This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft File: oL2xs_Hk5wTrTU8s5f405lA3uUM.mft (raw, json) Hash identifier: OPLxg3FYefpXoIyH3ZlGuIdbE/BDsRJoXACqNjTZi9k= Subject key identifier: 53:9B:59:B3:DA:7D:D4:FF:0D:25:BA:CF:E3:3D:B3:DE:2D:23:AB:89 Authority key identifier: A0:BD:B1:B3:F1:E4:E7:04:EB:4D:4F:2C:E5:FE:34:E6:50:37:B9:43 Certificate issuer: /CN=A91A5B83/serialNumber=A0BDB1B3F1E4E704EB4D4F2CE5FE34E65037B943 Certificate serial: 0960 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft Manifest number: 0953 Signing time: Sun 28 Dec 2025 19:34:30 +0000 Manifest this update: Sun 28 Dec 2025 19:34:30 +0000 Manifest next update: Sun 04 Jan 2026 19:34:30 +0000 Files and hashes: 1: oL2xs_Hk5wTrTU8s5f405lA3uUM.crl (hash: Fmbx9VJyi5sWacJgp01rRze3pzcM3nu9lCY93RAgTSM=) 2: 975BB0CE73AD11EDAD75DB7DC4F9AE02.roa (hash: jBS/1Hlfhun69e6e4ZHEVPi7ipp4H+jsjI8X7M9ZNQw=) 3: A21F0938C44B11EB8CF88F1EC4F9AE02.roa (hash: /W7jNuOZe0YfOd8yIagbqgnCN+PhgeGc0tSQIMsMPPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.crl rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 19:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2400 (0x960) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5B83, serialNumber=A0BDB1B3F1E4E704EB4D4F2CE5FE34E65037B943 Validity Not Before: Dec 28 19:34:30 2025 GMT Not After : Jan 4 19:34:30 2026 GMT Subject: CN=69518646-be5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:95:0a:ea:6e:96:8c:9e:31:ca:7e:76:cc:ab: 21:4a:04:6f:7c:8c:1f:5f:f2:00:37:ed:05:d1:94: 8f:21:7d:bb:9d:1c:c5:82:6f:9f:c7:d4:95:08:a0: 3a:a9:ce:dc:91:43:aa:ba:6f:a2:a0:92:7c:7d:d7: 1c:77:c5:b2:fd:e2:43:53:35:09:7e:7d:87:02:73: 24:41:ea:d4:4f:5e:e6:eb:20:5a:9f:25:f2:de:81: 2a:8d:b6:e8:de:69:76:a5:21:97:e8:26:57:1b:92: 27:6d:f3:bf:ba:c7:3b:19:45:cb:4c:1d:b5:c1:5a: ba:be:eb:26:b6:ba:a4:ef:64:89:12:d7:c2:1f:f5: 6a:b9:82:1a:b9:32:35:b5:1d:fb:fd:57:59:4d:93: 18:1c:09:42:41:c4:8b:b1:e6:00:21:d0:b8:8b:04: 8d:06:0d:09:74:30:91:53:1d:d2:e9:34:a3:e6:ac: 72:b6:3b:b5:7d:e6:b1:c5:8f:89:87:38:e7:93:55: 4b:33:bf:dd:86:9e:a4:ac:f5:9a:81:d3:5a:6e:2a: 6a:28:93:dc:22:48:8d:d5:75:33:ae:06:7b:e8:5b: 0f:a2:c7:a0:8a:7e:5b:af:83:16:49:cb:7f:e6:a6: 54:d0:a1:15:e8:be:bd:1c:53:97:88:7f:7d:31:ab: 37:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:9B:59:B3:DA:7D:D4:FF:0D:25:BA:CF:E3:3D:B3:DE:2D:23:AB:89 X509v3 Authority Key Identifier: keyid:A0:BD:B1:B3:F1:E4:E7:04:EB:4D:4F:2C:E5:FE:34:E6:50:37:B9:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:1d:44:31:36:71:ec:67:d7:67:97:22:cc:1c:83:c8:a7:4c: c0:8f:13:43:fa:e1:e8:1c:0b:0b:a5:a4:3d:4d:db:f9:6b:0a: eb:ad:02:33:2f:00:ec:9a:84:82:9e:be:1c:a2:d4:77:9a:70: ef:3a:26:48:f5:f6:15:bb:3a:b6:da:b4:e7:1d:da:d1:ee:fe: 92:fe:99:2d:e1:d8:00:16:07:79:5d:e8:51:fa:db:12:0b:47: 68:0d:03:ea:be:98:1e:36:8f:43:70:94:f6:44:53:c0:51:9c: 0e:91:86:34:66:3f:fc:ef:68:ee:94:b7:49:f7:31:74:9b:ab: 0d:7b:f1:ca:8b:d3:2d:c0:d8:7b:93:3a:58:57:60:a3:67:c9: 3e:ab:76:c2:af:dc:6b:00:03:94:4e:ba:79:25:71:2a:bb:52: 8b:a5:7c:cd:a5:30:25:18:0b:84:1f:56:db:ca:e6:82:93:06: 5b:1e:9a:b6:f6:48:54:8f:17:22:5a:ff:3b:28:bc:96:a2:55: 4e:5f:8e:0b:f9:62:1b:fb:f0:45:b3:ee:51:e2:20:dd:cf:8f: 72:bf:b1:16:32:1a:8d:d2:3b:90:2a:8a:35:00:01:bd:26:98: bf:9b:03:56:ee:e5:cc:4d:48:19:5d:28:40:85:a7:e4:59:f2: ae:01:53:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCODMxMTAvBgNVBAUTKEEwQkRCMUIzRjFFNEU3MDRFQjRENEYyQ0U1RkUzNEU2 NTAzN0I5NDMwHhcNMjUxMjI4MTkzNDMwWhcNMjYwMTA0MTkzNDMwWjAYMRYwFAYD VQQDDA02OTUxODY0Ni1iZTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnJUK6m6WjJ4xyn52zKshSgRvfIwfX/IAN+0F0ZSPIX27nRzFgm+fx9SVCKA6 qc7ckUOqum+ioJJ8fdccd8Wy/eJDUzUJfn2HAnMkQerUT17m6yBanyXy3oEqjbbo 3ml2pSGX6CZXG5InbfO/usc7GUXLTB21wVq6vusmtrqk72SJEtfCH/VquYIauTI1 tR37/VdZTZMYHAlCQcSLseYAIdC4iwSNBg0JdDCRUx3S6TSj5qxytju1feaxxY+J hzjnk1VLM7/dhp6krPWagdNabipqKJPcIkiN1XUzrgZ76FsPosegin5br4MWSct/ 5qZU0KEV6L69HFOXiH99Mas3QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFObWbPa fdT/DSW6z+M9s94tI6uJMB8GA1UdIwQYMBaAFKC9sbPx5OcE601PLOX+NOZQN7lD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUI4My8wRjQ2Q0E4Q0FE QUYxMUVBODRDMDRFMTBDNEY5QUUwMi9vTDJ4c19IazV3VHJUVThzNWY0MDVsQTN1 VU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29MMnhzX0hrNXdUclRVOHM1ZjQwNWxBM3VVTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUI4My8wRjQ2Q0E4Q0FEQUYxMUVBODRDMDRFMTBDNEY5QUUwMi9vTDJ4c19IazV3 VHJUVThzNWY0MDVsQTN1VU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIHUQxNnHsZ9dnlyLMHIPIp0zAjxND+uHoHAsLpaQ9Tdv5awrrrQIz LwDsmoSCnr4cotR3mnDvOiZI9fYVuzq22rTnHdrR7v6S/pkt4dgAFgd5XehR+tsS C0doDQPqvpgeNo9DcJT2RFPAUZwOkYY0Zj/872julLdJ9zF0m6sNe/HKi9MtwNh7 kzpYV2CjZ8k+q3bCr9xrAAOUTrp5JXEqu1KLpXzNpTAlGAuEH1bbyuaCkwZbHpq2 9khUjxciWv87KLyWolVOX44L+WIb+/BFs+5R4iDdz49yv7EWMhqN0juQKoo1AAG9 Jpi/mwNW7uXMTUgZXShAhafkWfKuAVPa -----END CERTIFICATE-----Generated at Tue Dec 30 04:54:44 2025 by rpki-client