This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft File: ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft (raw, json) Hash identifier: ax6fa4gPuoiKzECwayJl4UkmHnbVev1sEPtVSs7KtlU= Subject key identifier: 90:9B:31:1A:8B:D4:31:60:6B:11:EC:0F:F8:D4:DC:67:41:CB:12:71 Authority key identifier: 39:11:E1:EF:B0:2B:03:6F:83:5B:F6:58:E1:36:60:1A:67:42:16:93 Certificate issuer: /CN=A914CCC5/serialNumber=3911E1EFB02B036F835BF658E136601A67421693 Certificate serial: 07C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORHh77ArA2-DW_ZY4TZgGmdCFpM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft Manifest number: 07BF Signing time: Thu 18 Dec 2025 20:49:07 +0000 Manifest this update: Thu 18 Dec 2025 20:49:07 +0000 Manifest next update: Thu 25 Dec 2025 20:49:07 +0000 Files and hashes: 1: ORHh77ArA2-DW_ZY4TZgGmdCFpM.crl (hash: F5d4qVFIuwsbQIQlRKJe/NhXxpVVeiGD1wu85zmHSu4=) 2: 94CB63BC241E11EB985FC048C4F9AE02.roa (hash: QadRAteDkMr+/Vf11v/PSiWZ5qLyjgZNySKVRInle2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.crl rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORHh77ArA2-DW_ZY4TZgGmdCFpM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 20:49:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1992 (0x7c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CCC5, serialNumber=3911E1EFB02B036F835BF658E136601A67421693 Validity Not Before: Dec 18 20:49:07 2025 GMT Not After : Dec 25 20:49:07 2025 GMT Subject: CN=694468c3-db29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:d9:28:09:f6:b3:fa:a4:4b:d3:fb:91:33:78: d2:dc:fb:7f:ee:9f:2d:ae:c8:d7:7c:05:fa:3d:f3: 60:a6:5d:11:64:cb:08:af:56:bc:d5:85:ee:53:c8: 2b:08:0e:38:8c:e2:25:41:cd:9f:de:ff:7c:dd:22: 3e:d7:6e:d2:09:75:bb:b0:4f:ac:65:fd:c1:bb:cb: dd:5a:5f:97:61:ca:18:8f:92:44:d5:72:97:3d:df: d7:94:af:0c:63:b0:53:23:26:b4:40:2e:e5:ca:9b: 21:37:91:9f:05:07:0b:72:0c:de:54:a3:7b:a8:36: 76:31:1c:bc:a8:82:06:16:f3:32:0f:a8:37:db:2f: ec:a4:c1:8f:ca:2b:b6:96:b9:86:2c:99:e0:1d:1b: 7a:dd:11:ad:12:ff:b4:b7:18:d0:0a:27:bb:b3:64: b9:63:ca:16:6a:b0:02:83:a6:07:00:4a:9b:10:ed: cf:d3:f3:a8:82:47:e7:72:26:d3:be:9d:ee:0d:cd: ae:28:8a:01:a2:28:61:0f:50:b9:8b:96:bb:2d:11: 10:25:84:80:2a:e8:19:f6:81:a4:68:63:f4:1a:c5: b1:47:1d:cf:d2:43:80:d3:80:17:f4:b3:3d:09:3c: 9b:02:34:c4:f8:65:04:10:e2:17:40:0c:f5:d2:d4: 4a:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:9B:31:1A:8B:D4:31:60:6B:11:EC:0F:F8:D4:DC:67:41:CB:12:71 X509v3 Authority Key Identifier: keyid:39:11:E1:EF:B0:2B:03:6F:83:5B:F6:58:E1:36:60:1A:67:42:16:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORHh77ArA2-DW_ZY4TZgGmdCFpM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:97:9b:00:b9:1e:db:df:2c:eb:1f:e4:9d:9e:66:7f:4a:61: 50:b2:21:6c:de:3a:94:5c:bc:bc:78:fa:5d:a5:3c:17:22:6a: 86:11:aa:35:27:5a:d6:0d:3f:01:85:5e:99:76:de:ad:2a:b3: 84:9d:0d:7c:36:57:b9:62:d5:6e:1f:c0:99:02:60:c1:24:1a: 95:40:6d:cc:39:93:57:60:ea:a9:cd:b8:62:dd:57:c6:c2:94: 40:91:47:95:ec:7b:53:87:9c:bb:81:74:2b:b6:f5:17:d4:68: 76:6b:09:41:20:5c:22:2c:b2:97:37:72:11:56:cd:d7:c5:1a: 84:a2:47:54:70:a0:4a:37:e7:c3:c7:15:63:34:f6:4b:89:28: 11:5d:fb:38:de:80:1f:65:e7:72:2b:79:45:03:10:93:87:8f: af:87:fe:7c:77:26:e3:28:08:d1:ef:db:4a:10:f0:5f:1a:b3: ff:5c:44:2d:06:db:01:df:ca:f7:d8:ef:9e:94:a2:8b:d4:4f: f1:f9:9c:a5:ce:c2:51:a6:31:16:59:da:9d:16:c4:bc:a1:ed: 62:b4:6b:59:9d:18:82:35:60:ff:90:4c:3b:4f:36:33:71:fd: b6:c9:df:0e:b4:4a:b7:f0:70:ce:f6:ba:8a:2d:06:33:1f:79: 93:d3:21:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENDQzUxMTAvBgNVBAUTKDM5MTFFMUVGQjAyQjAzNkY4MzVCRjY1OEUxMzY2MDFB Njc0MjE2OTMwHhcNMjUxMjE4MjA0OTA3WhcNMjUxMjI1MjA0OTA3WjAYMRYwFAYD VQQDDA02OTQ0NjhjMy1kYjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqNkoCfaz+qRL0/uRM3jS3Pt/7p8trsjXfAX6PfNgpl0RZMsIr1a81YXuU8gr CA44jOIlQc2f3v983SI+127SCXW7sE+sZf3Bu8vdWl+XYcoYj5JE1XKXPd/XlK8M Y7BTIya0QC7lypshN5GfBQcLcgzeVKN7qDZ2MRy8qIIGFvMyD6g32y/spMGPyiu2 lrmGLJngHRt63RGtEv+0txjQCie7s2S5Y8oWarACg6YHAEqbEO3P0/OogkfncibT vp3uDc2uKIoBoihhD1C5i5a7LREQJYSAKugZ9oGkaGP0GsWxRx3P0kOA04AX9LM9 CTybAjTE+GUEEOIXQAz10tRK4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJCbMRqL 1DFgaxHsD/jU3GdByxJxMB8GA1UdIwQYMBaAFDkR4e+wKwNvg1v2WOE2YBpnQhaT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0NDNS80M0I1RUZEMDI0 MUMxMUVCQUIzMkQ1NDNDNEY5QUUwMi9PUkhoNzdBckEyLURXX1pZNFRaZ0dtZENG cE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09SSGg3N0FyQTItRFdfWlk0VFpnR21kQ0ZwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0NDNS80M0I1RUZEMDI0MUMxMUVCQUIzMkQ1NDNDNEY5QUUwMi9PUkhoNzdBckEy LURXX1pZNFRaZ0dtZENGcE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVl5sAuR7b3yzrH+SdnmZ/SmFQsiFs3jqUXLy8ePpdpTwXImqGEao1 J1rWDT8BhV6Zdt6tKrOEnQ18Nle5YtVuH8CZAmDBJBqVQG3MOZNXYOqpzbhi3VfG wpRAkUeV7HtTh5y7gXQrtvUX1Gh2awlBIFwiLLKXN3IRVs3XxRqEokdUcKBKN+fD xxVjNPZLiSgRXfs43oAfZedyK3lFAxCTh4+vh/58dybjKAjR79tKEPBfGrP/XEQt BtsB38r32O+elKKL1E/x+ZylzsJRpjEWWdqdFsS8oe1itGtZnRiCNWD/kEw7TzYz cf22yd8OtEq38HDO9rqKLQYzH3mT0yHE -----END CERTIFICATE-----Generated at Sat Dec 20 05:14:21 2025 by rpki-client