This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft File: oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft (raw, json) Hash identifier: WHmlavSRXuzfH0HNLEK9nCqHOqd+p2Vs136fA00eios= Subject key identifier: 3B:5A:25:22:39:DE:D6:F6:AE:E3:27:EA:7F:91:D2:02:57:22:2C:AD Authority key identifier: A1:8C:D3:FE:82:AD:21:80:3C:1F:0B:13:2D:AD:83:D1:C3:54:93:4B Certificate issuer: /CN=A91F6D55/serialNumber=A18CD3FE82AD21803C1F0B132DAD83D1C354934B Certificate serial: 02CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft Manifest number: 02C6 Signing time: Fri 19 Dec 2025 00:37:22 +0000 Manifest this update: Fri 19 Dec 2025 00:37:22 +0000 Manifest next update: Fri 26 Dec 2025 00:37:22 +0000 Files and hashes: 1: oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl (hash: EnmBMhRTTIL0vuJv3MhsklfzVLGgLuRcB21oh6/Z4LA=) 2: 929D0EB616A611ED86A3EF0CC4F9AE02.roa (hash: 00Bb5TLyF/J2CWzHDjxZA81Dz6rMiVp4bUBC6ncoYxk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:37:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 714 (0x2ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6D55, serialNumber=A18CD3FE82AD21803C1F0B132DAD83D1C354934B Validity Not Before: Dec 19 00:37:22 2025 GMT Not After : Dec 26 00:37:22 2025 GMT Subject: CN=69449e42-b8ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:c8:b7:22:a1:2d:06:eb:2a:31:2b:5a:61:a1: c3:46:de:81:7b:00:1a:c0:84:b1:aa:48:3d:0d:ee: 09:1c:75:26:ea:2d:9c:b7:f6:34:25:ee:7a:38:93: 2e:6c:5e:3c:08:2d:1d:a2:06:c4:3e:cb:24:ea:35: 54:aa:bd:eb:f9:6a:32:30:3e:b8:b0:e0:39:53:d7: ec:e5:e4:fd:34:ca:03:8a:b5:72:64:12:5c:14:fd: 29:d3:5f:98:81:aa:28:40:bd:d5:a1:45:8d:45:bb: ac:18:a3:a0:0c:45:1d:ce:d3:d3:19:7c:2e:ac:c0: cc:a8:e9:dd:25:a1:0f:1f:3c:33:88:b2:c5:9e:88: 11:8d:9f:bd:9c:2b:92:c8:0c:3c:4f:9b:59:a7:af: 4a:6c:f0:d7:71:11:64:49:b0:a6:32:cb:80:a4:dd: 1c:15:b0:8d:a6:64:49:b3:03:85:1c:44:c5:3f:aa: 75:0b:72:09:55:11:21:4e:ce:75:51:42:ff:85:1c: 49:4e:ca:3c:64:61:fc:1c:6a:e1:2a:a5:d6:fd:23: 37:72:9f:23:8b:31:19:bd:a9:6b:0a:2b:3e:91:7f: d7:e3:a9:2f:51:66:b6:f8:0a:6b:69:96:0b:f0:23: 6c:77:c7:4a:85:2c:aa:55:05:c2:0f:f7:18:69:fc: 42:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:5A:25:22:39:DE:D6:F6:AE:E3:27:EA:7F:91:D2:02:57:22:2C:AD X509v3 Authority Key Identifier: keyid:A1:8C:D3:FE:82:AD:21:80:3C:1F:0B:13:2D:AD:83:D1:C3:54:93:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:5f:07:0d:4e:5d:c0:3d:2c:6f:a1:ba:41:84:72:a3:6c:d1: 9b:c9:0f:57:5a:0e:dc:4e:78:b8:96:6f:48:ae:6c:d1:2d:7b: 24:ba:db:0f:ef:36:fa:7d:d9:5f:0b:e6:0d:f9:0a:40:4a:35: b9:2c:d1:c1:e0:13:d9:40:da:e6:cb:9f:a5:c7:02:6e:22:8a: c3:dd:7e:49:e7:49:e1:57:20:d2:f0:46:9f:74:ab:e4:97:cb: 75:c2:6c:c8:5a:fe:77:e6:de:3e:21:54:d7:ea:49:9a:cb:03: ba:65:7c:bc:19:b7:b4:36:d6:67:74:09:21:b3:e3:4d:3e:de: 1e:e4:2a:19:4b:46:b6:68:f4:b2:8c:81:2f:5f:de:cc:26:06: 76:d2:7b:9e:de:41:e9:ae:a8:e1:99:4d:9f:23:48:5f:aa:b9: e8:85:c8:a6:58:93:de:54:52:bd:75:37:53:68:42:be:c9:87: 2b:d1:46:a2:c8:82:13:b4:01:65:ab:1d:a3:c9:08:41:93:8b: a7:69:9b:4a:64:1b:18:b1:97:33:f8:3e:ca:89:ed:ce:60:84: 47:5c:f9:c8:09:c0:ba:ae:87:cf:e9:18:66:2d:4f:2d:98:33: 3a:51:02:4c:d4:7c:c1:fa:0b:a4:ae:f0:b6:c8:09:22:1a:d3: 3a:0b:29:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZENTUxMTAvBgNVBAUTKEExOENEM0ZFODJBRDIxODAzQzFGMEIxMzJEQUQ4M0Qx QzM1NDkzNEIwHhcNMjUxMjE5MDAzNzIyWhcNMjUxMjI2MDAzNzIyWjAYMRYwFAYD VQQDDA02OTQ0OWU0Mi1iOGNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ci3IqEtBusqMStaYaHDRt6BewAawISxqkg9De4JHHUm6i2ct/Y0Je56OJMu bF48CC0dogbEPssk6jVUqr3r+WoyMD64sOA5U9fs5eT9NMoDirVyZBJcFP0p01+Y gaooQL3VoUWNRbusGKOgDEUdztPTGXwurMDMqOndJaEPHzwziLLFnogRjZ+9nCuS yAw8T5tZp69KbPDXcRFkSbCmMsuApN0cFbCNpmRJswOFHETFP6p1C3IJVREhTs51 UUL/hRxJTso8ZGH8HGrhKqXW/SM3cp8jizEZvalrCis+kX/X46kvUWa2+ApraZYL 8CNsd8dKhSyqVQXCD/cYafxC/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDtaJSI5 3tb2ruMn6n+R0gJXIiytMB8GA1UdIwQYMBaAFKGM0/6CrSGAPB8LEy2tg9HDVJNL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkQ1NS8yQkE3Mzk1RTE2 QTQxMUVEQTgzODExMEJDNEY5QUUwMi9vWXpUX29LdElZQThId3NUTGEyRDBjTlVr MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29ZelRfb0t0SVlBOEh3c1RMYTJEMGNOVWswcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkQ1NS8yQkE3Mzk1RTE2QTQxMUVEQTgzODExMEJDNEY5QUUwMi9vWXpUX29LdElZ QThId3NUTGEyRDBjTlVrMHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIXwcNTl3APSxvobpBhHKjbNGbyQ9XWg7cTni4lm9IrmzRLXskutsP 7zb6fdlfC+YN+QpASjW5LNHB4BPZQNrmy5+lxwJuIorD3X5J50nhVyDS8EafdKvk l8t1wmzIWv535t4+IVTX6kmaywO6ZXy8Gbe0NtZndAkhs+NNPt4e5CoZS0a2aPSy jIEvX97MJgZ20nue3kHprqjhmU2fI0hfqrnohcimWJPeVFK9dTdTaEK+yYcr0Uai yIITtAFlqx2jyQhBk4unaZtKZBsYsZcz+D7Kie3OYIRHXPnICcC6rofP6RhmLU8t mDM6UQJM1HzB+gukrvC2yAkiGtM6CylB -----END CERTIFICATE-----Generated at Fri Dec 19 23:54:41 2025 by rpki-client