This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft File: oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft (raw, json) Hash identifier: jF0Maw2wSfXUJexNtSNegRf57fOjFiIxC0HKewdDtRY= Subject key identifier: EB:63:99:6D:62:0B:E1:00:2C:74:9F:4B:55:C0:D2:C9:56:76:0C:98 Authority key identifier: A1:8C:D3:FE:82:AD:21:80:3C:1F:0B:13:2D:AD:83:D1:C3:54:93:4B Certificate issuer: /CN=A91F6D55/serialNumber=A18CD3FE82AD21803C1F0B132DAD83D1C354934B Certificate serial: 02CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft Manifest number: 02C8 Signing time: Tue 23 Dec 2025 00:23:36 +0000 Manifest this update: Tue 23 Dec 2025 00:23:35 +0000 Manifest next update: Tue 30 Dec 2025 00:23:35 +0000 Files and hashes: 1: oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl (hash: NDGq5Q77rr3ff4+TwGyv+srHasNJuJpkGTQxSvcvnts=) 2: 929D0EB616A611ED86A3EF0CC4F9AE02.roa (hash: 00Bb5TLyF/J2CWzHDjxZA81Dz6rMiVp4bUBC6ncoYxk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:23:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 716 (0x2cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6D55, serialNumber=A18CD3FE82AD21803C1F0B132DAD83D1C354934B Validity Not Before: Dec 23 00:23:35 2025 GMT Not After : Dec 30 00:23:35 2025 GMT Subject: CN=6949e108-0b4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:aa:ad:61:cc:11:b7:44:5f:5d:57:f6:0a:01: 9b:c1:dd:6f:7f:d5:ca:c1:cf:6f:92:95:35:93:a4: fa:93:53:a8:c9:16:59:d8:a1:50:0d:24:79:00:fc: b0:6c:25:bf:1e:ef:98:3a:b1:10:eb:4b:6e:da:53: 64:7e:65:fe:cd:70:29:74:4e:ef:73:1c:cf:28:bc: 0e:d7:2c:f3:f9:17:0f:cd:a3:b5:91:4a:e9:37:e0: fe:a6:31:a8:b8:96:df:57:5f:d5:c6:80:bf:6b:5f: 67:50:2f:6f:01:9c:a5:7e:04:f2:39:f0:03:a4:fe: 72:38:6f:ec:3c:11:a7:0c:b8:cb:65:e5:5b:58:48: 8f:7d:f8:35:9b:24:db:32:75:a2:61:66:49:cb:01: ee:42:df:7d:3e:d8:db:1e:b0:6f:d0:5d:04:42:dc: 0a:45:ad:06:e7:9a:0c:67:ba:b5:52:b9:64:01:84: 51:ff:65:1a:03:7a:ab:eb:00:29:b0:13:c4:9d:c0: d0:cd:6e:f9:f3:28:fd:b6:fd:f4:94:54:a9:b6:b3: f4:56:4b:f7:8c:34:8d:52:8a:b2:24:81:74:d5:62: d5:65:8d:b6:58:bf:37:a4:f9:27:c5:aa:a8:54:a5: 1f:cd:0e:8d:8d:a5:4d:17:38:34:ad:69:06:44:51: e9:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:63:99:6D:62:0B:E1:00:2C:74:9F:4B:55:C0:D2:C9:56:76:0C:98 X509v3 Authority Key Identifier: keyid:A1:8C:D3:FE:82:AD:21:80:3C:1F:0B:13:2D:AD:83:D1:C3:54:93:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYzT_oKtIYA8HwsTLa2D0cNUk0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6D55/2BA7395E16A411EDA838110BC4F9AE02/oYzT_oKtIYA8HwsTLa2D0cNUk0s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:80:0f:c1:42:42:a8:07:c1:36:91:40:b6:62:cb:ff:85:54: d3:ab:b6:06:5e:08:31:71:3e:5d:72:72:7b:12:07:48:42:42: 1c:f5:54:dd:c4:04:05:75:d3:14:e2:5e:15:0e:db:63:b4:a1: a1:13:fd:b7:d8:ed:94:9e:a8:4e:c8:90:7c:47:ac:0a:e0:c5: d1:e2:f6:60:c4:7e:67:a3:97:f9:de:0d:34:9f:2a:8a:9d:90: ed:76:3b:b3:cb:93:df:77:71:b8:44:4b:ac:e1:37:ca:78:6c: eb:af:de:d5:5d:01:1f:5c:4b:a7:20:8b:7c:46:0e:6b:80:8d: 09:19:6e:69:93:17:e7:13:37:da:52:d6:f2:9d:e4:14:c0:07: 01:8f:c0:e2:28:ec:65:64:03:21:e2:fa:6b:47:57:b0:9d:3d: ef:d0:8e:6c:24:41:26:04:9d:af:98:d1:40:c1:e0:99:a1:2e: 78:d8:57:45:f8:85:d9:58:91:d5:be:6b:40:f6:47:ce:fc:3d: d2:50:41:8f:57:a4:bd:a9:76:ca:93:ac:e6:ee:80:6a:10:13: 95:6a:02:f4:0e:ed:ce:a6:ad:4f:0c:7c:4c:01:f4:fb:c4:79: eb:f1:2e:67:46:3b:c2:13:b3:05:da:90:2c:40:17:24:45:a7: be:8c:3a:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAswwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZENTUxMTAvBgNVBAUTKEExOENEM0ZFODJBRDIxODAzQzFGMEIxMzJEQUQ4M0Qx QzM1NDkzNEIwHhcNMjUxMjIzMDAyMzM1WhcNMjUxMjMwMDAyMzM1WjAYMRYwFAYD VQQDDA02OTQ5ZTEwOC0wYjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2KqtYcwRt0RfXVf2CgGbwd1vf9XKwc9vkpU1k6T6k1OoyRZZ2KFQDSR5APyw bCW/Hu+YOrEQ60tu2lNkfmX+zXApdE7vcxzPKLwO1yzz+RcPzaO1kUrpN+D+pjGo uJbfV1/VxoC/a19nUC9vAZylfgTyOfADpP5yOG/sPBGnDLjLZeVbWEiPffg1myTb MnWiYWZJywHuQt99PtjbHrBv0F0EQtwKRa0G55oMZ7q1UrlkAYRR/2UaA3qr6wAp sBPEncDQzW758yj9tv30lFSptrP0Vkv3jDSNUoqyJIF01WLVZY22WL83pPknxaqo VKUfzQ6NjaVNFzg0rWkGRFHp7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOtjmW1i C+EALHSfS1XA0slWdgyYMB8GA1UdIwQYMBaAFKGM0/6CrSGAPB8LEy2tg9HDVJNL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkQ1NS8yQkE3Mzk1RTE2 QTQxMUVEQTgzODExMEJDNEY5QUUwMi9vWXpUX29LdElZQThId3NUTGEyRDBjTlVr MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29ZelRfb0t0SVlBOEh3c1RMYTJEMGNOVWswcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkQ1NS8yQkE3Mzk1RTE2QTQxMUVEQTgzODExMEJDNEY5QUUwMi9vWXpUX29LdElZ QThId3NUTGEyRDBjTlVrMHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQgA/BQkKoB8E2kUC2Ysv/hVTTq7YGXggxcT5dcnJ7EgdIQkIc9VTd xAQFddMU4l4VDttjtKGhE/232O2UnqhOyJB8R6wK4MXR4vZgxH5no5f53g00nyqK nZDtdjuzy5Pfd3G4REus4TfKeGzrr97VXQEfXEunIIt8Rg5rgI0JGW5pkxfnEzfa UtbyneQUwAcBj8DiKOxlZAMh4vprR1ewnT3v0I5sJEEmBJ2vmNFAweCZoS542FdF +IXZWJHVvmtA9kfO/D3SUEGPV6S9qXbKk6zm7oBqEBOVagL0Du3Opq1PDHxMAfT7 xHnr8S5nRjvCE7MF2pAsQBckRae+jDrT -----END CERTIFICATE-----Generated at Tue Dec 23 17:16:36 2025 by rpki-client