This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft File: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft (raw, json) Hash identifier: EJj608IsD/DJ/jZUiE4Thjpv4a6QEPAHUAutjbh1Ldc= Subject key identifier: 6D:A6:5D:E4:EC:45:25:91:8F:CD:4A:A6:71:41:05:E3:1D:E5:DE:F3 Authority key identifier: 3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 Certificate issuer: /CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Certificate serial: 2252 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft Manifest number: 2206 Signing time: Sat 20 Dec 2025 15:43:54 +0000 Manifest this update: Sat 20 Dec 2025 15:43:54 +0000 Manifest next update: Sat 27 Dec 2025 15:43:54 +0000 Files and hashes: 1: Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl (hash: MQPEcOuD2OS2RtWm2WSm1Iqmmm7BQHwhW6uPk6JZjEk=) 2: 11DE1CDA467611EC988CDC09C4F9AE02.roa (hash: VRoVKZ5apQPibJfYuezBj0SVEXkfapSpmG0vCNALPFk=) 3: 586B33AEF44611EBA78C117AC4F9AE02.roa (hash: W3kQqETMCmWx1rkG4UQFdMD9AvtHip25lMvzH/UT/O4=) 4: 63BFE4C0292811EEAF894530C4F9AE02.roa (hash: 8CfQ0/1GwUUp0J0kvZBXA7fizuzpoZuw6UptgYm1mO8=) 5: 5F649D88F27E11EE8704D12FC4F9AE02.roa (hash: 9qbnU5NoZnRKr5UON4q3pztK39xd0U7HOmGKLDSw1XM=) 6: 5EDC2B56F27E11EE8704D12FC4F9AE02.roa (hash: IkaJ8i577C8HJn9L10GXsDg7dnEgDNc7V/0u1lmvtUc=) 7: 2D477384D9C711F098E1B70271D3641D.roa (hash: DE+aX0zYPSkZlOiHZwp9PIbSMR2LTCu2LXvGYzXa9NQ=) 8: A73C0BF6D93511E6B2617F7BC4F9AE02.roa (hash: tha3MuUqAY4uta6oQkpRf/6b/EDrjv+89kT9R3U6DBE=) 9: 5480D316764D11EA8CB5C039C4F9AE02.roa (hash: pHTu337dbSxJnT3CyDhgI/d9oBjNP9lN6T+b/cHszRk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8786 (0x2252) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0EBF, serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Validity Not Before: Dec 20 15:43:54 2025 GMT Not After : Dec 27 15:43:54 2025 GMT Subject: CN=6946c43a-fc81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:3f:57:b6:1a:45:ae:b0:48:1f:51:92:24:69: a8:00:42:cb:6e:e6:1f:8d:0c:3d:cb:35:43:b8:d3: 4c:a8:17:c4:aa:78:74:45:15:7a:75:06:ab:9f:c0: 1c:9a:65:90:10:4e:94:10:37:77:74:0b:7e:93:de: b6:64:24:25:6e:76:c2:50:d6:2a:60:ba:f8:03:f3: 25:d7:7d:f2:3a:fc:cd:b1:6b:3f:e3:aa:3f:af:b3: 9c:13:06:7b:8e:b4:91:9a:a7:f9:9e:21:68:db:f1: ff:0f:e9:e6:69:05:c6:96:31:48:a4:46:71:34:48: 1c:26:05:2a:76:6a:3f:cc:21:85:f8:2f:21:1a:6d: 68:33:10:5c:06:d4:f2:04:62:66:b8:e5:b3:0c:8e: 55:fc:cb:d7:71:d9:34:b8:7a:48:12:fc:9b:83:ae: c8:7c:f3:4d:46:2c:fb:ac:0a:2a:d1:ea:1c:86:85: d6:c4:09:ed:db:d9:2b:8e:ef:c7:be:78:d0:dc:cd: cf:52:8b:bc:03:8a:ba:18:55:46:2f:5f:fe:b4:82: 67:18:88:99:2c:b8:03:8f:bf:87:8c:e9:5d:bb:2b: e4:35:6f:03:53:e1:ac:45:16:85:47:6f:a2:e0:56: da:4d:b8:34:cf:f9:f3:a4:dc:7b:9c:5a:72:5a:26: c0:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:A6:5D:E4:EC:45:25:91:8F:CD:4A:A6:71:41:05:E3:1D:E5:DE:F3 X509v3 Authority Key Identifier: keyid:3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:1e:66:2a:b6:0e:2b:95:9c:1e:60:33:a8:a4:ed:af:fa:73: 25:3b:05:e9:5b:b0:1e:d1:ac:63:6b:ee:9d:2d:3c:19:84:38: 8e:d8:cf:1d:82:81:29:56:6a:dc:02:8a:bc:72:07:f4:f4:60: 9b:79:e0:d5:c0:92:ab:05:09:91:03:29:e0:38:be:07:57:12: 25:87:b1:99:ac:03:9c:8f:e7:fa:4b:e0:fe:21:e8:65:a0:f3: e1:5b:8b:d7:d3:1d:c9:b7:90:c7:e3:9d:a7:b0:a6:cc:02:0b: 56:4e:82:1e:97:7c:4a:49:a7:50:19:0a:8a:a8:2b:69:b9:36: ca:ba:2a:22:93:93:25:fb:18:13:16:2d:4b:bf:48:20:85:91: 53:34:a9:81:b7:96:09:02:3e:fd:25:2b:16:08:bd:70:95:09: b5:71:b4:44:85:bf:1b:fb:67:8d:ff:c8:97:c6:a6:bc:d5:2a: ee:9d:93:75:93:0e:14:5e:28:88:a6:b9:3a:df:ba:45:fd:b8: 11:44:20:04:9f:fc:8b:64:03:af:5f:44:7d:47:91:5a:c4:8e: d2:b5:48:ec:9b:e5:03:78:c5:24:6e:34:1b:a5:ba:c7:98:58: c5:1b:1f:3c:ff:ad:36:86:b0:58:cc:3b:fc:bb:ba:9c:25:c6: 41:ce:ab:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBFQkYxMTAvBgNVBAUTKDNBQ0NCNjk1MzlBQzlGNDI4OEJDRDBGMEE1NDI1MEQ1 OTJGNTQwRDQwHhcNMjUxMjIwMTU0MzU0WhcNMjUxMjI3MTU0MzU0WjAYMRYwFAYD VQQDDA02OTQ2YzQzYS1mYzgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiz9XthpFrrBIH1GSJGmoAELLbuYfjQw9yzVDuNNMqBfEqnh0RRV6dQarn8Ac mmWQEE6UEDd3dAt+k962ZCQlbnbCUNYqYLr4A/Ml133yOvzNsWs/46o/r7OcEwZ7 jrSRmqf5niFo2/H/D+nmaQXGljFIpEZxNEgcJgUqdmo/zCGF+C8hGm1oMxBcBtTy BGJmuOWzDI5V/MvXcdk0uHpIEvybg67IfPNNRiz7rAoq0eochoXWxAnt29krju/H vnjQ3M3PUou8A4q6GFVGL1/+tIJnGIiZLLgDj7+HjOlduyvkNW8DU+GsRRaFR2+i 4FbaTbg0z/nzpNx7nFpyWibAnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG2mXeTs RSWRj81KpnFBBeMd5d7zMB8GA1UdIwQYMBaAFDrMtpU5rJ9CiLzQ8KVCUNWS9UDU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEVCRi81Rjg0RDdEOERC ODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24wS0l2TkR3cFVKUTFaTDFR TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09zeTJsVG1zbjBLSXZORHdwVUpRMVpMMVFOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEVCRi81Rjg0RDdEOERCODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24w S0l2TkR3cFVKUTFaTDFRTlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBHmYqtg4rlZweYDOopO2v+nMlOwXpW7Ae0axja+6dLTwZhDiO2M8d goEpVmrcAoq8cgf09GCbeeDVwJKrBQmRAyngOL4HVxIlh7GZrAOcj+f6S+D+Iehl oPPhW4vX0x3Jt5DH452nsKbMAgtWToIel3xKSadQGQqKqCtpuTbKuioik5Ml+xgT Fi1Lv0gghZFTNKmBt5YJAj79JSsWCL1wlQm1cbREhb8b+2eN/8iXxqa81SrunZN1 kw4UXiiIprk637pF/bgRRCAEn/yLZAOvX0R9R5FaxI7StUjsm+UDeMUkbjQbpbrH mFjFGx88/602hrBYzDv8u7qcJcZBzqsM -----END CERTIFICATE-----Generated at Sat Dec 20 20:54:56 2025 by rpki-client