This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft File: O0eqDQMgkZXwVVxgreMpTy03oqE.mft (raw, json) Hash identifier: pR0INsbYU4s/vgd50EKCmONIR38nlQXYtsu5AOoF1tI= Subject key identifier: F9:23:66:F3:FC:58:03:28:7D:33:52:AC:00:C0:B4:C7:97:EF:F3:2C Authority key identifier: 3B:47:AA:0D:03:20:91:95:F0:55:5C:60:AD:E3:29:4F:2D:37:A2:A1 Certificate issuer: /CN=A91A3873/serialNumber=3B47AA0D03209195F0555C60ADE3294F2D37A2A1 Certificate serial: 0315 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft Manifest number: 030F Signing time: Sun 21 Dec 2025 00:22:48 +0000 Manifest this update: Sun 21 Dec 2025 00:22:47 +0000 Manifest next update: Sun 28 Dec 2025 00:22:47 +0000 Files and hashes: 1: O0eqDQMgkZXwVVxgreMpTy03oqE.crl (hash: 5j7Y9yCJoitax2dsfq/Qun2WcS+KyRlrH+7zVdNzTpw=) 2: C78C216A070211EDB5178252C4F9AE02.roa (hash: SRhZlpn7+MBKLxOuK/LxQ3OpeiTq/ZO5FLcjac1mcNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.crl rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:22:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 789 (0x315) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3873, serialNumber=3B47AA0D03209195F0555C60ADE3294F2D37A2A1 Validity Not Before: Dec 21 00:22:47 2025 GMT Not After : Dec 28 00:22:47 2025 GMT Subject: CN=69473dd7-19b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:57:6f:ea:52:ee:67:f7:db:e5:ae:26:e7:0e: 40:a9:67:ed:eb:25:79:c2:85:7f:c1:11:9e:9f:32: bd:4b:69:04:a4:01:c0:ce:02:43:0b:ad:44:47:14: 5a:a4:e0:10:b5:e8:db:31:d6:64:1d:ef:08:a6:36: a9:a1:40:3a:9f:df:d5:85:35:e6:89:38:7f:4b:a6: 32:aa:3a:3d:d2:8d:8f:aa:40:72:c1:fd:a9:c9:77: 69:30:08:90:03:52:fa:3c:3b:b8:f9:bc:56:1f:1e: 67:85:11:28:41:b8:c0:ce:fd:2e:98:16:60:aa:03: d2:98:14:51:18:e5:d5:d5:f7:db:8e:20:05:f6:c0: 04:18:cf:b4:93:3e:e4:c6:72:3d:d0:4c:06:21:91: bc:49:bf:22:a8:68:f9:03:a9:27:67:0b:62:c7:61: e6:b7:0d:50:38:d6:9d:06:32:41:91:8e:52:de:81: c9:49:1c:8b:2b:ae:1d:51:94:ef:ad:c0:00:24:96: f2:ab:b2:b9:e5:52:72:c1:89:e7:10:b5:61:0e:31: 07:40:95:0a:75:32:54:a0:c7:7f:af:ff:21:bc:1a: 52:83:8a:c8:7c:43:63:f1:60:a6:4d:78:dc:24:a6: 3a:85:6f:59:58:10:56:e5:b7:6f:b5:ce:39:4f:2e: c2:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:23:66:F3:FC:58:03:28:7D:33:52:AC:00:C0:B4:C7:97:EF:F3:2C X509v3 Authority Key Identifier: keyid:3B:47:AA:0D:03:20:91:95:F0:55:5C:60:AD:E3:29:4F:2D:37:A2:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:5c:43:65:cb:31:22:cf:bc:91:b4:85:a6:0d:e2:f2:2e:36: 28:79:b6:7b:b2:06:70:70:36:2e:fa:eb:fa:df:7d:2c:a9:48: b8:06:98:6e:91:ba:eb:15:7c:8f:53:f9:bf:d2:6d:25:b5:7a: 31:b1:c8:52:11:50:95:9e:12:27:40:17:88:24:26:e9:54:88: 15:4d:36:d0:d3:05:73:4b:61:26:0c:48:ee:a2:cf:7d:67:4f: 50:31:bc:67:10:c1:46:3f:89:0a:64:01:41:65:ee:5c:f7:67: 63:ab:84:c3:7f:9f:1e:65:df:d3:14:2d:50:53:f0:d0:a2:f4: ef:c3:56:e1:d6:cd:2f:ef:a3:b0:d2:25:09:8b:17:2b:13:c2: 3f:d9:a9:f7:87:d7:9f:52:85:cc:78:a8:b7:92:28:91:48:11: 17:36:36:b1:0c:77:10:a7:40:44:40:b9:f3:10:da:6e:d1:12: 41:11:59:5b:0d:f1:64:0e:fc:7d:29:01:3e:2e:0b:b9:c3:9e: e5:0b:e6:6a:10:68:30:39:30:8f:3c:77:c7:d2:89:05:8d:f5: 1f:66:bc:c1:ef:a8:39:b2:b6:40:7b:a0:cc:ab:40:91:79:85: da:a9:d0:84:df:a9:56:6a:71:3f:8f:98:fb:69:18:bf:6b:fa: b4:76:4d:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM4NzMxMTAvBgNVBAUTKDNCNDdBQTBEMDMyMDkxOTVGMDU1NUM2MEFERTMyOTRG MkQzN0EyQTEwHhcNMjUxMjIxMDAyMjQ3WhcNMjUxMjI4MDAyMjQ3WjAYMRYwFAYD VQQDDA02OTQ3M2RkNy0xOWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnFdv6lLuZ/fb5a4m5w5AqWft6yV5woV/wRGenzK9S2kEpAHAzgJDC61ERxRa pOAQtejbMdZkHe8IpjapoUA6n9/VhTXmiTh/S6Yyqjo90o2PqkBywf2pyXdpMAiQ A1L6PDu4+bxWHx5nhREoQbjAzv0umBZgqgPSmBRRGOXV1ffbjiAF9sAEGM+0kz7k xnI90EwGIZG8Sb8iqGj5A6knZwtix2Hmtw1QONadBjJBkY5S3oHJSRyLK64dUZTv rcAAJJbyq7K55VJywYnnELVhDjEHQJUKdTJUoMd/r/8hvBpSg4rIfENj8WCmTXjc JKY6hW9ZWBBW5bdvtc45Ty7CIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPkjZvP8 WAMofTNSrADAtMeX7/MsMB8GA1UdIwQYMBaAFDtHqg0DIJGV8FVcYK3jKU8tN6Kh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzg3My8xMTJFQzE5NkZE QjgxMUVDOEUzODY5MTNDNEY5QUUwMi9PMGVxRFFNZ2taWHdWVnhncmVNcFR5MDNv cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08wZXFEUU1na1pYd1ZWeGdyZU1wVHkwM29xRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Mzg3My8xMTJFQzE5NkZEQjgxMUVDOEUzODY5MTNDNEY5QUUwMi9PMGVxRFFNZ2ta WHdWVnhncmVNcFR5MDNvcUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMXENlyzEiz7yRtIWmDeLyLjYoebZ7sgZwcDYu+uv6330sqUi4Bphu kbrrFXyPU/m/0m0ltXoxschSEVCVnhInQBeIJCbpVIgVTTbQ0wVzS2EmDEjuos99 Z09QMbxnEMFGP4kKZAFBZe5c92djq4TDf58eZd/TFC1QU/DQovTvw1bh1s0v76Ow 0iUJixcrE8I/2an3h9efUoXMeKi3kiiRSBEXNjaxDHcQp0BEQLnzENpu0RJBEVlb DfFkDvx9KQE+Lgu5w57lC+ZqEGgwOTCPPHfH0okFjfUfZrzB76g5srZAe6DMq0CR eYXaqdCE36lWanE/j5j7aRi/a/q0dk32 -----END CERTIFICATE-----Generated at Mon Dec 22 05:52:26 2025 by rpki-client