This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft File: OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft (raw, json) Hash identifier: fVo2mP0mOo6jJZ/RgAXzvlK8MLfuZ5vbgF0R8O3KpHs= Subject key identifier: 93:1F:3C:7B:6A:94:5C:6F:27:60:67:E4:65:13:12:4B:CC:51:B0:1F Authority key identifier: 39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD Certificate issuer: /CN=A9157D67/serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD Certificate serial: 0BDE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft Manifest number: 0A10 Signing time: Sat 06 Dec 2025 20:39:49 +0000 Manifest this update: Sat 06 Dec 2025 20:39:48 +0000 Manifest next update: Sat 13 Dec 2025 20:39:48 +0000 Files and hashes: 1: OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl (hash: +Wib//SKQRGUHPxtuBZYHp6LRj8C4TXIsH73vFc3EcM=) 2: 93EE047E4BB511EE9309AA4EC4F9AE02.roa (hash: vQWuHkxNO3W+64VKIpJFVWJTeNRMIc+wKzNHsAhde4Q=) 3: B8D1EFFECFF111F085D0CF76C4F9AE02.roa (hash: O3l12cVrUOS8U9iR93efMuyRPJjx+/kubWNGPD9xecQ=) 4: 72C9BE36950211EFAC892C5EC4F9AE02.roa (hash: tUqKc58G4NP/ZiNhEE4m52A3vGMH09GTzhVMgnnCe/8=) 5: 263DB02C4BB611EE9B959267C4F9AE02.roa (hash: uy/Ya9Uphz8yk5gzFrvw8K92wA25vKbiFTbIY5cp56U=) 6: 61EE2500936E11F091943583C4F9AE02.roa (hash: qQaUk6cquZP7nNyZHTQszjiLtFKFkr+G2zqYs9o1x6o=) 7: AB96EF3852CD11ECAB209C5FC4F9AE02.roa (hash: KHmIhJVDnUN/JIAGOGyBUT9fEQNuIGqQSzduAjkMS7g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 20:39:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3038 (0xbde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D67, serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD Validity Not Before: Dec 6 20:39:48 2025 GMT Not After : Dec 13 20:39:48 2025 GMT Subject: CN=69349495-ad16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a8:5c:69:27:81:0c:3d:16:db:22:d0:52:0e: d6:14:ec:98:15:fa:81:01:fb:8d:5a:a8:e6:05:c8: 4a:11:00:0f:aa:2d:d3:4f:dc:f8:ab:90:81:aa:b2: bb:7c:e7:c2:29:b1:b1:8c:57:32:0e:03:7a:51:6d: 0f:39:81:b9:a0:fc:e3:a8:d2:4e:0e:f7:03:c1:65: a1:ac:32:5d:35:12:ad:86:14:7e:bc:ad:56:e5:f4: ac:09:6a:65:a5:bf:ea:d1:b8:49:bb:f1:8f:b7:8b: e0:6c:9f:6a:e7:c5:21:86:2b:e3:d5:42:00:8e:ea: 24:b0:ce:b2:d8:f5:83:ce:05:db:8b:13:0c:2f:fe: a1:30:2c:31:90:9f:07:d1:17:db:56:87:d5:64:a8: aa:b0:46:67:b5:d6:40:1d:e8:d5:f5:bf:ec:d2:b5: f7:d9:3c:89:3c:ed:0f:64:95:e1:f0:9a:84:b9:3c: 59:54:1a:13:3e:97:21:fe:6c:d6:6a:08:8f:a9:84: 56:47:b8:1e:3b:07:87:2e:fe:eb:6d:ee:66:9d:5c: 8c:41:8b:df:f0:48:7d:e6:f1:61:10:5c:ad:e6:03: 1b:bf:5c:71:ba:10:42:a2:ab:b4:72:d8:e0:e6:4d: 81:15:24:60:cc:29:18:fe:f7:5c:5d:02:51:59:1f: 18:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:1F:3C:7B:6A:94:5C:6F:27:60:67:E4:65:13:12:4B:CC:51:B0:1F X509v3 Authority Key Identifier: keyid:39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:aa:31:7e:0e:18:a8:fb:f1:f6:81:c1:d2:da:4b:77:a4:e6: 84:04:46:37:89:f2:84:38:aa:54:ee:05:62:73:98:05:0a:20: 3c:fc:1b:28:df:fa:af:95:76:b5:84:20:b5:e7:d7:20:c3:70: 3b:63:0e:7d:6a:d6:14:3e:b1:d1:e5:08:0e:a8:2b:1e:6d:3e: 1a:b1:96:ec:2a:63:2b:78:df:94:95:d2:ca:63:79:2b:f1:65: 66:36:e7:35:32:fa:de:d2:1f:0b:47:3e:de:70:fc:ec:9a:ff: 2e:b3:98:73:b4:f1:ca:ce:e7:48:60:93:f1:9c:b5:66:f9:2f: 4e:6b:fb:ae:cb:c4:91:22:70:78:12:fb:a5:85:f7:a4:41:22: fd:0d:9d:9d:19:88:cf:bb:04:9a:ef:f8:07:ab:71:de:a9:c4: 6d:d7:05:e0:5a:f3:7b:ca:91:4c:3f:c6:43:76:1f:02:b2:38: ee:b8:ac:db:a5:32:a3:43:9c:43:0b:2f:58:8b:35:46:d8:c8: 1f:d8:6e:e3:9e:23:54:e3:66:f2:98:c3:90:d0:2f:c3:87:8d: a3:fc:14:d1:e8:89:0c:30:0e:7d:a0:11:3a:9e:81:41:b6:be: 4a:06:8f:61:3c:e1:b5:68:99:11:b0:e5:d8:4a:69:ed:40:a5: 55:58:3c:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC94wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdENjcxMTAvBgNVBAUTKDM5QzQzOTY3NTcwMDg3RjU4M0U0MjVBOUZFOUI2OUI5 NTA2QTU5QkQwHhcNMjUxMjA2MjAzOTQ4WhcNMjUxMjEzMjAzOTQ4WjAYMRYwFAYD VQQDEw02OTM0OTQ5NS1hZDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsahcaSeBDD0W2yLQUg7WFOyYFfqBAfuNWqjmBchKEQAPqi3TT9z4q5CBqrK7 fOfCKbGxjFcyDgN6UW0POYG5oPzjqNJODvcDwWWhrDJdNRKthhR+vK1W5fSsCWpl pb/q0bhJu/GPt4vgbJ9q58Uhhivj1UIAjuoksM6y2PWDzgXbixMML/6hMCwxkJ8H 0RfbVofVZKiqsEZntdZAHejV9b/s0rX32TyJPO0PZJXh8JqEuTxZVBoTPpch/mzW agiPqYRWR7geOweHLv7rbe5mnVyMQYvf8Eh95vFhEFyt5gMbv1xxuhBCoqu0ctjg 5k2BFSRgzCkY/vdcXQJRWR8Y0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJMfPHtq lFxvJ2Bn5GUTEkvMUbAfMB8GA1UdIwQYMBaAFDnEOWdXAIf1g+Qlqf6bablQalm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q2Ny82OUU2QzE2QTQ0 MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9PY1E1WjFjQWhfV0Q1Q1dwX3B0cHVWQnFX YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jUTVaMWNBaF9XRDVDV3BfcHRwdVZCcVdiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0Q2Ny82OUU2QzE2QTQ0MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9PY1E1WjFjQWhf V0Q1Q1dwX3B0cHVWQnFXYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnqjF+Dhio+/H2gcHS2kt3pOaEBEY3ifKEOKpU7gVic5gFCiA8/Bso 3/qvlXa1hCC159cgw3A7Yw59atYUPrHR5QgOqCsebT4asZbsKmMreN+UldLKY3kr 8WVmNuc1Mvre0h8LRz7ecPzsmv8us5hztPHKzudIYJPxnLVm+S9Oa/uuy8SRInB4 EvulhfekQSL9DZ2dGYjPuwSa7/gHq3HeqcRt1wXgWvN7ypFMP8ZDdh8CsjjuuKzb pTKjQ5xDCy9YizVG2Mgf2G7jniNU42bymMOQ0C/Dh42j/BTR6IkMMA59oBE6noFB tr5KBo9hPOG1aJkRsOXYSmntQKVVWDz1 -----END CERTIFICATE-----Generated at Mon Dec 8 05:58:47 2025 by rpki-client