This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft File: OIX50v0IYCg7VTgfHE9KWjoe7z8.mft (raw, json) Hash identifier: l6WJyE5kqtWOMzHyYEsryu22b6GMNr1SmgvCCsrdCkY= Subject key identifier: AC:6E:93:6F:A5:01:0A:C6:41:AC:D5:82:4D:E0:7A:45:A3:53:38:FD Authority key identifier: 38:85:F9:D2:FD:08:60:28:3B:55:38:1F:1C:4F:4A:5A:3A:1E:EF:3F Certificate issuer: /CN=A91847C2/serialNumber=3885F9D2FD0860283B55381F1C4F4A5A3A1EEF3F Certificate serial: 0136 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIX50v0IYCg7VTgfHE9KWjoe7z8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft Manifest number: 0133 Signing time: Fri 19 Dec 2025 03:40:54 +0000 Manifest this update: Fri 19 Dec 2025 03:40:54 +0000 Manifest next update: Fri 26 Dec 2025 03:40:54 +0000 Files and hashes: 1: OIX50v0IYCg7VTgfHE9KWjoe7z8.crl (hash: nZhEkpJ9WEzC1rIP346iHNCRQAyNAUAJMMvN9TdEuTQ=) 2: 744D8A1005EE11EF851FA42FC4F9AE02.roa (hash: oPEA+euS8au7/G3eWPC6qnxCCEjdK5yKYosNW4PVWb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.crl rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIX50v0IYCg7VTgfHE9KWjoe7z8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:40:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 310 (0x136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847C2, serialNumber=3885F9D2FD0860283B55381F1C4F4A5A3A1EEF3F Validity Not Before: Dec 19 03:40:54 2025 GMT Not After : Dec 26 03:40:54 2025 GMT Subject: CN=6944c946-352c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c0:23:aa:6b:7c:a2:25:b4:35:b2:e5:aa:c0: 54:af:8d:5d:e5:a6:bd:8a:92:db:a8:71:5c:20:64: f1:96:c8:84:ab:7d:3f:e0:48:2a:d3:93:8b:31:c1: 5f:b6:46:dd:cf:1d:fc:2e:3a:71:26:c8:3d:68:a9: 4d:f2:92:8d:2a:e3:5d:de:4f:32:0b:02:ac:3a:4b: dd:27:0f:3c:ed:90:62:9b:fa:b0:ad:e0:21:01:65: ae:02:3c:d4:6b:6f:98:4a:9e:90:5c:22:fb:16:ac: eb:2f:77:19:ab:3d:18:9f:e6:a9:88:c9:fa:6a:2b: c2:4d:41:4f:db:c1:42:f3:99:46:28:af:08:cc:0a: 54:47:79:81:8c:40:cd:1f:82:f0:5a:04:b7:bf:f2: ca:9f:a0:bd:a9:8c:2e:be:26:45:88:a9:2a:21:10: 96:71:8d:56:06:9c:53:7c:bc:6e:e3:ee:2d:aa:34: d9:b8:9a:38:d9:87:f7:8b:ce:d7:2f:50:0e:de:15: f5:dd:8e:1e:33:cb:b1:06:2a:06:d9:d8:a0:cd:69: 61:f3:46:93:36:1f:2c:1f:b6:d9:26:4a:8a:9e:cd: 34:3b:9b:85:e2:9e:fa:e1:e3:cb:65:87:2f:1b:ad: f2:e2:e9:72:b9:29:5d:2e:cf:73:a7:56:19:f1:7d: ee:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:6E:93:6F:A5:01:0A:C6:41:AC:D5:82:4D:E0:7A:45:A3:53:38:FD X509v3 Authority Key Identifier: keyid:38:85:F9:D2:FD:08:60:28:3B:55:38:1F:1C:4F:4A:5A:3A:1E:EF:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIX50v0IYCg7VTgfHE9KWjoe7z8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847C2/B92BFAD405EB11EF956BD643C4F9AE02/OIX50v0IYCg7VTgfHE9KWjoe7z8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:0d:60:14:5b:6c:25:e8:51:59:e3:b7:ae:20:1a:31:06:fc: b0:71:73:28:a5:9c:41:ad:97:d2:ec:0a:07:71:8f:75:a1:31: c3:c2:89:f7:1b:f0:1a:c8:9d:58:57:bb:d7:4a:43:15:20:fe: 76:88:73:ed:2b:a0:ce:a9:d7:02:cc:80:47:67:0c:2f:15:5c: 86:b6:88:3d:35:07:08:c0:cd:8b:0f:9f:31:13:06:93:e0:c8: a3:8d:91:58:90:41:6c:dc:0e:38:e4:39:a3:32:2b:2c:bf:2f: ef:22:ac:dc:b7:d9:ea:28:46:01:7e:f3:96:47:3f:fb:37:f0: c9:0c:b9:86:dc:6a:3c:0a:62:1b:0b:95:57:65:31:a2:5f:21: 98:aa:1a:80:6d:5d:68:26:71:a5:16:1e:4d:14:b3:e7:67:39: 84:e0:bd:e6:2f:f7:62:62:d1:b4:3a:51:de:17:7d:f9:72:7e: 3f:46:c8:91:62:53:ba:d8:86:6b:e0:59:d1:54:94:87:fb:35: ce:5f:a2:e7:a6:47:a3:05:40:61:d8:ec:bb:36:af:9d:42:0d: c0:2c:2c:32:4f:10:14:24:15:c4:a5:ae:76:75:4c:3f:90:1b: ff:e4:0c:d9:55:04:9b:b3:ea:45:48:e1:a9:16:86:c8:6d:1f: b3:d0:0b:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QzIxMTAvBgNVBAUTKDM4ODVGOUQyRkQwODYwMjgzQjU1MzgxRjFDNEY0QTVB M0ExRUVGM0YwHhcNMjUxMjE5MDM0MDU0WhcNMjUxMjI2MDM0MDU0WjAYMRYwFAYD VQQDDA02OTQ0Yzk0Ni0zNTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArMAjqmt8oiW0NbLlqsBUr41d5aa9ipLbqHFcIGTxlsiEq30/4Egq05OLMcFf tkbdzx38LjpxJsg9aKlN8pKNKuNd3k8yCwKsOkvdJw887ZBim/qwreAhAWWuAjzU a2+YSp6QXCL7FqzrL3cZqz0Yn+apiMn6aivCTUFP28FC85lGKK8IzApUR3mBjEDN H4LwWgS3v/LKn6C9qYwuviZFiKkqIRCWcY1WBpxTfLxu4+4tqjTZuJo42Yf3i87X L1AO3hX13Y4eM8uxBioG2digzWlh80aTNh8sH7bZJkqKns00O5uF4p764ePLZYcv G63y4ulyuSldLs9zp1YZ8X3uSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKxuk2+l AQrGQazVgk3gekWjUzj9MB8GA1UdIwQYMBaAFDiF+dL9CGAoO1U4HxxPSlo6Hu8/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdDMi9COTJCRkFENDA1 RUIxMUVGOTU2QkQ2NDNDNEY5QUUwMi9PSVg1MHYwSVlDZzdWVGdmSEU5S1dqb2U3 ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09JWDUwdjBJWUNnN1ZUZ2ZIRTlLV2pvZTd6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDdDMi9COTJCRkFENDA1RUIxMUVGOTU2QkQ2NDNDNEY5QUUwMi9PSVg1MHYwSVlD ZzdWVGdmSEU5S1dqb2U3ejgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBADWAUW2wl6FFZ47euIBoxBvywcXMopZxBrZfS7AoHcY91oTHDwon3 G/AayJ1YV7vXSkMVIP52iHPtK6DOqdcCzIBHZwwvFVyGtog9NQcIwM2LD58xEwaT 4MijjZFYkEFs3A445DmjMissvy/vIqzct9nqKEYBfvOWRz/7N/DJDLmG3Go8CmIb C5VXZTGiXyGYqhqAbV1oJnGlFh5NFLPnZzmE4L3mL/diYtG0OlHeF335cn4/RsiR YlO62IZr4FnRVJSH+zXOX6LnpkejBUBh2Oy7Nq+dQg3ALCwyTxAUJBXEpa52dUw/ kBv/5AzZVQSbs+pFSOGpFobIbR+z0Au0 -----END CERTIFICATE-----Generated at Fri Dec 19 17:35:58 2025 by rpki-client