This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft File: oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft (raw, json) Hash identifier: h9NvWd/1pMBohm//WWANNLOYFOSrbHWa8NnF+iNilzg= Subject key identifier: 8F:FF:0D:15:59:07:15:7E:53:10:A2:0D:F0:CA:F9:B3:5C:BA:36:AD Authority key identifier: A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 Certificate issuer: /CN=A91E29CB/serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Certificate serial: 030C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft Manifest number: 02FE Signing time: Fri 19 Dec 2025 00:27:31 +0000 Manifest this update: Fri 19 Dec 2025 00:27:31 +0000 Manifest next update: Fri 26 Dec 2025 00:27:31 +0000 Files and hashes: 1: oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl (hash: uvnddXKOPOpJ7uQcWT6MFz8huSft8qyBMhJNYEKBB1c=) 2: C258B0D0E03C11EF991E147AC4F9AE02.roa (hash: laAl8Txo1gIHcxVocQuJwP60FGqDJ3pXtoHTwy2bFVE=) 3: C08A3ED6E03C11EF991E147AC4F9AE02.roa (hash: 2yxooHg2J0c3MSXXKFuW6gpFsAXkYNwDiL8UbiBNepU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:27:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 780 (0x30c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E29CB, serialNumber=A07AF0CCB29835CC7642974BAC9E1502B9CF82D0 Validity Not Before: Dec 19 00:27:31 2025 GMT Not After : Dec 26 00:27:31 2025 GMT Subject: CN=69449bf3-9c32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b7:18:7c:94:ee:5f:71:23:63:ad:2f:2b:7f: db:e5:43:d4:6b:17:ce:71:7d:a6:36:37:16:2b:24: 0c:00:35:02:1c:f4:00:d8:8e:f2:ee:c9:17:6d:5b: 2c:df:d8:04:d7:2e:a7:62:4f:34:7e:85:6d:ed:68: 32:4c:b5:73:3d:34:65:50:8f:17:9c:15:35:13:c0: 92:e2:23:f4:1f:12:a3:c2:87:b0:b3:51:67:55:79: 39:5e:32:02:1a:2e:c8:86:35:d2:a6:b1:df:ee:7b: d7:1d:7e:dd:2e:02:b7:e0:f2:b8:e0:1c:d5:70:eb: e6:f7:3f:c8:4d:6b:39:e9:3d:f5:a0:56:55:57:71: f3:a1:41:e9:86:bf:61:b7:7d:6d:c5:57:05:ac:37: 7c:39:76:f2:b0:e0:02:24:3e:89:58:2c:c6:f0:e1: e7:b3:ef:4a:3a:1e:74:43:c5:b5:5b:64:85:75:50: 70:3c:e3:54:d1:9f:79:a4:82:3b:d9:86:ff:01:b3: e1:89:28:12:ff:a8:cf:84:81:9b:11:60:c1:5c:b9: 23:b5:5b:06:bd:0f:ea:47:4c:7a:93:23:fe:17:ba: 94:a1:dd:f1:10:13:bc:f4:8d:3c:cc:88:06:54:f4: ac:21:96:70:85:8c:75:a7:c0:e2:49:0d:6a:4c:e2: 37:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:FF:0D:15:59:07:15:7E:53:10:A2:0D:F0:CA:F9:B3:5C:BA:36:AD X509v3 Authority Key Identifier: keyid:A0:7A:F0:CC:B2:98:35:CC:76:42:97:4B:AC:9E:15:02:B9:CF:82:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oHrwzLKYNcx2QpdLrJ4VArnPgtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E29CB/1F902B0E05AF11EDA717642BC4F9AE02/oHrwzLKYNcx2QpdLrJ4VArnPgtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:10:b7:c5:15:1f:e6:d3:f3:1e:7e:71:f8:5e:fc:5c:11:fc: 66:44:6e:95:46:b7:7d:5b:89:3c:18:6a:ed:78:07:da:17:28: 11:f5:48:2e:aa:75:a6:92:db:a5:56:b0:54:87:42:4e:84:33: fc:92:b3:a6:f5:6e:98:ee:18:44:5f:da:62:cf:6b:cc:b9:63: 80:f2:3e:4a:1b:af:db:c5:1b:73:7c:28:6b:d1:34:4e:89:fa: 8e:51:a7:cb:eb:3f:13:d6:94:c5:c6:22:2e:82:3d:70:91:86: 27:75:a6:00:31:f3:3f:60:e4:4e:f6:da:45:04:d9:30:10:15: 5d:a4:0a:dc:3e:58:eb:59:05:ae:75:40:9f:63:02:d5:c4:f0: 81:62:ab:ce:57:14:d4:fd:35:93:62:be:7a:2d:d3:72:ee:f7: 3a:62:9e:35:5c:c6:d9:ba:5b:c0:77:99:02:27:62:c7:e3:54: 0f:63:c4:1f:43:f5:c9:f5:38:8e:d9:de:02:2c:81:ad:c8:f7: e6:57:5f:10:0f:ce:19:6f:92:f1:de:82:17:d9:e2:07:1f:0c: cd:82:e4:bb:ab:39:ba:f1:77:96:3b:c4:c6:a4:5e:4f:5b:75: 0a:3f:e2:d0:f6:94:20:d9:22:a9:5e:8a:e6:34:5a:03:1e:3b: e1:61:84:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI5Q0IxMTAvBgNVBAUTKEEwN0FGMENDQjI5ODM1Q0M3NjQyOTc0QkFDOUUxNTAy QjlDRjgyRDAwHhcNMjUxMjE5MDAyNzMxWhcNMjUxMjI2MDAyNzMxWjAYMRYwFAYD VQQDDA02OTQ0OWJmMy05YzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArbcYfJTuX3EjY60vK3/b5UPUaxfOcX2mNjcWKyQMADUCHPQA2I7y7skXbVss 39gE1y6nYk80foVt7WgyTLVzPTRlUI8XnBU1E8CS4iP0HxKjwoews1FnVXk5XjIC Gi7IhjXSprHf7nvXHX7dLgK34PK44BzVcOvm9z/ITWs56T31oFZVV3HzoUHphr9h t31txVcFrDd8OXbysOACJD6JWCzG8OHns+9KOh50Q8W1W2SFdVBwPONU0Z95pII7 2Yb/AbPhiSgS/6jPhIGbEWDBXLkjtVsGvQ/qR0x6kyP+F7qUod3xEBO89I08zIgG VPSsIZZwhYx1p8DiSQ1qTOI3twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI//DRVZ BxV+UxCiDfDK+bNcujatMB8GA1UdIwQYMBaAFKB68MyymDXMdkKXS6yeFQK5z4LQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjlDQi8xRjkwMkIwRTA1 QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5jeDJRcGRMcko0VkFyblBn dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Icnd6TEtZTmN4MlFwZExySjRWQXJuUGd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjlDQi8xRjkwMkIwRTA1QUYxMUVEQTcxNzY0MkJDNEY5QUUwMi9vSHJ3ekxLWU5j eDJRcGRMcko0VkFyblBndEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtELfFFR/m0/MefnH4XvxcEfxmRG6VRrd9W4k8GGrteAfaFygR9Ugu qnWmktulVrBUh0JOhDP8krOm9W6Y7hhEX9piz2vMuWOA8j5KG6/bxRtzfChr0TRO ifqOUafL6z8T1pTFxiIugj1wkYYndaYAMfM/YORO9tpFBNkwEBVdpArcPljrWQWu dUCfYwLVxPCBYqvOVxTU/TWTYr56LdNy7vc6Yp41XMbZulvAd5kCJ2LH41QPY8Qf Q/XJ9TiO2d4CLIGtyPfmV18QD84Zb5Lx3oIX2eIHHwzNguS7qzm68XeWO8TGpF5P W3UKP+LQ9pQg2SKpXormNFoDHjvhYYRM -----END CERTIFICATE-----Generated at Fri Dec 19 17:45:36 2025 by rpki-client