This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft File: opgFnwZTffjAi4klX3lZQaMcGAA.mft (raw, json) Hash identifier: ZhG8kbdYliMHsEHspdTfQhLr686r4B6nfgvM7MXx0a8= Subject key identifier: C5:DA:64:1B:9C:07:3F:DD:4B:2B:78:71:CE:20:26:8D:97:AF:C6:16 Authority key identifier: A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00 Certificate issuer: /CN=A9144CB7/serialNumber=A298059F06537DF8C08B89255F795941A31C1800 Certificate serial: A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft Manifest number: 9E Signing time: Sun 07 Dec 2025 04:30:16 +0000 Manifest this update: Sun 07 Dec 2025 04:30:15 +0000 Manifest next update: Sun 14 Dec 2025 04:30:15 +0000 Files and hashes: 1: opgFnwZTffjAi4klX3lZQaMcGAA.crl (hash: +0kdzOjHmALBa3PO1eARRWVXMieoZgy5VEryYuQpPLk=) 2: E8716FD4EA3511EF89116C52C4F9AE02.roa (hash: /ib2O66BEz/+EIpjbYLfsm9ZEc6Tr2GDRN2PvAJwp9o=) 3: 903E0F1652BD11F0A9261F57C4F9AE02.roa (hash: wehugKaizIxEhZtf3yJWa3v9WBxQforOS0s0qf27ViE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.crl rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 04:30:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144CB7, serialNumber=A298059F06537DF8C08B89255F795941A31C1800 Validity Not Before: Dec 7 04:30:15 2025 GMT Not After : Dec 14 04:30:15 2025 GMT Subject: CN=693502d8-b60e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:61:3e:49:7c:a4:ca:c1:bd:3b:cb:6f:38:8a: 32:91:bc:b4:43:d8:db:31:5a:f4:22:4d:d0:25:47: 34:07:48:28:af:c3:05:3b:50:a9:ab:ff:35:f2:e7: 87:5e:6d:74:cf:b7:36:0e:39:e5:e6:62:fc:b0:38: 47:8d:59:17:22:58:f2:29:1a:8e:ab:1a:d4:65:04: a1:17:3d:53:aa:31:24:b0:33:97:31:d7:4a:f7:08: 03:70:fa:63:61:1a:2e:90:5f:da:a8:49:08:dc:0b: b0:10:88:00:be:51:a8:19:9d:7a:72:32:87:57:b4: 2a:10:c3:ef:05:99:fa:4f:70:4c:8a:5f:f9:ff:a5: dc:4d:a5:b0:8b:4b:9c:b3:7f:db:0b:9f:af:54:d0: 80:52:69:29:a9:7f:d1:b4:5e:14:58:f6:dc:e7:1b: 52:07:45:ab:b6:79:19:93:e9:ec:7c:e1:08:fa:7c: 43:c7:ad:69:18:df:3e:f7:74:8a:37:df:e4:1c:7d: 28:6e:1a:32:cb:da:1d:86:1d:3d:62:ef:6e:17:c1: 5b:11:1c:93:79:d6:d6:94:db:a0:c8:4e:9a:c3:93: 1e:e6:88:37:7f:9c:6f:af:9e:5f:d8:97:52:b5:cf: ec:4b:74:96:dc:c8:3b:34:a3:ec:8a:62:49:49:fa: a6:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:DA:64:1B:9C:07:3F:DD:4B:2B:78:71:CE:20:26:8D:97:AF:C6:16 X509v3 Authority Key Identifier: keyid:A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:9a:0e:1f:dd:88:29:e2:f5:fa:66:1f:d2:47:ef:95:12:42: 2b:7e:86:a5:a9:aa:af:0a:fc:fe:f8:59:5a:7d:83:04:95:01: 2a:8d:1e:cc:70:10:d6:83:06:bc:b3:14:b5:15:29:b0:65:e6: 7c:4e:20:c4:fe:01:7e:2c:56:ab:1b:e3:fc:0c:85:d5:a0:04: 7d:31:6c:e6:9a:54:50:3c:4c:48:f4:a4:89:11:0f:7d:b4:7b: 95:dc:6d:c0:50:55:18:1d:22:47:b6:1c:9e:11:7f:e1:13:b1: cb:05:b9:67:43:e2:aa:9a:3c:27:31:b3:73:d8:27:9f:ec:92: 09:f1:73:61:4e:5b:ae:1f:fa:81:31:bb:a4:49:78:8c:8c:da: 92:fc:6d:ab:fd:e6:86:95:c9:45:3b:95:a6:4b:e3:9c:ff:32: 7d:c0:9d:bd:47:d4:67:d3:94:4e:27:3f:b7:27:a8:b3:a6:c6: 50:95:db:cc:88:b3:91:1c:ef:ee:90:f2:57:63:cf:b2:68:7f: 74:d5:b1:d4:06:da:e0:d5:9f:18:ab:e2:c5:94:b9:84:52:c1: 84:2a:2b:69:94:7f:9d:97:75:af:46:b4:6b:11:4d:55:81:7d: 19:69:d0:7b:61:0f:67:75:8a:9b:ff:d0:07:5a:88:f5:32:2d: d3:db:ff:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRDQjcxMTAvBgNVBAUTKEEyOTgwNTlGMDY1MzdERjhDMDhCODkyNTVGNzk1OTQx QTMxQzE4MDAwHhcNMjUxMjA3MDQzMDE1WhcNMjUxMjE0MDQzMDE1WjAYMRYwFAYD VQQDEw02OTM1MDJkOC1iNjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArGE+SXykysG9O8tvOIoykby0Q9jbMVr0Ik3QJUc0B0gor8MFO1Cpq/818ueH Xm10z7c2Djnl5mL8sDhHjVkXIljyKRqOqxrUZQShFz1TqjEksDOXMddK9wgDcPpj YRoukF/aqEkI3AuwEIgAvlGoGZ16cjKHV7QqEMPvBZn6T3BMil/5/6XcTaWwi0uc s3/bC5+vVNCAUmkpqX/RtF4UWPbc5xtSB0WrtnkZk+nsfOEI+nxDx61pGN8+93SK N9/kHH0obhoyy9odhh09Yu9uF8FbERyTedbWlNugyE6aw5Me5og3f5xvr55f2JdS tc/sS3SW3Mg7NKPsimJJSfqmPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMXaZBuc Bz/dSyt4cc4gJo2Xr8YWMB8GA1UdIwQYMBaAFKKYBZ8GU334wIuJJV95WUGjHBgA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NENCNy84QzkzRjc2Q0Ux NzYxMUVGQjc5ODFCMTlDNEY5QUUwMi9vcGdGbndaVGZmakFpNGtsWDNsWlFhTWNH QUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29wZ0Zud1pUZmZqQWk0a2xYM2xaUWFNY0dBQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NENCNy84QzkzRjc2Q0UxNzYxMUVGQjc5ODFCMTlDNEY5QUUwMi9vcGdGbndaVGZm akFpNGtsWDNsWlFhTWNHQUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAimg4f3Ygp4vX6Zh/SR++VEkIrfoalqaqvCvz++FlafYMElQEqjR7M cBDWgwa8sxS1FSmwZeZ8TiDE/gF+LFarG+P8DIXVoAR9MWzmmlRQPExI9KSJEQ99 tHuV3G3AUFUYHSJHthyeEX/hE7HLBblnQ+KqmjwnMbNz2Cef7JIJ8XNhTluuH/qB MbukSXiMjNqS/G2r/eaGlclFO5WmS+Oc/zJ9wJ29R9Rn05ROJz+3J6izpsZQldvM iLORHO/ukPJXY8+yaH901bHUBtrg1Z8Yq+LFlLmEUsGEKitplH+dl3WvRrRrEU1V gX0ZadB7YQ9ndYqb/9AHWoj1Mi3T2//F -----END CERTIFICATE-----Generated at Mon Dec 8 06:11:36 2025 by rpki-client