This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft File: OHvc-OlHoaBOL0OH-99wZUpE0b0.mft (raw, json) Hash identifier: zCPA4NRaZuJ9Qwrgb30sNaApoNbTulqIQJW3h94QM7Q= Subject key identifier: C0:8B:8B:2A:83:34:1C:2E:D6:78:3E:35:FA:31:1E:4C:04:74:5A:A0 Authority key identifier: 38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD Certificate issuer: /CN=A913ACF4/serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Certificate serial: 09BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft Manifest number: 09B3 Signing time: Mon 22 Dec 2025 19:23:44 +0000 Manifest this update: Mon 22 Dec 2025 19:23:44 +0000 Manifest next update: Mon 29 Dec 2025 19:23:44 +0000 Files and hashes: 1: OHvc-OlHoaBOL0OH-99wZUpE0b0.crl (hash: ZtYXz0FepOO/Ve8y1f1ab6ixRLDpYz2gFSMhxGfXcgU=) 2: 25E6E72899FE11EAB3E30513C4F9AE02.roa (hash: Z6vRCcxL1bmdrItPmj7qCyzvetl7oMIALv4P0w4CxB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:23:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2490 (0x9ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913ACF4, serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Validity Not Before: Dec 22 19:23:44 2025 GMT Not After : Dec 29 19:23:44 2025 GMT Subject: CN=69499ac0-6777 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:2e:59:dc:c0:29:77:aa:42:a5:f8:9b:f4:56: 38:06:56:27:20:88:94:34:1a:90:a6:1e:24:a6:65: 10:49:10:f0:3b:e7:e1:cd:83:85:f4:79:b6:a8:79: 1b:06:45:4c:6d:bf:f8:f4:5c:4a:df:5d:26:8a:51: c0:2e:02:25:d2:19:58:13:a7:93:41:d9:58:77:65: d2:82:31:f5:7e:ff:43:b7:e7:ea:60:39:4f:f4:56: 03:79:26:4b:d4:7e:a8:0d:48:35:76:b8:af:54:98: fa:f9:28:3e:6c:3d:7b:fe:75:03:57:33:62:64:eb: 0b:4b:a2:37:1e:08:4a:1e:fb:cc:b3:f2:ae:8f:76: 71:4f:cf:9e:c9:29:8f:fc:af:93:f3:a3:c5:01:71: f3:e7:f1:bd:6b:3c:0a:a9:f4:31:db:bd:61:f9:b2: ee:25:27:3a:00:6c:02:49:fb:4a:fd:8a:d5:14:6f: ac:a0:21:d9:c8:cd:93:7d:97:f9:ca:d0:dc:8a:9e: 32:70:09:58:ef:3c:ec:d1:d6:eb:ba:bb:81:37:47: 7e:0d:c3:97:ae:73:4f:ec:36:d0:68:0e:c6:bf:35: b1:0a:e2:e7:cd:98:ea:8b:1f:a1:a4:95:fb:5d:e9: 68:cf:f4:39:a8:d5:7c:f3:70:2e:6a:30:a7:a7:00: ad:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:8B:8B:2A:83:34:1C:2E:D6:78:3E:35:FA:31:1E:4C:04:74:5A:A0 X509v3 Authority Key Identifier: keyid:38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:3d:9b:72:a5:08:7d:95:b0:23:30:39:c7:47:37:db:1e:13: e2:27:e2:65:06:d7:e9:f2:ec:5c:2c:15:20:c4:29:af:76:78: bd:17:55:57:8f:f9:27:6a:4e:0f:41:f3:7a:32:f2:b3:e8:bf: d2:d3:b6:68:43:bf:69:2b:fd:19:f3:79:70:23:52:50:33:9f: 37:13:fd:40:99:18:67:76:84:47:32:2c:d1:f3:5c:de:18:eb: 0e:d3:41:f6:c4:d5:06:7c:54:13:97:0d:f3:a6:aa:52:02:a1: d9:f6:bf:d7:b9:59:be:2f:66:c0:0d:d6:3d:2a:bd:7e:af:bd: 04:96:f0:3e:ab:cd:69:e4:3e:ef:e7:b1:23:2d:9f:56:4e:48: aa:16:0f:44:40:32:50:16:a9:3a:24:1f:ff:b8:9f:97:28:03: b3:12:26:13:be:5f:fe:d1:d3:0d:aa:d7:64:aa:75:e9:47:7f: 10:08:a7:89:ec:79:e8:9f:19:47:69:94:f6:a7:ba:ff:e6:25: 9d:47:d8:1c:f4:f4:30:56:24:5a:7a:0b:7f:22:13:c4:7e:9f: 27:28:f6:f1:3f:f2:87:6f:07:e0:f6:fd:69:00:88:6b:ab:fe: 98:39:60:c1:be:64:b3:6b:e3:8b:23:ef:5d:ed:72:da:31:73: 36:35:bd:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FDRjQxMTAvBgNVBAUTKDM4N0JEQ0Y4RTk0N0ExQTA0RTJGNDM4N0ZCREY3MDY1 NEE0NEQxQkQwHhcNMjUxMjIyMTkyMzQ0WhcNMjUxMjI5MTkyMzQ0WjAYMRYwFAYD VQQDDA02OTQ5OWFjMC02Nzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqC5Z3MApd6pCpfib9FY4BlYnIIiUNBqQph4kpmUQSRDwO+fhzYOF9Hm2qHkb BkVMbb/49FxK310milHALgIl0hlYE6eTQdlYd2XSgjH1fv9Dt+fqYDlP9FYDeSZL 1H6oDUg1drivVJj6+Sg+bD17/nUDVzNiZOsLS6I3HghKHvvMs/Kuj3ZxT8+eySmP /K+T86PFAXHz5/G9azwKqfQx271h+bLuJSc6AGwCSftK/YrVFG+soCHZyM2TfZf5 ytDcip4ycAlY7zzs0dbruruBN0d+DcOXrnNP7DbQaA7GvzWxCuLnzZjqix+hpJX7 Xeloz/Q5qNV883AuajCnpwCt2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMCLiyqD NBwu1ng+NfoxHkwEdFqgMB8GA1UdIwQYMBaAFDh73PjpR6GgTi9Dh/vfcGVKRNG9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUNGNC83MEUzMDM2Qzk5 RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9hQk9MME9ILTk5d1pVcEUw YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09IdmMtT2xIb2FCT0wwT0gtOTl3WlVwRTBiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUNGNC83MEUzMDM2Qzk5RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9h Qk9MME9ILTk5d1pVcEUwYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGPZtypQh9lbAjMDnHRzfbHhPiJ+JlBtfp8uxcLBUgxCmvdni9F1VX j/knak4PQfN6MvKz6L/S07ZoQ79pK/0Z83lwI1JQM583E/1AmRhndoRHMizR81ze GOsO00H2xNUGfFQTlw3zpqpSAqHZ9r/XuVm+L2bADdY9Kr1+r70ElvA+q81p5D7v 57EjLZ9WTkiqFg9EQDJQFqk6JB//uJ+XKAOzEiYTvl/+0dMNqtdkqnXpR38QCKeJ 7HnonxlHaZT2p7r/5iWdR9gc9PQwViRaegt/IhPEfp8nKPbxP/KHbwfg9v1pAIhr q/6YOWDBvmSza+OLI+9d7XLaMXM2Nb0C -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:28 2025 by rpki-client