This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft File: OXH34h0IySQ6u0A_gDBkv3iy2IA.mft (raw, json) Hash identifier: my3G8PLpbwtRvYF8tDhayVUckrKvsQcojqg5NJFMMEo= Subject key identifier: 50:BF:40:3F:D8:78:74:33:FA:5C:5F:D7:F2:6C:B5:E4:21:22:50:1D Authority key identifier: 39:71:F7:E2:1D:08:C9:24:3A:BB:40:3F:80:30:64:BF:78:B2:D8:80 Certificate issuer: /CN=A913D46F/serialNumber=3971F7E21D08C9243ABB403F803064BF78B2D880 Certificate serial: 0D17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft Manifest number: 0CE8 Signing time: Wed 10 Dec 2025 17:31:26 +0000 Manifest this update: Wed 10 Dec 2025 17:31:25 +0000 Manifest next update: Wed 17 Dec 2025 17:31:25 +0000 Files and hashes: 1: OXH34h0IySQ6u0A_gDBkv3iy2IA.crl (hash: Zm2DE4JR0MWtt9wuue6rVhxVpyw68qlZWfVCRgq1Mg0=) 2: 92F8F6D042DA11ED93029A6AC4F9AE02.roa (hash: 6avRjwNItYCzxG+yq5MB2LMVNEbgrnYskEIlXomTLWc=) 3: B0B722BEFA4A11EDA47C091DC4F9AE02.roa (hash: whIj4TZ+yyw/VbL0wLVNZHdMGGpE4Mabv0G6g01cTLE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.crl rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 17:31:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3351 (0xd17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D46F, serialNumber=3971F7E21D08C9243ABB403F803064BF78B2D880 Validity Not Before: Dec 10 17:31:25 2025 GMT Not After : Dec 17 17:31:25 2025 GMT Subject: CN=6939ae6d-1c0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d5:c8:10:9d:13:3b:f9:1a:01:3a:be:38:f4: bd:60:7b:7c:01:1a:c4:61:26:7d:c1:99:d4:69:8f: b1:e1:dc:dd:4e:db:70:a0:7c:8f:9d:b4:c7:01:1d: 4b:67:b1:3c:f9:73:97:4d:74:d9:e5:a3:3d:b4:04: 42:2a:da:1d:90:ac:7c:06:d4:80:d4:af:4e:d3:a5: aa:19:6f:11:df:5d:cf:8d:f5:a4:18:4c:51:3a:34: 58:79:80:1a:75:48:05:6e:ba:62:57:31:70:2f:24: 8e:37:1c:8d:da:96:39:ba:c9:74:3b:45:a6:33:7b: dc:02:49:3d:b1:a2:89:c4:16:34:0f:f0:da:c1:6d: 1c:56:d4:d8:8c:2e:d8:e6:48:8b:72:9b:6a:81:20: 2f:b1:58:5d:0c:98:8a:fa:79:fc:39:a0:f9:78:3a: f9:91:27:23:61:50:03:ed:f4:de:6b:6a:02:7d:8b: be:1a:c1:ee:85:d6:95:28:dc:3e:eb:e2:55:a0:18: 04:37:13:83:31:11:0c:65:b9:67:5a:0b:1e:10:d0: 9e:04:20:55:d8:88:90:44:bd:18:e0:e9:77:8b:0f: c4:df:6e:60:ee:c0:7a:28:92:a0:e6:d4:54:59:d9: 8e:0f:1f:e7:f0:41:2c:19:e9:61:b5:80:28:fe:2a: d7:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:BF:40:3F:D8:78:74:33:FA:5C:5F:D7:F2:6C:B5:E4:21:22:50:1D X509v3 Authority Key Identifier: keyid:39:71:F7:E2:1D:08:C9:24:3A:BB:40:3F:80:30:64:BF:78:B2:D8:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:69:9d:0f:04:71:52:8f:0e:cc:d8:f6:99:44:5c:b0:43:71: f6:4a:2f:01:1c:8e:cb:00:ca:62:a8:96:f4:e4:8a:69:c5:60: 9a:e7:48:6a:cd:70:22:8f:83:18:f1:05:0a:92:69:9a:34:a5: 75:af:2a:86:21:b3:09:43:3f:3e:fa:82:38:4e:85:2c:2d:a9: c9:5a:ba:33:e5:25:82:ec:54:ea:59:42:db:91:dd:1f:96:37: 8d:08:07:ca:b9:13:74:74:7e:0f:2d:ac:16:66:16:f4:38:31: 83:17:c2:cd:67:d0:10:20:7d:ca:72:f0:ca:03:f9:d7:84:c1: 84:50:96:9c:cb:e6:e1:ee:dc:17:3f:25:1f:46:4c:23:52:f7: f0:29:a5:0a:b5:6c:6d:25:68:0e:b0:56:dc:a3:1c:5c:6f:58: c4:1e:1e:8f:25:36:0c:aa:f6:5d:a8:3e:14:3a:f1:dc:f4:c8: 66:90:3e:4f:9b:a6:2a:38:eb:ba:0c:5f:7a:9c:31:de:10:dd: a0:5f:f7:84:5a:03:df:c0:60:23:ca:b2:72:a1:0b:7a:98:04: 40:6d:c7:9c:19:28:35:fe:0e:10:a2:1a:ba:d5:e1:30:b9:60: 17:1b:0d:d5:23:85:f7:a7:e6:59:c9:24:e2:f2:fe:2f:20:bf: 99:dd:e0:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDRcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Q0NkYxMTAvBgNVBAUTKDM5NzFGN0UyMUQwOEM5MjQzQUJCNDAzRjgwMzA2NEJG NzhCMkQ4ODAwHhcNMjUxMjEwMTczMTI1WhcNMjUxMjE3MTczMTI1WjAYMRYwFAYD VQQDEw02OTM5YWU2ZC0xYzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdXIEJ0TO/kaATq+OPS9YHt8ARrEYSZ9wZnUaY+x4dzdTttwoHyPnbTHAR1L Z7E8+XOXTXTZ5aM9tARCKtodkKx8BtSA1K9O06WqGW8R313PjfWkGExROjRYeYAa dUgFbrpiVzFwLySONxyN2pY5usl0O0WmM3vcAkk9saKJxBY0D/DawW0cVtTYjC7Y 5kiLcptqgSAvsVhdDJiK+nn8OaD5eDr5kScjYVAD7fTea2oCfYu+GsHuhdaVKNw+ 6+JVoBgENxODMREMZblnWgseENCeBCBV2IiQRL0Y4Ol3iw/E325g7sB6KJKg5tRU WdmODx/n8EEsGelhtYAo/irXnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFC/QD/Y eHQz+lxf1/JsteQhIlAdMB8GA1UdIwQYMBaAFDlx9+IdCMkkOrtAP4AwZL94stiA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDQ2Ri83REEyNEM3QTAw NjkxMUVBOEZEQjI4NURDNEY5QUUwMi9PWEgzNGgwSXlTUTZ1MEFfZ0RCa3YzaXky SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09YSDM0aDBJeVNRNnUwQV9nREJrdjNpeTJJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDQ2Ri83REEyNEM3QTAwNjkxMUVBOEZEQjI4NURDNEY5QUUwMi9PWEgzNGgwSXlT UTZ1MEFfZ0RCa3YzaXkySUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcaZ0PBHFSjw7M2PaZRFywQ3H2Si8BHI7LAMpiqJb05IppxWCa50hq zXAij4MY8QUKkmmaNKV1ryqGIbMJQz8++oI4ToUsLanJWroz5SWC7FTqWULbkd0f ljeNCAfKuRN0dH4PLawWZhb0ODGDF8LNZ9AQIH3KcvDKA/nXhMGEUJacy+bh7twX PyUfRkwjUvfwKaUKtWxtJWgOsFbcoxxcb1jEHh6PJTYMqvZdqD4UOvHc9MhmkD5P m6YqOOu6DF96nDHeEN2gX/eEWgPfwGAjyrJyoQt6mARAbcecGSg1/g4Qohq61eEw uWAXGw3VI4X3p+ZZySTi8v4vIL+Z3eCB -----END CERTIFICATE-----Generated at Fri Dec 12 00:11:05 2025 by rpki-client