This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft File: ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft (raw, json) Hash identifier: 3ohARXOVSEVwqYRMefiefS5xOf0/X3Liyot4DkAT4zQ= Subject key identifier: 98:68:F0:53:ED:6D:66:37:6F:BB:51:69:BA:06:BE:3F:01:F8:14:9D Authority key identifier: A1:C2:39:65:70:40:17:72:42:9E:B8:CB:B0:DF:66:53:F1:67:8C:F6 Certificate issuer: /CN=A91CE6EC/serialNumber=A1C2396570401772429EB8CBB0DF6653F1678CF6 Certificate serial: 25EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft Manifest number: 25E3 Signing time: Mon 22 Dec 2025 15:34:03 +0000 Manifest this update: Mon 22 Dec 2025 15:34:03 +0000 Manifest next update: Mon 29 Dec 2025 15:34:03 +0000 Files and hashes: 1: ocI5ZXBAF3JCnrjLsN9mU_FnjPY.crl (hash: QgKbBmQqRfjCyrhZLZaRg6Gpg6+CTIbbFvcABZzB2Hg=) 2: 96F26DD8E4A511EF8259C769C4F9AE02.roa (hash: 106BmLtTyVCv8aiEyQESyMsMUTUgBCG4YPN0EmuEMYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.crl rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 15:34:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9711 (0x25ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6EC, serialNumber=A1C2396570401772429EB8CBB0DF6653F1678CF6 Validity Not Before: Dec 22 15:34:03 2025 GMT Not After : Dec 29 15:34:03 2025 GMT Subject: CN=694964eb-195b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:53:32:37:df:ee:c0:c4:17:a4:a0:6d:7c:67: 3e:d5:d7:e0:39:e8:b2:7d:a6:50:4e:c7:4e:c2:dc: 93:14:28:3e:93:50:39:9e:15:77:fd:33:4e:cb:43: 60:42:06:19:6e:d1:7e:ab:0c:14:9b:60:54:b9:1f: c7:18:c5:c2:1e:39:ee:b5:c4:a5:44:88:8e:18:5e: d3:d7:a5:12:1a:95:7f:aa:81:64:e5:4e:5a:fc:44: 28:77:63:31:b6:a8:1c:fb:90:00:ff:1b:6c:cb:87: 82:4e:61:47:d2:56:0e:74:10:79:d0:99:c3:f2:fa: 65:ae:8b:b6:9b:82:4b:19:5c:bd:b8:1b:94:7c:68: 14:71:06:8b:34:ea:50:e2:90:1a:5f:2e:bb:40:c8: 7f:7a:78:45:83:2b:f2:b4:14:7c:41:17:c9:8b:a1: 7c:71:f4:82:1c:e8:c4:8e:fd:68:70:d1:07:85:f9: 0d:68:bd:23:e5:61:cf:8a:ca:80:fe:b7:3c:b7:65: 50:ae:20:8c:bc:25:3d:0e:37:ab:45:4c:60:c0:da: 7b:0d:07:e6:94:07:9e:64:13:ac:06:08:5a:90:3c: 19:43:5c:39:55:8d:6a:ab:a1:c5:1d:c1:26:fa:1c: 4d:48:f5:39:12:10:de:0e:8f:64:0b:03:fc:49:e5: d9:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:68:F0:53:ED:6D:66:37:6F:BB:51:69:BA:06:BE:3F:01:F8:14:9D X509v3 Authority Key Identifier: keyid:A1:C2:39:65:70:40:17:72:42:9E:B8:CB:B0:DF:66:53:F1:67:8C:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:bf:8a:a8:b4:9c:41:80:5d:02:d4:1b:d2:08:21:75:91:24: b1:4a:de:40:22:fd:3d:43:b6:91:3b:1e:e0:98:d1:2f:62:a9: 17:63:f9:7f:b2:55:64:11:ef:03:3e:2f:5f:8b:b6:d7:01:b4: 44:da:92:aa:f3:17:0e:b0:05:6d:6f:6a:ad:eb:34:a9:3b:ab: 99:1e:fa:e4:da:40:41:45:37:25:ae:28:a5:92:d3:0f:3d:79: c2:39:76:fb:9b:59:dc:fb:6e:46:78:9d:87:6c:8c:3c:ee:07: 85:cc:2d:46:1c:7b:a6:d1:1c:b2:d8:ff:b9:2b:d8:cd:91:f1: ad:db:83:b0:62:0e:54:58:ff:d4:b1:07:57:f5:31:da:96:2d: f3:be:d1:ca:4d:2e:8c:15:a3:37:0a:1d:9d:76:f5:3c:d2:a2: 25:9b:73:29:51:b6:c9:92:ff:39:63:46:f5:13:95:f5:0d:85: 97:9c:28:7c:cc:e8:f2:97:a7:87:40:16:74:60:7f:7d:0f:66: 96:79:5d:ef:ef:89:fe:40:c8:c5:90:90:47:93:f9:30:58:3d: d6:2c:e1:67:42:ea:da:d2:9b:ec:7d:31:5a:01:d2:66:2f:67: f5:98:d5:07:6c:fd:65:fd:ca:21:aa:5a:67:d1:00:76:a4:3f: 09:e0:8c:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2RUMxMTAvBgNVBAUTKEExQzIzOTY1NzA0MDE3NzI0MjlFQjhDQkIwREY2NjUz RjE2NzhDRjYwHhcNMjUxMjIyMTUzNDAzWhcNMjUxMjI5MTUzNDAzWjAYMRYwFAYD VQQDDA02OTQ5NjRlYi0xOTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhFMyN9/uwMQXpKBtfGc+1dfgOeiyfaZQTsdOwtyTFCg+k1A5nhV3/TNOy0Ng QgYZbtF+qwwUm2BUuR/HGMXCHjnutcSlRIiOGF7T16USGpV/qoFk5U5a/EQod2Mx tqgc+5AA/xtsy4eCTmFH0lYOdBB50JnD8vplrou2m4JLGVy9uBuUfGgUcQaLNOpQ 4pAaXy67QMh/enhFgyvytBR8QRfJi6F8cfSCHOjEjv1ocNEHhfkNaL0j5WHPisqA /rc8t2VQriCMvCU9DjerRUxgwNp7DQfmlAeeZBOsBghakDwZQ1w5VY1qq6HFHcEm +hxNSPU5EhDeDo9kCwP8SeXZkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJho8FPt bWY3b7tRaboGvj8B+BSdMB8GA1UdIwQYMBaAFKHCOWVwQBdyQp64y7DfZlPxZ4z2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZFQy9EM0FCNjAxNjE0 QzgxMUU1QTJGQ0VGMTVDNEY5QUUwMi9vY0k1WlhCQUYzSkNucmpMc045bVVfRm5q UFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29jSTVaWEJBRjNKQ25yakxzTjltVV9GbmpQWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZFQy9EM0FCNjAxNjE0QzgxMUU1QTJGQ0VGMTVDNEY5QUUwMi9vY0k1WlhCQUYz SkNucmpMc045bVVfRm5qUFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3v4qotJxBgF0C1BvSCCF1kSSxSt5AIv09Q7aROx7gmNEvYqkXY/l/ slVkEe8DPi9fi7bXAbRE2pKq8xcOsAVtb2qt6zSpO6uZHvrk2kBBRTclriilktMP PXnCOXb7m1nc+25GeJ2HbIw87geFzC1GHHum0Ryy2P+5K9jNkfGt24OwYg5UWP/U sQdX9THali3zvtHKTS6MFaM3Ch2ddvU80qIlm3MpUbbJkv85Y0b1E5X1DYWXnCh8 zOjyl6eHQBZ0YH99D2aWeV3v74n+QMjFkJBHk/kwWD3WLOFnQura0pvsfTFaAdJm L2f1mNUHbP1l/cohqlpn0QB2pD8J4Iy2 -----END CERTIFICATE-----Generated at Tue Dec 23 02:38:41 2025 by rpki-client