This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.mft File: oVZKa9a5Cg-he_V9i-rJ4pJZves.mft (raw, json) Hash identifier: 6OsYER6JNBxgp7UZgech5nKXOhKfv9a7LuxMLiDU8tA= Subject key identifier: F6:25:05:73:6A:39:E7:7E:1C:63:74:E7:0C:F6:8D:8F:07:BF:E0:C5 Authority key identifier: A1:56:4A:6B:D6:B9:0A:0F:A1:7B:F5:7D:8B:EA:C9:E2:92:59:BD:EB Certificate issuer: /CN=A91F61DA/serialNumber=A1564A6BD6B90A0FA17BF57D8BEAC9E29259BDEB Certificate serial: 0D0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oVZKa9a5Cg-he_V9i-rJ4pJZves.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.mft Manifest number: 0D04 Signing time: Thu 18 Dec 2025 17:50:56 +0000 Manifest this update: Thu 18 Dec 2025 17:50:56 +0000 Manifest next update: Thu 25 Dec 2025 17:50:56 +0000 Files and hashes: 1: oVZKa9a5Cg-he_V9i-rJ4pJZves.crl (hash: skpxRkHRZi2LOfuMZwxGbPkfx2apdL3kIhZL9YtFM6k=) 2: EA18D5547D8F11EC8E894A1DC4F9AE02.roa (hash: Anh2GximFPk7REReNBXULcTH3P6lLG5IbasX9kKM4Fs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.crl rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oVZKa9a5Cg-he_V9i-rJ4pJZves.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:50:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3341 (0xd0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F61DA, serialNumber=A1564A6BD6B90A0FA17BF57D8BEAC9E29259BDEB Validity Not Before: Dec 18 17:50:56 2025 GMT Not After : Dec 25 17:50:56 2025 GMT Subject: CN=69443f00-c1d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:bb:46:d5:2b:63:d3:92:fc:1d:57:42:8c:2b: 58:0c:8e:55:21:a9:af:8b:e1:9a:8c:a2:1d:36:46: 29:e7:03:77:02:c7:a1:c3:28:3e:92:28:a5:7f:8a: 91:34:57:a4:03:3b:f1:10:08:85:75:1c:db:c0:cd: 23:c5:2d:fd:d8:71:61:c7:91:67:a1:3c:ff:83:e4: db:6b:0b:81:41:7b:9d:2c:53:da:bb:9c:55:fb:9f: d4:00:b5:7a:94:7f:8e:0f:f9:78:fd:b3:ad:df:0b: e2:da:6c:25:79:83:d4:90:a2:83:7f:55:ab:ae:fb: 19:cf:7f:d2:e6:f1:d8:53:53:89:18:3d:5f:51:3d: a6:a2:ac:08:11:9f:dd:ba:c3:c6:8b:b1:37:7e:41: 90:46:02:fd:92:aa:ff:dc:d3:c6:14:0a:90:ed:17: 47:08:e1:79:12:19:ea:c1:16:27:b3:cd:56:81:91: 8d:5d:22:cb:a6:1e:e3:31:da:4c:f9:c3:53:08:64: cf:f7:98:a8:37:19:76:a0:5a:36:13:52:db:ca:c8: a5:07:7d:ca:9c:57:cc:19:e2:6e:52:06:09:06:05: 49:c3:29:e3:be:4f:9c:6f:91:60:33:dd:43:0c:b2: 0f:7f:5c:14:47:9b:55:24:b2:79:b1:73:fa:d9:b1: 4d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:25:05:73:6A:39:E7:7E:1C:63:74:E7:0C:F6:8D:8F:07:BF:E0:C5 X509v3 Authority Key Identifier: keyid:A1:56:4A:6B:D6:B9:0A:0F:A1:7B:F5:7D:8B:EA:C9:E2:92:59:BD:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oVZKa9a5Cg-he_V9i-rJ4pJZves.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:7f:e2:2f:8b:7a:80:ed:5a:23:12:1e:14:e1:06:9d:8b:be: 48:bf:85:12:ff:ee:f3:1e:8e:77:f2:bf:c0:18:5f:d5:5e:0b: 0f:f5:b1:fb:e4:d7:6a:b4:e1:23:85:74:c2:55:7d:b1:ff:20: 5a:01:00:36:f1:10:b2:03:a1:03:8d:06:cb:21:08:05:ea:37: ec:d9:a8:f9:57:7f:33:96:91:93:5f:fb:1e:5a:1a:e5:62:b8: 2b:98:76:d9:da:a8:4b:79:4a:b0:db:2e:de:b1:66:ef:a7:4a: 3f:90:ba:93:59:da:82:8c:63:95:43:aa:e8:3b:f8:66:ad:9b: 26:e8:7b:91:3e:ba:79:09:9d:a7:cd:db:9c:04:92:b6:4c:8e: ef:5d:f2:00:1a:3b:89:57:67:40:b5:14:ec:26:70:aa:55:e6: a8:f6:9a:52:0e:1f:53:81:57:5a:2c:c3:6e:1f:25:75:38:9a: bc:13:1e:97:9c:0f:5c:01:3d:b7:b1:b8:ef:55:5d:ce:3c:f1: 10:91:ff:59:68:85:9b:b4:ff:85:26:d3:c9:4c:3f:21:59:74: 08:38:55:af:f3:08:7d:a4:8e:10:2d:83:e5:43:04:af:ba:28: 81:46:5f:6c:9d:22:b1:a9:d7:cd:f3:33:27:5d:1b:76:15:18: 8f:f1:92:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYxREExMTAvBgNVBAUTKEExNTY0QTZCRDZCOTBBMEZBMTdCRjU3RDhCRUFDOUUy OTI1OUJERUIwHhcNMjUxMjE4MTc1MDU2WhcNMjUxMjI1MTc1MDU2WjAYMRYwFAYD VQQDDA02OTQ0M2YwMC1jMWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlLtG1Stj05L8HVdCjCtYDI5VIamvi+GajKIdNkYp5wN3Asehwyg+kiilf4qR NFekAzvxEAiFdRzbwM0jxS392HFhx5FnoTz/g+TbawuBQXudLFPau5xV+5/UALV6 lH+OD/l4/bOt3wvi2mwleYPUkKKDf1WrrvsZz3/S5vHYU1OJGD1fUT2moqwIEZ/d usPGi7E3fkGQRgL9kqr/3NPGFAqQ7RdHCOF5EhnqwRYns81WgZGNXSLLph7jMdpM +cNTCGTP95ioNxl2oFo2E1LbysilB33KnFfMGeJuUgYJBgVJwynjvk+cb5FgM91D DLIPf1wUR5tVJLJ5sXP62bFNJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPYlBXNq Oed+HGN05wz2jY8Hv+DFMB8GA1UdIwQYMBaAFKFWSmvWuQoPoXv1fYvqyeKSWb3r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjFEQS8xN0M4MUZEMEY0 MUUxMUU5QTgzNDNBNzRDNEY5QUUwMi9vVlpLYTlhNUNnLWhlX1Y5aS1ySjRwSlp2 ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29WWkthOWE1Q2ctaGVfVjlpLXJKNHBKWnZlcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjFEQS8xN0M4MUZEMEY0MUUxMUU5QTgzNDNBNzRDNEY5QUUwMi9vVlpLYTlhNUNn LWhlX1Y5aS1ySjRwSlp2ZXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcf+Ivi3qA7VojEh4U4Qadi75Iv4US/+7zHo538r/AGF/VXgsP9bH7 5NdqtOEjhXTCVX2x/yBaAQA28RCyA6EDjQbLIQgF6jfs2aj5V38zlpGTX/seWhrl YrgrmHbZ2qhLeUqw2y7esWbvp0o/kLqTWdqCjGOVQ6roO/hmrZsm6HuRPrp5CZ2n zducBJK2TI7vXfIAGjuJV2dAtRTsJnCqVeao9ppSDh9TgVdaLMNuHyV1OJq8Ex6X nA9cAT23sbjvVV3OPPEQkf9ZaIWbtP+FJtPJTD8hWXQIOFWv8wh9pI4QLYPlQwSv uiiBRl9snSKxqdfN8zMnXRt2FRiP8ZKN -----END CERTIFICATE-----Generated at Fri Dec 19 17:48:02 2025 by rpki-client