7fqSmDXe7RChKy/JcOYuppt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEUzRC8wQUI0Mzg2QTU4 NEUxMUVDOUZDRjE3NzlDNEY5QUUwMi9PcV83dC1wS1lOZDd0RUtFckw4bHc1aTZt bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xXzd0LXBLWU5kN3RFS0VyTDhsdzVpNm1tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEUzRC8wQUI0Mzg2QTU4NEUxMUVDOUZDRjE3NzlDNEY5QUUwMi9PcV83dC1wS1lO ZDd0RUtFckw4bHc1aTZtbTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjrhDxTHEondupCM9mzT2JJ6NduejnbEtoCcz5AlLJQpD6h2AG7yIz yo0j0pZeDf9aPZzAc0/gzmM00izZ6UVq1Ohc+d+tLrueC+AyTcEw/8nmA87n+wdE xfUM4PwWkN+M0h90F2JI8t4FJl/XQpU5CGU9EtP4oo7ztnP+V/ZZlaiTa6pGvPiW Jg2g68IMZJ81a5muitxK7P2rHm0XwzBWkNg8jQLlk/+YAMcSjkcDKBUJ81qodKzO IUZsc1l4gFOEaFbeYrv9wzbH7oKkb6Ys54g4tO7QygudFRrdn9PcMzENtPo6GdfR ttuDDfSwTZcsaYOPpXje0Bk0Y6Ex1GY5 -----END CERTIFICATE-----Generated at Sat Dec 6 18:31:34 2025 by rpki-client