This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft File: OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft (raw, json) Hash identifier: dwTJpJuTE2Kzp6P9kLpUJIQ46k/qV1S7yYedoUDWiUs= Subject key identifier: 89:6C:8E:9B:1B:05:2C:5E:18:47:EA:84:B7:B9:EF:C0:70:98:18:E5 Authority key identifier: 3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85 Certificate issuer: /CN=A91E6856/serialNumber=3A6823A10F03BFACA4068D3398444F3641085485 Certificate serial: 01B7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft Manifest number: 01B3 Signing time: Thu 18 Dec 2025 17:28:45 +0000 Manifest this update: Thu 18 Dec 2025 17:28:44 +0000 Manifest next update: Thu 25 Dec 2025 17:28:44 +0000 Files and hashes: 1: OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl (hash: ZMCqw0/EtdgcobskrWCCoEyo/6FMQZvXjcbhsggd9ew=) 2: B2C9B10A881311EE8CFB5C43C4F9AE02.roa (hash: a5Y/yZKxW3IrKI0721MYV+ivPl5QgwwgGyen+XzCmBY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:28:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 439 (0x1b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6856, serialNumber=3A6823A10F03BFACA4068D3398444F3641085485 Validity Not Before: Dec 18 17:28:44 2025 GMT Not After : Dec 25 17:28:44 2025 GMT Subject: CN=694439cc-2928 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:f6:53:8e:7d:b5:20:5c:b4:9a:1c:c3:64:6f: 5d:d4:81:94:3b:91:72:ce:3c:1b:23:bf:84:6d:5b: aa:98:2f:64:d1:99:e4:72:5b:8f:34:18:c0:22:aa: c8:ed:54:a9:70:5b:b8:30:ce:5a:1c:d5:ff:ac:d6: 36:19:c9:03:c8:6e:b3:56:d9:ea:31:9e:94:95:17: 86:d1:b5:43:f9:82:03:e0:54:1b:33:2c:72:8d:06: 3e:1d:14:31:a2:9d:e8:3d:48:b8:6c:c4:f6:46:ab: 23:9d:5b:cb:7e:d9:b7:d0:44:c6:7b:ef:c9:c0:cf: a8:93:5b:8d:35:74:3f:62:35:7f:8e:06:cf:16:16: af:24:03:dd:23:1c:d3:1c:84:01:98:6e:47:f6:81: d5:4f:9e:73:11:4b:6a:fa:16:ee:bf:94:f3:8e:47: b7:a0:67:3c:cb:1e:eb:0e:f7:a2:08:fc:3d:f8:6c: 12:7c:46:08:95:9c:51:6e:92:4f:b7:b9:2b:ad:3c: 48:ac:9a:f2:cb:a1:cd:b0:95:31:6e:a9:09:03:b1: 78:fd:7d:7f:fa:4b:03:4f:ef:76:b3:e8:e8:38:94: e1:09:76:55:05:39:12:ed:81:fd:c8:f2:c5:7e:68: b6:58:ad:2b:b6:6a:f8:71:be:d1:cb:5c:6c:7d:da: 9c:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:6C:8E:9B:1B:05:2C:5E:18:47:EA:84:B7:B9:EF:C0:70:98:18:E5 X509v3 Authority Key Identifier: keyid:3A:68:23:A1:0F:03:BF:AC:A4:06:8D:33:98:44:4F:36:41:08:54:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6856/2DDB426E486311EEBC0BD213C4F9AE02/OmgjoQ8Dv6ykBo0zmERPNkEIVIU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:4a:b9:a4:ad:fc:11:67:d0:8b:e5:be:7a:ee:00:d4:a1:c9: 0b:bf:3c:ec:ef:fb:fb:9c:bf:c2:cb:95:ff:af:5c:0a:41:9d: 8b:ac:f6:02:43:14:ad:6e:04:b6:c8:82:49:04:d2:5b:e9:61: de:8a:b8:87:c1:b5:5d:7b:07:0c:60:51:c5:13:aa:df:03:fd: 16:f8:c8:82:fd:a1:e4:24:de:48:72:60:07:00:a7:82:04:97: f6:df:69:78:81:bb:be:16:b3:c3:f6:5c:08:4a:43:48:07:3f: 5e:5a:8b:c8:88:d7:d4:3a:ea:fc:5f:81:95:99:0d:c9:89:cd: 10:4c:5e:55:b3:09:c4:c3:62:2a:cd:65:d1:ba:fd:02:b2:b6: 11:84:6c:ef:61:5c:0d:d0:52:4e:9c:cd:d8:ae:3b:fd:c7:14: d0:82:fa:79:71:ed:09:4a:8d:7e:a4:e1:87:16:cb:76:ac:b5: 2e:d0:b8:4e:a8:f2:d6:70:59:d9:8a:f4:b9:51:86:c1:5b:8d: c8:24:b4:d4:33:28:b3:33:37:d7:6e:d7:08:af:04:70:e5:3d: 50:84:be:e5:3a:bd:56:16:93:b9:9a:b2:f9:6b:47:33:b4:75: 6b:b2:33:ff:7b:01:59:50:bb:40:f3:11:51:8f:ef:76:ac:2f: e0:50:f5:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY4NTYxMTAvBgNVBAUTKDNBNjgyM0ExMEYwM0JGQUNBNDA2OEQzMzk4NDQ0RjM2 NDEwODU0ODUwHhcNMjUxMjE4MTcyODQ0WhcNMjUxMjI1MTcyODQ0WjAYMRYwFAYD VQQDDA02OTQ0MzljYy0yOTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz/ZTjn21IFy0mhzDZG9d1IGUO5FyzjwbI7+EbVuqmC9k0ZnkcluPNBjAIqrI 7VSpcFu4MM5aHNX/rNY2GckDyG6zVtnqMZ6UlReG0bVD+YID4FQbMyxyjQY+HRQx op3oPUi4bMT2RqsjnVvLftm30ETGe+/JwM+ok1uNNXQ/YjV/jgbPFhavJAPdIxzT HIQBmG5H9oHVT55zEUtq+hbuv5Tzjke3oGc8yx7rDveiCPw9+GwSfEYIlZxRbpJP t7krrTxIrJryy6HNsJUxbqkJA7F4/X1/+ksDT+92s+joOJThCXZVBTkS7YH9yPLF fmi2WK0rtmr4cb7Ry1xsfdqcCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIlsjpsb BSxeGEfqhLe578BwmBjlMB8GA1UdIwQYMBaAFDpoI6EPA7+spAaNM5hETzZBCFSF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjg1Ni8yRERCNDI2RTQ4 NjMxMUVFQkMwQkQyMTNDNEY5QUUwMi9PbWdqb1E4RHY2eWtCbzB6bUVSUE5rRUlW SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09tZ2pvUThEdjZ5a0JvMHptRVJQTmtFSVZJVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Njg1Ni8yRERCNDI2RTQ4NjMxMUVFQkMwQkQyMTNDNEY5QUUwMi9PbWdqb1E4RHY2 eWtCbzB6bUVSUE5rRUlWSVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcSrmkrfwRZ9CL5b567gDUockLvzzs7/v7nL/Cy5X/r1wKQZ2LrPYC QxStbgS2yIJJBNJb6WHeiriHwbVdewcMYFHFE6rfA/0W+MiC/aHkJN5IcmAHAKeC BJf232l4gbu+FrPD9lwISkNIBz9eWovIiNfUOur8X4GVmQ3Jic0QTF5VswnEw2Iq zWXRuv0CsrYRhGzvYVwN0FJOnM3Yrjv9xxTQgvp5ce0JSo1+pOGHFst2rLUu0LhO qPLWcFnZivS5UYbBW43IJLTUMyizMzfXbtcIrwRw5T1QhL7lOr1WFpO5mrL5a0cz tHVrsjP/ewFZULtA8xFRj+92rC/gUPWY -----END CERTIFICATE-----Generated at Sat Dec 20 00:56:21 2025 by rpki-client