This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft File: OZp7H8QgfroHB6hRUZXMaOg2q_g.mft (raw, json) Hash identifier: KS2I99dwEJtSaUxy1+F3lQ8SYwiQUdDunwqna55iQ18= Subject key identifier: 4F:D0:11:A2:42:F2:A2:98:68:64:C9:4C:89:B1:AF:DD:60:E3:1B:9B Authority key identifier: 39:9A:7B:1F:C4:20:7E:BA:07:07:A8:51:51:95:CC:68:E8:36:AB:F8 Certificate issuer: /CN=A91C1025/serialNumber=399A7B1FC4207EBA0707A8515195CC68E836ABF8 Certificate serial: D7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft Manifest number: D4 Signing time: Fri 19 Dec 2025 04:49:29 +0000 Manifest this update: Fri 19 Dec 2025 04:49:28 +0000 Manifest next update: Fri 26 Dec 2025 04:49:28 +0000 Files and hashes: 1: OZp7H8QgfroHB6hRUZXMaOg2q_g.crl (hash: N94nYiH+ADf8HFZpLgR5VyoS7hsk+IPOfXqPWKz4lLE=) 2: 4996A7209D9211EFAD3DCF45C4F9AE02.roa (hash: X6VArMN74z4tgeDbEQQzHaT88BAEASciUle7rIza6xc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.crl rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:49:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1025, serialNumber=399A7B1FC4207EBA0707A8515195CC68E836ABF8 Validity Not Before: Dec 19 04:49:28 2025 GMT Not After : Dec 26 04:49:28 2025 GMT Subject: CN=6944d958-e6c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:31:a4:ed:28:f4:d8:bd:25:2f:65:4f:8f:81: e8:18:87:dc:d7:3a:1c:28:79:e0:7b:15:f8:d4:32: f1:ea:1d:d2:ea:69:08:33:0f:be:d8:8f:01:9e:20: 8a:79:c3:9a:5a:74:83:f1:90:54:46:c0:11:34:b7: 2e:c5:d1:da:a1:f3:e9:bf:dc:76:c2:4a:09:76:67: ee:d7:92:2f:03:d0:c2:48:30:cd:c8:d2:85:fa:83: f0:3b:7a:32:3a:09:a7:b7:95:80:e2:91:18:22:49: dd:31:b2:b0:30:f5:eb:67:87:35:81:80:40:49:97: 51:e4:2b:f9:95:f3:17:23:3c:6d:8b:9b:12:89:70: df:b0:52:f1:2a:4b:9f:84:68:b8:18:88:7d:c6:2f: 17:c5:76:e3:0f:df:0e:f9:48:34:42:db:aa:36:c5: 44:89:d0:c5:3b:16:b6:61:4a:9d:ed:c6:59:f0:97: f8:61:db:9a:a1:41:58:ae:b3:61:43:63:fb:9f:49: 1e:6c:0f:2f:44:a7:1f:da:fb:5b:2f:77:30:b4:f6: 1b:fd:05:16:d0:32:67:e1:5a:24:71:09:20:90:1c: 29:41:cd:ba:bb:98:4e:18:0c:44:66:28:d9:84:8f: 40:cc:c4:43:38:e7:b5:3d:24:f7:81:3c:04:6e:22: 6f:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:D0:11:A2:42:F2:A2:98:68:64:C9:4C:89:B1:AF:DD:60:E3:1B:9B X509v3 Authority Key Identifier: keyid:39:9A:7B:1F:C4:20:7E:BA:07:07:A8:51:51:95:CC:68:E8:36:AB:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:69:b7:ab:4a:21:f1:f6:1a:c7:b2:2a:b2:88:4d:e7:4b:37: 24:22:0b:96:ee:a5:1d:12:82:29:d3:d3:e5:0a:b9:74:6a:1e: 94:f2:8d:7e:a8:7f:95:3a:d3:cd:c2:28:24:61:98:eb:fa:18: 57:29:61:8e:df:71:04:95:a3:88:03:44:45:2b:9a:a0:74:1f: 57:20:c2:3a:74:96:aa:64:be:e4:7d:4d:1e:23:97:6c:72:6d: 21:74:fd:82:8e:fa:2b:c7:87:44:5d:e5:df:03:4e:d3:cf:1f: 0a:ad:82:8e:a5:c4:51:12:c9:41:e2:a9:0c:e5:cb:9a:6e:86: 5e:a9:84:88:e4:e6:b3:fd:f2:7c:6a:a7:77:ad:26:5f:21:73: d3:4c:cd:19:86:db:06:b2:9a:d8:fa:c8:a6:7d:55:14:10:02: a9:c0:86:0d:21:a8:37:ab:16:08:10:ae:a7:93:14:19:88:4f: 16:cf:0c:75:62:3b:c7:21:52:3d:4c:4e:30:93:33:4c:04:a3: 42:18:8c:fc:1b:47:3c:81:72:3f:4a:b3:14:fc:46:7a:76:05: 08:4b:72:2c:6f:fb:cb:d2:97:15:de:bb:bc:8a:e7:49:0d:e1: 45:55:00:ed:f0:91:ed:46:ca:f6:12:c7:71:bc:30:a7:cb:a2: 52:cf:5d:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEwMjUxMTAvBgNVBAUTKDM5OUE3QjFGQzQyMDdFQkEwNzA3QTg1MTUxOTVDQzY4 RTgzNkFCRjgwHhcNMjUxMjE5MDQ0OTI4WhcNMjUxMjI2MDQ0OTI4WjAYMRYwFAYD VQQDDA02OTQ0ZDk1OC1lNmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTGk7Sj02L0lL2VPj4HoGIfc1zocKHngexX41DLx6h3S6mkIMw++2I8BniCK ecOaWnSD8ZBURsARNLcuxdHaofPpv9x2wkoJdmfu15IvA9DCSDDNyNKF+oPwO3oy Ogmnt5WA4pEYIkndMbKwMPXrZ4c1gYBASZdR5Cv5lfMXIzxti5sSiXDfsFLxKkuf hGi4GIh9xi8XxXbjD98O+Ug0QtuqNsVEidDFOxa2YUqd7cZZ8Jf4YduaoUFYrrNh Q2P7n0kebA8vRKcf2vtbL3cwtPYb/QUW0DJn4VokcQkgkBwpQc26u5hOGAxEZijZ hI9AzMRDOOe1PST3gTwEbiJvOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE/QEaJC 8qKYaGTJTImxr91g4xubMB8GA1UdIwQYMBaAFDmaex/EIH66BweoUVGVzGjoNqv4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTAyNS84RDdCOUJGMjlE ODQxMUVGODE3RTE0MjBDNEY5QUUwMi9PWnA3SDhRZ2Zyb0hCNmhSVVpYTWFPZzJx X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09acDdIOFFnZnJvSEI2aFJVWlhNYU9nMnFfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTAyNS84RDdCOUJGMjlEODQxMUVGODE3RTE0MjBDNEY5QUUwMi9PWnA3SDhRZ2Zy b0hCNmhSVVpYTWFPZzJxX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmaberSiHx9hrHsiqyiE3nSzckIguW7qUdEoIp09PlCrl0ah6U8o1+ qH+VOtPNwigkYZjr+hhXKWGO33EElaOIA0RFK5qgdB9XIMI6dJaqZL7kfU0eI5ds cm0hdP2Cjvorx4dEXeXfA07Tzx8KrYKOpcRREslB4qkM5cuaboZeqYSI5Oaz/fJ8 aqd3rSZfIXPTTM0ZhtsGsprY+simfVUUEAKpwIYNIag3qxYIEK6nkxQZiE8Wzwx1 YjvHIVI9TE4wkzNMBKNCGIz8G0c8gXI/SrMU/EZ6dgUIS3Isb/vL0pcV3ru8iudJ DeFFVQDt8JHtRsr2EsdxvDCny6JSz12L -----END CERTIFICATE-----Generated at Sat Dec 20 00:55:15 2025 by rpki-client