This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.mft File: ogxX9SzpjIhI9jYlDkpGcIEbUHY.mft (raw, json) Hash identifier: FSk4KHCgIngDOZhkJC3apceVCQGxEC1fQTA1239WNyA= Subject key identifier: 69:ED:92:26:EA:30:2C:EA:E3:5D:BA:ED:08:D9:F5:A6:7E:5F:37:FB Authority key identifier: A2:0C:57:F5:2C:E9:8C:88:48:F6:36:25:0E:4A:46:70:81:1B:50:76 Certificate issuer: /CN=A91E7656/serialNumber=A20C57F52CE98C8848F636250E4A4670811B5076 Certificate serial: 0C7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogxX9SzpjIhI9jYlDkpGcIEbUHY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.mft Manifest number: 0C7A Signing time: Thu 18 Dec 2025 18:14:30 +0000 Manifest this update: Thu 18 Dec 2025 18:14:30 +0000 Manifest next update: Thu 25 Dec 2025 18:14:30 +0000 Files and hashes: 1: ogxX9SzpjIhI9jYlDkpGcIEbUHY.crl (hash: FIY3nNz9K6iGfNj4/TSeWMDCQ8LgLAeE/C7r1abd6tw=) 2: AF73E1423D2011F0ACC34F2BC4F9AE02.roa (hash: G7XJUNE6LKzi0QYOkaYPQ7Vy0KiOQLYThr8A3Z0e3Ho=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.crl rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogxX9SzpjIhI9jYlDkpGcIEbUHY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3196 (0xc7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7656, serialNumber=A20C57F52CE98C8848F636250E4A4670811B5076 Validity Not Before: Dec 18 18:14:30 2025 GMT Not After : Dec 25 18:14:30 2025 GMT Subject: CN=69444486-d8cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:ea:c0:60:42:76:cf:16:28:ce:d1:af:de:a4: 5e:60:40:ef:26:b4:b2:fa:6c:1e:03:63:ab:24:8f: 10:bf:01:15:30:19:48:86:59:fd:0f:7d:f7:05:ed: b2:1c:9f:e2:d2:19:a5:d0:22:74:91:8a:ad:02:39: d7:58:55:d8:0a:61:44:21:c3:4d:ae:01:bc:af:1c: 22:97:62:d4:e4:fb:c4:89:89:b9:ed:d0:62:ad:6d: 92:6d:02:a0:14:b3:f5:5b:84:18:cd:e8:5e:c9:88: eb:ae:ed:c8:ff:87:bf:8a:4c:96:14:87:47:b3:1b: 3e:bc:82:65:ae:81:27:35:d0:f1:c7:12:71:d4:f4: 2e:a0:c7:6e:52:fb:b6:b2:8b:48:16:9f:42:2a:c4: f9:c8:06:c8:70:1a:50:ba:f7:59:74:2f:e7:1e:be: 80:9b:a0:8b:76:ce:57:2c:fd:a3:39:8a:42:2f:31: 5a:79:67:7d:e0:15:56:31:f3:35:a5:4a:89:31:65: 49:f5:f7:0c:32:70:60:ec:67:f6:a7:87:d1:4c:c2: 3e:c1:7d:07:ab:72:b2:bf:91:31:af:fc:f9:3a:e5: bb:13:27:34:1e:d4:9c:b2:fa:ce:af:4b:7c:18:be: c1:c2:c0:d9:94:90:64:19:d1:38:92:ea:c6:c2:f0: e3:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:ED:92:26:EA:30:2C:EA:E3:5D:BA:ED:08:D9:F5:A6:7E:5F:37:FB X509v3 Authority Key Identifier: keyid:A2:0C:57:F5:2C:E9:8C:88:48:F6:36:25:0E:4A:46:70:81:1B:50:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogxX9SzpjIhI9jYlDkpGcIEbUHY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:01:4c:b5:c9:2a:3b:4e:90:59:70:4b:e9:da:b6:65:f4:29: a8:c1:30:65:78:b9:a6:17:66:5a:53:ca:c2:4a:b0:5e:28:24: a2:36:32:b9:41:f0:a8:91:9b:a2:81:65:e6:6b:60:4d:19:bc: 11:2b:80:df:60:d0:9d:4c:23:97:79:e3:1b:10:fa:9e:8a:e4: d8:c8:21:1d:f2:68:9b:68:37:4b:51:e8:15:5d:fb:3d:84:df: d7:4f:55:2a:c6:4f:cb:07:5c:dd:7a:61:c8:2f:52:00:8c:60: 94:61:85:22:42:3d:76:b9:af:1e:5e:14:0e:28:b9:b0:59:6b: 90:90:23:d9:3a:92:20:4b:30:30:6d:a4:bb:3e:d8:be:9f:e4: 66:3f:78:9f:1a:4d:5a:89:51:15:f6:1b:41:24:a1:10:bf:55: 40:eb:ef:7d:d2:cf:18:7b:7b:e6:0a:7e:58:17:0c:cf:ef:dc: 88:c9:18:bb:e2:a6:04:c5:fd:f2:7e:a9:47:13:55:c1:0b:ab: b4:71:7e:14:5a:6f:8a:84:fe:54:ce:0a:a0:8b:e3:11:21:3b: 32:c0:25:02:ba:c7:51:38:d5:bc:d0:22:3f:70:bd:73:80:ae: 87:b2:9b:1f:8e:a5:58:8e:95:95:74:d7:51:ea:ea:a2:5b:6d: 6d:da:ff:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc2NTYxMTAvBgNVBAUTKEEyMEM1N0Y1MkNFOThDODg0OEY2MzYyNTBFNEE0Njcw ODExQjUwNzYwHhcNMjUxMjE4MTgxNDMwWhcNMjUxMjI1MTgxNDMwWjAYMRYwFAYD VQQDDA02OTQ0NDQ4Ni1kOGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9erAYEJ2zxYoztGv3qReYEDvJrSy+mweA2OrJI8QvwEVMBlIhln9D333Be2y HJ/i0hml0CJ0kYqtAjnXWFXYCmFEIcNNrgG8rxwil2LU5PvEiYm57dBirW2SbQKg FLP1W4QYzeheyYjrru3I/4e/ikyWFIdHsxs+vIJlroEnNdDxxxJx1PQuoMduUvu2 sotIFp9CKsT5yAbIcBpQuvdZdC/nHr6Am6CLds5XLP2jOYpCLzFaeWd94BVWMfM1 pUqJMWVJ9fcMMnBg7Gf2p4fRTMI+wX0Hq3Kyv5Exr/z5OuW7Eyc0HtScsvrOr0t8 GL7BwsDZlJBkGdE4kurGwvDjSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGntkibq MCzq41267QjZ9aZ+Xzf7MB8GA1UdIwQYMBaAFKIMV/Us6YyISPY2JQ5KRnCBG1B2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzY1Ni8wRUUzQTVCQzBD RDYxMUVBQkY1NjI1NTNDNEY5QUUwMi9vZ3hYOVN6cGpJaEk5allsRGtwR2NJRWJV SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29neFg5U3pwakloSTlqWWxEa3BHY0lFYlVIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzY1Ni8wRUUzQTVCQzBDRDYxMUVBQkY1NjI1NTNDNEY5QUUwMi9vZ3hYOVN6cGpJ aEk5allsRGtwR2NJRWJVSFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiAUy1ySo7TpBZcEvp2rZl9CmowTBleLmmF2ZaU8rCSrBeKCSiNjK5 QfCokZuigWXma2BNGbwRK4DfYNCdTCOXeeMbEPqeiuTYyCEd8mibaDdLUegVXfs9 hN/XT1Uqxk/LB1zdemHIL1IAjGCUYYUiQj12ua8eXhQOKLmwWWuQkCPZOpIgSzAw baS7Pti+n+RmP3ifGk1aiVEV9htBJKEQv1VA6+990s8Ye3vmCn5YFwzP79yIyRi7 4qYExf3yfqlHE1XBC6u0cX4UWm+KhP5Uzgqgi+MRITsywCUCusdRONW80CI/cL1z gK6HspsfjqVYjpWVdNdR6uqiW21t2v/M -----END CERTIFICATE-----Generated at Fri Dec 19 17:45:52 2025 by rpki-client