This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.mft
File:                     oHzT0QIaWMJAoSE3QAuXsYt5mNA.mft (raw, json)
Hash identifier:          xCNY5s3jmID8PYdl1XHlHu0g7ylEoe1p3wNelvKtC6c=
Subject key identifier:   EB:BB:9D:1C:97:4B:F3:C0:05:1F:EA:86:04:17:34:5E:0C:B0:A5:19
Authority key identifier: A0:7C:D3:D1:02:1A:58:C2:40:A1:21:37:40:0B:97:B1:8B:79:98:D0
Certificate issuer:       /CN=A9194040/serialNumber=A07CD3D1021A58C240A12137400B97B18B7998D0
Certificate serial:       03E2
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHzT0QIaWMJAoSE3QAuXsYt5mNA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.mft
Manifest number:          03DD
Signing time:             Thu 06 Nov 2025 02:57:19 +0000
Manifest this update:     Thu 06 Nov 2025 02:57:18 +0000
Manifest next update:     Thu 13 Nov 2025 02:57:18 +0000
Files and hashes:         1: oHzT0QIaWMJAoSE3QAuXsYt5mNA.crl (hash: kpVINVSAf4Rvqd40N1sfX9SqodfhRt1BM+++WprMTCk=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 994 (0x3e2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9194040, serialNumber=A07CD3D1021A58C240A12137400B97B18B7998D0
        Validity
            Not Before: Nov  6 02:57:18 2025 GMT
            Not After : Nov 13 02:57:18 2025 GMT
        Subject: CN=690c0e8f-c2cf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e3:5e:de:54:0e:f4:c3:60:bc:09:98:26:fe:c3:
                    ca:86:cc:3f:6e:1d:a5:fd:65:67:74:67:41:34:93:
                    e1:cb:57:4a:8d:1a:03:5e:3e:31:e0:db:a4:8f:3f:
                    b1:18:87:5a:eb:a2:08:ec:2b:d1:a2:09:37:02:a6:
                    83:19:9f:19:28:50:41:be:a8:40:ca:9b:3c:15:8d:
                    6c:d4:9f:a4:86:a2:fa:4a:44:cb:73:bb:fc:61:15:
                    c0:17:fa:a8:66:ad:a4:e3:11:49:dc:49:b2:1f:56:
                    3b:17:14:45:b1:b5:a0:f3:eb:00:e8:92:f6:14:2e:
                    11:d3:59:b6:d2:cf:e8:cf:ac:87:12:67:b5:d4:5f:
                    d6:db:f2:8f:1f:b6:65:7b:12:e4:17:33:bb:de:50:
                    77:4a:4f:65:60:cd:c1:b0:11:bb:1d:88:4f:7e:86:
                    cd:2e:b8:93:c4:04:0b:c9:1f:18:31:14:91:c0:5f:
                    b1:68:e9:c9:1a:8c:f5:b6:40:4a:74:e3:00:a9:95:
                    51:3f:f7:6f:c2:0a:5b:23:ca:ad:a9:67:39:d3:75:
                    d8:0e:21:10:af:3f:1d:34:f0:f4:ff:44:78:5f:62:
                    93:95:61:e1:68:46:9a:7b:77:c3:f3:1d:69:12:72:
                    a7:79:ec:62:d9:1d:30:65:c3:c3:15:53:e5:63:d4:
                    60:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EB:BB:9D:1C:97:4B:F3:C0:05:1F:EA:86:04:17:34:5E:0C:B0:A5:19
            X509v3 Authority Key Identifier:
                keyid:A0:7C:D3:D1:02:1A:58:C2:40:A1:21:37:40:0B:97:B1:8B:79:98:D0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHzT0QIaWMJAoSE3QAuXsYt5mNA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194040/9B04A0F2A34011ECB3FA047BC4F9AE02/oHzT0QIaWMJAoSE3QAuXsYt5mNA.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         9a:53:fe:c0:28:9e:b8:6a:3a:ed:c7:bc:b8:d0:9f:3b:2c:65:
         1a:f8:7f:d5:47:5a:77:97:74:1b:e6:50:3a:47:9a:82:ae:3b:
         a2:11:ae:ca:29:56:f3:d2:64:b2:9e:75:80:4c:55:17:8e:f7:
         b8:a1:2d:37:58:98:af:01:32:f5:cf:7f:5a:ca:65:47:9b:f4:
         60:b3:ec:91:32:0c:a8:77:4d:fe:b2:f7:8a:c3:2e:0f:bb:cf:
         1d:7d:44:99:64:80:91:b6:4b:6c:57:16:4a:fc:23:cb:06:46:
         f0:75:50:74:71:93:bc:fd:88:1a:b0:4c:83:bf:87:70:93:fa:
         33:62:c5:0e:ed:70:45:6c:f7:c7:93:86:89:01:74:e0:d3:a5:
         3b:17:2c:0a:81:de:62:ad:1a:90:92:e9:78:b1:41:75:f7:f0:
         00:de:a4:4c:4e:d6:a5:46:d4:8c:60:60:be:6b:22:f1:f4:11:
         8a:a3:b9:9c:c8:cd:55:79:62:32:d2:ac:7d:4b:e4:f0:40:ba:
         67:63:f5:17:70:6e:a0:c4:60:31:97:b3:11:bf:de:0c:3a:ec:
         ef:76:65:61:98:78:a6:a3:a8:76:09:e2:f0:5a:de:12:9f:f9:
         23:ca:c2:e7:e8:39:02:29:db:d1:fd:e2:99:63:12:18:93:05:
         0f:66:b1:52
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICA+IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OTQwNDAxMTAvBgNVBAUTKEEwN0NEM0QxMDIxQTU4QzI0MEExMjEzNzQwMEI5N0Ix
OEI3OTk4RDAwHhcNMjUxMTA2MDI1NzE4WhcNMjUxMTEzMDI1NzE4WjAYMRYwFAYD
VQQDEw02OTBjMGU4Zi1jMmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA417eVA70w2C8CZgm/sPKhsw/bh2l/WVndGdBNJPhy1dKjRoDXj4x4Nukjz+x
GIda66II7CvRogk3AqaDGZ8ZKFBBvqhAyps8FY1s1J+khqL6SkTLc7v8YRXAF/qo
Zq2k4xFJ3EmyH1Y7FxRFsbWg8+sA6JL2FC4R01m20s/oz6yHEme11F/W2/KPH7Zl
exLkFzO73lB3Sk9lYM3BsBG7HYhPfobNLriTxAQLyR8YMRSRwF+xaOnJGoz1tkBK
dOMAqZVRP/dvwgpbI8qtqWc503XYDiEQrz8dNPD0/0R4X2KTlWHhaEaae3fD8x1p
EnKneexi2R0wZcPDFVPlY9RgFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOu7nRyX
S/PABR/qhgQXNF4MsKUZMB8GA1UdIwQYMBaAFKB809ECGljCQKEhN0ALl7GLeZjQ
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDA0MC85QjA0QTBGMkEz
NDAxMUVDQjNGQTA0N0JDNEY5QUUwMi9vSHpUMFFJYVdNSkFvU0UzUUF1WHNZdDVt
TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL29IelQwUUlhV01KQW9TRTNRQXVYc1l0NW1OQS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5
NDA0MC85QjA0QTBGMkEzNDAxMUVDQjNGQTA0N0JDNEY5QUUwMi9vSHpUMFFJYVdN
SkFvU0UzUUF1WHNZdDVtTkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQCaU/7AKJ64ajrtx7y40J87LGUa+H/VR1p3l3Qb5lA6R5qCrjuiEa7K
KVbz0mSynnWATFUXjve4oS03WJivATL1z39aymVHm/Rgs+yRMgyod03+sveKwy4P
u88dfUSZZICRtktsVxZK/CPLBkbwdVB0cZO8/YgasEyDv4dwk/ozYsUO7XBFbPfH
k4aJAXTg06U7FywKgd5irRqQkul4sUF19/AA3qRMTtalRtSMYGC+ayLx9BGKo7mc
yM1VeWIy0qx9S+TwQLpnY/UXcG6gxGAxl7MRv94MOuzvdmVhmHimo6h2CeLwWt4S
n/kjysLn6DkCKdvR/eKZYxIYkwUPZrFS
-----END CERTIFICATE-----