This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft File: o1D687bxS8juGymW7tSOJwIOEIM.mft (raw, json) Hash identifier: 7M/bpVOavy2ClHQ9uYwSaJ4XACdfpM3OHCZtvUTurEs= Subject key identifier: BC:D6:6F:9F:19:BF:14:96:DF:3B:82:88:E8:C3:1F:6A:87:72:C8:D9 Authority key identifier: A3:50:FA:F3:B6:F1:4B:C8:EE:1B:29:96:EE:D4:8E:27:02:0E:10:83 Certificate issuer: /CN=A91D4834/serialNumber=A350FAF3B6F14BC8EE1B2996EED48E27020E1083 Certificate serial: 08CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft Manifest number: 08BA Signing time: Sat 20 Dec 2025 19:54:46 +0000 Manifest this update: Sat 20 Dec 2025 19:54:46 +0000 Manifest next update: Sat 27 Dec 2025 19:54:46 +0000 Files and hashes: 1: o1D687bxS8juGymW7tSOJwIOEIM.crl (hash: RkfeRhTKaHtZX79MkFB8LennlpT1K+d0QI/D7MWpi68=) 2: D32DB3AE7FC111F0B3BEC06AC4F9AE02.roa (hash: /uldeOBBVv+zaXl5jNRHeGbB+ckh7FIYfUU0p3GU20E=) 3: ECE8975685D811F09A4FFA45C4F9AE02.roa (hash: kbQycqq6uhbmllHh50J5L3MKomIfAJJoAz4btbBqKyw=) 4: C5E7AA2289A011F08D995D74C4F9AE02.roa (hash: jS53WXHjCoys1e1t5l2xcO16jh1u3l1FTq8ZOUzIH88=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.crl rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 19:54:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2255 (0x8cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4834, serialNumber=A350FAF3B6F14BC8EE1B2996EED48E27020E1083 Validity Not Before: Dec 20 19:54:46 2025 GMT Not After : Dec 27 19:54:46 2025 GMT Subject: CN=6946ff06-d5b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:80:17:85:96:34:54:63:99:1b:3a:8a:14:20: 83:8e:cd:09:73:e7:00:79:97:0d:42:1b:f5:33:5d: c7:27:fe:3e:94:7e:cc:c9:0a:c6:13:0b:a3:40:26: 05:56:21:ad:d5:b3:33:3c:b7:bf:26:70:f5:98:80: 4b:5c:c0:7e:f9:7c:b1:c2:7c:7f:d7:b5:3e:69:f5: 10:89:3b:4b:ce:e5:9a:4f:b0:b2:16:a3:11:3a:35: 42:95:87:8c:a7:f7:67:78:9b:d6:c6:10:d3:57:2f: 9e:db:ad:1f:91:48:7a:42:8f:c8:30:19:64:fc:b0: 94:1b:90:15:97:59:1b:0e:36:89:e6:69:73:35:b8: 24:0d:78:ca:c0:d4:58:77:a4:bf:25:82:33:d2:88: 11:0e:c3:cf:b4:78:fc:7d:69:93:40:14:47:e2:88: 48:09:72:cf:17:9e:1f:b0:bd:ee:dc:35:6e:44:a2: 4f:ac:df:62:96:da:b3:41:8b:02:fb:8c:ca:93:11: 39:8b:50:ce:f4:72:ee:8e:af:18:ae:ae:8a:27:70: 02:42:d3:57:94:3b:ab:9b:ed:65:3e:db:94:75:ba: 59:68:00:bc:be:01:17:de:ae:86:3c:d8:00:9e:fd: 5c:de:02:2d:35:98:9e:1a:60:51:51:42:3f:c7:6f: f0:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:D6:6F:9F:19:BF:14:96:DF:3B:82:88:E8:C3:1F:6A:87:72:C8:D9 X509v3 Authority Key Identifier: keyid:A3:50:FA:F3:B6:F1:4B:C8:EE:1B:29:96:EE:D4:8E:27:02:0E:10:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:50:34:41:74:ad:e7:3a:59:ab:1a:20:e1:ab:86:fd:44:ed: 06:76:11:c6:af:cd:7e:15:e5:c2:2d:7f:a4:1b:fb:67:1a:5c: 90:2a:ee:aa:76:cd:6b:af:08:b4:ec:0b:8d:92:bb:e7:71:ee: d4:05:4a:b7:f5:5c:92:fb:61:40:6f:8a:b1:23:6a:cb:62:33: d3:22:eb:5c:41:d7:b7:35:59:0a:67:6f:3b:85:14:0c:b5:89: 44:d3:46:1d:87:d9:dc:12:22:06:1f:30:ad:48:88:f2:ab:7a: 5c:4a:4d:ac:df:6e:ad:9e:a8:1e:f9:ca:31:36:5b:fb:80:00: bb:c8:0c:63:df:fa:a3:59:9a:10:a7:82:51:6c:3d:67:62:00: d3:36:b8:2d:eb:e9:c6:32:c5:c1:51:b2:48:51:7e:94:05:5d: f1:2e:30:28:dd:72:cc:90:e2:74:04:28:d4:44:0d:54:c6:d5: 8c:22:a8:58:f3:45:7f:20:60:ac:54:f4:b4:bf:2f:b1:cf:45: bd:43:fa:a8:e8:65:bf:2d:53:b6:30:e1:b1:41:f2:2c:43:b0: ef:46:03:0d:fd:58:63:8b:2e:fc:45:58:b6:f1:0e:59:f4:98: 06:54:2a:91:95:99:d7:18:1d:d7:bd:26:35:56:ba:f3:38:17: 95:49:e3:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ4MzQxMTAvBgNVBAUTKEEzNTBGQUYzQjZGMTRCQzhFRTFCMjk5NkVFRDQ4RTI3 MDIwRTEwODMwHhcNMjUxMjIwMTk1NDQ2WhcNMjUxMjI3MTk1NDQ2WjAYMRYwFAYD VQQDDA02OTQ2ZmYwNi1kNWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2IAXhZY0VGOZGzqKFCCDjs0Jc+cAeZcNQhv1M13HJ/4+lH7MyQrGEwujQCYF ViGt1bMzPLe/JnD1mIBLXMB++Xyxwnx/17U+afUQiTtLzuWaT7CyFqMROjVClYeM p/dneJvWxhDTVy+e260fkUh6Qo/IMBlk/LCUG5AVl1kbDjaJ5mlzNbgkDXjKwNRY d6S/JYIz0ogRDsPPtHj8fWmTQBRH4ohICXLPF54fsL3u3DVuRKJPrN9iltqzQYsC +4zKkxE5i1DO9HLujq8Yrq6KJ3ACQtNXlDurm+1lPtuUdbpZaAC8vgEX3q6GPNgA nv1c3gItNZieGmBRUUI/x2/wUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLzWb58Z vxSW3zuCiOjDH2qHcsjZMB8GA1UdIwQYMBaAFKNQ+vO28UvI7hsplu7UjicCDhCD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDgzNC81MUJFREZDNEND OEQxMUVBQUZGRURCMzZDNEY5QUUwMi9vMUQ2ODdieFM4anVHeW1XN3RTT0p3SU9F SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28xRDY4N2J4UzhqdUd5bVc3dFNPSndJT0VJTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDgzNC81MUJFREZDNENDOEQxMUVBQUZGRURCMzZDNEY5QUUwMi9vMUQ2ODdieFM4 anVHeW1XN3RTT0p3SU9FSU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwUDRBdK3nOlmrGiDhq4b9RO0GdhHGr81+FeXCLX+kG/tnGlyQKu6q ds1rrwi07AuNkrvnce7UBUq39VyS+2FAb4qxI2rLYjPTIutcQde3NVkKZ287hRQM tYlE00Ydh9ncEiIGHzCtSIjyq3pcSk2s326tnqge+coxNlv7gAC7yAxj3/qjWZoQ p4JRbD1nYgDTNrgt6+nGMsXBUbJIUX6UBV3xLjAo3XLMkOJ0BCjURA1UxtWMIqhY 80V/IGCsVPS0vy+xz0W9Q/qo6GW/LVO2MOGxQfIsQ7DvRgMN/Vhjiy78RVi28Q5Z 9JgGVCqRlZnXGB3XvSY1VrrzOBeVSeNV -----END CERTIFICATE-----Generated at Sun Dec 21 01:50:30 2025 by rpki-client