This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft File: OIes3fccvvSnUh2EUe7LrrJRnv0.mft (raw, json) Hash identifier: lalDCIjo7SJNQ6hedXLwSD2qU3yHTxSzxeGuvmxjoEE= Subject key identifier: E7:C8:E1:3D:5D:3D:5A:F5:19:0E:FE:F6:26:48:23:64:C1:CB:7B:D6 Authority key identifier: 38:87:AC:DD:F7:1C:BE:F4:A7:52:1D:84:51:EE:CB:AE:B2:51:9E:FD Certificate issuer: /CN=A91778D4/serialNumber=3887ACDDF71CBEF4A7521D8451EECBAEB2519EFD Certificate serial: 0427 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft Manifest number: 0422 Signing time: Fri 26 Dec 2025 23:25:22 +0000 Manifest this update: Fri 26 Dec 2025 23:25:22 +0000 Manifest next update: Fri 02 Jan 2026 23:25:22 +0000 Files and hashes: 1: OIes3fccvvSnUh2EUe7LrrJRnv0.crl (hash: FLIsBWefPfzMV78xzSH6/Kg758Q9cXOjxQAfJu8wEO0=) 2: 13F9F650905511EC9A978D19C4F9AE02.roa (hash: LsezswxbsYTDkD8XmvSpL4OSBTZlfRn5UeJiOefMqvA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.crl rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 Jan 2026 23:25:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1063 (0x427) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91778D4, serialNumber=3887ACDDF71CBEF4A7521D8451EECBAEB2519EFD Validity Not Before: Dec 26 23:25:22 2025 GMT Not After : Jan 2 23:25:22 2026 GMT Subject: CN=694f1962-0439 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:68:13:15:96:86:11:2d:ef:22:ab:46:50:cf: 3b:2e:14:36:b9:4b:39:f5:09:bb:0a:fc:d3:b7:a6: 59:09:24:37:a9:8f:4e:c2:46:3d:30:0f:56:b1:5f: 59:ae:02:f1:40:03:94:98:75:a6:9b:67:ff:eb:9f: c1:e0:fd:82:d2:a3:30:63:f5:41:7a:f0:29:8c:f0: cf:dd:3d:02:a7:24:af:a8:a4:69:34:26:37:0e:eb: 6a:fb:9e:7b:be:e6:8d:02:ac:83:2f:35:7b:d7:2e: d8:a4:0d:9e:7d:50:ce:71:5d:6f:97:ef:1f:cd:83: 2a:01:6c:cb:ed:3d:14:e6:ad:61:62:b2:1e:3b:7a: fb:d5:de:d6:10:14:3e:14:dc:6f:07:3d:53:56:3c: 04:6b:6d:01:97:49:9f:f9:b7:2c:3b:85:10:fc:03: 68:e7:97:bd:71:22:4c:40:5b:2c:d6:e5:48:e0:fd: 6a:17:82:f8:3f:ea:83:f1:7f:63:56:62:df:38:5e: c3:50:86:e5:99:54:95:b7:f1:06:af:ae:5e:8f:d1: 86:3e:75:a5:3e:9e:86:a8:85:88:65:c0:0a:c4:c4: ab:b2:44:d6:6c:0e:3e:51:89:8a:ad:b1:dd:f1:f2: b4:1d:9d:0c:21:45:74:54:80:d9:58:a5:43:69:d0: 63:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:C8:E1:3D:5D:3D:5A:F5:19:0E:FE:F6:26:48:23:64:C1:CB:7B:D6 X509v3 Authority Key Identifier: keyid:38:87:AC:DD:F7:1C:BE:F4:A7:52:1D:84:51:EE:CB:AE:B2:51:9E:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIes3fccvvSnUh2EUe7LrrJRnv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91778D4/D9D5693A905111ECA3699615C4F9AE02/OIes3fccvvSnUh2EUe7LrrJRnv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:1b:e6:cc:87:ad:48:34:19:c1:b4:10:d7:3e:16:fe:57:39: 64:d9:e9:6a:ef:cc:97:45:4f:34:7c:21:28:a0:f2:1b:f5:16: 75:32:aa:38:d9:e0:fa:5c:52:dc:30:d1:7c:d2:63:85:d7:83: 36:6e:86:64:2b:ae:91:46:ad:88:d0:47:d2:12:77:6a:1b:3c: 2b:f4:eb:3d:73:59:4b:12:1e:0c:13:0c:3d:ef:d6:6a:08:57: 65:89:94:91:b3:df:99:75:57:97:e3:51:be:8a:84:e9:86:98: 81:4f:39:da:41:89:aa:a2:b1:95:ed:c7:03:c1:81:ec:5e:48: 82:0e:04:20:3b:ef:2a:83:f6:ac:aa:dd:02:45:9d:06:4d:db: c2:e2:5f:4b:15:e3:5f:23:41:5e:c0:e6:d3:89:3c:64:e5:29: 16:59:4a:f3:ed:2d:e4:99:f2:e5:f7:f7:49:c5:7e:37:65:16: b8:f9:c0:9a:c6:35:e8:82:99:7f:8a:be:33:d3:34:d0:31:cc: 1f:5a:d6:d1:2d:56:81:57:a1:4a:bc:b0:dd:66:df:01:b2:5e: 88:22:b7:4f:26:1f:ca:ee:bc:dd:3f:7e:c1:cb:bb:14:b2:44: 5e:7d:4a:ae:2b:f5:89:67:87:63:af:87:fd:80:02:63:12:a3: 55:13:00:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc4RDQxMTAvBgNVBAUTKDM4ODdBQ0RERjcxQ0JFRjRBNzUyMUQ4NDUxRUVDQkFF QjI1MTlFRkQwHhcNMjUxMjI2MjMyNTIyWhcNMjYwMTAyMjMyNTIyWjAYMRYwFAYD VQQDDA02OTRmMTk2Mi0wNDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjmgTFZaGES3vIqtGUM87LhQ2uUs59Qm7CvzTt6ZZCSQ3qY9OwkY9MA9WsV9Z rgLxQAOUmHWmm2f/65/B4P2C0qMwY/VBevApjPDP3T0CpySvqKRpNCY3Dutq+557 vuaNAqyDLzV71y7YpA2efVDOcV1vl+8fzYMqAWzL7T0U5q1hYrIeO3r71d7WEBQ+ FNxvBz1TVjwEa20Bl0mf+bcsO4UQ/ANo55e9cSJMQFss1uVI4P1qF4L4P+qD8X9j VmLfOF7DUIblmVSVt/EGr65ej9GGPnWlPp6GqIWIZcAKxMSrskTWbA4+UYmKrbHd 8fK0HZ0MIUV0VIDZWKVDadBjUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOfI4T1d PVr1GQ7+9iZII2TBy3vWMB8GA1UdIwQYMBaAFDiHrN33HL70p1IdhFHuy66yUZ79 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzhENC9EOUQ1NjkzQTkw NTExMUVDQTM2OTk2MTVDNEY5QUUwMi9PSWVzM2ZjY3Z2U25VaDJFVWU3THJySlJu djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09JZXMzZmNjdnZTblVoMkVVZTdMcnJKUm52MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzhENC9EOUQ1NjkzQTkwNTExMUVDQTM2OTk2MTVDNEY5QUUwMi9PSWVzM2ZjY3Z2 U25VaDJFVWU3THJySlJudjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwG+bMh61INBnBtBDXPhb+Vzlk2elq78yXRU80fCEooPIb9RZ1Mqo4 2eD6XFLcMNF80mOF14M2boZkK66RRq2I0EfSEndqGzwr9Os9c1lLEh4MEww979Zq CFdliZSRs9+ZdVeX41G+ioTphpiBTznaQYmqorGV7ccDwYHsXkiCDgQgO+8qg/as qt0CRZ0GTdvC4l9LFeNfI0FewObTiTxk5SkWWUrz7S3kmfLl9/dJxX43ZRa4+cCa xjXogpl/ir4z0zTQMcwfWtbRLVaBV6FKvLDdZt8Bsl6IIrdPJh/K7rzdP37By7sU skRefUquK/WJZ4djr4f9gAJjEqNVEwBb -----END CERTIFICATE-----Generated at Sun Dec 28 06:38:20 2025 by rpki-client