This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft File: oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft (raw, json) Hash identifier: peWQ7MEtayX4PeUizdv2tspGHgdRcjdpQqGCnltJSUk= Subject key identifier: CB:36:6C:22:79:05:40:F3:C4:7C:A2:80:93:AF:A2:7B:E1:5E:F0:F6 Authority key identifier: A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 Certificate issuer: /CN=A91FA024/serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Certificate serial: 083F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft Manifest number: 0837 Signing time: Thu 04 Dec 2025 19:53:18 +0000 Manifest this update: Thu 04 Dec 2025 19:53:18 +0000 Manifest next update: Thu 11 Dec 2025 19:53:18 +0000 Files and hashes: 1: oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl (hash: IMdOW1jfb6w6v4XSGIgh9XHFXMhdKhQhSMp4oGI80H4=) 2: FE1FDB12BCD011EC8283681EC4F9AE02.roa (hash: 2wuY0yDKdmJN9ZQKTlSwz2efwa28k+u+9dd3owV3hlg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:53:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2111 (0x83f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA024, serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Validity Not Before: Dec 4 19:53:18 2025 GMT Not After : Dec 11 19:53:18 2025 GMT Subject: CN=6931e6ae-292a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:61:22:79:73:74:98:85:c4:f9:80:d0:49:b1: a0:ae:e2:82:51:34:cc:2c:7d:e3:2b:b3:14:0f:d5: 07:27:4b:fd:25:df:15:85:9b:fc:59:53:4b:33:19: 30:92:95:00:18:d2:87:a7:f9:83:2b:55:a8:6a:8b: f6:be:05:6f:db:6b:85:43:9c:23:09:76:24:14:96: 98:dd:12:a2:51:61:d1:61:5b:3f:da:c4:a5:e3:ac: ce:7d:2a:ea:d2:b2:b3:fd:69:26:32:6a:3d:67:ac: 4a:f6:62:c1:aa:a5:59:5b:24:44:74:ff:3c:52:ac: ed:f3:0e:65:d2:d9:d5:bf:8b:ed:d5:68:d4:c7:12: f9:39:dd:f7:d7:63:de:33:2d:69:a4:03:b6:56:b1: df:cb:38:f1:2b:e4:e5:60:80:c6:ce:9c:2c:4f:a7: 49:34:8e:b5:75:ff:75:55:99:41:9e:b7:07:e1:72: a0:56:b5:99:6e:ac:ae:21:a9:41:a8:90:a5:9b:06: c6:76:71:e5:e0:45:6b:47:f4:5f:7f:5d:6c:2b:84: 49:3a:f2:23:d4:8f:4c:56:c5:c5:50:88:b9:1c:ad: 0c:79:d6:67:a5:6e:9e:58:c4:a1:f8:04:fb:4b:55: db:eb:28:24:15:90:e5:37:45:bd:49:10:d1:ec:9d: b9:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:36:6C:22:79:05:40:F3:C4:7C:A2:80:93:AF:A2:7B:E1:5E:F0:F6 X509v3 Authority Key Identifier: keyid:A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:1c:9f:be:34:ca:73:24:2c:69:3c:0d:17:c3:46:69:27:40: b0:46:a3:ba:f6:14:5e:91:fc:3f:c6:61:7f:1d:27:67:f7:dc: 75:1e:f0:5a:29:ea:12:c2:72:a4:2d:b2:87:72:e0:7d:51:42: 91:31:e5:50:50:e3:e8:fc:fe:91:de:be:51:49:87:15:3c:e2: 57:d3:19:28:49:e7:ed:69:3a:dd:0b:90:bc:d8:38:34:3e:77: 4c:a0:d0:3d:67:de:f2:2f:6a:f5:cf:14:00:a2:bd:15:de:91: 7b:53:97:90:22:c9:a4:ac:d8:64:d1:43:d6:20:6d:a2:26:5e: 6b:ec:e6:1e:5b:74:91:23:17:d8:50:f0:11:45:1b:bc:60:82: ec:85:5a:e6:1d:01:54:c8:68:ab:78:3c:d6:bb:e0:4e:b2:0f: 11:50:ab:5d:dd:9a:d9:04:18:02:a2:a1:e7:2a:a4:85:c7:aa: d4:fc:d7:c1:3f:97:b6:f5:42:b7:a3:39:ec:1b:37:72:3f:96: 84:09:10:a0:f2:8c:c2:e0:74:e7:4e:80:f8:fc:8c:c6:56:20: d8:16:cf:ab:c6:4b:f1:84:b2:80:4f:f7:3d:07:ad:c0:7b:ac: a4:30:1a:9f:74:e5:b2:79:7c:78:1e:1a:0c:c9:0e:05:d2:f2: bf:ae:2c:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCD8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkEwMjQxMTAvBgNVBAUTKEEwQUM0MjdFOTU3QjM3NEQwMjY3RkE3NjQ4REQzRkY4 NTcwMkRBQjEwHhcNMjUxMjA0MTk1MzE4WhcNMjUxMjExMTk1MzE4WjAYMRYwFAYD VQQDEw02OTMxZTZhZS0yOTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmEieXN0mIXE+YDQSbGgruKCUTTMLH3jK7MUD9UHJ0v9Jd8VhZv8WVNLMxkw kpUAGNKHp/mDK1Woaov2vgVv22uFQ5wjCXYkFJaY3RKiUWHRYVs/2sSl46zOfSrq 0rKz/WkmMmo9Z6xK9mLBqqVZWyREdP88Uqzt8w5l0tnVv4vt1WjUxxL5Od3312Pe My1ppAO2VrHfyzjxK+TlYIDGzpwsT6dJNI61df91VZlBnrcH4XKgVrWZbqyuIalB qJClmwbGdnHl4EVrR/Rff11sK4RJOvIj1I9MVsXFUIi5HK0MedZnpW6eWMSh+AT7 S1Xb6ygkFZDlN0W9SRDR7J25MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMs2bCJ5 BUDzxHyigJOvonvhXvD2MB8GA1UdIwQYMBaAFKCsQn6VezdNAmf6dkjdP/hXAtqx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTAyNC9EMzNBNDc5NEYx ODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04wMENaX3AyU04wXy1GY0My ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LeENmcFY3TjAwQ1pfcDJTTjBfLUZjQzJyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTAyNC9EMzNBNDc5NEYxODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04w MENaX3AyU04wXy1GY0MyckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGHJ++NMpzJCxpPA0Xw0ZpJ0CwRqO69hRekfw/xmF/HSdn99x1HvBa KeoSwnKkLbKHcuB9UUKRMeVQUOPo/P6R3r5RSYcVPOJX0xkoSeftaTrdC5C82Dg0 PndMoNA9Z97yL2r1zxQAor0V3pF7U5eQIsmkrNhk0UPWIG2iJl5r7OYeW3SRIxfY UPARRRu8YILshVrmHQFUyGireDzWu+BOsg8RUKtd3ZrZBBgCoqHnKqSFx6rU/NfB P5e29UK3oznsGzdyP5aECRCg8ozC4HTnToD4/IzGViDYFs+rxkvxhLKAT/c9B63A e6ykMBqfdOWyeXx4HhoMyQ4F0vK/rizw -----END CERTIFICATE-----Generated at Sat Dec 6 13:34:46 2025 by rpki-client