This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft File: oiiPiWTWFpqHlfL07wXg1ebhOwk.mft (raw, json) Hash identifier: aSzbr1akeTty0ofABKaiwR+KHLWm2ctphhijnBV0OTE= Subject key identifier: 20:06:98:80:4E:31:E6:62:0E:A3:0E:4A:72:9C:1D:8F:52:D9:65:F1 Authority key identifier: A2:28:8F:89:64:D6:16:9A:87:95:F2:F4:EF:05:E0:D5:E6:E1:3B:09 Certificate issuer: /CN=A91FB68C/serialNumber=A2288F8964D6169A8795F2F4EF05E0D5E6E13B09 Certificate serial: B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft Manifest number: A6 Signing time: Fri 05 Dec 2025 04:23:49 +0000 Manifest this update: Fri 05 Dec 2025 04:23:49 +0000 Manifest next update: Fri 12 Dec 2025 04:23:49 +0000 Files and hashes: 1: oiiPiWTWFpqHlfL07wXg1ebhOwk.crl (hash: o/hWou+rjfRVbMa9VRN3zpKc2bS84X8OXhhvnV6jxM4=) 2: 965254F8278811F09217002CC4F9AE02.roa (hash: cntS2QbrLMGVNDiSYKCKZNhPNOsjrLMnvFLUFK/CvnQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.crl rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:23:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB68C, serialNumber=A2288F8964D6169A8795F2F4EF05E0D5E6E13B09 Validity Not Before: Dec 5 04:23:49 2025 GMT Not After : Dec 12 04:23:49 2025 GMT Subject: CN=69325e55-7df6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c6:26:35:c3:ce:cc:67:41:b1:41:e3:4d:e3: 09:e5:ef:7f:69:13:99:8f:4e:66:c1:a4:91:ba:92: c5:51:f7:d1:3b:d3:54:60:01:81:3a:85:cd:ac:60: 20:3e:52:2b:71:80:3a:cc:67:a0:9b:61:de:93:a4: 60:f1:ed:52:bb:3c:f4:f8:bf:29:91:e4:be:16:ee: 3a:84:62:ad:9a:ad:91:b2:30:18:c8:c1:e7:74:05: 4e:d7:ae:db:3b:c4:2e:b9:dd:07:36:7f:2c:a2:8e: d4:44:02:bc:4d:e6:91:05:3f:a2:22:4c:ff:46:89: 94:6a:59:bf:cb:73:87:b5:f2:58:b7:f4:54:d6:17: 9f:11:41:8c:6d:af:35:18:e6:97:83:8b:8d:9e:ee: 51:7b:46:34:75:54:a1:5e:33:13:02:51:76:c8:e9: 61:1e:c1:1d:0e:25:2e:c8:6f:22:8f:87:39:78:c6: 8b:a7:91:90:a7:ad:82:e3:85:93:28:31:17:39:74: 5e:13:4f:20:b6:73:79:3f:60:6c:ec:73:93:bf:71: 76:ac:c2:3f:d4:5e:91:e4:fc:87:13:98:b6:b3:f8: d3:bb:75:8a:0a:1d:35:5a:50:8f:ee:86:33:9d:df: dd:d1:50:32:40:e4:42:30:ae:d6:c9:d9:e0:39:ce: 92:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:06:98:80:4E:31:E6:62:0E:A3:0E:4A:72:9C:1D:8F:52:D9:65:F1 X509v3 Authority Key Identifier: keyid:A2:28:8F:89:64:D6:16:9A:87:95:F2:F4:EF:05:E0:D5:E6:E1:3B:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:8a:65:9b:1c:d4:39:f2:6e:27:aa:47:1c:48:d2:96:ed:a6: 38:e6:c1:9b:74:49:78:fb:f2:41:c3:d5:ad:41:ab:58:cc:e8: b0:df:4d:41:d5:98:22:3e:70:d5:9e:4d:62:42:46:62:34:da: c1:f1:b5:48:0a:22:e5:5d:91:c2:92:7b:cc:f6:8c:c9:0f:bd: 0b:3f:87:e9:0d:12:49:44:dd:8d:16:f2:85:ea:17:ac:01:13: 4d:9a:d4:d8:b8:79:8e:66:a3:11:f0:8e:f8:80:44:c4:e1:c1: f7:7c:9b:66:90:0d:d5:a5:99:d1:32:89:66:dd:41:d3:b2:12: f6:fc:64:b4:4c:4a:b6:a2:f6:1e:6f:4f:4d:77:a9:ca:f8:62: 3e:d5:05:b1:44:20:e9:61:53:49:b2:90:4f:75:36:fd:a3:6f: 79:b2:ea:78:a1:17:7e:d9:df:cc:2e:e4:d7:c7:b0:4c:68:e5: 1d:41:0c:29:e6:3c:86:70:77:04:d8:a2:09:67:cd:c1:a1:96: 09:e6:ee:6e:4b:42:b6:6b:2d:f1:cd:07:41:c1:55:d4:5c:ef: c4:81:a3:68:53:23:23:8a:ee:a3:81:75:e5:90:b6:62:2c:c7: e5:c5:5b:b6:6c:54:ae:5b:75:29:d0:3e:ef:de:c5:e4:da:01: a5:25:8a:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI2OEMxMTAvBgNVBAUTKEEyMjg4Rjg5NjRENjE2OUE4Nzk1RjJGNEVGMDVFMEQ1 RTZFMTNCMDkwHhcNMjUxMjA1MDQyMzQ5WhcNMjUxMjEyMDQyMzQ5WjAYMRYwFAYD VQQDEw02OTMyNWU1NS03ZGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApsYmNcPOzGdBsUHjTeMJ5e9/aROZj05mwaSRupLFUffRO9NUYAGBOoXNrGAg PlIrcYA6zGegm2Hek6Rg8e1Suzz0+L8pkeS+Fu46hGKtmq2RsjAYyMHndAVO167b O8Quud0HNn8soo7URAK8TeaRBT+iIkz/RomUalm/y3OHtfJYt/RU1hefEUGMba81 GOaXg4uNnu5Re0Y0dVShXjMTAlF2yOlhHsEdDiUuyG8ij4c5eMaLp5GQp62C44WT KDEXOXReE08gtnN5P2Bs7HOTv3F2rMI/1F6R5PyHE5i2s/jTu3WKCh01WlCP7oYz nd/d0VAyQORCMK7WydngOc6SkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCAGmIBO MeZiDqMOSnKcHY9S2WXxMB8GA1UdIwQYMBaAFKIoj4lk1haah5Xy9O8F4NXm4TsJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjY4Qy8xN0QxMDNBOEVB QjIxMUVGODQ2RjEzMzdDNEY5QUUwMi9vaWlQaVdUV0ZwcUhsZkwwN3dYZzFlYmhP d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29paVBpV1RXRnBxSGxmTDA3d1hnMWViaE93ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjY4Qy8xN0QxMDNBOEVBQjIxMUVGODQ2RjEzMzdDNEY5QUUwMi9vaWlQaVdUV0Zw cUhsZkwwN3dYZzFlYmhPd2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaimWbHNQ58m4nqkccSNKW7aY45sGbdEl4+/JBw9WtQatYzOiw301B 1ZgiPnDVnk1iQkZiNNrB8bVICiLlXZHCknvM9ozJD70LP4fpDRJJRN2NFvKF6hes ARNNmtTYuHmOZqMR8I74gETE4cH3fJtmkA3VpZnRMolm3UHTshL2/GS0TEq2ovYe b09Nd6nK+GI+1QWxRCDpYVNJspBPdTb9o295sup4oRd+2d/MLuTXx7BMaOUdQQwp 5jyGcHcE2KIJZ83BoZYJ5u5uS0K2ay3xzQdBwVXUXO/EgaNoUyMjiu6jgXXlkLZi LMflxVu2bFSuW3Up0D7v3sXk2gGlJYqF -----END CERTIFICATE-----Generated at Sat Dec 6 12:12:50 2025 by rpki-client