This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.mft File: ol7YoUJ66Tsk0w3M36gyU4tQCK0.mft (raw, json) Hash identifier: Uwusty5JWLZARFCbNpnyRziSvpu8pcvExur+mSxAwr4= Subject key identifier: 2E:C7:71:67:B7:BB:95:AF:6D:B5:8F:92:15:56:2E:8D:1B:57:36:EC Authority key identifier: A2:5E:D8:A1:42:7A:E9:3B:24:D3:0D:CC:DF:A8:32:53:8B:50:08:AD Certificate issuer: /CN=A914A139/serialNumber=A25ED8A1427AE93B24D30DCCDFA832538B5008AD Certificate serial: 0C2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ol7YoUJ66Tsk0w3M36gyU4tQCK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.mft Manifest number: 0C17 Signing time: Wed 10 Dec 2025 18:02:24 +0000 Manifest this update: Wed 10 Dec 2025 18:02:24 +0000 Manifest next update: Wed 17 Dec 2025 18:02:24 +0000 Files and hashes: 1: ol7YoUJ66Tsk0w3M36gyU4tQCK0.crl (hash: pvw/ExxUaHFahgyp1lDDYbz2S4hvN+9eZi9MU+hqyzc=) 2: 65BB2B42C0E311EEBEF3D409C4F9AE02.roa (hash: OwW86qMJFwbNjXHq+OTRD7Vzx3peXb6YxQieVHGeMos=) 3: 10CF1D82C0E311EE81F3E987C4F9AE02.roa (hash: DWCg5lL0mEzrArVCwICSW9aYx94oeCmf91vXy2qE580=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.crl rsync://rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ol7YoUJ66Tsk0w3M36gyU4tQCK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 18:02:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3118 (0xc2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A139, serialNumber=A25ED8A1427AE93B24D30DCCDFA832538B5008AD Validity Not Before: Dec 10 18:02:24 2025 GMT Not After : Dec 17 18:02:24 2025 GMT Subject: CN=6939b5b0-c666 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:68:ce:23:f8:0b:62:5c:47:ae:30:75:db:6e: ee:45:3c:ae:21:0c:ae:1a:10:c6:43:a4:c7:52:ef: 03:99:05:b2:42:b8:80:01:06:11:89:9c:b4:88:48: 67:41:06:e9:60:e5:b6:00:d3:04:af:0b:35:e8:7b: 74:0d:f5:11:05:a2:16:51:09:8e:96:06:bf:26:3a: 37:d3:64:2d:4b:d5:e7:54:39:37:54:8c:7c:97:d5: e0:d1:36:b4:f4:cb:8b:e1:60:34:85:ad:4d:9b:54: 35:22:71:e1:96:2c:e0:95:97:21:39:79:c9:c0:7f: bf:b2:1f:26:44:72:39:74:3e:ee:b5:cb:ff:77:44: 45:be:0f:76:d0:a9:0b:19:97:0b:b9:a5:99:46:48: 0a:77:32:9d:78:cb:3e:51:5c:b1:b0:ca:13:63:15: 53:9c:a7:19:9b:81:24:ad:b6:3a:fc:49:af:83:93: 0f:6a:56:c0:f9:3e:b4:2b:5d:5d:b0:37:ac:70:1f: 81:60:f8:37:c9:84:6e:0f:ce:3b:5f:a5:9e:50:99: 33:1e:c9:fc:33:fb:43:5d:33:c9:09:83:cb:9a:3a: de:19:b2:46:68:7f:7a:47:97:7a:34:2d:49:f2:cd: 55:0c:98:89:e0:7f:91:40:1f:bb:7b:7f:5c:20:f0: 09:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:C7:71:67:B7:BB:95:AF:6D:B5:8F:92:15:56:2E:8D:1B:57:36:EC X509v3 Authority Key Identifier: keyid:A2:5E:D8:A1:42:7A:E9:3B:24:D3:0D:CC:DF:A8:32:53:8B:50:08:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ol7YoUJ66Tsk0w3M36gyU4tQCK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A139/EBB9EC6024CA11EAAC2AE586C4F9AE02/ol7YoUJ66Tsk0w3M36gyU4tQCK0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:16:52:24:0b:04:a1:1b:15:23:3b:69:a0:3c:a3:d7:6f:3c: 61:e5:0a:0e:c4:df:72:27:25:cc:52:99:62:1d:d9:29:36:d0: fe:f5:2a:a1:99:19:06:fc:f2:ab:17:b0:a9:7d:6a:a8:f3:4d: 65:5c:24:a5:65:6d:7c:e2:bc:fb:66:70:40:35:a7:c6:15:6c: 15:3e:f8:3c:ae:fb:df:b7:11:97:8b:c5:63:eb:70:f7:da:2e: aa:e2:3a:91:09:2d:16:a3:1a:d8:52:b3:66:f4:a7:6c:5a:54: 5f:04:77:91:43:10:c9:25:19:e7:41:57:71:ed:0e:61:80:a5: 9d:53:16:1e:87:2d:26:c7:e7:1c:1b:a9:ec:44:9e:d1:c2:b4: a6:1b:cd:29:ea:7e:5a:56:c9:cf:de:cb:5f:0e:58:c5:58:cc: 84:27:4a:15:7a:ac:70:8b:1d:63:83:7a:9c:92:c1:6b:6f:39: 86:f9:d7:3d:c9:25:06:80:c6:15:90:2a:8c:60:14:85:10:d7: 86:4d:9f:14:57:20:a5:82:1b:06:88:1b:b4:e6:0d:06:8e:80: 9b:9c:39:57:a5:54:4e:c1:ac:11:74:8d:82:f0:ee:19:cb:3d: 23:ca:22:5f:57:6b:7a:07:3c:a5:d8:98:1d:d7:14:8e:93:13: 98:38:80:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEExMzkxMTAvBgNVBAUTKEEyNUVEOEExNDI3QUU5M0IyNEQzMERDQ0RGQTgzMjUz OEI1MDA4QUQwHhcNMjUxMjEwMTgwMjI0WhcNMjUxMjE3MTgwMjI0WjAYMRYwFAYD VQQDEw02OTM5YjViMC1jNjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGjOI/gLYlxHrjB1227uRTyuIQyuGhDGQ6THUu8DmQWyQriAAQYRiZy0iEhn QQbpYOW2ANMErws16Ht0DfURBaIWUQmOlga/Jjo302QtS9XnVDk3VIx8l9Xg0Ta0 9MuL4WA0ha1Nm1Q1InHhlizglZchOXnJwH+/sh8mRHI5dD7utcv/d0RFvg920KkL GZcLuaWZRkgKdzKdeMs+UVyxsMoTYxVTnKcZm4EkrbY6/Emvg5MPalbA+T60K11d sDescB+BYPg3yYRuD847X6WeUJkzHsn8M/tDXTPJCYPLmjreGbJGaH96R5d6NC1J 8s1VDJiJ4H+RQB+7e39cIPAJBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC7HcWe3 u5WvbbWPkhVWLo0bVzbsMB8GA1UdIwQYMBaAFKJe2KFCeuk7JNMNzN+oMlOLUAit MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTEzOS9FQkI5RUM2MDI0 Q0ExMUVBQUMyQUU1ODZDNEY5QUUwMi9vbDdZb1VKNjZUc2swdzNNMzZneVU0dFFD SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29sN1lvVUo2NlRzazB3M00zNmd5VTR0UUNLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTEzOS9FQkI5RUM2MDI0Q0ExMUVBQUMyQUU1ODZDNEY5QUUwMi9vbDdZb1VKNjZU c2swdzNNMzZneVU0dFFDSzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEFlIkCwShGxUjO2mgPKPXbzxh5QoOxN9yJyXMUpliHdkpNtD+9Sqh mRkG/PKrF7CpfWqo801lXCSlZW184rz7ZnBANafGFWwVPvg8rvvftxGXi8Vj63D3 2i6q4jqRCS0WoxrYUrNm9KdsWlRfBHeRQxDJJRnnQVdx7Q5hgKWdUxYehy0mx+cc G6nsRJ7RwrSmG80p6n5aVsnP3stfDljFWMyEJ0oVeqxwix1jg3qcksFrbzmG+dc9 ySUGgMYVkCqMYBSFENeGTZ8UVyClghsGiBu05g0GjoCbnDlXpVROwawRdI2C8O4Z yz0jyiJfV2t6Bzyl2Jgd1xSOkxOYOIDo -----END CERTIFICATE-----Generated at Fri Dec 12 00:09:48 2025 by rpki-client