This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft File: ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft (raw, json) Hash identifier: K5lA0xAFiQlxu8xPdThSu/KjNzoiCZTB0Kl3pq3/ZKI= Subject key identifier: FF:18:DC:A7:61:9E:48:9F:E2:E1:83:BA:61:2A:21:E1:C4:E8:8B:81 Authority key identifier: A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36 Certificate issuer: /CN=A91F8AC4/serialNumber=A337633E35919940BD729D912F3663158C267C36 Certificate serial: 0255 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft Manifest number: 024F Signing time: Sun 21 Dec 2025 00:59:18 +0000 Manifest this update: Sun 21 Dec 2025 00:59:17 +0000 Manifest next update: Sun 28 Dec 2025 00:59:17 +0000 Files and hashes: 1: ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl (hash: xqv/nSV09hHNn4YnTcPjrxo5iF7RR8zkSX+IoqAPd4c=) 2: 0AFFF078577811ED959AC36FC4F9AE02.roa (hash: 7KGpbBEEym6owc+uaT6+xmtVoaHn3I3Wf4REEkb7Hck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:59:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 597 (0x255) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8AC4, serialNumber=A337633E35919940BD729D912F3663158C267C36 Validity Not Before: Dec 21 00:59:17 2025 GMT Not After : Dec 28 00:59:17 2025 GMT Subject: CN=69474665-ad45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b5:f8:1f:c0:ae:1c:5b:9e:a9:34:2a:16:70: ad:ea:97:ec:8f:27:39:a8:37:48:46:26:4a:fb:99: ed:6a:db:14:2f:a8:1c:3a:43:63:ad:a5:ab:f0:66: b9:8f:89:3f:7b:cb:cd:f8:b2:ea:75:41:dc:31:4a: c4:08:7f:e4:09:43:f6:39:d1:11:58:77:ea:b5:f8: 0a:13:33:f2:91:96:4f:4a:f7:d3:6c:50:09:a5:ab: 3d:72:02:0f:72:36:f6:4e:0c:8a:87:58:d3:af:16: 85:22:5d:d6:f6:3e:62:cf:fe:d5:ec:f3:d3:de:ab: 17:86:18:42:fa:2f:99:56:b0:fb:37:0b:2c:05:19: 61:4f:2d:73:31:b2:34:f9:0f:06:0e:f3:df:e0:7b: 0b:b6:17:03:7d:2a:2f:c4:c3:c8:7f:ee:5b:db:70: 29:f6:5a:23:fb:a1:52:07:86:da:12:14:ae:b1:15: c7:be:a9:3c:3e:c5:bb:1a:84:cd:65:dc:73:67:ff: f2:26:b1:60:42:ec:d5:2e:1b:eb:88:82:f8:dc:92: cb:35:5f:6e:7f:e7:1c:f0:f7:4d:a0:29:6d:83:6e: 1b:4a:53:08:2e:da:71:9f:79:15:8f:80:2d:e3:40: 59:39:a8:64:1f:23:b0:82:f1:3c:fe:38:83:67:11: 39:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:18:DC:A7:61:9E:48:9F:E2:E1:83:BA:61:2A:21:E1:C4:E8:8B:81 X509v3 Authority Key Identifier: keyid:A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:5b:6b:2b:8c:96:d7:75:03:c0:65:de:4f:95:47:c9:5b:ce: 41:d5:0a:b5:17:98:11:6c:9e:85:cf:8e:0f:ce:c5:7c:9a:63: 6c:ae:0b:b8:38:bd:6d:48:3f:e6:0e:4c:e4:91:91:17:72:1e: 54:b3:c5:5e:25:ac:55:f5:66:ea:bf:c3:5a:e6:64:27:f9:7c: ac:4d:39:c4:ca:73:f5:8a:80:3d:cf:b3:fe:a9:a0:13:5f:0e: 73:79:27:94:84:85:7f:af:9f:48:14:b9:f2:0c:ce:b2:bd:23: 32:52:9d:2d:52:5e:2c:99:76:54:01:bd:93:d1:ce:a8:74:34: f9:52:9a:0b:76:70:cb:a0:79:c7:3c:3d:a8:63:c8:31:50:21: 52:12:8f:9c:48:21:5b:81:15:a4:c4:6b:09:28:b7:9a:27:34: d9:d5:37:59:36:5d:4f:f0:64:d8:6d:53:89:0d:59:3b:1b:68: 7c:2a:d4:42:ad:60:4c:f4:4a:6a:4d:99:7e:c1:25:14:b9:b4: 04:a4:e4:8c:90:ea:de:f3:2a:89:4a:c7:79:ee:ec:00:87:a3: fc:b4:0a:43:1b:76:d9:06:03:bd:13:58:3c:7e:4f:c7:43:f7: c9:b0:f1:01:3d:e4:a2:88:9b:44:89:d8:67:bd:0f:c1:db:ac: f6:05:75:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhBQzQxMTAvBgNVBAUTKEEzMzc2MzNFMzU5MTk5NDBCRDcyOUQ5MTJGMzY2MzE1 OEMyNjdDMzYwHhcNMjUxMjIxMDA1OTE3WhcNMjUxMjI4MDA1OTE3WjAYMRYwFAYD VQQDDA02OTQ3NDY2NS1hZDQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqbX4H8CuHFueqTQqFnCt6pfsjyc5qDdIRiZK+5ntatsUL6gcOkNjraWr8Ga5 j4k/e8vN+LLqdUHcMUrECH/kCUP2OdERWHfqtfgKEzPykZZPSvfTbFAJpas9cgIP cjb2TgyKh1jTrxaFIl3W9j5iz/7V7PPT3qsXhhhC+i+ZVrD7NwssBRlhTy1zMbI0 +Q8GDvPf4HsLthcDfSovxMPIf+5b23Ap9loj+6FSB4baEhSusRXHvqk8PsW7GoTN ZdxzZ//yJrFgQuzVLhvriIL43JLLNV9uf+cc8PdNoCltg24bSlMILtpxn3kVj4At 40BZOahkHyOwgvE8/jiDZxE5pQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP8Y3Kdh nkif4uGDumEqIeHE6IuBMB8GA1UdIwQYMBaAFKM3Yz41kZlAvXKdkS82YxWMJnw2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEFDNC9DOEZFMTc0QzU3 NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpXUm1VQzljcDJSTHpaakZZd21m RFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL296ZGpQaldSbVVDOWNwMlJMelpqRll3bWZEWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEFDNC9DOEZFMTc0QzU3NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpXUm1V QzljcDJSTHpaakZZd21mRFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjW2srjJbXdQPAZd5PlUfJW85B1Qq1F5gRbJ6Fz44PzsV8mmNsrgu4 OL1tSD/mDkzkkZEXch5Us8VeJaxV9Wbqv8Na5mQn+XysTTnEynP1ioA9z7P+qaAT Xw5zeSeUhIV/r59IFLnyDM6yvSMyUp0tUl4smXZUAb2T0c6odDT5UpoLdnDLoHnH PD2oY8gxUCFSEo+cSCFbgRWkxGsJKLeaJzTZ1TdZNl1P8GTYbVOJDVk7G2h8KtRC rWBM9EpqTZl+wSUUubQEpOSMkOre8yqJSsd57uwAh6P8tApDG3bZBgO9E1g8fk/H Q/fJsPEBPeSiiJtEidhnvQ/B26z2BXW+ -----END CERTIFICATE-----Generated at Sun Dec 21 05:39:11 2025 by rpki-client