This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft File: OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft (raw, json) Hash identifier: zg3onYScdXyNtWQnkZlTHlwTnl7Sm8pr7VDUkrH2x9E= Subject key identifier: 99:65:3A:56:2C:CA:31:D4:8A:20:08:CD:8E:93:EA:31:00:EB:77:6E Authority key identifier: 38:6C:30:0E:D7:2F:12:B9:05:47:8A:33:CE:F2:77:99:25:4A:69:1C Certificate issuer: /CN=A911E502/serialNumber=386C300ED72F12B905478A33CEF27799254A691C Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft Manifest number: 95 Signing time: Fri 19 Dec 2025 05:31:49 +0000 Manifest this update: Fri 19 Dec 2025 05:31:49 +0000 Manifest next update: Fri 26 Dec 2025 05:31:49 +0000 Files and hashes: 1: OGwwDtcvErkFR4ozzvJ3mSVKaRw.crl (hash: 849/UpAsY0DvbbpQTuddmhN3T0GtLW3JFVkDLjP1CrE=) 2: 553798E2FB2E11EFB488A95EC4F9AE02.roa (hash: p8161Irka1RhOlKGL72R+iegNNjEoBL5dnyvjeUTVQY=) 3: 5460E9C8FB2E11EFB488A95EC4F9AE02.roa (hash: bkhjgOMD/IEHS+ly/VrsRugL9cN6Yu5sgUx5f40TuYM=) 4: 53E9C44CFB2E11EFB488A95EC4F9AE02.roa (hash: hzaK0MTBJLVrmr0hWnuGmH3SdcFclIxCzlQUZOQabQ8=) 5: 54DA33D2FB2E11EFB488A95EC4F9AE02.roa (hash: L/7VzM2fbo0IdE808LBeTzf3z0geWQ0SpeUJCZmWPBg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.crl rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E502, serialNumber=386C300ED72F12B905478A33CEF27799254A691C Validity Not Before: Dec 19 05:31:49 2025 GMT Not After : Dec 26 05:31:49 2025 GMT Subject: CN=6944e345-2fcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:84:32:0f:3a:f2:30:f6:c6:37:f8:ad:ea:85: dd:40:7a:b8:7b:05:b3:66:2b:bd:69:89:2c:80:aa: 8e:0f:71:ec:90:85:0a:3f:31:1e:5a:8e:7e:52:c5: be:d8:4b:60:65:e3:54:c3:00:cc:3e:cc:45:0a:13: 58:fc:8a:78:bd:1b:4a:b9:0b:e3:96:c4:d0:a2:78: 29:21:a4:a1:a8:b6:af:b1:f2:9c:de:12:3c:5a:28: dd:fe:f0:bd:f3:d9:d3:dd:41:6e:db:87:d5:d3:4b: 6c:6d:70:92:6d:96:4c:88:aa:63:f5:62:4d:83:ea: 04:2f:50:40:49:96:29:0c:77:81:1b:86:cd:f8:f8: fa:d1:19:b8:9a:18:6f:0c:9c:48:73:ad:90:4d:57: d3:7c:25:27:c9:01:18:57:32:65:5d:3e:1d:ea:3c: e4:ff:ca:12:99:77:b8:00:e5:1f:7d:10:bd:d9:83: 21:98:58:6f:14:ab:2c:9c:9a:32:8f:94:f7:24:dc: fc:e9:3c:3a:28:96:47:58:2d:8e:a8:ed:cd:4d:39: 07:62:5e:33:38:04:2e:94:13:71:3e:c4:8f:2a:fe: 5a:ed:01:88:9c:42:c0:f2:e8:97:47:46:e4:fe:7b: e2:97:e4:42:41:57:2d:33:9a:fd:a7:bb:f1:3a:6c: 59:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:65:3A:56:2C:CA:31:D4:8A:20:08:CD:8E:93:EA:31:00:EB:77:6E X509v3 Authority Key Identifier: keyid:38:6C:30:0E:D7:2F:12:B9:05:47:8A:33:CE:F2:77:99:25:4A:69:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:c0:ff:ad:45:cc:fe:a0:3f:35:7d:1f:a2:74:ce:26:c8:a4: 2d:79:f0:f6:92:91:2a:36:a8:81:e7:3f:17:c7:7f:ac:4c:c7: 1f:bc:d7:72:f6:4d:17:e1:9d:19:00:ec:6f:f0:52:99:56:a7: 98:9f:7c:de:fa:bd:7a:fe:27:18:4b:bd:60:0a:bb:99:e7:53: 99:64:cb:d3:28:9d:31:14:7c:f6:b4:f3:eb:8b:a8:35:2a:61: f0:14:d0:b7:08:52:b5:61:62:e1:13:6b:b2:d5:9c:34:03:6b: 70:38:25:3d:af:9c:2f:3b:00:da:d1:7c:70:17:b5:0b:4d:59: 8f:4a:64:ea:2f:4b:7a:f2:36:c1:9f:bd:f7:92:ca:51:44:9f: 37:78:0c:b9:53:29:d3:b0:72:a3:c0:83:65:a2:2c:77:43:ba: 0f:4d:59:31:52:2c:93:98:b9:96:b1:50:22:f8:4a:db:5c:33: 1c:2a:27:fb:f0:fe:5e:88:51:6c:ea:a9:c5:66:c1:0b:2b:84: 00:42:9f:36:53:c6:92:8f:a8:96:61:d5:31:1d:96:3b:1d:07: 16:c7:3f:c9:8f:66:7a:94:36:6f:13:cf:6e:1f:f7:a2:da:60: 20:67:06:d0:c1:51:e6:4f:4a:16:41:e4:ba:27:62:8f:f9:32: 89:7c:9b:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU1MDIxMTAvBgNVBAUTKDM4NkMzMDBFRDcyRjEyQjkwNTQ3OEEzM0NFRjI3Nzk5 MjU0QTY5MUMwHhcNMjUxMjE5MDUzMTQ5WhcNMjUxMjI2MDUzMTQ5WjAYMRYwFAYD VQQDDA02OTQ0ZTM0NS0yZmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYQyDzryMPbGN/it6oXdQHq4ewWzZiu9aYksgKqOD3HskIUKPzEeWo5+UsW+ 2EtgZeNUwwDMPsxFChNY/Ip4vRtKuQvjlsTQongpIaShqLavsfKc3hI8Wijd/vC9 89nT3UFu24fV00tsbXCSbZZMiKpj9WJNg+oEL1BASZYpDHeBG4bN+Pj60Rm4mhhv DJxIc62QTVfTfCUnyQEYVzJlXT4d6jzk/8oSmXe4AOUffRC92YMhmFhvFKssnJoy j5T3JNz86Tw6KJZHWC2OqO3NTTkHYl4zOAQulBNxPsSPKv5a7QGInELA8uiXR0bk /nvil+RCQVctM5r9p7vxOmxZDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJllOlYs yjHUiiAIzY6T6jEA63duMB8GA1UdIwQYMBaAFDhsMA7XLxK5BUeKM87yd5klSmkc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTUwMi84N0MzRkQwQUZC MjkxMUVGQjc2NkRDNzZDNEY5QUUwMi9PR3d3RHRjdkVya0ZSNG96enZKM21TVkth UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09Hd3dEdGN2RXJrRlI0b3p6dkozbVNWS2FSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTUwMi84N0MzRkQwQUZCMjkxMUVGQjc2NkRDNzZDNEY5QUUwMi9PR3d3RHRjdkVy a0ZSNG96enZKM21TVkthUncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJwP+tRcz+oD81fR+idM4myKQtefD2kpEqNqiB5z8Xx3+sTMcfvNdy 9k0X4Z0ZAOxv8FKZVqeYn3ze+r16/icYS71gCruZ51OZZMvTKJ0xFHz2tPPri6g1 KmHwFNC3CFK1YWLhE2uy1Zw0A2twOCU9r5wvOwDa0XxwF7ULTVmPSmTqL0t68jbB n733kspRRJ83eAy5UynTsHKjwINloix3Q7oPTVkxUiyTmLmWsVAi+ErbXDMcKif7 8P5eiFFs6qnFZsELK4QAQp82U8aSj6iWYdUxHZY7HQcWxz/Jj2Z6lDZvE89uH/ei 2mAgZwbQwVHmT0oWQeS6J2KP+TKJfJvZ -----END CERTIFICATE-----Generated at Fri Dec 19 22:41:06 2025 by rpki-client