This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.mft File: o8s5jsc5UXR2LZMDPnBgnWD03bI.mft (raw, json) Hash identifier: o+Ei01/IS5zQM0IxTV9y64sAPqADgzNi1MFxNOu7+6Y= Subject key identifier: E8:EE:CA:8F:78:B3:27:45:F8:FF:7F:9A:C9:8B:0C:1D:DD:81:39:07 Authority key identifier: A3:CB:39:8E:C7:39:51:74:76:2D:93:03:3E:70:60:9D:60:F4:DD:B2 Certificate issuer: /CN=A911606A/serialNumber=A3CB398EC7395174762D93033E70609D60F4DDB2 Certificate serial: 0162 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/o8s5jsc5UXR2LZMDPnBgnWD03bI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.mft Manifest number: 015E Signing time: Wed 03 Dec 2025 02:35:39 +0000 Manifest this update: Wed 03 Dec 2025 02:35:39 +0000 Manifest next update: Wed 10 Dec 2025 02:35:39 +0000 Files and hashes: 1: o8s5jsc5UXR2LZMDPnBgnWD03bI.crl (hash: 6NoZyrjBZ5u3yAwPVl5Kn/YDUjhqBlOzr8ExGCOGN9k=) 2: EEEC4B6ABD9D11EE9839661CC4F9AE02.roa (hash: MV1F0Q4UL7J+dtgMeHTJ35pvzsiuBXHWMmcfd9HjqkQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.crl rsync://rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/o8s5jsc5UXR2LZMDPnBgnWD03bI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 02:35:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 354 (0x162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911606A, serialNumber=A3CB398EC7395174762D93033E70609D60F4DDB2 Validity Not Before: Dec 3 02:35:39 2025 GMT Not After : Dec 10 02:35:39 2025 GMT Subject: CN=692fa1fb-24b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:81:64:dc:2d:75:be:30:5b:1d:3e:0f:74:6f: 71:3c:37:34:0b:bf:d5:30:c9:8e:16:0c:0f:61:2c: 03:a0:cc:8f:70:77:ff:9c:8e:e5:69:f2:b3:75:d0: 29:26:2c:10:14:b2:a3:db:11:6c:ef:30:f5:f0:02: 1f:a8:ae:89:e7:29:b4:77:2a:49:f1:e4:27:7c:9b: 72:aa:a8:ff:25:86:b1:c9:72:f0:50:75:f0:46:ca: 63:e0:9a:1d:d1:c7:5f:d4:ed:d4:39:e9:78:5a:11: 50:e9:cf:cf:5c:e4:5b:a4:c4:d9:c5:f9:9a:ce:d3: fd:ed:a3:04:92:85:0f:39:eb:e4:37:ca:53:f2:23: 82:e5:d0:96:86:cc:50:8f:c2:0a:34:54:b4:1c:c7: 0e:99:3c:68:b4:e0:cb:ab:19:70:07:ed:de:af:2a: 3d:0f:00:0a:7f:09:62:d8:47:99:97:a6:cc:db:b7: 87:29:85:cb:44:7b:25:20:a0:f2:5c:22:02:1b:61: 39:c4:79:13:76:a7:31:09:3c:f6:07:e8:a6:cb:96: 44:f8:bf:9c:18:eb:de:d4:64:ba:9a:a0:83:bf:00: 40:aa:f5:d1:86:7a:f7:23:54:51:0e:99:31:cd:e2: f6:00:0b:ce:7f:1a:bd:6b:37:f2:b8:17:30:db:fa: 4c:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:EE:CA:8F:78:B3:27:45:F8:FF:7F:9A:C9:8B:0C:1D:DD:81:39:07 X509v3 Authority Key Identifier: keyid:A3:CB:39:8E:C7:39:51:74:76:2D:93:03:3E:70:60:9D:60:F4:DD:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/o8s5jsc5UXR2LZMDPnBgnWD03bI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:9a:f3:ad:17:f3:86:b5:03:67:2b:b7:35:09:2d:4d:ab:7d: f7:a0:17:04:07:fa:cd:24:df:52:41:0e:41:8e:62:3b:6b:97: ba:49:13:64:20:c8:84:f7:6c:10:a1:b5:91:b5:c6:0e:4c:dc: bc:3d:f4:23:fb:ff:51:57:07:be:00:c5:a3:38:12:d2:45:ad: 37:55:4d:ca:81:d9:cf:5a:90:24:38:d2:72:fc:ee:d3:17:11: 83:fb:f9:2c:8b:5d:7a:30:62:53:a7:f1:e8:41:24:21:d8:43: 2f:7e:91:ea:f8:8b:c6:d1:64:4f:8d:47:13:21:ae:e5:64:00: cf:dc:0f:d4:2b:59:a7:d9:a0:e6:65:79:0e:67:5e:23:0f:51: 64:89:2e:cb:ad:05:2e:ca:d5:ae:58:4b:00:7d:88:d7:fe:cf: e7:48:09:ac:44:54:1a:3c:d0:0a:d4:85:a3:13:f0:d9:1e:74: 81:2d:28:49:a5:4f:b7:d6:ba:11:e4:e7:b7:70:5f:cb:4d:61: f4:9d:aa:94:c7:29:7d:c3:6f:07:df:bc:e8:04:0c:ea:93:5a: f7:50:9a:fe:67:78:85:df:31:e3:cc:e6:d1:0f:27:a2:51:5e: e9:5f:3e:42:dc:c5:86:27:8b:99:15:99:15:4b:8e:75:55:81: 17:8f:12:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTYwNkExMTAvBgNVBAUTKEEzQ0IzOThFQzczOTUxNzQ3NjJEOTMwMzNFNzA2MDlE NjBGNEREQjIwHhcNMjUxMjAzMDIzNTM5WhcNMjUxMjEwMDIzNTM5WjAYMRYwFAYD VQQDEw02OTJmYTFmYi0yNGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAooFk3C11vjBbHT4PdG9xPDc0C7/VMMmOFgwPYSwDoMyPcHf/nI7lafKzddAp JiwQFLKj2xFs7zD18AIfqK6J5ym0dypJ8eQnfJtyqqj/JYaxyXLwUHXwRspj4Jod 0cdf1O3UOel4WhFQ6c/PXORbpMTZxfmaztP97aMEkoUPOevkN8pT8iOC5dCWhsxQ j8IKNFS0HMcOmTxotODLqxlwB+3eryo9DwAKfwli2EeZl6bM27eHKYXLRHslIKDy XCICG2E5xHkTdqcxCTz2B+imy5ZE+L+cGOve1GS6mqCDvwBAqvXRhnr3I1RRDpkx zeL2AAvOfxq9azfyuBcw2/pM3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOjuyo94 sydF+P9/msmLDB3dgTkHMB8GA1UdIwQYMBaAFKPLOY7HOVF0di2TAz5wYJ1g9N2y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjA2QS80RjI1ODhFNEJC NDUxMUVFODMwQzk4NURDNEY5QUUwMi9vOHM1anNjNVVYUjJMWk1EUG5CZ25XRDAz YkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL284czVqc2M1VVhSMkxaTURQbkJnbldEMDNiSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjA2QS80RjI1ODhFNEJCNDUxMUVFODMwQzk4NURDNEY5QUUwMi9vOHM1anNjNVVY UjJMWk1EUG5CZ25XRDAzYkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEmvOtF/OGtQNnK7c1CS1Nq333oBcEB/rNJN9SQQ5BjmI7a5e6SRNk IMiE92wQobWRtcYOTNy8PfQj+/9RVwe+AMWjOBLSRa03VU3KgdnPWpAkONJy/O7T FxGD+/ksi116MGJTp/HoQSQh2EMvfpHq+IvG0WRPjUcTIa7lZADP3A/UK1mn2aDm ZXkOZ14jD1FkiS7LrQUuytWuWEsAfYjX/s/nSAmsRFQaPNAK1IWjE/DZHnSBLShJ pU+31roR5Oe3cF/LTWH0naqUxyl9w28H37zoBAzqk1r3UJr+Z3iF3zHjzObRDyei UV7pXz5C3MWGJ4uZFZkVS451VYEXjxJ6 -----END CERTIFICATE-----Generated at Wed Dec 3 16:14:01 2025 by rpki-client