This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft File: Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft (raw, json) Hash identifier: 2n5by9UGbdi69Nv0W8BUnJKXjmqzvvrHrVGqiciEctI= Subject key identifier: EB:CF:C4:E7:4F:68:01:E8:90:62:0D:4B:41:09:43:0F:8D:42:CB:A8 Authority key identifier: 39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41 Certificate issuer: /CN=A91DC302/serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541 Certificate serial: 2697 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft Manifest number: 267A Signing time: Fri 26 Dec 2025 15:31:40 +0000 Manifest this update: Fri 26 Dec 2025 15:31:40 +0000 Manifest next update: Fri 02 Jan 2026 15:31:40 +0000 Files and hashes: 1: Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl (hash: cyKWytjVZBlPwIqPlo8WOL6QuzwYe7/DqaF1/jgi3+g=) 2: E54E5FF6632311ED8D313442C4F9AE02.roa (hash: juVS2WdVoEjnoooIFlUN1TcwOWE6yqS4du37XkdB8V8=) 3: BA61C87692D911F083913E3DC4F9AE02.roa (hash: EKR2JpxoTtOKBdOLpKLtMGV12OxD/NRUd9Y6lPYeylI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 Jan 2026 15:31:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9879 (0x2697) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC302, serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541 Validity Not Before: Dec 26 15:31:40 2025 GMT Not After : Jan 2 15:31:40 2026 GMT Subject: CN=694eaa5c-e2fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:78:f4:7e:c0:87:60:3a:d4:14:a0:48:f6:7f: a2:2c:d9:b9:e3:91:aa:d2:69:bb:a7:bb:44:2b:9b: 77:22:74:ca:07:cc:6d:ab:09:7a:66:40:68:ea:36: 6b:da:64:03:59:f8:5d:59:30:d8:d9:33:6a:48:4c: cc:96:89:b2:7d:47:65:8d:8f:e6:a9:e9:07:22:9d: f7:dd:6e:a1:e7:8e:73:11:73:69:96:7d:a4:1b:48: 9f:17:7b:94:6d:50:f4:b3:ee:fc:ef:10:48:e8:7c: 12:47:56:9d:60:ac:ec:5f:c7:25:92:b1:3a:3f:10: 31:f9:32:b4:28:3c:63:b6:7d:84:00:02:90:a9:30: f8:67:4b:c3:c1:f3:7c:30:08:85:5a:ce:8a:9b:6d: 88:69:4b:2e:d1:96:a0:85:44:c7:31:75:93:34:6e: ab:d6:68:4a:e2:3d:aa:1a:b2:0d:b8:01:98:80:fd: dd:6a:56:60:ee:d4:28:6a:7b:f7:d2:19:f8:78:e9: 38:ff:a0:e6:5a:9c:72:a9:c3:4d:d5:4d:36:47:46: 74:30:0b:61:c1:7c:a2:c4:e8:b0:9a:db:32:b1:00: db:84:59:c5:2a:d4:0d:af:4f:a5:10:67:df:38:bd: b2:9e:25:61:70:5b:30:af:d1:06:32:97:97:31:3e: 92:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:CF:C4:E7:4F:68:01:E8:90:62:0D:4B:41:09:43:0F:8D:42:CB:A8 X509v3 Authority Key Identifier: keyid:39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:fe:48:7b:8c:c5:1a:2e:bb:69:c2:29:98:48:05:cd:92:18: cb:f7:bc:76:fc:66:b6:ac:e9:3d:40:27:97:b6:3e:86:07:68: 15:94:c6:cf:7c:69:0f:af:80:68:dc:bc:25:5a:d2:42:01:41: ef:cd:43:3d:b2:84:f0:25:ae:ba:2f:45:ec:6e:4b:90:66:ce: 6c:a0:a6:cb:90:9a:9b:5d:2d:2f:b4:7d:1a:4d:10:35:c1:3a: c2:f4:75:ed:9a:11:1b:4c:5f:9e:83:7e:78:77:6a:3a:24:88: 61:a0:b2:74:25:e5:c0:e8:7d:28:1b:09:ac:4f:44:86:ec:76: 59:ce:30:5d:6d:d5:1e:63:3f:cc:c8:26:eb:65:dd:75:3d:8e: 3c:c8:3a:6e:d4:95:2b:60:40:6a:1b:4d:0c:40:45:dd:99:0c: 7d:e4:36:70:cc:39:0c:fa:af:eb:eb:43:8d:d6:61:45:fc:9b: a5:a3:b1:ea:f6:31:c2:40:b0:0b:2f:f6:81:5d:7f:47:cb:e5: b1:bb:4d:f7:ae:16:4a:12:b6:70:28:90:19:21:fd:d9:22:d1: fa:7d:aa:15:a2:ad:00:93:4b:0b:7f:53:3a:c7:cf:3b:6d:de: b2:93:55:6f:64:49:e4:be:0b:66:c1:b2:1c:e9:3b:1e:bd:ae: 10:74:64:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJpcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzMDIxMTAvBgNVBAUTKDM5QkY5Njk5NEFCNEM1NEM5ODNFRTBGNTEwMzY1RjRG RDk4NDE1NDEwHhcNMjUxMjI2MTUzMTQwWhcNMjYwMTAyMTUzMTQwWjAYMRYwFAYD VQQDDA02OTRlYWE1Yy1lMmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsXj0fsCHYDrUFKBI9n+iLNm545Gq0mm7p7tEK5t3InTKB8xtqwl6ZkBo6jZr 2mQDWfhdWTDY2TNqSEzMlomyfUdljY/mqekHIp333W6h545zEXNpln2kG0ifF3uU bVD0s+787xBI6HwSR1adYKzsX8clkrE6PxAx+TK0KDxjtn2EAAKQqTD4Z0vDwfN8 MAiFWs6Km22IaUsu0ZaghUTHMXWTNG6r1mhK4j2qGrINuAGYgP3dalZg7tQoanv3 0hn4eOk4/6DmWpxyqcNN1U02R0Z0MAthwXyixOiwmtsysQDbhFnFKtQNr0+lEGff OL2yniVhcFswr9EGMpeXMT6ShwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOvPxOdP aAHokGINS0EJQw+NQsuoMB8GA1UdIwQYMBaAFDm/lplKtMVMmD7g9RA2X0/ZhBVB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMwMi80RUE0OEU4NEZC QTkxMUU0QThCMzRDMjNDNEY5QUUwMi9PYi1XbVVxMHhVeVlQdUQxRURaZlQ5bUVG VUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09iLVdtVXEweFV5WVB1RDFFRFpmVDltRUZVRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzMwMi80RUE0OEU4NEZCQTkxMUU0QThCMzRDMjNDNEY5QUUwMi9PYi1XbVVxMHhV eVlQdUQxRURaZlQ5bUVGVUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7/kh7jMUaLrtpwimYSAXNkhjL97x2/Ga2rOk9QCeXtj6GB2gVlMbP fGkPr4Bo3LwlWtJCAUHvzUM9soTwJa66L0XsbkuQZs5soKbLkJqbXS0vtH0aTRA1 wTrC9HXtmhEbTF+eg354d2o6JIhhoLJ0JeXA6H0oGwmsT0SG7HZZzjBdbdUeYz/M yCbrZd11PY48yDpu1JUrYEBqG00MQEXdmQx95DZwzDkM+q/r60ON1mFF/Julo7Hq 9jHCQLALL/aBXX9Hy+Wxu033rhZKErZwKJAZIf3ZItH6faoVoq0Ak0sLf1M6x887 bd6yk1VvZEnkvgtmwbIc6Tseva4QdGT2 -----END CERTIFICATE-----Generated at Sat Dec 27 02:19:10 2025 by rpki-client