This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft File: OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft (raw, json) Hash identifier: qLOW4Ks7Zo7TB4Y8VBe4Y+ud2t4V2qgJuWnPqBARiMA= Subject key identifier: D0:74:4C:22:DC:DD:B1:AF:6E:6D:BB:DC:EC:5C:B5:ED:F6:F1:14:C4 Authority key identifier: 39:D1:D5:95:54:18:91:35:30:94:58:36:18:D6:CC:07:9C:83:0C:E1 Certificate issuer: /CN=A9110C7C/serialNumber=39D1D595541891353094583618D6CC079C830CE1 Certificate serial: 1F09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdHVlVQYkTUwlFg2GNbMB5yDDOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft Manifest number: 1EFD Signing time: Mon 22 Dec 2025 15:50:23 +0000 Manifest this update: Mon 22 Dec 2025 15:50:23 +0000 Manifest next update: Mon 29 Dec 2025 15:50:23 +0000 Files and hashes: 1: OdHVlVQYkTUwlFg2GNbMB5yDDOE.crl (hash: c4wF0ZtAWoxpJZf7ajAPRpQWog1dqi0EX3e3EpeNjzs=) 2: BFF7726E6EF711E69FBC340BC4F9AE02.roa (hash: W0ZWmGkhW06fRZVPw8jscLCIBobXeY3y+SwBDvJ1Z0s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.crl rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdHVlVQYkTUwlFg2GNbMB5yDDOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 15:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7945 (0x1f09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110C7C, serialNumber=39D1D595541891353094583618D6CC079C830CE1 Validity Not Before: Dec 22 15:50:23 2025 GMT Not After : Dec 29 15:50:23 2025 GMT Subject: CN=694968bf-7283 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:7d:f4:f2:33:7a:aa:cf:d6:9d:26:3a:ad:2c: 0b:dd:f6:54:5b:5f:23:7e:78:db:0e:db:cc:a4:5e: dd:6c:f0:ea:d1:79:d5:2e:8c:9d:d6:27:6c:38:82: 26:c0:4d:23:e3:9f:e6:57:4d:fa:c2:e5:b9:57:2f: 22:c8:c5:c4:b8:a7:0a:90:76:70:e6:75:0b:b3:21: 89:eb:a5:56:f0:1b:ba:0d:c6:1a:6d:4d:15:56:11: 47:07:3c:9b:c6:6b:5b:c8:ed:ed:76:04:12:09:7f: 7b:6c:c1:6a:d4:71:60:24:b1:ae:2d:65:e9:21:df: bc:9c:32:76:78:3c:9f:ce:ec:e8:54:0c:71:d9:b9: 20:0d:5c:a8:1b:52:a3:c8:ec:bc:41:e6:50:2a:9d: b4:e1:83:6f:d8:96:03:2d:2b:54:4c:b9:9c:ae:2f: 4b:b6:1c:e1:c4:bf:de:32:cd:47:d2:42:3d:c8:04: 67:5d:13:c7:e2:80:45:b6:31:60:32:5a:1f:c0:92: 67:e6:2d:2d:7f:39:52:14:93:a3:87:7d:2d:83:31: 23:e5:e8:21:36:e7:33:07:ce:76:2d:71:bd:4c:fc: 02:75:58:60:7e:f5:2f:a9:b9:36:a3:87:f7:30:f3: 38:32:02:0b:21:ec:d6:28:8a:34:bb:a2:b9:a7:fb: d3:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:74:4C:22:DC:DD:B1:AF:6E:6D:BB:DC:EC:5C:B5:ED:F6:F1:14:C4 X509v3 Authority Key Identifier: keyid:39:D1:D5:95:54:18:91:35:30:94:58:36:18:D6:CC:07:9C:83:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdHVlVQYkTUwlFg2GNbMB5yDDOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:c8:b4:9b:c4:40:6d:ec:d2:c0:ff:6a:04:e0:f5:1f:44:5b: 8d:ae:df:1e:bb:13:10:f3:a5:0a:2d:38:d1:4a:dc:9b:d6:1d: 55:35:92:2f:69:88:61:f9:82:69:6a:e5:cb:fc:ba:0c:92:ad: 94:81:4c:d5:c9:a2:4c:ab:3f:1a:e2:75:e2:1c:15:ca:4d:46: 14:db:36:82:b9:19:9f:63:94:37:19:13:30:99:3f:c0:1b:b7: 7c:d6:72:98:15:cf:87:15:52:9e:ba:9a:dd:de:71:49:9a:89: 9c:98:f3:ea:fb:cf:f2:23:28:ee:dd:f4:f6:5e:53:19:a4:94: 84:38:4c:59:29:12:48:a3:83:f2:0d:35:8c:45:96:1c:26:fb: 19:5c:c4:96:1e:b1:6d:1d:3d:b3:b1:21:55:2a:65:10:5f:6a: a6:18:e6:c0:31:cb:dc:a3:43:24:cf:74:9f:98:df:db:20:3d: 9f:19:79:5c:51:be:e9:49:2f:32:14:ab:2a:48:ab:61:75:15: 0d:26:48:2d:33:e9:bb:19:ee:70:13:bd:dc:b0:c0:89:6e:b6: 68:cb:67:90:7d:9d:48:36:9d:ef:77:39:05:ec:03:e9:c8:bf: 63:8b:37:6d:e7:0d:0a:07:a0:93:b3:37:fe:fd:23:30:a5:dd: 3c:42:45:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHwkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBDN0MxMTAvBgNVBAUTKDM5RDFENTk1NTQxODkxMzUzMDk0NTgzNjE4RDZDQzA3 OUM4MzBDRTEwHhcNMjUxMjIyMTU1MDIzWhcNMjUxMjI5MTU1MDIzWjAYMRYwFAYD VQQDDA02OTQ5NjhiZi03MjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzX308jN6qs/WnSY6rSwL3fZUW18jfnjbDtvMpF7dbPDq0XnVLoyd1idsOIIm wE0j45/mV036wuW5Vy8iyMXEuKcKkHZw5nULsyGJ66VW8Bu6DcYabU0VVhFHBzyb xmtbyO3tdgQSCX97bMFq1HFgJLGuLWXpId+8nDJ2eDyfzuzoVAxx2bkgDVyoG1Kj yOy8QeZQKp204YNv2JYDLStUTLmcri9LthzhxL/eMs1H0kI9yARnXRPH4oBFtjFg MlofwJJn5i0tfzlSFJOjh30tgzEj5eghNuczB852LXG9TPwCdVhgfvUvqbk2o4f3 MPM4MgILIezWKIo0u6K5p/vTKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNB0TCLc 3bGvbm273Oxcte328RTEMB8GA1UdIwQYMBaAFDnR1ZVUGJE1MJRYNhjWzAecgwzh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEM3Qy8yOUY3QTA0MDZF RjcxMUU2OUUzMjY3MEFDNEY5QUUwMi9PZEhWbFZRWWtUVXdsRmcyR05iTUI1eURE T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kSFZsVlFZa1RVd2xGZzJHTmJNQjV5RERPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MEM3Qy8yOUY3QTA0MDZFRjcxMUU2OUUzMjY3MEFDNEY5QUUwMi9PZEhWbFZRWWtU VXdsRmcyR05iTUI1eURET0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9yLSbxEBt7NLA/2oE4PUfRFuNrt8euxMQ86UKLTjRStyb1h1VNZIv aYhh+YJpauXL/LoMkq2UgUzVyaJMqz8a4nXiHBXKTUYU2zaCuRmfY5Q3GRMwmT/A G7d81nKYFc+HFVKeuprd3nFJmomcmPPq+8/yIyju3fT2XlMZpJSEOExZKRJIo4Py DTWMRZYcJvsZXMSWHrFtHT2zsSFVKmUQX2qmGObAMcvco0Mkz3SfmN/bID2fGXlc Ub7pSS8yFKsqSKthdRUNJkgtM+m7Ge5wE73csMCJbrZoy2eQfZ1INp3vdzkF7APp yL9jizdt5w0KB6CTszf+/SMwpd08QkUl -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:49 2025 by rpki-client