This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft File: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft (raw, json) Hash identifier: EvuiD58xLqr8DZT8YFTA5YQfsmzyoqxe7nzD9CslLjw= Subject key identifier: 0E:F3:BD:BA:DB:50:A8:68:74:A1:43:1C:01:BC:4D:EC:63:F8:AC:F7 Authority key identifier: A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 Certificate issuer: /CN=A91B65AC/serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Certificate serial: 0157 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft Manifest number: 0153 Signing time: Mon 29 Dec 2025 03:20:38 +0000 Manifest this update: Mon 29 Dec 2025 03:20:37 +0000 Manifest next update: Mon 05 Jan 2026 03:20:37 +0000 Files and hashes: 1: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl (hash: uEt6yUKVeHt5zSfggvJvMwpZdUZ7tPLrmHLdXRug2ME=) 2: 48005D9EE5AE11EE9ECE4023C4F9AE02.roa (hash: MrPqjHlMCM5b67h4IqKRm22f4PuZXIPWzDsfWbxNY08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 02:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 343 (0x157) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65AC, serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Validity Not Before: Dec 29 03:20:37 2025 GMT Not After : Jan 5 03:20:37 2026 GMT Subject: CN=6951f385-0b71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:50:db:55:86:83:38:b6:1d:6b:7f:58:cf:e8: 45:ff:38:cc:2a:b6:05:12:7b:0d:4c:05:4c:18:d5: 36:77:9f:5a:3a:2e:b1:63:08:39:5b:5e:55:00:fe: 05:24:b8:4c:2a:3c:da:d6:29:77:da:9e:29:d3:5a: 8b:24:ea:71:ae:58:69:79:0b:15:ae:f1:67:04:61: 4b:47:f8:29:b9:56:f9:a2:64:43:96:9b:da:62:55: 02:94:28:40:58:df:69:ba:3c:d5:9d:91:6e:8e:ba: bc:bd:b3:dd:a6:ea:7d:6e:aa:49:36:77:20:ee:1b: 85:6a:ac:a3:95:92:bb:f7:87:5a:9d:6b:14:ad:b1: d5:00:2f:9a:57:ad:10:7b:8a:c6:f3:31:39:a4:b4: a4:e3:1b:24:b3:e0:83:02:8d:e1:45:c9:f0:fa:da: f2:d1:3b:ad:47:da:72:ff:a5:93:45:c2:e1:b7:d8: bd:72:39:8b:75:d5:a7:a7:85:00:ce:dc:fd:5f:8b: 4e:73:ac:a5:f8:0f:10:3d:c3:e4:eb:aa:ce:02:9d: a2:2b:8b:b5:21:72:89:d4:23:37:13:69:d2:a6:ab: dd:c3:b4:fe:e0:39:aa:dd:09:8b:bb:3e:7c:b2:39: be:da:a2:e5:34:4e:65:27:dc:2e:5b:1f:99:90:25: 04:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:F3:BD:BA:DB:50:A8:68:74:A1:43:1C:01:BC:4D:EC:63:F8:AC:F7 X509v3 Authority Key Identifier: keyid:A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:92:e3:1c:cf:0a:8c:2c:74:eb:e4:2f:31:0a:e6:9f:ed:d2: 15:ac:a0:78:15:6d:f1:c4:ff:82:56:aa:d4:51:17:de:5f:fa: 4c:b3:5d:1d:af:22:3e:a4:c4:f2:2f:e3:f1:53:33:5a:35:b4: a3:f8:c0:72:4e:fa:03:b5:45:6e:94:f8:c4:3d:00:7f:a8:2e: d4:60:a0:ca:c7:1c:bc:5c:78:54:98:02:25:c7:04:79:3a:c3: 7f:43:58:41:9f:58:49:9e:f1:d6:85:fd:7c:4a:4a:02:1c:19: ed:58:19:b0:87:38:03:6f:4d:77:8a:07:f7:ad:95:7c:79:26: f5:f0:43:55:2d:73:c6:3f:5b:dc:50:4f:70:1d:91:75:b4:06: 90:64:0c:99:75:45:24:65:70:7e:a5:3f:fd:da:b1:2a:bb:c3: d1:47:e2:b4:3a:ef:c6:64:f1:94:ba:a7:b9:99:c1:7a:62:d9: da:49:5c:77:75:26:13:71:da:d1:af:ef:ba:d7:4a:b0:a7:60: ab:46:79:23:28:ed:f0:64:45:dc:41:ea:59:34:ab:55:5a:1a: b7:48:a9:81:18:24:91:07:75:cc:88:9c:47:71:ff:9e:c9:2b: ab:70:a8:f0:c4:52:22:4c:e9:2c:62:55:b6:e7:51:80:67:e2: 34:a7:ff:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1QUMxMTAvBgNVBAUTKEExMEY1NzgzQzhGOUE2RDk0RDI5QjRBQTkwQzU2RTAx NkJCNTE0NTYwHhcNMjUxMjI5MDMyMDM3WhcNMjYwMTA1MDMyMDM3WjAYMRYwFAYD VQQDDA02OTUxZjM4NS0wYjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVDbVYaDOLYda39Yz+hF/zjMKrYFEnsNTAVMGNU2d59aOi6xYwg5W15VAP4F JLhMKjza1il32p4p01qLJOpxrlhpeQsVrvFnBGFLR/gpuVb5omRDlpvaYlUClChA WN9pujzVnZFujrq8vbPdpup9bqpJNncg7huFaqyjlZK794danWsUrbHVAC+aV60Q e4rG8zE5pLSk4xsks+CDAo3hRcnw+try0TutR9py/6WTRcLht9i9cjmLddWnp4UA ztz9X4tOc6yl+A8QPcPk66rOAp2iK4u1IXKJ1CM3E2nSpqvdw7T+4Dmq3QmLuz58 sjm+2qLlNE5lJ9wuWx+ZkCUEFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA7zvbrb UKhodKFDHAG8Texj+Kz3MB8GA1UdIwQYMBaAFKEPV4PI+abZTSm0qpDFbgFrtRRW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVBQy9DQjc0RjhCRUUx RTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0bE5LYlNxa01WdUFXdTFG RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29ROVhnOGo1cHRsTktiU3FrTVZ1QVd1MUZGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVBQy9DQjc0RjhCRUUxRTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0 bE5LYlNxa01WdUFXdTFGRlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1kuMczwqMLHTr5C8xCuaf7dIVrKB4FW3xxP+CVqrUURfeX/pMs10d ryI+pMTyL+PxUzNaNbSj+MByTvoDtUVulPjEPQB/qC7UYKDKxxy8XHhUmAIlxwR5 OsN/Q1hBn1hJnvHWhf18SkoCHBntWBmwhzgDb013igf3rZV8eSb18ENVLXPGP1vc UE9wHZF1tAaQZAyZdUUkZXB+pT/92rEqu8PRR+K0Ou/GZPGUuqe5mcF6YtnaSVx3 dSYTcdrRr++610qwp2CrRnkjKO3wZEXcQepZNKtVWhq3SKmBGCSRB3XMiJxHcf+e ySurcKjwxFIiTOksYlW251GAZ+I0p/+/ -----END CERTIFICATE-----Generated at Mon Dec 29 04:16:31 2025 by rpki-client