This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft File: OxaIpfe3JKr754IKLGPZey6o5SI.mft (raw, json) Hash identifier: 6zHTbJJbbOOifar09xUmoY32rMGlH3fFRmkRebSAQas= Subject key identifier: CE:83:F2:BB:31:FD:B7:1D:E8:CD:A2:58:E6:6D:10:07:80:0B:9A:D2 Authority key identifier: 3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 Certificate issuer: /CN=A91772FA/serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Certificate serial: 0389 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft Manifest number: 0381 Signing time: Fri 19 Dec 2025 00:04:49 +0000 Manifest this update: Fri 19 Dec 2025 00:04:48 +0000 Manifest next update: Fri 26 Dec 2025 00:04:48 +0000 Files and hashes: 1: OxaIpfe3JKr754IKLGPZey6o5SI.crl (hash: b8nGCfMt/F+A1sCp+1GXnxjcdP3EelwQNZvAKDa+ztQ=) 2: 2D613294CD7611EC83259862C4F9AE02.roa (hash: HUqC6JNil8MpabByxXZUWUh1z061818LFUdkHBUaghY=) 3: EF8CB49CD78F11EC91680D49C4F9AE02.roa (hash: m1T9GaVF/kOA3y3lDclBiCBdGMqPbCm1SzZbjGctr8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:04:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 905 (0x389) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91772FA, serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Validity Not Before: Dec 19 00:04:48 2025 GMT Not After : Dec 26 00:04:48 2025 GMT Subject: CN=694496a1-b726 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c4:f9:5b:42:8d:24:92:65:f7:64:62:96:83: 49:6e:a1:2b:6d:62:b5:9e:96:77:7f:82:ed:64:7e: 0f:c8:fd:b8:3b:d7:ef:70:90:fd:58:72:a5:94:c0: 3f:b3:df:6c:c9:43:ce:8b:ed:e4:b1:95:ad:24:26: f0:59:16:5c:5e:49:b5:92:05:bc:20:25:c0:c0:9b: 5d:77:ec:a3:bd:7c:f1:c3:65:e5:9c:4e:d9:62:1a: 8f:aa:fc:ee:0a:20:90:47:6b:66:33:7a:f8:d8:86: f9:7d:df:88:8c:46:ef:7f:c8:c4:21:d1:0e:41:72: 62:62:5f:84:28:d8:1f:ec:f6:4a:d9:4b:1a:ba:25: cc:d5:01:10:fb:58:57:6c:29:c0:34:a9:a5:7a:dc: 49:51:18:8c:5b:6f:da:a1:11:d0:82:9c:75:62:1e: 2f:9d:f0:11:e6:7f:04:70:16:02:b7:bc:4f:64:3f: ba:41:70:9a:ca:a2:2a:d9:c2:2c:56:03:82:ea:21: 1e:38:c8:d5:9c:df:bb:31:e3:47:79:f9:57:92:d2: c7:6d:2d:05:c3:bc:8e:7c:6a:d1:80:23:0e:24:18: 1d:95:bc:bd:1f:86:b8:54:67:13:d2:c5:80:9e:c9: 76:89:72:3b:37:ab:bb:bc:c6:c4:88:c5:d2:f8:1e: 8f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:83:F2:BB:31:FD:B7:1D:E8:CD:A2:58:E6:6D:10:07:80:0B:9A:D2 X509v3 Authority Key Identifier: keyid:3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:f8:36:c7:27:72:23:f1:c3:e9:c3:f8:f7:b1:3a:df:3e:33: fe:62:18:8d:f9:31:15:c5:c5:bb:e5:5e:a6:43:08:eb:2d:ea: 88:b9:1c:5d:db:2d:f5:9d:14:c6:d3:5e:01:f7:02:37:0a:30: a3:35:c3:c0:17:2c:93:9b:c4:7f:6f:f5:e3:61:88:94:15:ef: 9e:93:fe:88:7f:71:da:cb:63:6b:25:88:33:2a:ba:bd:db:cc: 55:c6:62:69:ad:04:b7:73:6d:0a:c4:20:a7:75:7e:cb:43:76: 50:07:98:62:97:00:af:0a:04:ad:34:14:d8:8a:a6:b0:a6:ec: d8:3b:4c:58:63:18:f2:00:09:f8:ca:db:9e:49:08:e0:40:dc: bf:c2:68:0a:35:e0:ca:fb:11:14:1c:92:7f:c3:c0:40:39:be: 7b:c4:d7:a3:52:da:f9:62:8e:00:05:e8:30:ff:d2:80:11:86: 22:01:07:9c:2c:c2:d7:87:0d:ca:9b:02:31:14:67:22:d3:5f: d6:33:e5:ca:e5:79:1e:8d:d5:5b:21:73:f4:b6:e3:f7:22:bf: d0:31:6f:7b:4f:fd:50:7a:11:54:14:59:de:8a:14:55:0f:37: 86:9b:88:78:5f:9a:17:9f:93:2b:c7:a4:02:16:35:b9:13:2f: da:e8:77:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcyRkExMTAvBgNVBAUTKDNCMTY4OEE1RjdCNzI0QUFGQkU3ODIwQTJDNjNEOTdC MkVBOEU1MjIwHhcNMjUxMjE5MDAwNDQ4WhcNMjUxMjI2MDAwNDQ4WjAYMRYwFAYD VQQDDA02OTQ0OTZhMS1iNzI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAucT5W0KNJJJl92RiloNJbqErbWK1npZ3f4LtZH4PyP24O9fvcJD9WHKllMA/ s99syUPOi+3ksZWtJCbwWRZcXkm1kgW8ICXAwJtdd+yjvXzxw2XlnE7ZYhqPqvzu CiCQR2tmM3r42Ib5fd+IjEbvf8jEIdEOQXJiYl+EKNgf7PZK2UsauiXM1QEQ+1hX bCnANKmletxJURiMW2/aoRHQgpx1Yh4vnfAR5n8EcBYCt7xPZD+6QXCayqIq2cIs VgOC6iEeOMjVnN+7MeNHeflXktLHbS0Fw7yOfGrRgCMOJBgdlby9H4a4VGcT0sWA nsl2iXI7N6u7vMbEiMXS+B6PoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM6D8rsx /bcd6M2iWOZtEAeAC5rSMB8GA1UdIwQYMBaAFDsWiKX3tySq++eCCixj2XsuqOUi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzJGQS9ENzI0NDU2MkNE NzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pLcjc1NElLTEdQWmV5Nm81 U0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL094YUlwZmUzSktyNzU0SUtMR1BaZXk2bzVTSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzJGQS9ENzI0NDU2MkNENzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pL cjc1NElLTEdQWmV5Nm81U0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8+DbHJ3Ij8cPpw/j3sTrfPjP+YhiN+TEVxcW75V6mQwjrLeqIuRxd 2y31nRTG014B9wI3CjCjNcPAFyyTm8R/b/XjYYiUFe+ek/6If3Hay2NrJYgzKrq9 28xVxmJprQS3c20KxCCndX7LQ3ZQB5hilwCvCgStNBTYiqawpuzYO0xYYxjyAAn4 ytueSQjgQNy/wmgKNeDK+xEUHJJ/w8BAOb57xNejUtr5Yo4ABegw/9KAEYYiAQec LMLXhw3KmwIxFGci01/WM+XK5XkejdVbIXP0tuP3Ir/QMW97T/1QehFUFFneihRV DzeGm4h4X5oXn5Mrx6QCFjW5Ey/a6Hei -----END CERTIFICATE-----Generated at Sat Dec 20 03:26:59 2025 by rpki-client