This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft File: oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft (raw, json) Hash identifier: lD0R53aHyDLwFxRceO9dhbBVE0JeocD7wxvJ+c1Kt6Q= Subject key identifier: BC:28:06:3D:AB:41:51:79:0A:60:E0:27:A5:F5:25:E0:8B:1A:CF:72 Authority key identifier: A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57 Certificate issuer: /CN=A91FAA91/serialNumber=A0C80CEE063C9CC82CDCB0BC745C4FE46DD02657 Certificate serial: 0217 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft Manifest number: 01FA Signing time: Fri 19 Dec 2025 01:59:03 +0000 Manifest this update: Fri 19 Dec 2025 01:59:02 +0000 Manifest next update: Fri 26 Dec 2025 01:59:02 +0000 Files and hashes: 1: oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl (hash: 73hlAtm+P8M9XWS+hJV7pKzFQlJE6PBreRVw5Xj3hNY=) 2: 803597528D5911F087734E0BC4F9AE02.roa (hash: nE7csU7wzmCX2AbBS7z4n8sEfZSzQpZLx/oSC0wZ/sk=) 3: CE65A4E4A57E11EFA1B6E428C4F9AE02.roa (hash: 1SKbx2XsDMYzA80POo6zzafuauDwKbPNh6n7Ob5AjVA=) 4: 13D68EB430AB11F0A15DC75AC4F9AE02.roa (hash: 8ceZRP/XUhaUyTjeioD/K4mCivFkQCLXcH6cjJ7JFq0=) 5: E762B166FAF811EE92A3642EC4F9AE02.roa (hash: e/dOTjn5zjRzl7VVF4lYBqEjUR3aP4ajbLKyVpxXtqo=) 6: D0103496FD6611EE9188C568C4F9AE02.roa (hash: PxpNeamT7nJAO8ypf86mF4tTFHjbBgphhBI0WaQ2K6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:59:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 535 (0x217) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAA91, serialNumber=A0C80CEE063C9CC82CDCB0BC745C4FE46DD02657 Validity Not Before: Dec 19 01:59:02 2025 GMT Not After : Dec 26 01:59:02 2025 GMT Subject: CN=6944b166-4e47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:33:82:d3:0a:68:b8:5d:a2:be:d1:fa:08:4b: df:c1:de:c8:30:f0:6a:bb:4f:a5:a3:00:e7:ab:14: cc:8a:b4:c7:16:9e:40:cf:ec:a1:5e:02:8b:1d:e3: 5a:08:1d:b6:c1:ef:2c:93:7b:b7:31:5d:7b:53:e8: d1:99:a4:cf:3a:24:e8:f1:d3:7f:2e:04:1c:3c:f5: aa:3f:4f:48:54:89:2f:00:ae:00:e6:12:cb:19:88: 0e:77:c0:07:91:f9:4b:89:a0:6b:7c:81:e2:01:05: 2b:59:69:74:5e:49:ae:47:83:a3:0f:6b:d9:0a:35: bb:d2:33:1d:36:ba:17:78:f5:fb:d7:f5:d6:7b:0d: b4:a3:34:79:7a:ba:78:96:78:9b:42:17:a3:e8:72: 5a:5f:55:24:68:21:55:42:c0:6c:67:5f:67:89:67: 36:e5:af:7b:d8:3e:f2:90:a8:15:08:ae:cd:03:4e: d7:e6:83:65:a3:55:2a:89:fd:96:4f:55:3c:ee:92: 8e:0a:6d:a3:c7:fe:d5:a9:cc:81:b1:bf:e0:44:3e: d5:7c:9a:15:9f:8f:23:28:9c:aa:8f:2a:f6:e8:ef: dd:c8:4b:d9:75:79:b7:5e:05:53:14:12:4e:c0:b0: e9:61:f7:ac:53:e1:cf:fe:ea:6d:f8:1f:2f:c6:5c: 6e:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:28:06:3D:AB:41:51:79:0A:60:E0:27:A5:F5:25:E0:8B:1A:CF:72 X509v3 Authority Key Identifier: keyid:A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:56:2c:54:1e:32:03:da:65:bf:08:70:8b:27:94:98:5e:d4: 76:6c:95:61:44:b3:e3:2a:52:f0:e2:52:e0:a3:e3:e8:3a:36: 2a:1a:9b:da:dd:f1:b5:a4:92:74:84:0f:ce:f5:05:f4:ed:f4: 05:2b:08:26:53:2e:38:34:92:91:79:79:a7:c0:cd:d6:ed:f0: 24:f4:16:2b:a1:1b:0b:94:02:85:77:e6:fb:1f:3c:68:39:80: a6:a7:ef:ae:96:6c:06:bb:63:bc:53:eb:94:dd:49:8d:b7:0f: c1:35:63:9c:e1:69:a6:04:82:0f:96:60:92:e9:80:dd:a7:87: 9c:45:f6:d1:fc:96:0d:1d:82:ab:70:ff:49:a3:64:bf:8e:d3: ae:c0:39:3f:6b:47:3c:52:e6:06:46:32:18:5f:37:a7:ba:8c: 18:b1:6b:4e:72:0d:70:78:83:25:3b:cd:6b:a3:dd:65:80:74: 53:6a:e4:2a:fc:b2:bc:ed:43:cd:20:95:e9:7b:de:05:ef:51: f2:25:10:4f:7d:29:ae:cc:a8:b2:02:d1:9e:e0:8a:b4:4f:75: b3:62:28:98:5c:71:e8:f9:c2:88:3a:3e:44:8d:3f:40:8a:c8: 3a:27:33:89:01:57:d0:e8:88:74:6b:3f:5c:98:76:93:e8:21: a8:39:06:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFBOTExMTAvBgNVBAUTKEEwQzgwQ0VFMDYzQzlDQzgyQ0RDQjBCQzc0NUM0RkU0 NkREMDI2NTcwHhcNMjUxMjE5MDE1OTAyWhcNMjUxMjI2MDE1OTAyWjAYMRYwFAYD VQQDDA02OTQ0YjE2Ni00ZTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApjOC0wpouF2ivtH6CEvfwd7IMPBqu0+lowDnqxTMirTHFp5Az+yhXgKLHeNa CB22we8sk3u3MV17U+jRmaTPOiTo8dN/LgQcPPWqP09IVIkvAK4A5hLLGYgOd8AH kflLiaBrfIHiAQUrWWl0XkmuR4OjD2vZCjW70jMdNroXePX71/XWew20ozR5erp4 lnibQhej6HJaX1UkaCFVQsBsZ19niWc25a972D7ykKgVCK7NA07X5oNlo1Uqif2W T1U87pKOCm2jx/7VqcyBsb/gRD7VfJoVn48jKJyqjyr26O/dyEvZdXm3XgVTFBJO wLDpYfesU+HP/upt+B8vxlxuYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLwoBj2r QVF5CmDgJ6X1JeCLGs9yMB8GA1UdIwQYMBaAFKDIDO4GPJzILNywvHRcT+Rt0CZX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUE5MS85NDIwRDIxMDBB NUExMUVFQTNGNUI0NDFDNEY5QUUwMi9vTWdNN2dZOG5NZ3MzTEM4ZEZ4UDVHM1FK bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29NZ003Z1k4bk1nczNMQzhkRnhQNUczUUpsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUE5MS85NDIwRDIxMDBBNUExMUVFQTNGNUI0NDFDNEY5QUUwMi9vTWdNN2dZOG5N Z3MzTEM4ZEZ4UDVHM1FKbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuVixUHjID2mW/CHCLJ5SYXtR2bJVhRLPjKlLw4lLgo+PoOjYqGpva 3fG1pJJ0hA/O9QX07fQFKwgmUy44NJKReXmnwM3W7fAk9BYroRsLlAKFd+b7Hzxo OYCmp++ulmwGu2O8U+uU3UmNtw/BNWOc4WmmBIIPlmCS6YDdp4ecRfbR/JYNHYKr cP9Jo2S/jtOuwDk/a0c8UuYGRjIYXzenuowYsWtOcg1weIMlO81ro91lgHRTauQq /LK87UPNIJXpe94F71HyJRBPfSmuzKiyAtGe4Iq0T3WzYiiYXHHo+cKIOj5EjT9A isg6JzOJAVfQ6Ih0az9cmHaT6CGoOQbO -----END CERTIFICATE-----Generated at Sat Dec 20 22:41:59 2025 by rpki-client