This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.mft File: oPojd21UTId5RsrHxId0ZRmTfbg.mft (raw, json) Hash identifier: /oXGuBPh6e5mGd+tImuTfzGXYtq+4w0IPvrCqF6Z4lw= Subject key identifier: FA:FD:9D:88:13:68:B5:EE:56:89:D4:74:7A:02:1E:DD:55:43:AC:FD Authority key identifier: A0:FA:23:77:6D:54:4C:87:79:46:CA:C7:C4:87:74:65:19:93:7D:B8 Certificate issuer: /CN=A91DD584/serialNumber=A0FA23776D544C877946CAC7C487746519937DB8 Certificate serial: D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPojd21UTId5RsrHxId0ZRmTfbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.mft Manifest number: D3 Signing time: Fri 19 Dec 2025 04:48:57 +0000 Manifest this update: Fri 19 Dec 2025 04:48:57 +0000 Manifest next update: Fri 26 Dec 2025 04:48:57 +0000 Files and hashes: 1: oPojd21UTId5RsrHxId0ZRmTfbg.crl (hash: U4N23xPGXfChvLNZfYKBf/Vzn4gA4K0MjJAqtW8cVIo=) 2: B4C685B09CB111EFA6F8E627C4F9AE02.roa (hash: GuNo7IUV7Thwoh9B3txt8mnx9fY3g5B8M+APQokJxqg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.crl rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPojd21UTId5RsrHxId0ZRmTfbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:48:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD584, serialNumber=A0FA23776D544C877946CAC7C487746519937DB8 Validity Not Before: Dec 19 04:48:57 2025 GMT Not After : Dec 26 04:48:57 2025 GMT Subject: CN=6944d939-6552 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:91:6d:62:69:2b:6b:c7:e9:01:a9:6d:6d:2c: 27:ba:66:e6:c2:5d:39:97:6b:7d:e5:75:94:37:89: ab:bc:22:80:5d:ab:04:05:13:a0:fd:24:72:54:84: 51:07:76:ae:03:54:f4:31:5c:0a:b3:44:ef:b5:8a: 3a:23:f7:78:41:7b:a0:67:39:32:37:4e:2a:51:63: c6:9e:bf:06:91:4a:e7:57:88:2d:0b:8c:02:2d:37: 38:bf:ae:14:2c:82:aa:74:13:4b:67:8b:c1:2a:74: 9a:2c:9e:ba:50:f7:48:17:60:5f:76:bb:aa:e6:b2: f4:ee:36:d2:f9:74:ec:4c:a2:32:eb:40:68:63:83: 2e:f6:06:a6:4f:41:fa:5c:ae:ff:3c:51:c5:44:80: 03:1d:cd:44:cd:31:98:8f:b6:97:1e:25:ea:ed:4f: e9:b5:a4:4c:74:34:9d:57:c4:37:2c:94:ea:fc:7b: 99:22:77:97:ac:f0:1f:02:19:95:e7:3f:77:43:84: e8:08:b0:23:bd:0a:e6:74:0e:13:7f:cd:f8:0b:c0: c9:47:a9:58:93:e8:c9:dd:48:37:f3:c0:78:d4:11: 4d:89:cf:f6:86:84:b1:35:94:cd:54:7c:52:71:bb: 53:6d:60:ba:2c:bd:d1:1a:5f:c2:d9:44:0b:ae:bb: 02:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:FD:9D:88:13:68:B5:EE:56:89:D4:74:7A:02:1E:DD:55:43:AC:FD X509v3 Authority Key Identifier: keyid:A0:FA:23:77:6D:54:4C:87:79:46:CA:C7:C4:87:74:65:19:93:7D:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPojd21UTId5RsrHxId0ZRmTfbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD584/327073829CB111EFAEA00D25C4F9AE02/oPojd21UTId5RsrHxId0ZRmTfbg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:8a:2f:2c:91:ec:4e:64:2d:c6:be:dd:8e:3b:95:dc:dd:da: 91:ce:a6:61:a1:dd:40:0d:ca:b1:3d:ec:7a:b5:fe:3a:fb:45: 51:c3:76:3c:60:06:71:12:61:e7:89:0d:0e:50:29:3a:d8:f0: a1:83:c9:49:9d:db:38:9d:15:06:b4:8b:56:20:06:ea:90:0e: 1e:39:c4:93:40:17:62:3c:8a:6b:4f:60:bb:a8:3b:8d:ae:8e: 1b:4b:86:ee:50:2d:9e:ee:8d:b0:5d:92:6e:e5:07:a1:2e:2b: 1f:93:c6:a5:a6:f3:22:21:40:f1:73:61:db:45:9d:76:b6:04: 66:79:a7:01:e9:eb:94:af:09:43:83:7d:8c:d8:01:ab:a0:d3: 42:89:9c:50:00:93:c0:ce:26:2e:ba:80:d7:27:95:d8:35:42: 26:31:df:06:d1:f8:21:81:12:87:81:cb:55:82:8a:c8:40:a8: bb:98:7d:c8:96:35:11:7d:21:f3:93:1a:cc:6b:c5:a2:4c:0d: 96:d3:76:39:77:c5:55:db:37:76:b9:41:74:5e:31:b9:f3:c2: c4:f1:6e:47:a1:0d:aa:c7:db:1c:70:9e:cf:5f:0a:89:39:49: 80:61:c3:60:55:88:04:e9:ae:ea:95:60:24:30:9a:f4:b5:b5: fd:19:24:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ1ODQxMTAvBgNVBAUTKEEwRkEyMzc3NkQ1NDRDODc3OTQ2Q0FDN0M0ODc3NDY1 MTk5MzdEQjgwHhcNMjUxMjE5MDQ0ODU3WhcNMjUxMjI2MDQ0ODU3WjAYMRYwFAYD VQQDDA02OTQ0ZDkzOS02NTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr5FtYmkra8fpAaltbSwnumbmwl05l2t95XWUN4mrvCKAXasEBROg/SRyVIRR B3auA1T0MVwKs0TvtYo6I/d4QXugZzkyN04qUWPGnr8GkUrnV4gtC4wCLTc4v64U LIKqdBNLZ4vBKnSaLJ66UPdIF2Bfdruq5rL07jbS+XTsTKIy60BoY4Mu9gamT0H6 XK7/PFHFRIADHc1EzTGYj7aXHiXq7U/ptaRMdDSdV8Q3LJTq/HuZIneXrPAfAhmV 5z93Q4ToCLAjvQrmdA4Tf834C8DJR6lYk+jJ3Ug388B41BFNic/2hoSxNZTNVHxS cbtTbWC6LL3RGl/C2UQLrrsCRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPr9nYgT aLXuVonUdHoCHt1VQ6z9MB8GA1UdIwQYMBaAFKD6I3dtVEyHeUbKx8SHdGUZk324 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDU4NC8zMjcwNzM4MjlD QjExMUVGQUVBMDBEMjVDNEY5QUUwMi9vUG9qZDIxVVRJZDVSc3JIeElkMFpSbVRm YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Qb2pkMjFVVElkNVJzckh4SWQwWlJtVGZiZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDU4NC8zMjcwNzM4MjlDQjExMUVGQUVBMDBEMjVDNEY5QUUwMi9vUG9qZDIxVVRJ ZDVSc3JIeElkMFpSbVRmYmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJii8skexOZC3Gvt2OO5Xc3dqRzqZhod1ADcqxPex6tf46+0VRw3Y8 YAZxEmHniQ0OUCk62PChg8lJnds4nRUGtItWIAbqkA4eOcSTQBdiPIprT2C7qDuN ro4bS4buUC2e7o2wXZJu5QehLisfk8alpvMiIUDxc2HbRZ12tgRmeacB6euUrwlD g32M2AGroNNCiZxQAJPAziYuuoDXJ5XYNUImMd8G0fghgRKHgctVgorIQKi7mH3I ljURfSHzkxrMa8WiTA2W03Y5d8VV2zd2uUF0XjG588LE8W5HoQ2qx9sccJ7PXwqJ OUmAYcNgVYgE6a7qlWAkMJr0tbX9GSSI -----END CERTIFICATE-----Generated at Fri Dec 19 23:57:57 2025 by rpki-client