This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft File: OqWspVx7NeP5Iru42qsdfYhw43M.mft (raw, json) Hash identifier: SV0Dg/taySTZF0V3n5RLyNFSP5Q/Bppigt6tGKQxrXU= Subject key identifier: D6:57:3C:58:40:C0:A2:19:C3:3F:DF:77:BE:3E:99:93:AA:74:AF:89 Authority key identifier: 3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 Certificate issuer: /CN=A915A533/serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Certificate serial: 01EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft Manifest number: 01E9 Signing time: Tue 23 Dec 2025 01:40:32 +0000 Manifest this update: Tue 23 Dec 2025 01:40:31 +0000 Manifest next update: Tue 30 Dec 2025 01:40:31 +0000 Files and hashes: 1: OqWspVx7NeP5Iru42qsdfYhw43M.crl (hash: 1ubVVojUWm6BzbZtnVlDFNCxlQHi3dCnr8fBfbwqKy4=) 2: 052E6FBAF9F511EDB2CAA636C4F9AE02.roa (hash: ex5ur3WLVmySdJlK4OpXRFFofMyw8LoQvz2jf4rLqkc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:40:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 494 (0x1ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A533, serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Validity Not Before: Dec 23 01:40:31 2025 GMT Not After : Dec 30 01:40:31 2025 GMT Subject: CN=6949f310-ff65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:36:4e:0c:ed:f7:ab:b0:9f:71:87:f9:cc:b2: 0a:5c:18:2d:0e:df:d0:03:a9:8d:bf:8e:ac:c8:c6: d9:51:33:8d:a7:1d:37:b9:f2:47:fb:93:b9:07:0d: c5:a1:37:65:30:fd:8c:25:98:1e:fa:a9:09:f2:d1: 6b:e0:52:4b:f7:c0:be:24:20:43:95:7f:52:8c:c3: 3a:f6:f7:30:6a:88:bd:46:ef:15:78:02:14:6d:18: c2:65:35:3c:2c:c2:bd:c1:52:6f:05:2c:54:c6:80: 0b:83:3b:04:41:20:3c:44:54:88:41:04:3f:df:7c: 84:1f:78:62:3c:06:81:7c:3a:30:a3:3d:53:5e:0e: f2:b4:16:9f:58:c6:64:c3:b1:2e:0a:67:64:41:82: 71:d4:a6:01:f8:87:56:a1:7b:1e:da:25:ca:6d:e4: ca:95:8a:45:5e:e1:82:83:a1:d3:1a:64:3d:f1:21: ac:0f:7d:71:8e:2e:87:c5:1e:b4:45:50:2e:81:d3: 35:1d:c5:5d:c9:6e:07:0c:4c:40:89:85:13:0c:dd: f9:96:dd:1f:e5:e2:cb:3a:90:54:dc:f3:5e:7e:85: c3:ab:54:d7:d3:d9:aa:66:18:29:1e:31:c5:c5:ad: 7f:47:bf:e8:8c:fc:39:3e:fe:65:de:d6:ef:f6:50: 58:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:57:3C:58:40:C0:A2:19:C3:3F:DF:77:BE:3E:99:93:AA:74:AF:89 X509v3 Authority Key Identifier: keyid:3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:0f:95:03:69:09:be:e5:66:b7:92:40:cb:db:7a:ce:1d:38: 62:b0:d2:36:73:f8:a1:2c:ec:0f:34:d5:23:6c:a1:73:e9:e1: f1:74:12:80:78:3a:4d:35:27:5f:9a:b7:1d:6d:11:b1:a3:d7: fe:24:21:22:c7:3f:de:9f:7f:be:d6:c1:7d:2b:3c:5e:e3:a7: 80:7e:2d:9c:cc:4e:ca:d6:8e:3f:7c:d4:0a:6c:45:9b:aa:7b: 7c:16:66:1f:dd:4d:2b:87:9d:2d:78:d1:47:65:bd:10:d4:fb: 64:24:83:9b:d7:37:75:f0:96:c8:14:04:d6:c4:4e:d7:9a:18: 30:99:0d:99:80:cc:83:54:64:18:93:6b:a8:60:76:45:b6:55: 6d:d1:f8:2e:c5:c1:ba:08:d9:94:dc:52:f3:22:fc:74:14:70: a9:2a:a4:d3:a7:f7:40:a8:91:4c:3b:fa:34:a9:b6:1a:cf:d7: 65:22:94:5a:a4:ea:49:8e:aa:23:43:ac:b9:6d:5b:da:f7:9e: 4e:87:a3:35:d0:b1:43:ff:f0:8b:11:18:ea:06:1f:06:ad:65: c3:24:9f:7e:80:30:ef:45:9f:b3:ac:82:e7:37:95:db:ab:4b: e3:ff:2b:7d:a6:1a:88:90:c6:d5:03:af:d0:ff:5f:b6:c7:3c: 98:c5:af:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE1MzMxMTAvBgNVBAUTKDNBQTVBQ0E1NUM3QjM1RTNGOTIyQkJCOERBQUIxRDdE ODg3MEUzNzMwHhcNMjUxMjIzMDE0MDMxWhcNMjUxMjMwMDE0MDMxWjAYMRYwFAYD VQQDDA02OTQ5ZjMxMC1mZjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzZODO33q7CfcYf5zLIKXBgtDt/QA6mNv46syMbZUTONpx03ufJH+5O5Bw3F oTdlMP2MJZge+qkJ8tFr4FJL98C+JCBDlX9SjMM69vcwaoi9Ru8VeAIUbRjCZTU8 LMK9wVJvBSxUxoALgzsEQSA8RFSIQQQ/33yEH3hiPAaBfDowoz1TXg7ytBafWMZk w7EuCmdkQYJx1KYB+IdWoXse2iXKbeTKlYpFXuGCg6HTGmQ98SGsD31xji6HxR60 RVAugdM1HcVdyW4HDExAiYUTDN35lt0f5eLLOpBU3PNefoXDq1TX09mqZhgpHjHF xa1/R7/ojPw5Pv5l3tbv9lBYeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNZXPFhA wKIZwz/fd74+mZOqdK+JMB8GA1UdIwQYMBaAFDqlrKVcezXj+SK7uNqrHX2IcONz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTUzMy80MDI5OTc4QUY4 N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05lUDVJcnU0MnFzZGZZaHc0 M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xV3NwVng3TmVQNUlydTQycXNkZllodzQzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTUzMy80MDI5OTc4QUY4N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05l UDVJcnU0MnFzZGZZaHc0M00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1D5UDaQm+5Wa3kkDL23rOHThisNI2c/ihLOwPNNUjbKFz6eHxdBKA eDpNNSdfmrcdbRGxo9f+JCEixz/en3++1sF9Kzxe46eAfi2czE7K1o4/fNQKbEWb qnt8FmYf3U0rh50teNFHZb0Q1PtkJIOb1zd18JbIFATWxE7XmhgwmQ2ZgMyDVGQY k2uoYHZFtlVt0fguxcG6CNmU3FLzIvx0FHCpKqTTp/dAqJFMO/o0qbYaz9dlIpRa pOpJjqojQ6y5bVva955Oh6M10LFD//CLERjqBh8GrWXDJJ9+gDDvRZ+zrILnN5Xb q0vj/yt9phqIkMbVA6/Q/1+2xzyYxa+D -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:27 2025 by rpki-client