This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft File: oRHoHEs-J72m4nEkl_bbugz7CCY.mft (raw, json) Hash identifier: G/TE5OWAkGsmihnwhCK+JO78wj+f8Vdm5rI4JLMQYYg= Subject key identifier: 32:55:8C:D5:39:D5:95:2A:57:C7:39:16:43:EA:05:AF:E8:67:7B:54 Authority key identifier: A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 Certificate issuer: /CN=A91C1DB8/serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Certificate serial: 13CE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft Manifest number: 13C2 Signing time: Sat 20 Dec 2025 16:42:16 +0000 Manifest this update: Sat 20 Dec 2025 16:42:16 +0000 Manifest next update: Sat 27 Dec 2025 16:42:16 +0000 Files and hashes: 1: oRHoHEs-J72m4nEkl_bbugz7CCY.crl (hash: D1Nou87H0JrRlZiuJQtnP1DGL/FXb6ODDCnxDe+T8lw=) 2: 6D6692CAAA0211EEAADA3D32C4F9AE02.roa (hash: Lfw4Pf1U5kN1CyHW4zjiGH94Ozpr6hL2Iw69vgHFnZ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 16:42:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5070 (0x13ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1DB8, serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Validity Not Before: Dec 20 16:42:16 2025 GMT Not After : Dec 27 16:42:16 2025 GMT Subject: CN=6946d1e8-353d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e3:95:6d:9c:46:b4:0a:97:0b:ad:b5:9c:ea: 4b:31:ca:f9:1b:0d:63:83:15:44:30:7d:9b:84:46: 3c:77:ab:2e:54:c5:1c:10:bc:c3:ac:48:62:ee:47: 09:60:0a:5f:9d:a9:80:ba:a7:80:17:e0:f6:c7:d3: cf:72:b3:b2:37:01:03:9c:c0:f1:50:26:b0:1f:71: 0a:03:d0:9c:0c:8a:c9:fd:a1:1d:35:58:9a:f9:30: 82:e5:cc:26:37:7a:91:c9:fd:08:61:7e:0c:ff:98: 30:56:82:db:8d:ac:0a:e8:fb:ce:ff:5c:fb:ac:00: e4:c9:2e:93:ad:ef:68:1b:9c:dd:19:38:12:90:71: ab:5c:a9:62:c1:03:1e:5a:df:f9:59:40:52:d4:0c: 1e:2e:44:ee:bc:bc:ab:e7:50:b5:f0:58:ed:ba:c0: ec:af:0a:63:84:db:87:40:61:57:15:04:ba:42:77: 51:ec:63:ec:fb:2d:51:64:d8:7c:9a:b6:bf:34:46: 2f:e8:5b:69:1b:1a:40:97:0d:a5:11:20:8b:40:51: 94:30:8d:5e:5a:1c:77:40:11:38:35:fe:96:e3:3e: 6f:98:83:19:f1:5b:b3:a2:52:11:6a:ef:9f:f7:9e: c9:31:28:57:58:32:5e:be:15:4e:a5:a0:dc:b3:2c: 8b:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:55:8C:D5:39:D5:95:2A:57:C7:39:16:43:EA:05:AF:E8:67:7B:54 X509v3 Authority Key Identifier: keyid:A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:67:f2:88:f7:d6:c1:44:a4:f3:57:98:27:c0:3b:37:e6:6e: 73:11:9a:52:2e:5b:2f:7e:25:75:3a:02:f4:02:d1:91:54:aa: e2:db:66:7d:9c:74:20:42:a2:bf:8f:11:c9:f0:1d:02:a5:44: f6:8c:14:e6:09:e4:7f:f9:e8:28:a5:cf:7f:e4:49:6c:0b:74: 5f:cd:7f:9c:02:0f:6e:92:4f:9e:68:f1:62:19:85:ed:74:c1: 58:54:b7:79:70:45:7b:27:29:0a:13:d1:a9:a2:a6:51:4c:c0: 4b:17:69:aa:9f:5f:fc:08:10:85:57:2d:79:1c:5b:a3:c9:3a: 77:89:48:17:0b:7e:59:8e:05:4e:fa:a0:55:4e:e8:85:55:3a: 45:65:1e:08:16:05:aa:47:3b:af:3a:5f:79:87:25:61:10:b9: ff:08:74:0e:88:69:6a:95:ca:b9:8e:49:01:bf:51:7a:00:12: f2:67:1a:73:4a:ae:07:61:db:2a:57:79:ba:15:9c:98:4b:cb: 33:42:9b:62:d0:38:6c:e8:2b:66:c0:3d:a7:53:e7:7b:9f:60: 4b:2c:17:37:52:6d:65:27:79:cf:3e:33:f5:71:b4:ad:2c:6a: c6:6c:0d:5d:c4:f7:7b:04:68:c8:6c:78:dc:39:e5:9f:c6:65: 72:b5:43:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE84wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFEQjgxMTAvBgNVBAUTKEExMTFFODFDNEIzRTI3QkRBNkUyNzEyNDk3RjZEQkJB MENGQjA4MjYwHhcNMjUxMjIwMTY0MjE2WhcNMjUxMjI3MTY0MjE2WjAYMRYwFAYD VQQDDA02OTQ2ZDFlOC0zNTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq+OVbZxGtAqXC621nOpLMcr5Gw1jgxVEMH2bhEY8d6suVMUcELzDrEhi7kcJ YApfnamAuqeAF+D2x9PPcrOyNwEDnMDxUCawH3EKA9CcDIrJ/aEdNVia+TCC5cwm N3qRyf0IYX4M/5gwVoLbjawK6PvO/1z7rADkyS6Tre9oG5zdGTgSkHGrXKliwQMe Wt/5WUBS1AweLkTuvLyr51C18FjtusDsrwpjhNuHQGFXFQS6QndR7GPs+y1RZNh8 mra/NEYv6FtpGxpAlw2lESCLQFGUMI1eWhx3QBE4Nf6W4z5vmIMZ8VuzolIRau+f 957JMShXWDJevhVOpaDcsyyLNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDJVjNU5 1ZUqV8c5FkPqBa/oZ3tUMB8GA1UdIwQYMBaAFKER6BxLPie9puJxJJf227oM+wgm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMURCOC8wRDk5MzFCQUEx MUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3Mm00bkVrbF9iYnVnejdD Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29SSG9IRXMtSjcybTRuRWtsX2JidWd6N0NDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MURCOC8wRDk5MzFCQUExMUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3 Mm00bkVrbF9iYnVnejdDQ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/Z/KI99bBRKTzV5gnwDs35m5zEZpSLlsvfiV1OgL0AtGRVKri22Z9 nHQgQqK/jxHJ8B0CpUT2jBTmCeR/+egopc9/5ElsC3RfzX+cAg9ukk+eaPFiGYXt dMFYVLd5cEV7JykKE9GpoqZRTMBLF2mqn1/8CBCFVy15HFujyTp3iUgXC35ZjgVO +qBVTuiFVTpFZR4IFgWqRzuvOl95hyVhELn/CHQOiGlqlcq5jkkBv1F6ABLyZxpz Sq4HYdsqV3m6FZyYS8szQpti0Dhs6CtmwD2nU+d7n2BLLBc3Um1lJ3nPPjP1cbSt LGrGbA1dxPd7BGjIbHjcOeWfxmVytUP7 -----END CERTIFICATE-----Generated at Mon Dec 22 06:15:20 2025 by rpki-client