This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft File: oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft (raw, json) Hash identifier: tQexaVcaTHnnZL+7T9GLcSG9Xm/dAbXQF9d47grtnNQ= Subject key identifier: 53:47:4F:EF:EC:1E:A6:01:88:B8:3A:A6:0F:AB:F5:91:A3:DF:FA:8D Authority key identifier: A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 Certificate issuer: /CN=A91FA024/serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Certificate serial: 084B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft Manifest number: 0843 Signing time: Sun 28 Dec 2025 20:08:23 +0000 Manifest this update: Sun 28 Dec 2025 20:08:23 +0000 Manifest next update: Sun 04 Jan 2026 20:08:23 +0000 Files and hashes: 1: oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl (hash: 8YeJgjLemJjYxMH79YdACf8ycd0BdnHnzLVDemSoU/w=) 2: FE1FDB12BCD011EC8283681EC4F9AE02.roa (hash: 2wuY0yDKdmJN9ZQKTlSwz2efwa28k+u+9dd3owV3hlg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 20:08:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2123 (0x84b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA024, serialNumber=A0AC427E957B374D0267FA7648DD3FF85702DAB1 Validity Not Before: Dec 28 20:08:23 2025 GMT Not After : Jan 4 20:08:23 2026 GMT Subject: CN=69518e37-f089 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:90:da:5e:b5:42:d2:38:fc:b0:ee:49:d5:58: 63:69:da:79:28:0c:e5:ea:72:3a:ce:e0:7a:15:b8: 5d:78:85:e4:ab:d4:6f:ae:49:cb:31:c8:da:c6:4c: 4d:b1:cd:d7:a7:a6:f7:02:ca:09:c6:63:79:8f:2f: e4:77:dd:6e:40:54:c5:4b:2f:aa:d3:73:f3:90:7b: 1d:d8:34:7b:a4:c0:b1:8d:43:c1:9e:6b:59:07:f3: 00:20:87:e6:b2:d2:12:fc:00:88:db:6a:b7:c5:de: 6d:b9:27:bd:a0:23:b4:45:d3:b1:01:b1:2d:f1:b0: e7:2f:75:a9:99:c8:78:e8:67:0f:49:92:15:9b:6f: 9e:90:eb:cf:f7:5f:fd:99:9a:7c:b8:ce:93:16:98: df:76:24:e5:bb:69:42:9a:f5:8e:22:2e:57:4e:5d: 5d:ac:18:70:b2:a7:51:e9:de:8b:f1:fa:43:ee:f7: 11:d5:29:f8:99:49:0c:83:c5:fe:6c:cc:ea:3c:fa: 6c:43:4f:e2:e4:56:eb:32:b3:51:78:54:d4:be:15: 0e:93:38:fc:6d:15:92:5f:f0:99:86:be:23:95:fa: 42:16:07:fd:af:b8:1f:da:bb:c3:05:2a:db:bf:43: 8e:5e:08:55:6e:72:0a:fa:4f:53:76:a6:28:70:ab: 37:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:47:4F:EF:EC:1E:A6:01:88:B8:3A:A6:0F:AB:F5:91:A3:DF:FA:8D X509v3 Authority Key Identifier: keyid:A0:AC:42:7E:95:7B:37:4D:02:67:FA:76:48:DD:3F:F8:57:02:DA:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oKxCfpV7N00CZ_p2SN0_-FcC2rE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA024/D33A4794F18811EA9E80F71EC4F9AE02/oKxCfpV7N00CZ_p2SN0_-FcC2rE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:5a:69:e8:10:6c:20:53:47:5a:28:84:48:8b:81:07:d9:06: e7:6e:ac:ae:66:1d:f2:bd:83:51:86:0e:27:3c:50:7a:7c:5c: 15:91:d1:31:8a:06:c9:dd:dd:58:5a:e2:e1:cd:09:aa:c6:17: 79:d9:81:f0:0d:a8:07:43:76:7b:28:05:60:16:df:b1:c6:b7: 96:0e:95:19:83:43:59:aa:71:74:2e:60:cc:56:ef:13:a1:65: bc:0c:3b:c6:1a:66:bc:c2:fc:d9:46:3b:3c:c0:9c:57:16:58: 3c:3b:d6:13:66:62:86:3c:18:e6:a4:cf:97:31:2a:5b:47:ec: 56:a4:68:45:79:6a:cd:90:78:59:24:39:b0:90:2c:af:7d:ca: f9:33:28:98:ce:60:cf:fa:3b:92:f6:02:0c:4f:69:1d:0e:94: 39:a0:12:9a:54:04:20:85:9a:66:89:50:19:b1:e1:ab:6b:6a: fc:7b:1f:99:ba:d4:ce:b5:04:2f:4d:29:d2:ac:75:a6:28:19: c7:02:d6:e0:8a:ea:1d:81:d2:20:7d:28:d9:c9:1d:21:d0:94: 86:4b:21:b0:e5:94:cc:31:37:4e:c3:c3:88:5f:a0:8a:63:af: b1:09:b8:0f:e3:7c:3d:af:9b:86:2d:9f:7e:df:dd:4b:80:28: 18:fc:b5:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkEwMjQxMTAvBgNVBAUTKEEwQUM0MjdFOTU3QjM3NEQwMjY3RkE3NjQ4REQzRkY4 NTcwMkRBQjEwHhcNMjUxMjI4MjAwODIzWhcNMjYwMTA0MjAwODIzWjAYMRYwFAYD VQQDDA02OTUxOGUzNy1mMDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5DaXrVC0jj8sO5J1Vhjadp5KAzl6nI6zuB6FbhdeIXkq9RvrknLMcjaxkxN sc3Xp6b3AsoJxmN5jy/kd91uQFTFSy+q03PzkHsd2DR7pMCxjUPBnmtZB/MAIIfm stIS/ACI22q3xd5tuSe9oCO0RdOxAbEt8bDnL3Wpmch46GcPSZIVm2+ekOvP91/9 mZp8uM6TFpjfdiTlu2lCmvWOIi5XTl1drBhwsqdR6d6L8fpD7vcR1Sn4mUkMg8X+ bMzqPPpsQ0/i5FbrMrNReFTUvhUOkzj8bRWSX/CZhr4jlfpCFgf9r7gf2rvDBSrb v0OOXghVbnIK+k9TdqYocKs3wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFNHT+/s HqYBiLg6pg+r9ZGj3/qNMB8GA1UdIwQYMBaAFKCsQn6VezdNAmf6dkjdP/hXAtqx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTAyNC9EMzNBNDc5NEYx ODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04wMENaX3AyU04wXy1GY0My ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29LeENmcFY3TjAwQ1pfcDJTTjBfLUZjQzJyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTAyNC9EMzNBNDc5NEYxODgxMUVBOUU4MEY3MUVDNEY5QUUwMi9vS3hDZnBWN04w MENaX3AyU04wXy1GY0MyckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeWmnoEGwgU0daKIRIi4EH2QbnbqyuZh3yvYNRhg4nPFB6fFwVkdEx igbJ3d1YWuLhzQmqxhd52YHwDagHQ3Z7KAVgFt+xxreWDpUZg0NZqnF0LmDMVu8T oWW8DDvGGma8wvzZRjs8wJxXFlg8O9YTZmKGPBjmpM+XMSpbR+xWpGhFeWrNkHhZ JDmwkCyvfcr5MyiYzmDP+juS9gIMT2kdDpQ5oBKaVAQghZpmiVAZseGra2r8ex+Z utTOtQQvTSnSrHWmKBnHAtbgiuodgdIgfSjZyR0h0JSGSyGw5ZTMMTdOw8OIX6CK Y6+xCbgP43w9r5uGLZ9+391LgCgY/LXZ -----END CERTIFICATE-----Generated at Mon Dec 29 02:51:12 2025 by rpki-client