This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft File: OhbEBL_tNHJEowpa__ZuSZKqKCE.mft (raw, json) Hash identifier: UL8kdk++GUs0iiLPcXQduJc1teZq0TqHr4z38dABkPg= Subject key identifier: 8F:DC:55:E6:B3:DC:50:CC:04:81:47:D9:9E:BC:0F:98:BC:4D:4A:5A Authority key identifier: 3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21 Certificate issuer: /CN=A91A65C4/serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821 Certificate serial: 04B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft Manifest number: 04AB Signing time: Thu 18 Dec 2025 23:20:21 +0000 Manifest this update: Thu 18 Dec 2025 23:20:20 +0000 Manifest next update: Thu 25 Dec 2025 23:20:20 +0000 Files and hashes: 1: OhbEBL_tNHJEowpa__ZuSZKqKCE.crl (hash: xnL3B9nDRCzFjSMEP/YFMZKXWI4dTYMgSUJX1XYKGyU=) 2: 9D77DCA4599A11ECA574BF52C4F9AE02.roa (hash: OULy8AteTWM2ruRqPX3BP5aZJPVwl5Zhsr9cGcGL5GI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.crl rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:20:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1202 (0x4b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A65C4, serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821 Validity Not Before: Dec 18 23:20:20 2025 GMT Not After : Dec 25 23:20:20 2025 GMT Subject: CN=69448c34-ee42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:66:27:07:c4:d7:54:94:73:89:9b:5f:68:50: eb:51:53:dd:c4:e6:4f:36:46:76:eb:da:6e:96:bf: d4:41:b5:c6:15:a3:98:26:f9:26:3c:ba:ba:57:03: 5f:e6:8d:22:3d:2d:9b:a9:15:1a:3f:5a:3c:9f:f3: 6b:d8:b6:d1:e4:ca:a3:5c:d0:f9:27:74:62:1a:fb: 8e:61:ae:31:3a:6b:84:d0:e8:93:25:39:f8:80:03: e5:61:c8:63:0c:f4:8c:94:fe:94:10:0d:4e:6b:4e: c9:9c:d6:ec:bf:67:06:de:b6:2c:d6:fe:93:dd:09: 0a:16:73:d3:b3:81:5d:14:94:21:e4:7b:17:d1:13: 04:15:b6:7a:1b:c1:0c:89:11:55:94:a0:e1:f7:39: 2c:06:14:74:9c:f9:f8:70:76:46:36:e9:24:a5:e6: cd:97:c7:41:96:f9:f1:f3:48:6e:57:28:a6:37:3d: 86:51:9d:76:2f:de:1d:87:5d:25:e7:5e:eb:b6:33: d1:17:07:2d:5d:9d:fd:75:37:8d:3b:a2:a1:a0:41: c7:9a:f9:5f:01:27:52:f4:11:11:a4:6f:13:66:b6: 10:31:e4:5b:56:de:bd:4b:ab:c2:d7:19:cb:77:bb: 66:94:99:95:e9:2b:59:e3:98:f8:17:3a:c5:e6:79: ca:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:DC:55:E6:B3:DC:50:CC:04:81:47:D9:9E:BC:0F:98:BC:4D:4A:5A X509v3 Authority Key Identifier: keyid:3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:6e:d8:07:b8:9d:46:71:fb:85:33:44:4b:40:59:a7:56:95: b3:bb:32:f0:1f:5b:ae:d5:9a:4a:b7:04:64:f3:57:fd:f1:b7: cd:9a:d4:df:59:95:44:19:da:fe:3b:b2:7e:b4:d5:32:98:24: 80:ed:91:cb:df:61:e5:57:0d:d2:a8:3d:22:56:1a:33:bc:89: 28:f1:6a:43:1b:ba:54:b3:23:84:dd:85:83:b7:bc:29:b8:9d: 97:32:9e:c9:c8:b0:e3:3d:7f:e7:d9:dd:9d:85:dc:d2:aa:88: bf:a2:5f:84:fa:3e:ae:c3:16:8e:e9:5f:5c:db:45:97:7c:7c: cf:97:bb:d1:32:d8:31:9b:18:c4:f6:fa:9c:1e:64:4b:cc:f7: d3:43:87:1e:39:1d:44:30:3b:10:9b:69:cd:86:38:3a:a8:2d: b6:17:3a:be:12:ae:4c:1f:a2:e2:56:19:35:f6:88:08:ae:bd: 34:1f:01:a9:b5:43:cc:86:ae:fc:33:0b:e7:4f:c2:be:9d:80: c3:c9:f6:8f:62:d6:2a:30:40:68:9b:7c:da:b7:de:0e:11:8a: 8b:b0:d5:dd:e8:06:b9:73:a8:e4:76:d9:90:eb:69:68:a3:e9: 16:15:60:3d:d4:73:af:61:bb:a8:67:31:31:70:a7:ca:1b:ac: c1:d5:f2:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QTY1QzQxMTAvBgNVBAUTKDNBMTZDNDA0QkZFRDM0NzI0NEEzMEE1QUZGRjY2RTQ5 OTJBQTI4MjEwHhcNMjUxMjE4MjMyMDIwWhcNMjUxMjI1MjMyMDIwWjAYMRYwFAYD VQQDDA02OTQ0OGMzNC1lZTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA52YnB8TXVJRziZtfaFDrUVPdxOZPNkZ269pulr/UQbXGFaOYJvkmPLq6VwNf 5o0iPS2bqRUaP1o8n/Nr2LbR5MqjXND5J3RiGvuOYa4xOmuE0OiTJTn4gAPlYchj DPSMlP6UEA1Oa07JnNbsv2cG3rYs1v6T3QkKFnPTs4FdFJQh5HsX0RMEFbZ6G8EM iRFVlKDh9zksBhR0nPn4cHZGNukkpebNl8dBlvnx80huVyimNz2GUZ12L94dh10l 517rtjPRFwctXZ39dTeNO6KhoEHHmvlfASdS9BERpG8TZrYQMeRbVt69S6vC1xnL d7tmlJmV6StZ45j4FzrF5nnK1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI/cVeaz 3FDMBIFH2Z68D5i8TUpaMB8GA1UdIwQYMBaAFDoWxAS/7TRyRKMKWv/2bkmSqigh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjVDNC8zRTNBNTUwMjU5 OTgxMUVDOTM5MUQ1NTBDNEY5QUUwMi9PaGJFQkxfdE5ISkVvd3BhX19adVNaS3FL Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09oYkVCTF90TkhKRW93cGFfX1p1U1pLcUtDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjVDNC8zRTNBNTUwMjU5OTgxMUVDOTM5MUQ1NTBDNEY5QUUwMi9PaGJFQkxfdE5I SkVvd3BhX19adVNaS3FLQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXbtgHuJ1GcfuFM0RLQFmnVpWzuzLwH1uu1ZpKtwRk81f98bfNmtTf WZVEGdr+O7J+tNUymCSA7ZHL32HlVw3SqD0iVhozvIko8WpDG7pUsyOE3YWDt7wp uJ2XMp7JyLDjPX/n2d2dhdzSqoi/ol+E+j6uwxaO6V9c20WXfHzPl7vRMtgxmxjE 9vqcHmRLzPfTQ4ceOR1EMDsQm2nNhjg6qC22Fzq+Eq5MH6LiVhk19ogIrr00HwGp tUPMhq78MwvnT8K+nYDDyfaPYtYqMEBom3zat94OEYqLsNXd6Aa5c6jkdtmQ62lo o+kWFWA91HOvYbuoZzExcKfKG6zB1fK3 -----END CERTIFICATE-----Generated at Fri Dec 19 17:44:40 2025 by rpki-client