This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.mft File: o0K4Har3eauhbTK2-wuDD4ULT_A.mft (raw, json) Hash identifier: BbbQhW3Q6FaJWCksiTflEXdVU756MGJROu6dzMQbZao= Subject key identifier: E0:4D:46:D7:49:E5:20:7F:F4:CC:02:36:72:52:62:C7:89:DB:B8:8D Authority key identifier: A3:42:B8:1D:AA:F7:79:AB:A1:6D:32:B6:FB:0B:83:0F:85:0B:4F:F0 Certificate issuer: /CN=A91A1205/serialNumber=A342B81DAAF779ABA16D32B6FB0B830F850B4FF0 Certificate serial: 0C40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0K4Har3eauhbTK2-wuDD4ULT_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.mft Manifest number: 0C3A Signing time: Thu 18 Dec 2025 18:23:09 +0000 Manifest this update: Thu 18 Dec 2025 18:23:09 +0000 Manifest next update: Thu 25 Dec 2025 18:23:09 +0000 Files and hashes: 1: o0K4Har3eauhbTK2-wuDD4ULT_A.crl (hash: Xh3S63CT3cZ5TJ11l4+1z07QZ3/7zv5jMKoWK9iQFVI=) 2: 3D992D3A1A8411EAA026D229C4F9AE02.roa (hash: j0DWhsEHoal3Q4LsD1CyE+J4i6jhKjEMjW9pXFwYCvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.crl rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0K4Har3eauhbTK2-wuDD4ULT_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:23:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3136 (0xc40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1205, serialNumber=A342B81DAAF779ABA16D32B6FB0B830F850B4FF0 Validity Not Before: Dec 18 18:23:09 2025 GMT Not After : Dec 25 18:23:09 2025 GMT Subject: CN=6944468d-9ca6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:cf:e4:e2:17:c7:db:ef:f7:30:70:ef:e3:2d: 26:4b:cc:fb:66:96:5b:77:e9:10:5e:d6:5a:8e:a6: b5:57:9e:f8:fa:78:a2:9f:9c:8c:fb:14:0c:c5:fa: a7:d9:c4:c2:0c:e2:f6:bd:c8:f6:45:07:d6:98:ca: 6b:e8:33:b3:ab:c5:77:68:41:30:bc:c7:ae:8b:14: 99:0c:bf:58:d4:cc:94:46:bc:58:f6:51:70:35:ed: 9b:87:95:a0:d5:f0:b0:ba:cc:ae:77:42:4a:de:8f: 23:04:cd:d6:74:b7:83:b7:25:2c:31:67:07:f1:bc: b4:22:1e:2c:33:d9:4c:cb:2c:9e:a1:ba:e0:2d:3d: 6e:2a:fb:51:b3:e1:1a:fc:4f:8b:bd:2d:54:22:24: 0b:f2:d4:38:e8:81:fe:13:12:c3:7e:69:77:cd:ec: a6:61:e9:18:3f:9c:95:a7:04:62:16:89:1a:45:bb: 24:43:fc:61:e3:df:ef:68:46:0b:67:71:32:4f:73: 0e:88:eb:9f:8b:bc:2e:fc:70:69:cd:95:09:ac:86: a7:16:ec:53:ba:a5:92:a6:24:2b:0e:b7:b8:13:f8: b4:0e:10:5d:bd:18:4f:d6:03:ea:16:0f:63:91:3f: 6e:82:42:96:34:80:ce:d9:dc:4d:69:dc:30:86:6a: 70:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:4D:46:D7:49:E5:20:7F:F4:CC:02:36:72:52:62:C7:89:DB:B8:8D X509v3 Authority Key Identifier: keyid:A3:42:B8:1D:AA:F7:79:AB:A1:6D:32:B6:FB:0B:83:0F:85:0B:4F:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0K4Har3eauhbTK2-wuDD4ULT_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1205/7D231E041A5511EA88042211C4F9AE02/o0K4Har3eauhbTK2-wuDD4ULT_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:c3:13:59:7b:a9:28:78:a7:1c:8c:85:02:81:e4:43:b9:6e: d9:6a:b7:9a:08:54:8c:62:58:c9:20:be:d7:28:12:98:de:82: 0b:d5:13:cd:1b:75:bc:58:c6:cb:d6:d4:b4:e9:8d:5b:4d:39: 14:af:d4:e9:2c:6f:ad:89:91:3f:e4:88:97:87:bc:3f:19:f6: 68:97:f0:9e:9d:41:50:47:f6:32:ce:62:64:d9:c3:fe:ae:54: b3:59:3a:0f:27:c6:a5:22:f9:18:8a:58:44:6b:d7:db:57:29: 7e:dc:5c:cd:2b:67:4e:ab:bb:ad:0d:ad:45:f0:74:98:d8:7b: 2f:b5:13:c8:fe:ee:37:18:35:01:1a:3a:51:0b:ab:8b:17:08: 18:40:e1:1c:1f:eb:27:01:37:b3:eb:da:cc:62:f6:bb:fb:3d: d1:d3:9b:4c:c4:a2:42:17:fd:93:a5:d1:76:42:d0:ed:b8:89: 91:54:b1:3d:42:c8:79:46:ac:7e:d0:92:55:bf:9b:39:42:2b: 1f:85:b3:df:1f:85:e1:2c:69:be:62:65:87:46:47:32:d6:54: 6b:af:8c:6c:da:35:de:a3:5c:c2:55:10:6b:e2:53:19:6d:bf: 45:07:df:d5:8f:59:1c:bc:64:55:db:03:52:47:6f:f2:a6:83: 54:5a:c2:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEyMDUxMTAvBgNVBAUTKEEzNDJCODFEQUFGNzc5QUJBMTZEMzJCNkZCMEI4MzBG ODUwQjRGRjAwHhcNMjUxMjE4MTgyMzA5WhcNMjUxMjI1MTgyMzA5WjAYMRYwFAYD VQQDDA02OTQ0NDY4ZC05Y2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAts/k4hfH2+/3MHDv4y0mS8z7ZpZbd+kQXtZajqa1V574+niin5yM+xQMxfqn 2cTCDOL2vcj2RQfWmMpr6DOzq8V3aEEwvMeuixSZDL9Y1MyURrxY9lFwNe2bh5Wg 1fCwusyud0JK3o8jBM3WdLeDtyUsMWcH8by0Ih4sM9lMyyyeobrgLT1uKvtRs+Ea /E+LvS1UIiQL8tQ46IH+ExLDfml3zeymYekYP5yVpwRiFokaRbskQ/xh49/vaEYL Z3EyT3MOiOufi7wu/HBpzZUJrIanFuxTuqWSpiQrDre4E/i0DhBdvRhP1gPqFg9j kT9ugkKWNIDO2dxNadwwhmpwqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOBNRtdJ 5SB/9MwCNnJSYseJ27iNMB8GA1UdIwQYMBaAFKNCuB2q93mroW0ytvsLgw+FC0/w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTIwNS83RDIzMUUwNDFB NTUxMUVBODgwNDIyMTFDNEY5QUUwMi9vMEs0SGFyM2VhdWhiVEsyLXd1REQ0VUxU X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28wSzRIYXIzZWF1aGJUSzItd3VERDRVTFRfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTIwNS83RDIzMUUwNDFBNTUxMUVBODgwNDIyMTFDNEY5QUUwMi9vMEs0SGFyM2Vh dWhiVEsyLXd1REQ0VUxUX0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJwxNZe6koeKccjIUCgeRDuW7ZareaCFSMYljJIL7XKBKY3oIL1RPN G3W8WMbL1tS06Y1bTTkUr9TpLG+tiZE/5IiXh7w/GfZol/CenUFQR/YyzmJk2cP+ rlSzWToPJ8alIvkYilhEa9fbVyl+3FzNK2dOq7utDa1F8HSY2HsvtRPI/u43GDUB GjpRC6uLFwgYQOEcH+snATez69rMYva7+z3R05tMxKJCF/2TpdF2QtDtuImRVLE9 Qsh5Rqx+0JJVv5s5QisfhbPfH4XhLGm+YmWHRkcy1lRrr4xs2jXeo1zCVRBr4lMZ bb9FB9/Vj1kcvGRV2wNSR2/ypoNUWsK+ -----END CERTIFICATE-----Generated at Fri Dec 19 23:58:55 2025 by rpki-client