This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft File: oiiPiWTWFpqHlfL07wXg1ebhOwk.mft (raw, json) Hash identifier: mtgVs2vMneEFmdqU7xxd+2RK1sIsQTOrq/y25YzLngQ= Subject key identifier: AE:A2:48:5A:14:C2:15:86:B1:BF:D6:4F:A4:42:28:87:87:41:B3:0B Authority key identifier: A2:28:8F:89:64:D6:16:9A:87:95:F2:F4:EF:05:E0:D5:E6:E1:3B:09 Certificate issuer: /CN=A91FB68C/serialNumber=A2288F8964D6169A8795F2F4EF05E0D5E6E13B09 Certificate serial: BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft Manifest number: B3 Signing time: Wed 31 Dec 2025 05:18:46 +0000 Manifest this update: Wed 31 Dec 2025 05:18:45 +0000 Manifest next update: Wed 07 Jan 2026 05:18:45 +0000 Files and hashes: 1: oiiPiWTWFpqHlfL07wXg1ebhOwk.crl (hash: 2o2hqDRY9jK2b29JTTw8GAWyjBhY8x6Cd0iIB8pR57U=) 2: 965254F8278811F09217002CC4F9AE02.roa (hash: cntS2QbrLMGVNDiSYKCKZNhPNOsjrLMnvFLUFK/CvnQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.crl rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 05:18:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB68C, serialNumber=A2288F8964D6169A8795F2F4EF05E0D5E6E13B09 Validity Not Before: Dec 31 05:18:45 2025 GMT Not After : Jan 7 05:18:45 2026 GMT Subject: CN=6954b235-e721 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:bf:b0:82:0e:79:17:8a:1f:00:f4:35:3b:90: bc:29:b3:7f:42:24:44:59:75:20:8a:22:fa:b2:c6: 29:dc:06:bd:1f:fd:cf:2d:c3:dc:14:07:e8:2e:09: 87:78:49:ff:d8:81:9d:64:ba:0c:d2:33:eb:0b:ca: 25:c2:1f:8e:30:87:d9:91:05:ae:c2:10:4c:64:e9: 48:98:c3:3b:ee:44:f6:fb:d2:e7:6f:73:5e:9d:cc: 24:0d:da:80:0f:50:87:82:e4:a4:02:46:b5:53:7f: 1b:a7:12:7f:95:f5:a1:e3:38:e7:8b:18:0f:d2:ef: 08:42:85:83:2c:94:9c:85:57:36:d7:a2:e7:77:75: 14:21:45:7d:85:46:cc:7f:9e:9f:f1:90:1f:4b:b5: 94:40:9d:14:01:ee:87:12:3a:38:1e:3d:bb:0f:01: 60:43:af:00:b1:b9:80:99:ba:d5:fe:37:f3:b7:e8: a7:75:c0:9d:ff:ee:cd:d9:00:d3:56:80:16:91:ef: 13:1b:72:b6:a9:b9:d0:08:57:ec:75:e0:ab:2a:32: 06:18:0d:ad:be:b3:1e:69:e7:0e:8c:2e:24:9d:05: 5b:46:d3:75:15:39:7a:36:0d:33:03:3d:b9:25:85: e0:97:11:09:72:f6:42:fe:83:56:a6:6e:c3:84:3c: e5:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:A2:48:5A:14:C2:15:86:B1:BF:D6:4F:A4:42:28:87:87:41:B3:0B X509v3 Authority Key Identifier: keyid:A2:28:8F:89:64:D6:16:9A:87:95:F2:F4:EF:05:E0:D5:E6:E1:3B:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiiPiWTWFpqHlfL07wXg1ebhOwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB68C/17D103A8EAB211EF846F1337C4F9AE02/oiiPiWTWFpqHlfL07wXg1ebhOwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:26:aa:0c:05:97:0c:3f:b7:20:0c:6b:02:07:89:bb:27:47: 12:a6:93:a7:5e:64:49:cf:3e:65:54:e6:22:37:00:a9:7e:0d: 8c:ee:fb:73:87:8d:4a:34:e4:e5:a5:e1:28:a6:87:56:0a:48: 68:07:c2:a1:f7:04:42:fd:d5:11:6b:3a:77:bc:6e:8d:11:fe: b2:97:35:14:db:05:47:08:51:bd:05:b4:e8:80:78:13:7d:59: 13:d9:67:ca:89:49:a2:36:64:2e:d3:55:5d:ee:7a:56:aa:e2: 7b:41:28:63:31:1c:97:91:71:2f:07:41:3e:c3:b7:64:6d:b7: 8e:62:41:d3:02:d7:9c:67:9f:3e:d2:21:95:e2:b6:79:de:6e: 7e:79:de:e6:cc:f8:7e:92:ac:b3:eb:80:cd:50:14:f1:d8:f0: c7:4d:71:41:c0:0d:5d:29:58:4d:f2:fd:a1:98:be:76:0c:d5: 44:76:54:aa:5d:cb:0d:0a:bf:06:b4:59:ae:24:5d:19:98:1e: 56:d7:ae:b5:99:a6:4d:e8:f6:33:71:33:ed:49:2b:71:ac:97: a6:ea:6e:91:e7:12:02:ac:19:27:08:aa:b0:e8:61:43:9f:5a: cc:16:3c:01:f0:4c:de:29:25:46:04:35:aa:dc:3b:03:cd:78: 0b:15:c1:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI2OEMxMTAvBgNVBAUTKEEyMjg4Rjg5NjRENjE2OUE4Nzk1RjJGNEVGMDVFMEQ1 RTZFMTNCMDkwHhcNMjUxMjMxMDUxODQ1WhcNMjYwMTA3MDUxODQ1WjAYMRYwFAYD VQQDDA02OTU0YjIzNS1lNzIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqL+wgg55F4ofAPQ1O5C8KbN/QiREWXUgiiL6ssYp3Aa9H/3PLcPcFAfoLgmH eEn/2IGdZLoM0jPrC8olwh+OMIfZkQWuwhBMZOlImMM77kT2+9Lnb3NencwkDdqA D1CHguSkAka1U38bpxJ/lfWh4zjnixgP0u8IQoWDLJSchVc216Lnd3UUIUV9hUbM f56f8ZAfS7WUQJ0UAe6HEjo4Hj27DwFgQ68AsbmAmbrV/jfzt+indcCd/+7N2QDT VoAWke8TG3K2qbnQCFfsdeCrKjIGGA2tvrMeaecOjC4knQVbRtN1FTl6Ng0zAz25 JYXglxEJcvZC/oNWpm7DhDzlPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK6iSFoU whWGsb/WT6RCKIeHQbMLMB8GA1UdIwQYMBaAFKIoj4lk1haah5Xy9O8F4NXm4TsJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjY4Qy8xN0QxMDNBOEVB QjIxMUVGODQ2RjEzMzdDNEY5QUUwMi9vaWlQaVdUV0ZwcUhsZkwwN3dYZzFlYmhP d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29paVBpV1RXRnBxSGxmTDA3d1hnMWViaE93ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjY4Qy8xN0QxMDNBOEVBQjIxMUVGODQ2RjEzMzdDNEY5QUUwMi9vaWlQaVdUV0Zw cUhsZkwwN3dYZzFlYmhPd2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoJqoMBZcMP7cgDGsCB4m7J0cSppOnXmRJzz5lVOYiNwCpfg2M7vtz h41KNOTlpeEopodWCkhoB8Kh9wRC/dURazp3vG6NEf6ylzUU2wVHCFG9BbTogHgT fVkT2WfKiUmiNmQu01Vd7npWquJ7QShjMRyXkXEvB0E+w7dkbbeOYkHTAtecZ58+ 0iGV4rZ53m5+ed7mzPh+kqyz64DNUBTx2PDHTXFBwA1dKVhN8v2hmL52DNVEdlSq XcsNCr8GtFmuJF0ZmB5W1661maZN6PYzcTPtSStxrJem6m6R5xICrBknCKqw6GFD n1rMFjwB8EzeKSVGBDWq3DsDzXgLFcHD -----END CERTIFICATE-----Generated at Thu Jan 1 02:37:26 2026 by rpki-client