This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft File: OhpAdHHRvxyhUl8h997PWmoqZNg.mft (raw, json) Hash identifier: Zb+W/9oymTNN2qo1p33pn7pFCGyot4x9gUpMUFVviac= Subject key identifier: B2:00:BB:20:79:AC:60:90:5E:62:1E:A4:B9:A2:07:25:4E:B0:C4:62 Authority key identifier: 3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 Certificate issuer: /CN=A91B7B23/serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Certificate serial: 018C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft Manifest number: 0183 Signing time: Fri 19 Dec 2025 03:23:15 +0000 Manifest this update: Fri 19 Dec 2025 03:23:14 +0000 Manifest next update: Fri 26 Dec 2025 03:23:14 +0000 Files and hashes: 1: OhpAdHHRvxyhUl8h997PWmoqZNg.crl (hash: 8j7mALIJT/5GG0/k4KPeArcVgvnfx4Cr3O5szdnDsmE=) 2: 7F6FE074B84811F091A01766C4F9AE02.roa (hash: T7R8nJe2MmGkA+MfYtiQhvIQ2foWHqQ+M3uuOBpD0wc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 396 (0x18c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7B23, serialNumber=3A1A407471D1BF1CA1525F21F7DECF5A6A2A64D8 Validity Not Before: Dec 19 03:23:14 2025 GMT Not After : Dec 26 03:23:14 2025 GMT Subject: CN=6944c523-12b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:57:b8:71:63:c9:38:ea:3f:6a:51:d9:e0:71: 25:c7:d1:f1:26:10:97:65:c0:85:4b:88:4b:ac:1b: 9b:ac:b7:ed:d1:ad:74:39:15:17:45:97:d5:da:fc: c5:d7:c7:3a:d1:ff:ca:71:8a:a1:e3:ee:60:a1:6e: ff:b8:73:ff:7c:ae:47:f5:ab:1e:72:d0:e1:8d:6a: ab:2b:cd:d5:ec:e3:25:d3:8d:78:98:30:5a:f5:55: da:f7:72:5d:53:29:fa:18:05:b0:14:7a:27:d9:a3: 97:dc:6d:ca:7f:3e:b3:4d:b1:e0:58:43:69:17:5f: da:5e:61:ab:0f:23:8e:86:f4:37:fa:22:7d:59:28: 1b:81:bc:1f:00:44:93:4f:a0:00:c3:c6:3e:76:0e: 04:71:2a:1e:3d:08:f7:ef:ed:02:7e:4e:7d:a1:b6: 01:73:0d:2f:68:6b:7f:ce:19:0a:ba:f0:fa:e9:ec: 0e:4c:8e:d2:b5:42:04:b5:e7:13:4a:68:a4:5e:26: 0e:dc:4a:21:ce:7d:31:d6:e7:21:41:6d:22:1f:15: c7:b4:39:37:55:a4:56:07:03:fb:10:94:5f:1b:ca: 96:c7:25:cc:25:03:26:ed:01:e6:c7:84:23:c9:ac: 73:8a:85:14:f1:e2:5b:75:1f:32:89:4f:b6:d4:a7: ae:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:00:BB:20:79:AC:60:90:5E:62:1E:A4:B9:A2:07:25:4E:B0:C4:62 X509v3 Authority Key Identifier: keyid:3A:1A:40:74:71:D1:BF:1C:A1:52:5F:21:F7:DE:CF:5A:6A:2A:64:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhpAdHHRvxyhUl8h997PWmoqZNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7B23/7545F03A97D311EEA23C660BC4F9AE02/OhpAdHHRvxyhUl8h997PWmoqZNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:a1:3c:0c:aa:e0:3e:63:6b:91:2b:ad:b7:c1:d6:f7:71:1b: 6f:db:10:a7:ea:f6:c8:51:b5:be:ec:5a:37:33:6f:9c:cb:26: 31:c8:16:9c:bb:2f:a8:f5:aa:7d:a3:02:29:2a:70:08:e8:94: f7:15:da:05:d7:8f:9e:1c:d5:0f:13:82:a8:59:ce:c7:0b:6c: 26:e2:1c:34:9a:8e:87:a7:9e:2d:91:1e:92:c7:fe:9f:80:80: b9:b4:f9:e9:31:0d:1b:0e:04:af:72:63:fd:63:d0:c4:db:6b: 33:25:de:97:b5:7c:4e:bc:d2:51:24:10:2e:86:00:f5:a7:e8: 49:b1:64:da:ee:e9:ed:88:9b:44:6e:d6:ad:04:d0:9f:23:ee: d1:24:61:f8:03:6e:24:c9:4d:f0:79:9c:5f:1f:98:3d:7f:74: b5:b8:05:07:b2:3e:c5:0c:58:e0:38:a4:d8:01:33:5c:d6:b1: 0b:e8:bc:75:8c:6e:77:7a:34:85:4d:c4:1a:59:30:e4:70:99: 98:68:d3:5c:56:ec:fa:37:08:f3:aa:04:f8:77:c3:31:46:12: a8:dd:65:b3:df:90:68:60:f8:cc:89:c6:f1:14:51:f6:31:0b: 55:ca:a9:6c:c5:90:03:e2:3b:39:76:31:51:12:62:a5:11:25: 38:98:4b:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QjdCMjMxMTAvBgNVBAUTKDNBMUE0MDc0NzFEMUJGMUNBMTUyNUYyMUY3REVDRjVB NkEyQTY0RDgwHhcNMjUxMjE5MDMyMzE0WhcNMjUxMjI2MDMyMzE0WjAYMRYwFAYD VQQDDA02OTQ0YzUyMy0xMmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi1e4cWPJOOo/alHZ4HElx9HxJhCXZcCFS4hLrBubrLft0a10ORUXRZfV2vzF 18c60f/KcYqh4+5goW7/uHP/fK5H9asectDhjWqrK83V7OMl0414mDBa9VXa93Jd Uyn6GAWwFHon2aOX3G3Kfz6zTbHgWENpF1/aXmGrDyOOhvQ3+iJ9WSgbgbwfAEST T6AAw8Y+dg4EcSoePQj37+0Cfk59obYBcw0vaGt/zhkKuvD66ewOTI7StUIEtecT SmikXiYO3Eohzn0x1uchQW0iHxXHtDk3VaRWBwP7EJRfG8qWxyXMJQMm7QHmx4Qj yaxzioUU8eJbdR8yiU+21KeuZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLIAuyB5 rGCQXmIepLmiByVOsMRiMB8GA1UdIwQYMBaAFDoaQHRx0b8coVJfIffez1pqKmTY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0IyMy83NTQ1RjAzQTk3 RDMxMUVFQTIzQzY2MEJDNEY5QUUwMi9PaHBBZEhIUnZ4eWhVbDhoOTk3UFdtb3Fa TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ocEFkSEhSdnh5aFVsOGg5OTdQV21vcVpOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0IyMy83NTQ1RjAzQTk3RDMxMUVFQTIzQzY2MEJDNEY5QUUwMi9PaHBBZEhIUnZ4 eWhVbDhoOTk3UFdtb3FaTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/oTwMquA+Y2uRK623wdb3cRtv2xCn6vbIUbW+7Fo3M2+cyyYxyBac uy+o9ap9owIpKnAI6JT3FdoF14+eHNUPE4KoWc7HC2wm4hw0mo6Hp54tkR6Sx/6f gIC5tPnpMQ0bDgSvcmP9Y9DE22szJd6XtXxOvNJRJBAuhgD1p+hJsWTa7untiJtE btatBNCfI+7RJGH4A24kyU3weZxfH5g9f3S1uAUHsj7FDFjgOKTYATNc1rEL6Lx1 jG53ejSFTcQaWTDkcJmYaNNcVuz6NwjzqgT4d8MxRhKo3WWz35BoYPjMicbxFFH2 MQtVyqlsxZAD4js5djFREmKlESU4mEvN -----END CERTIFICATE-----Generated at Fri Dec 19 17:43:52 2025 by rpki-client