This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft File: oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft (raw, json) Hash identifier: oiYkVw9VG9lzu+h9EyOjCRVgti59P9sWGhNOqw2zUR8= Subject key identifier: 9A:22:27:2D:5E:6C:49:5A:F3:62:4B:5E:44:A6:14:BB:A6:3E:D9:21 Authority key identifier: A0:0E:02:DC:78:3F:90:84:02:1D:F9:4F:75:86:26:4E:C4:7D:34:38 Certificate issuer: /CN=A91EE5E5/serialNumber=A00E02DC783F9084021DF94F7586264EC47D3438 Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft Manifest number: C6 Signing time: Fri 19 Dec 2025 04:59:00 +0000 Manifest this update: Fri 19 Dec 2025 04:59:00 +0000 Manifest next update: Fri 26 Dec 2025 04:59:00 +0000 Files and hashes: 1: oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl (hash: gtp+QdwzBBebxRr8j1jDvWw5TT3u6bMvDy98BrjewrQ=) 2: 5D5CEDCEAFC011EFAA2E3455C4F9AE02.roa (hash: 0pzKKUDi8I5wmawXMvsnYBP2IX8f3vry9Bpy1YjoPY4=) 3: 1597CAC6B00711EF863A582EC4F9AE02.roa (hash: IqDMTyruA2o3kZ6gTDDM02dt4rvWX85dpnn386y/+D0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:58:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE5E5, serialNumber=A00E02DC783F9084021DF94F7586264EC47D3438 Validity Not Before: Dec 19 04:59:00 2025 GMT Not After : Dec 26 04:59:00 2025 GMT Subject: CN=6944db94-e893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:ae:ef:7b:d1:67:45:40:7d:c5:bd:a2:31:7e: 5b:2e:dc:9e:bd:78:2f:85:ac:7a:f8:39:e3:e2:5d: f3:2d:46:bc:b7:f0:c6:3d:cb:57:5d:15:42:fb:64: 75:ce:81:85:b4:0c:36:65:77:d8:c1:20:4c:c2:87: 43:9e:11:42:c1:60:d8:fb:60:3a:df:b4:dd:9d:04: 83:1c:73:64:b0:2b:f4:bf:7a:29:0e:96:1c:ef:7f: 2d:e0:c2:8e:e2:f9:f0:e0:a6:65:b0:ed:47:71:da: ea:6f:3e:55:ce:c0:28:1f:65:25:66:75:cb:44:fb: 9e:ba:4e:75:2d:a2:5b:4d:d8:0f:3f:e9:84:53:b1: 31:b9:2e:92:21:92:90:92:e9:f9:84:88:e1:5d:2d: 5a:78:6e:b7:eb:30:c5:5d:4c:45:c0:14:74:1a:0d: c5:c2:2f:5c:8b:e2:7c:bc:0c:8e:7f:ff:9e:c9:2d: 91:8e:8c:19:2d:4a:0b:fd:f1:5a:a5:ce:a1:67:04: c1:e6:73:80:28:6d:a7:fc:98:31:9f:0b:4b:be:9b: a7:b3:0d:fb:1d:69:f2:b0:40:50:9a:09:8e:99:41: b7:90:50:11:df:93:f5:d0:d6:2a:52:2e:b1:ea:83: 1b:7a:d6:fc:ed:2e:71:e8:60:79:7b:6f:4c:d3:26: 61:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:22:27:2D:5E:6C:49:5A:F3:62:4B:5E:44:A6:14:BB:A6:3E:D9:21 X509v3 Authority Key Identifier: keyid:A0:0E:02:DC:78:3F:90:84:02:1D:F9:4F:75:86:26:4E:C4:7D:34:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:3e:d8:9f:10:4e:cd:35:aa:b0:ce:e4:70:2e:18:ca:d6:a9: 37:ee:51:5f:ca:a2:68:b2:a6:17:dd:ca:ba:f6:8d:21:d4:e8: 02:a9:6f:ea:69:e9:c9:9d:f1:e6:6f:2e:5f:46:4c:45:23:72: c3:b4:d0:26:9a:4b:45:0e:90:34:ff:19:02:7b:43:3b:67:56: ff:2a:c1:35:b8:4a:f0:f0:70:fb:35:35:62:77:08:3b:ff:f0: 77:c7:f3:20:99:91:da:47:32:6e:45:64:18:73:2b:3e:81:c1: 82:13:41:5c:06:9b:a7:a5:6d:3a:f9:a7:76:5f:fc:b3:32:8e: a0:46:0f:79:c2:bf:f5:36:1f:d8:ef:9e:1a:4c:e0:70:8e:e3: 1f:a6:71:1f:27:b8:bd:a4:d0:e0:9d:98:66:1c:0e:80:39:df: c0:63:3e:ad:99:55:3c:61:55:5e:a0:ef:27:8e:46:70:a0:a3: d9:f5:87:78:2d:90:e8:f6:61:a3:c1:bb:c8:20:fa:50:9b:29: 9b:3c:f7:49:30:d9:4a:eb:aa:b8:8b:00:ca:cd:07:9a:39:28: 2d:4b:a3:5d:78:cd:e0:69:82:95:14:b2:2a:6b:97:e3:44:62: 1e:ab:ce:2e:01:b9:8f:d9:01:ec:b2:0b:f9:e4:b5:75:e2:54: e0:50:8d:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU1RTUxMTAvBgNVBAUTKEEwMEUwMkRDNzgzRjkwODQwMjFERjk0Rjc1ODYyNjRF QzQ3RDM0MzgwHhcNMjUxMjE5MDQ1OTAwWhcNMjUxMjI2MDQ1OTAwWjAYMRYwFAYD VQQDDA02OTQ0ZGI5NC1lODkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk67ve9FnRUB9xb2iMX5bLtyevXgvhax6+Dnj4l3zLUa8t/DGPctXXRVC+2R1 zoGFtAw2ZXfYwSBMwodDnhFCwWDY+2A637TdnQSDHHNksCv0v3opDpYc738t4MKO 4vnw4KZlsO1Hcdrqbz5VzsAoH2UlZnXLRPueuk51LaJbTdgPP+mEU7ExuS6SIZKQ kun5hIjhXS1aeG636zDFXUxFwBR0Gg3Fwi9ci+J8vAyOf/+eyS2RjowZLUoL/fFa pc6hZwTB5nOAKG2n/JgxnwtLvpunsw37HWnysEBQmgmOmUG3kFAR35P10NYqUi6x 6oMbetb87S5x6GB5e29M0yZhKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJoiJy1e bEla82JLXkSmFLumPtkhMB8GA1UdIwQYMBaAFKAOAtx4P5CEAh35T3WGJk7EfTQ4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTVFNS9GOTdCQzMwMkFG QkYxMUVGQTI4QTM2NTRDNEY5QUUwMi9vQTRDM0hnX2tJUUNIZmxQZFlZbVRzUjlO RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29BNEMzSGdfa0lRQ0hmbFBkWVltVHNSOU5EZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTVFNS9GOTdCQzMwMkFGQkYxMUVGQTI4QTM2NTRDNEY5QUUwMi9vQTRDM0hnX2tJ UUNIZmxQZFlZbVRzUjlORGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdPtifEE7NNaqwzuRwLhjK1qk37lFfyqJosqYX3cq69o0h1OgCqW/q aenJnfHmby5fRkxFI3LDtNAmmktFDpA0/xkCe0M7Z1b/KsE1uErw8HD7NTVidwg7 //B3x/MgmZHaRzJuRWQYcys+gcGCE0FcBpunpW06+ad2X/yzMo6gRg95wr/1Nh/Y 754aTOBwjuMfpnEfJ7i9pNDgnZhmHA6AOd/AYz6tmVU8YVVeoO8njkZwoKPZ9Yd4 LZDo9mGjwbvIIPpQmymbPPdJMNlK66q4iwDKzQeaOSgtS6NdeM3gaYKVFLIqa5fj RGIeq84uAbmP2QHssgv55LV14lTgUI3O -----END CERTIFICATE-----Generated at Fri Dec 19 19:03:11 2025 by rpki-client