This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft File: oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft (raw, json) Hash identifier: h92YpGnMOFgPJxPA2GXhLaNiKdkmNgG976ZxMIRApC0= Subject key identifier: 33:A9:D8:30:97:EC:95:79:E7:DB:F5:32:7C:3D:1E:8B:8C:6F:63:4B Authority key identifier: A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 Certificate issuer: /CN=A91D9D8B/serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Certificate serial: 0239 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft Manifest number: 0233 Signing time: Fri 19 Dec 2025 01:14:01 +0000 Manifest this update: Fri 19 Dec 2025 01:14:00 +0000 Manifest next update: Fri 26 Dec 2025 01:14:00 +0000 Files and hashes: 1: oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl (hash: 4hDtU1E5eqFzzYWVz+9c2ASn/LmVOSMOPvR1g3Os6Lk=) 2: 95C4C7AA7F7911ED9C1EAE19C4F9AE02.roa (hash: 9UBDG0nK7dNXHoswvyDP2323eSe7RBcMWWQgGNewLxg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:14:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 569 (0x239) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9D8B, serialNumber=A1938C912AC2F4A958B93DAF8F4B272015B0D8D8 Validity Not Before: Dec 19 01:14:00 2025 GMT Not After : Dec 26 01:14:00 2025 GMT Subject: CN=6944a6d9-6b5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:b3:21:7b:75:be:6c:cb:e3:14:40:06:97:f3: 38:f9:5a:b0:a2:b5:19:75:f8:7f:31:f3:78:34:2f: 98:fc:6d:68:91:d8:9f:84:dd:e6:fd:52:b9:99:ef: 17:0b:5a:28:08:b3:92:97:56:46:1f:76:b3:fc:2d: b4:59:73:85:00:05:4c:3a:63:fd:a8:20:5b:ab:30: 0d:21:d1:a1:ed:2d:22:cb:d5:21:09:e2:01:9b:56: 6a:59:f4:6f:05:59:c9:22:62:a2:01:20:80:4c:c0: 66:63:2a:92:29:a7:9b:34:3f:5b:70:dc:33:cf:bb: 4a:f8:67:80:f3:26:51:ca:99:3d:28:bf:88:3d:0a: b4:dd:3a:10:ce:73:9b:4b:63:09:9a:b7:e9:a2:d8: 3b:99:e0:a7:a0:39:22:fb:ed:74:a3:55:bb:5a:a8: c8:1b:35:d1:24:12:7a:d8:a2:ec:61:a0:0b:5d:ec: 87:7b:94:d5:a6:c6:01:d6:44:14:29:8c:8c:00:d9: f0:f9:8e:66:08:19:f8:fc:c6:2d:7e:65:be:fe:45: 86:06:04:10:19:4b:ff:0b:5e:08:48:8c:0e:71:8e: 53:aa:af:8e:ec:b2:78:a0:fd:ef:47:3b:93:a8:a1: 2b:8d:42:b2:3a:94:42:3d:67:0a:c7:de:e5:8d:36: 87:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:A9:D8:30:97:EC:95:79:E7:DB:F5:32:7C:3D:1E:8B:8C:6F:63:4B X509v3 Authority Key Identifier: keyid:A1:93:8C:91:2A:C2:F4:A9:58:B9:3D:AF:8F:4B:27:20:15:B0:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oZOMkSrC9KlYuT2vj0snIBWw2Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9D8B/5F11E02A7F7511ED8AFBE673C4F9AE02/oZOMkSrC9KlYuT2vj0snIBWw2Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:8d:7a:4a:9e:06:fd:9c:e9:e4:af:2e:82:a3:08:90:b3:e7: e6:88:4c:04:8c:e4:6b:bb:b1:6e:f1:49:2b:5b:04:fd:f2:46: 38:3d:93:0d:cc:bf:49:c4:ea:63:db:cc:c5:e9:24:3e:2b:68: 42:4f:0f:d1:09:3a:30:4c:0b:46:11:75:db:36:24:0a:78:f8: 7d:78:f1:2b:72:ce:3b:4d:7f:f6:2e:b7:9f:2a:2d:87:56:12: 8f:84:ae:63:e8:26:b0:c1:7c:61:a0:2b:16:d9:2a:05:cf:68: c2:f4:1d:25:f5:d3:98:e4:10:aa:dd:e8:fd:7a:ec:fa:b8:45: fd:e2:5d:b9:f7:44:6c:21:87:5a:fd:50:ed:bc:74:c9:21:cc: b9:b8:64:32:9c:51:12:db:87:8a:ff:56:02:8b:ac:9e:45:23: 2f:33:d2:43:e9:1f:26:25:9b:b3:d0:70:2c:f1:ad:bf:de:46: 32:8c:7b:82:fc:f3:0a:5f:ae:d6:4a:f6:33:d6:6e:41:bb:60: b4:03:13:d0:ed:ba:eb:87:97:76:54:bc:19:23:84:1b:a0:22: 7a:be:84:f7:09:eb:b3:be:1b:69:e1:2e:d3:6e:c7:3c:4e:cb: bf:b1:83:c6:6c:ac:47:eb:f1:74:ab:4d:c4:fd:50:7d:52:fe: b4:b4:1b:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlEOEIxMTAvBgNVBAUTKEExOTM4QzkxMkFDMkY0QTk1OEI5M0RBRjhGNEIyNzIw MTVCMEQ4RDgwHhcNMjUxMjE5MDExNDAwWhcNMjUxMjI2MDExNDAwWjAYMRYwFAYD VQQDDA02OTQ0YTZkOS02YjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjrMhe3W+bMvjFEAGl/M4+VqworUZdfh/MfN4NC+Y/G1okdifhN3m/VK5me8X C1ooCLOSl1ZGH3az/C20WXOFAAVMOmP9qCBbqzANIdGh7S0iy9UhCeIBm1ZqWfRv BVnJImKiASCATMBmYyqSKaebND9bcNwzz7tK+GeA8yZRypk9KL+IPQq03ToQznOb S2MJmrfpotg7meCnoDki++10o1W7WqjIGzXRJBJ62KLsYaALXeyHe5TVpsYB1kQU KYyMANnw+Y5mCBn4/MYtfmW+/kWGBgQQGUv/C14ISIwOcY5Tqq+O7LJ4oP3vRzuT qKErjUKyOpRCPWcKx97ljTaHgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDOp2DCX 7JV559v1Mnw9HouMb2NLMB8GA1UdIwQYMBaAFKGTjJEqwvSpWLk9r49LJyAVsNjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUQ4Qi81RjExRTAyQTdG NzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlLbFl1VDJ2ajBzbklCV3cy TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29aT01rU3JDOUtsWXVUMnZqMHNuSUJXdzJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUQ4Qi81RjExRTAyQTdGNzUxMUVEOEFGQkU2NzNDNEY5QUUwMi9vWk9Na1NyQzlL bFl1VDJ2ajBzbklCV3cyTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFjXpKngb9nOnkry6CowiQs+fmiEwEjORru7Fu8UkrWwT98kY4PZMN zL9JxOpj28zF6SQ+K2hCTw/RCTowTAtGEXXbNiQKePh9ePErcs47TX/2LrefKi2H VhKPhK5j6CawwXxhoCsW2SoFz2jC9B0l9dOY5BCq3ej9euz6uEX94l2590RsIYda /VDtvHTJIcy5uGQynFES24eK/1YCi6yeRSMvM9JD6R8mJZuz0HAs8a2/3kYyjHuC /PMKX67WSvYz1m5Bu2C0AxPQ7brrh5d2VLwZI4QboCJ6voT3Ceuzvhtp4S7Tbsc8 Tsu/sYPGbKxH6/F0q03E/VB9Uv60tBtq -----END CERTIFICATE-----Generated at Fri Dec 19 17:45:05 2025 by rpki-client