This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.mft File: O9MC-nouhmpnmxtglttnRToDq4Y.mft (raw, json) Hash identifier: q+W/7wkjHG8JnNhgRZD4PasD0ml1ntBuCABpcBVZ8tY= Subject key identifier: 58:19:AB:A2:65:11:07:AF:44:DB:81:0A:8E:41:97:70:0F:C4:91:68 Authority key identifier: 3B:D3:02:FA:7A:2E:86:6A:67:9B:1B:60:96:DB:67:45:3A:03:AB:86 Certificate issuer: /CN=A91F7DCD/serialNumber=3BD302FA7A2E866A679B1B6096DB67453A03AB86 Certificate serial: 0A9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O9MC-nouhmpnmxtglttnRToDq4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.mft Manifest number: 0A82 Signing time: Sat 20 Dec 2025 19:05:53 +0000 Manifest this update: Sat 20 Dec 2025 19:05:53 +0000 Manifest next update: Sat 27 Dec 2025 19:05:53 +0000 Files and hashes: 1: O9MC-nouhmpnmxtglttnRToDq4Y.crl (hash: LALYdggbZTNCO+uzGVhEiBnN2Fc4iplYNoP0GZg2UyY=) 2: 855AECF29B3A11EB9B73EB7BC4F9AE02.roa (hash: NLByGRv6anI6tIVcb5p+1Xch3v2zcxtkN/xSf48UIQU=) 3: 0791DE6034A511ED9D82D13BC4F9AE02.roa (hash: YgLuhvSqEin+i5SUp1az8jMscHcAbxhVSlyBc8B1vlM=) 4: 62512E2C73D311EABC99D63AC4F9AE02.roa (hash: DPmiaEz6M1OneZ4z1YKj44DcnnHVGKuSYV+vSNBuquw=) 5: 27323072FF0E11EFB014CB3CC4F9AE02.roa (hash: wxcY42YjsuRVvMQ/m7CB1YYbOqzcrhZ00l1RvoVq8ek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.crl rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O9MC-nouhmpnmxtglttnRToDq4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 19:05:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2716 (0xa9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7DCD, serialNumber=3BD302FA7A2E866A679B1B6096DB67453A03AB86 Validity Not Before: Dec 20 19:05:53 2025 GMT Not After : Dec 27 19:05:53 2025 GMT Subject: CN=6946f391-a1e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:d3:44:07:e4:24:b4:4f:6c:c3:0b:2d:fa:19: 2f:d0:5c:ff:75:62:97:ff:e9:02:77:6f:e9:14:2f: 0c:5e:58:24:44:8b:85:d1:92:e6:1b:14:71:8b:2a: fe:48:94:99:81:00:b6:6d:e5:ae:54:f9:9b:3d:bb: 40:2f:22:a0:09:89:8e:42:95:f3:d7:f8:aa:ab:d8: 32:20:25:8e:eb:b0:9d:7e:c8:93:86:a5:89:79:60: bb:c0:c6:ba:d9:4a:85:2a:40:84:4a:f1:c7:b9:da: 41:09:f1:89:db:e6:c6:3f:f8:40:07:fc:6a:52:01: c4:5f:08:fa:34:4d:44:95:c5:8d:62:25:36:b8:e0: 2f:87:a7:98:83:33:20:04:e0:cb:ee:93:cb:82:2a: f3:58:a2:14:93:1a:f3:ca:f8:d2:d1:d5:8b:f0:a7: 67:c1:ca:1a:39:7f:d9:36:3b:3e:a7:92:f3:f0:ed: 7d:60:93:56:78:71:7f:fe:8b:2c:b1:32:76:be:06: bd:9c:05:cd:c9:2e:ea:b5:06:6a:c5:9c:97:36:95: 0a:d3:a5:5d:5f:f1:27:44:ab:2d:b9:9f:d5:ae:92: 8c:05:19:3e:a0:d2:e5:02:f0:9c:e1:89:6c:1f:6d: cd:4c:5a:5a:f2:52:76:8f:e2:22:ec:ba:17:54:ae: 93:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:19:AB:A2:65:11:07:AF:44:DB:81:0A:8E:41:97:70:0F:C4:91:68 X509v3 Authority Key Identifier: keyid:3B:D3:02:FA:7A:2E:86:6A:67:9B:1B:60:96:DB:67:45:3A:03:AB:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O9MC-nouhmpnmxtglttnRToDq4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:6d:fc:6d:45:ba:7b:22:87:ff:2a:02:c7:d8:02:d7:93:20: a0:d0:58:a8:92:f8:ca:d3:39:92:9c:74:ba:7b:db:67:aa:f3: bd:bf:55:6a:a5:42:b5:a3:83:a6:97:4e:c2:d7:9e:d7:29:f3: a6:db:9b:7b:2e:e4:f9:23:ae:0a:b1:b6:79:3a:1b:1d:66:98: 75:17:6e:8c:e8:05:0f:9f:c2:31:fd:f7:e6:84:d6:76:7e:6c: 8c:43:28:f6:fd:30:fc:dd:a8:3c:61:0b:18:a1:fa:7f:23:47: 31:15:d4:92:2f:b9:87:dd:fb:16:bc:91:53:2c:04:8a:68:4a: 52:d6:dd:15:24:82:ca:a6:4a:96:95:c8:15:20:c8:96:cb:33: 37:74:06:90:57:6d:32:50:cb:23:78:4f:57:c9:d3:bb:9b:66: 8f:3f:cd:0b:40:31:95:19:51:92:79:c9:07:2f:b7:51:9d:80: 7f:f9:8b:da:7f:ad:98:7c:cb:c9:4d:d8:0c:9f:d4:7f:08:66: fd:c4:4a:1d:25:70:c5:a5:a2:94:c6:d3:a5:2e:6d:5e:cf:e2: 9a:af:15:95:c6:07:fa:e4:42:fc:bd:84:20:40:2c:07:a0:5c: fb:be:40:fe:1e:68:3b:cd:56:56:81:6a:cf:e1:fe:d5:ff:a0: ac:e6:13:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdEQ0QxMTAvBgNVBAUTKDNCRDMwMkZBN0EyRTg2NkE2NzlCMUI2MDk2REI2NzQ1 M0EwM0FCODYwHhcNMjUxMjIwMTkwNTUzWhcNMjUxMjI3MTkwNTUzWjAYMRYwFAYD VQQDDA02OTQ2ZjM5MS1hMWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApNNEB+QktE9swwst+hkv0Fz/dWKX/+kCd2/pFC8MXlgkRIuF0ZLmGxRxiyr+ SJSZgQC2beWuVPmbPbtALyKgCYmOQpXz1/iqq9gyICWO67CdfsiThqWJeWC7wMa6 2UqFKkCESvHHudpBCfGJ2+bGP/hAB/xqUgHEXwj6NE1ElcWNYiU2uOAvh6eYgzMg BODL7pPLgirzWKIUkxrzyvjS0dWL8KdnwcoaOX/ZNjs+p5Lz8O19YJNWeHF//oss sTJ2vga9nAXNyS7qtQZqxZyXNpUK06VdX/EnRKstuZ/VrpKMBRk+oNLlAvCc4Yls H23NTFpa8lJ2j+Ii7LoXVK6TwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFgZq6Jl EQevRNuBCo5Bl3APxJFoMB8GA1UdIwQYMBaAFDvTAvp6LoZqZ5sbYJbbZ0U6A6uG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0RDRC84NDQyOEIwRTcz RDExMUVBOUNERUM1MzRDNEY5QUUwMi9POU1DLW5vdWhtcG5teHRnbHR0blJUb0Rx NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL085TUMtbm91aG1wbm14dGdsdHRuUlRvRHE0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG N0RDRC84NDQyOEIwRTczRDExMUVBOUNERUM1MzRDNEY5QUUwMi9POU1DLW5vdWht cG5teHRnbHR0blJUb0RxNFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYbfxtRbp7Iof/KgLH2ALXkyCg0FiokvjK0zmSnHS6e9tnqvO9v1Vq pUK1o4Oml07C157XKfOm25t7LuT5I64KsbZ5OhsdZph1F26M6AUPn8Ix/ffmhNZ2 fmyMQyj2/TD83ag8YQsYofp/I0cxFdSSL7mH3fsWvJFTLASKaEpS1t0VJILKpkqW lcgVIMiWyzM3dAaQV20yUMsjeE9XydO7m2aPP80LQDGVGVGSeckHL7dRnYB/+Yva f62YfMvJTdgMn9R/CGb9xEodJXDFpaKUxtOlLm1ez+KarxWVxgf65EL8vYQgQCwH oFz7vkD+Hmg7zVZWgWrP4f7V/6Cs5hN0 -----END CERTIFICATE-----Generated at Sun Dec 21 07:45:44 2025 by rpki-client