This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft File: oKMiStDIKz-aYvNHrKP5RdsI8rA.mft (raw, json) Hash identifier: /ZttMVh6glnAf+m2I5Ww6U2wliJBxyT5h5gfrkU6KkI= Subject key identifier: 78:38:96:22:05:E9:7B:B7:2C:CB:CF:EE:A1:4B:58:46:88:45:CD:32 Authority key identifier: A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 Certificate issuer: /CN=A91B80BD/serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Certificate serial: 30C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft Manifest number: 3090 Signing time: Thu 18 Dec 2025 15:24:27 +0000 Manifest this update: Thu 18 Dec 2025 15:24:26 +0000 Manifest next update: Thu 25 Dec 2025 15:24:26 +0000 Files and hashes: 1: oKMiStDIKz-aYvNHrKP5RdsI8rA.crl (hash: mBzn38v50KYCBzBl+UhHrB0BCYgREf/R4QjNqP/fCjA=) 2: 915E51B8F3BE11ED8B9B1450C4F9AE02.roa (hash: Q3pwtlHxQOfBNfjg0rXQ1DaKhtCgPEj+Sbwz9SrcaHA=) 3: 583C1F6854F611E79DF7E643C4F9AE02.roa (hash: 1eHb69O06VCoxBVFTjIxU1eZxUsYuasvDB2d3Sv1+IY=) 4: 4C72E61CB0EC11E5A6934B42C4F9AE02.roa (hash: wILFdeIGXMZ8VMyQoHGFHEc5EcgVL0MxaSOGHfY+WMQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 15:24:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12481 (0x30c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80BD, serialNumber=A0A3224AD0C82B3F9A62F347ACA3F945DB08F2B0 Validity Not Before: Dec 18 15:24:26 2025 GMT Not After : Dec 25 15:24:26 2025 GMT Subject: CN=69441caa-0e9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:73:58:c9:54:28:db:b7:5e:b2:90:62:4f:de: a5:4d:6a:37:6c:b6:ae:3f:27:67:1f:cf:b5:e8:eb: 0e:7f:f7:b2:11:cb:1f:52:88:ff:72:bd:42:7e:57: 19:37:40:56:f6:68:ac:c1:e7:4b:2d:fa:a5:87:95: 80:e6:eb:98:41:0d:cf:3a:62:23:dd:e8:c1:37:5e: 97:63:fd:e5:a5:de:a3:bc:da:3a:ca:84:82:80:5a: 0f:c4:b5:46:3e:fc:f0:e6:3b:b0:a2:27:6e:ca:0d: c0:88:a8:0d:85:ee:98:37:4b:df:de:7e:d8:93:ff: 29:65:21:35:1f:73:2d:d5:b3:87:a1:69:37:15:ac: 3a:78:9b:2b:9d:67:3b:a1:20:4d:0f:62:4c:1a:b3: f3:59:53:a4:c4:96:15:57:eb:92:1c:9e:c9:d8:e6: c4:f7:79:b9:49:db:db:15:81:c2:f8:52:a1:13:4a: ec:16:d1:2b:b0:06:5a:ac:51:ee:11:bb:d6:da:c8: 46:78:2f:a2:2e:f4:19:b0:87:ed:6b:b3:eb:d4:ce: 0e:81:4d:5d:3d:81:e9:64:44:e0:68:20:84:23:1f: 87:5b:71:b2:e4:01:3c:a4:3a:fd:3d:eb:a9:fc:f9: 21:50:04:5c:ae:d2:7b:c2:b2:73:9f:94:2d:6a:9d: f6:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:38:96:22:05:E9:7B:B7:2C:CB:CF:EE:A1:4B:58:46:88:45:CD:32 X509v3 Authority Key Identifier: keyid:A0:A3:22:4A:D0:C8:2B:3F:9A:62:F3:47:AC:A3:F9:45:DB:08:F2:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKMiStDIKz-aYvNHrKP5RdsI8rA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80BD/B5A636D8FE5C11E2AEC042505911EA32/oKMiStDIKz-aYvNHrKP5RdsI8rA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:60:41:5e:12:e7:8b:b3:29:5b:5d:12:ed:45:a1:59:ff:49: b9:68:70:30:55:b2:8f:d9:85:2c:d0:5d:f9:52:88:1f:c4:c1: a2:21:e1:31:29:6b:6c:27:37:c7:74:59:b6:5e:6b:26:65:ca: 1d:2a:00:29:6e:d0:bd:f9:9e:ba:ae:a3:e2:25:1e:56:75:e5: da:68:d4:27:13:32:54:9f:0e:8c:6d:6c:37:66:8f:fb:e8:72: 7f:2b:0d:7e:ab:ab:d3:f8:19:d7:bb:2c:19:f6:78:68:21:d4: c6:fa:45:0a:98:70:e4:1c:bc:ca:e7:bc:89:72:61:33:6f:38: 38:f2:c8:8c:00:49:5e:8e:31:5a:72:3b:ea:12:49:d4:73:e0: 0c:69:60:a7:78:d3:75:a9:3e:c5:29:2d:85:43:9f:09:60:4f: a3:30:78:87:fb:5e:07:ca:9a:75:10:7f:0a:83:36:6c:09:78: 99:37:67:c5:e3:62:dd:12:18:30:1e:3a:2a:14:a5:5e:27:2d: 45:f5:57:9e:65:f9:55:e3:c9:47:2e:0a:68:de:a5:0e:62:2f: 45:26:dd:65:75:63:cc:18:25:b8:72:10:07:3a:b6:d6:d9:27: 9c:8d:a2:8e:b8:1b:9b:16:5e:0a:7a:10:f3:c8:a8:a7:ea:ea: 74:0a:43:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQkQxMTAvBgNVBAUTKEEwQTMyMjRBRDBDODJCM0Y5QTYyRjM0N0FDQTNGOTQ1 REIwOEYyQjAwHhcNMjUxMjE4MTUyNDI2WhcNMjUxMjI1MTUyNDI2WjAYMRYwFAYD VQQDDA02OTQ0MWNhYS0wZTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjHNYyVQo27despBiT96lTWo3bLauPydnH8+16OsOf/eyEcsfUoj/cr1CflcZ N0BW9miswedLLfqlh5WA5uuYQQ3POmIj3ejBN16XY/3lpd6jvNo6yoSCgFoPxLVG Pvzw5juwoiduyg3AiKgNhe6YN0vf3n7Yk/8pZSE1H3Mt1bOHoWk3Faw6eJsrnWc7 oSBND2JMGrPzWVOkxJYVV+uSHJ7J2ObE93m5SdvbFYHC+FKhE0rsFtErsAZarFHu EbvW2shGeC+iLvQZsIfta7Pr1M4OgU1dPYHpZETgaCCEIx+HW3Gy5AE8pDr9Peup /PkhUARcrtJ7wrJzn5Qtap32fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHg4liIF 6Xu3LMvP7qFLWEaIRc0yMB8GA1UdIwQYMBaAFKCjIkrQyCs/mmLzR6yj+UXbCPKw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBCRC9CNUE2MzZEOEZF NUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6LWFZdk5IcktQNVJkc0k4 ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LTWlTdERJS3otYVl2TkhyS1A1UmRzSThyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBCRC9CNUE2MzZEOEZFNUMxMUUyQUVDMDQyNTA1OTExRUEzMi9vS01pU3RESUt6 LWFZdk5IcktQNVJkc0k4ckEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEYEFeEueLsylbXRLtRaFZ/0m5aHAwVbKP2YUs0F35UogfxMGiIeEx KWtsJzfHdFm2XmsmZcodKgApbtC9+Z66rqPiJR5WdeXaaNQnEzJUnw6MbWw3Zo/7 6HJ/Kw1+q6vT+BnXuywZ9nhoIdTG+kUKmHDkHLzK57yJcmEzbzg48siMAElejjFa cjvqEknUc+AMaWCneNN1qT7FKS2FQ58JYE+jMHiH+14Hypp1EH8KgzZsCXiZN2fF 42LdEhgwHjoqFKVeJy1F9VeeZflV48lHLgpo3qUOYi9FJt1ldWPMGCW4chAHOrbW 2SecjaKOuBubFl4KehDzyKin6up0CkO8 -----END CERTIFICATE-----Generated at Fri Dec 19 18:57:28 2025 by rpki-client