This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD0DE/5B5F4516A98F11F0B1FA5066C4F9AE02/oSTS0QT3ck-7jw8maUnikFSMAbE.mft File: oSTS0QT3ck-7jw8maUnikFSMAbE.mft (raw, json) Hash identifier: fVJO+bD/9TsS7cKB7aQk0xcLLwRdcUxpFrJzc3YTIZs= Subject key identifier: 7B:C7:F0:44:B9:AB:D1:A4:97:C8:CD:4B:B8:7C:61:E5:42:3F:E4:6B Authority key identifier: A1:24:D2:D1:04:F7:72:4F:BB:8F:0F:26:69:49:E2:90:54:8C:01:B1 Certificate issuer: /CN=A91CD0DE/serialNumber=A124D2D104F7724FBB8F0F266949E290548C01B1 Certificate serial: 28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oSTS0QT3ck-7jw8maUnikFSMAbE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD0DE/5B5F4516A98F11F0B1FA5066C4F9AE02/oSTS0QT3ck-7jw8maUnikFSMAbE.mft Manifest number: 27 Signing time: Mon 29 Dec 2025 06:38:59 +0000 Manifest this update: Mon 29 Dec 2025 06:38:59 +0000 Manifest next update: Mon 05 Jan 2026 06:38:59 +0000 Files and hashes: 1: oSTS0QT3ck-7jw8maUnikFSMAbE.crl (hash: 8Hm6OiXHUjz2Vl45a44s+/R3VOjg/Jxa+pi3YR8sOro=) 2: 60F50042A99411F0A4CF2116C4F9AE02.roa (hash: Ws+o5lfxkWBzbjla9ZUB6K0ykZgSsGy7AqspFs8FAvs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD0DE/5B5F4516A98F11F0B1FA5066C4F9AE02/oSTS0QT3ck-7jw8maUnikFSMAbE.crl rsync://rpki.apnic.net/member_repository/A91CD0DE/5B5F4516A98F11F0B1FA5066C4F9AE02/oSTS0QT3ck-7jw8maUnikFSMAbE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oSTS0QT3ck-7jw8maUnikFSMAbE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 06:38:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD0DE, serialNumber=A124D2D104F7724FBB8F0F266949E290548C01B1 Validity Not Before: Dec 29 06:38:59 2025 GMT Not After : Jan 5 06:38:59 2026 GMT Subject: CN=69522203-b71c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:59:17:0e:6f:91:20:27:13:38:aa:32:33:06: 39:fa:3f:4b:28:f2:68:37:36:78:63:05:7b:6e:21: fc:2b:0b:29:6b:e5:17:9b:9f:d8:9d:70:7b:dc:9b: 2b:c6:da:04:cc:a5:c2:76:a7:36:4c:1a:98:65:3e: 7e:8e:cc:90:c8:f4:eb:0a:51:f1:27:a1:40:91:ea: 1a:a1:6b:d9:10:99:80:28:c1:7c:0b:5e:25:d7:c8: 0e:02:41:6d:dc:ac:80:4f:a2:9d:4f:4c:9d:d2:4e: bc:9b:ca:de:8f:b2:c5:f6:c8:9e:3c:4e:79:99:6d: a0:92:fa:21:00:6e:56:57:d1:17:07:f2:88:ae:c3: 11:f8:a0:43:30:a6:78:33:10:ed:3c:1f:59:bc:d5: 11:83:3e:a4:7b:db:e0:7e:bb:8b:b0:56:03:df:22: 23:ad:43:61:a4:af:31:33:8c:00:53:5d:30:b4:3c: 3e:9d:e8:dc:9b:af:d7:a7:c3:60:af:99:ff:74:d2: 44:ec:1a:11:96:bd:18:60:5a:49:8d:4b:e9:8a:4b: 0c:eb:1d:c8:92:46:62:49:5c:76:ee:7a:d9:13:97: 3d:d8:23:98:e6:eb:59:53:bb:50:16:bd:23:7b:5a: 2b:95:5e:44:3f:78:f5:72:7a:01:19:30:ce:e9:55: f5:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:C7:F0:44:B9:AB:D1:A4:97:C8:CD:4B:B8:7C:61:E5:42:3F:E4:6B X509v3 Authority Key Identifier: keyid:A1:24:D2:D1:04:F7:72:4F:BB:8F:0F:26:69:49:E2:90:54:8C:01:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD0DE/5B5F4516A98F11F0B1FA5066C4F9AE02/oSTS0QT3ck-7jw8maUnikFSMAbE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oSTS0QT3ck-7jw8maUnikFSMAbE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD0DE/5B5F4516A98F11F0B1FA5066C4F9AE02/oSTS0QT3ck-7jw8maUnikFSMAbE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:60:32:6e:ac:9a:cf:01:40:46:12:f9:58:bd:93:f3:a0:81: 94:21:42:6e:6a:1a:eb:c1:8c:e6:d9:1c:ef:0a:9a:b3:0f:14: 31:c0:ce:a7:fe:68:59:e0:69:32:68:fa:32:37:60:c0:9c:04: 57:4a:84:9e:51:91:1b:57:4f:f0:b2:94:d6:c8:aa:99:1b:d8: 5f:cb:d7:e3:ee:55:70:3b:c0:93:bb:34:f2:cf:13:12:cb:ba: 8a:99:fd:b6:e6:73:fa:2e:5c:d6:b6:97:41:01:a6:3b:40:1e: a0:0c:58:2e:47:97:84:bd:a9:48:4c:11:67:10:10:a0:0e:e9: a5:52:38:6d:23:95:21:c4:cc:55:6e:9e:bf:18:13:d5:3a:7f: 3c:7d:b5:2a:16:ca:69:3c:4d:9c:9e:dc:a0:0c:3a:c2:53:bc: fd:2a:c0:5a:f8:82:f6:6c:4f:76:eb:86:9b:93:e7:96:e6:87: 0d:96:ca:4a:4a:4f:f7:42:f1:ae:f7:a9:3f:66:11:21:a4:56: a0:df:4f:19:52:6a:dd:7d:21:d0:fe:82:14:33:33:6f:4d:46: bf:0b:f8:a3:2e:12:9d:d2:29:6a:53:28:72:ef:73:b4:3d:49: 96:71:31:32:51:e5:cb:07:f6:02:8e:2b:f3:48:ae:b8:90:ec: a3:1c:b0:68 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RDBERTExMC8GA1UEBRMoQTEyNEQyRDEwNEY3NzI0RkJCOEYwRjI2Njk0OUUyOTA1 NDhDMDFCMTAeFw0yNTEyMjkwNjM4NTlaFw0yNjAxMDUwNjM4NTlaMBgxFjAUBgNV BAMMDTY5NTIyMjAzLWI3MWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3WRcOb5EgJxM4qjIzBjn6P0so8mg3NnhjBXtuIfwrCylr5Rebn9idcHvcmyvG 2gTMpcJ2pzZMGphlPn6OzJDI9OsKUfEnoUCR6hqha9kQmYAowXwLXiXXyA4CQW3c rIBPop1PTJ3STrybyt6PssX2yJ48TnmZbaCS+iEAblZX0RcH8oiuwxH4oEMwpngz EO08H1m81RGDPqR72+B+u4uwVgPfIiOtQ2GkrzEzjABTXTC0PD6d6Nybr9enw2Cv mf900kTsGhGWvRhgWkmNS+mKSwzrHciSRmJJXHbuetkTlz3YI5jm61lTu1AWvSN7 WiuVXkQ/ePVyegEZMM7pVfVPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUe8fwRLmr 0aSXyM1LuHxh5UI/5GswHwYDVR0jBBgwFoAUoSTS0QT3ck+7jw8maUnikFSMAbEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNEMERFLzVCNUY0NTE2QTk4 RjExRjBCMUZBNTA2NkM0RjlBRTAyL29TVFMwUVQzY2stN2p3OG1hVW5pa0ZTTUFi RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb1NUUzBRVDNjay03anc4bWFVbmlrRlNNQWJFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNE MERFLzVCNUY0NTE2QTk4RjExRjBCMUZBNTA2NkM0RjlBRTAyL29TVFMwUVQzY2st N2p3OG1hVW5pa0ZTTUFiRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH1gMm6sms8BQEYS+Vi9k/OggZQhQm5qGuvBjObZHO8KmrMPFDHAzqf+ aFngaTJo+jI3YMCcBFdKhJ5RkRtXT/CylNbIqpkb2F/L1+PuVXA7wJO7NPLPExLL uoqZ/bbmc/ouXNa2l0EBpjtAHqAMWC5Hl4S9qUhMEWcQEKAO6aVSOG0jlSHEzFVu nr8YE9U6fzx9tSoWymk8TZye3KAMOsJTvP0qwFr4gvZsT3brhpuT55bmhw2WykpK T/dC8a73qT9mESGkVqDfTxlSat19IdD+ghQzM29NRr8L+KMuEp3SKWpTKHLvc7Q9 SZZxMTJR5csH9gKOK/NIrriQ7KMcsGg= -----END CERTIFICATE-----Generated at Mon Dec 29 17:01:20 2025 by rpki-client