This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft File: ok2WODNZy0lmoVuakGkT61RWZXs.mft (raw, json) Hash identifier: oP2FMsx4mkFSMvSUKA/DN35nF2/3bwrWnGJ57HYRMKs= Subject key identifier: 85:1C:52:87:9B:1D:12:9A:C5:FD:B9:77:43:5C:4D:30:09:A8:5B:52 Authority key identifier: A2:4D:96:38:33:59:CB:49:66:A1:5B:9A:90:69:13:EB:54:56:65:7B Certificate issuer: /CN=A91C9C03/serialNumber=A24D96383359CB4966A15B9A906913EB5456657B Certificate serial: 7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft Manifest number: 77 Signing time: Mon 29 Dec 2025 05:55:38 +0000 Manifest this update: Mon 29 Dec 2025 05:55:38 +0000 Manifest next update: Mon 05 Jan 2026 05:55:38 +0000 Files and hashes: 1: ok2WODNZy0lmoVuakGkT61RWZXs.crl (hash: xRpINPB55E0Gz6GGMVTNKZ8f2rX5thYitYk2+6Phzcs=) 2: 19088D04716211F0A531A51FC4F9AE02.roa (hash: UYhhmkQaI1q3+QjYEo/76mR50UYMRxm9p33lOpn/bSs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.crl rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 05:55:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9C03, serialNumber=A24D96383359CB4966A15B9A906913EB5456657B Validity Not Before: Dec 29 05:55:38 2025 GMT Not After : Jan 5 05:55:38 2026 GMT Subject: CN=695217da-9808 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c9:45:2b:d2:d1:72:18:1a:f4:b0:5e:d8:16: ce:71:e9:34:29:76:bd:08:5a:0d:06:2f:d8:a7:3e: eb:10:39:92:3f:38:4b:1d:53:36:a9:eb:74:7f:82: 69:9b:5c:e9:15:1d:38:e7:8c:f6:e0:4c:4b:e9:66: 76:a0:c3:38:d8:77:65:db:f8:0b:18:35:8b:e5:ef: b4:b2:6d:24:05:a5:1b:ae:96:fb:1f:58:ae:7c:e2: 7f:e1:0e:de:0f:d7:59:24:66:4c:d9:72:c9:1a:3b: 29:9f:61:24:12:8c:35:2c:33:9d:16:61:1a:23:60: 40:0c:ff:8e:2d:01:9d:dd:e9:a2:54:16:f1:fe:48: 8a:d8:3d:3c:26:03:a8:78:42:4e:ef:0a:38:01:63: 57:e3:47:4b:7e:d4:d5:f4:0c:e2:b4:1e:f1:63:7d: 4c:9b:9e:71:73:18:7d:f5:91:a9:3a:9e:66:2b:72: 08:e9:f7:c5:2c:ca:4b:f2:88:fb:a8:46:81:1e:17: 8c:a6:dd:9c:75:07:c3:55:63:8d:1b:80:15:a8:e0: 46:ca:6a:42:dc:b7:09:9f:6a:4d:14:c3:1d:ca:d4: 03:22:87:09:96:f1:5b:f6:f6:cb:dd:1f:b8:19:99: d2:45:03:ed:30:8b:e3:1e:c4:b5:85:06:bd:f7:8c: e5:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:1C:52:87:9B:1D:12:9A:C5:FD:B9:77:43:5C:4D:30:09:A8:5B:52 X509v3 Authority Key Identifier: keyid:A2:4D:96:38:33:59:CB:49:66:A1:5B:9A:90:69:13:EB:54:56:65:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ok2WODNZy0lmoVuakGkT61RWZXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9C03/37D18A1639A311F0BAD72C3CC4F9AE02/ok2WODNZy0lmoVuakGkT61RWZXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:25:39:51:18:9b:c4:9c:20:28:4a:8a:21:e5:90:d9:28:31: 2c:ce:e7:35:00:a3:be:d5:22:98:23:7b:6e:a8:db:5c:f3:7a: e8:eb:fb:38:0d:f7:7f:ab:53:9b:c7:38:55:c0:9c:79:b3:9c: 6d:19:d2:a5:33:65:3e:bd:58:4a:ee:3c:5a:ad:7f:f7:35:22: 43:ab:e3:23:31:a1:c9:a6:d1:4e:2a:f2:84:87:cd:0c:40:ab: 04:e5:50:40:df:44:93:6e:ec:8f:79:27:27:20:4b:96:10:81: e2:8a:0f:bb:99:38:a2:5f:bd:8b:b1:a3:c9:2a:26:21:88:a1: cb:df:9c:9d:f7:7c:83:b6:df:e7:df:93:b5:31:37:d2:41:b3: 3a:15:41:f8:cd:03:dc:0a:d1:45:b0:3e:5d:93:02:e1:ce:71: 70:e6:b8:df:b5:d4:e4:56:66:82:22:86:d6:9c:15:ee:da:c2: 43:0e:13:62:e4:f8:64:c6:10:a7:99:99:39:3e:4c:87:00:4e: f4:e8:8c:55:0a:23:21:e3:c1:27:cb:b0:57:5a:fd:cc:c8:3c: 7b:a4:08:f3:d6:b0:5f:72:77:f4:d4:bc:b6:a1:c6:ff:c1:6e: b7:ea:d3:a0:64:7c:1a:cc:2e:b0:75:3f:96:d6:39:5d:ba:a7: 05:74:db:18 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD OUMwMzExMC8GA1UEBRMoQTI0RDk2MzgzMzU5Q0I0OTY2QTE1QjlBOTA2OTEzRUI1 NDU2NjU3QjAeFw0yNTEyMjkwNTU1MzhaFw0yNjAxMDUwNTU1MzhaMBgxFjAUBgNV BAMMDTY5NTIxN2RhLTk4MDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqyUUr0tFyGBr0sF7YFs5x6TQpdr0IWg0GL9inPusQOZI/OEsdUzap63R/gmmb XOkVHTjnjPbgTEvpZnagwzjYd2Xb+AsYNYvl77SybSQFpRuulvsfWK584n/hDt4P 11kkZkzZcskaOymfYSQSjDUsM50WYRojYEAM/44tAZ3d6aJUFvH+SIrYPTwmA6h4 Qk7vCjgBY1fjR0t+1NX0DOK0HvFjfUybnnFzGH31kak6nmYrcgjp98UsykvyiPuo RoEeF4ym3Zx1B8NVY40bgBWo4EbKakLctwmfak0Uwx3K1AMihwmW8Vv29svdH7gZ mdJFA+0wi+MexLWFBr33jOXXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhRxSh5sd EprF/bl3Q1xNMAmoW1IwHwYDVR0jBBgwFoAUok2WODNZy0lmoVuakGkT61RWZXsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5QzAzLzM3RDE4QTE2MzlB MzExRjBCQUQ3MkMzQ0M0RjlBRTAyL29rMldPRE5aeTBsbW9WdWFrR2tUNjFSV1pY cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb2syV09ETlp5MGxtb1Z1YWtHa1Q2MVJXWlhzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5 QzAzLzM3RDE4QTE2MzlBMzExRjBCQUQ3MkMzQ0M0RjlBRTAyL29rMldPRE5aeTBs bW9WdWFrR2tUNjFSV1pYcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEclOVEYm8ScIChKiiHlkNkoMSzO5zUAo77VIpgje26o21zzeujr+zgN 93+rU5vHOFXAnHmznG0Z0qUzZT69WEruPFqtf/c1IkOr4yMxocmm0U4q8oSHzQxA qwTlUEDfRJNu7I95JycgS5YQgeKKD7uZOKJfvYuxo8kqJiGIocvfnJ33fIO23+ff k7UxN9JBszoVQfjNA9wK0UWwPl2TAuHOcXDmuN+11ORWZoIihtacFe7awkMOE2Lk +GTGEKeZmTk+TIcATvTojFUKIyHjwSfLsFda/czIPHukCPPWsF9yd/TUvLahxv/B brfq06BkfBrMLrB1P5bWOV26pwV02xg= -----END CERTIFICATE-----Generated at Wed Dec 31 05:21:34 2025 by rpki-client