This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft File: oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft (raw, json) Hash identifier: T2t1JdGTTXILIuauSk+ctLvTd5uEp+eem+BVnWd4SfA= Subject key identifier: 51:CC:E5:65:EC:50:F4:28:55:9D:DE:43:EF:66:B3:28:A3:7A:64:1C Authority key identifier: A1:06:03:30:2B:FE:C8:2A:07:F8:C5:D4:2E:45:8B:76:C5:FF:91:A4 Certificate issuer: /CN=A916A3BE/serialNumber=A10603302BFEC82A07F8C5D42E458B76C5FF91A4 Certificate serial: 0A3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft Manifest number: 0A2D Signing time: Mon 22 Dec 2025 19:12:22 +0000 Manifest this update: Mon 22 Dec 2025 19:12:22 +0000 Manifest next update: Mon 29 Dec 2025 19:12:22 +0000 Files and hashes: 1: oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl (hash: auSsiZt8hZ5t70gSNxkqKZpxp5vGqeMpyuUtu67gmwA=) 2: 9FC3DC92883311EDB7271C62C4F9AE02.roa (hash: Cf8bqRacvTWl+UzpH6e1kxekXSzzSxIQ9wSazOTj5Ck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:12:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2623 (0xa3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A3BE, serialNumber=A10603302BFEC82A07F8C5D42E458B76C5FF91A4 Validity Not Before: Dec 22 19:12:22 2025 GMT Not After : Dec 29 19:12:22 2025 GMT Subject: CN=69499816-80db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:31:ae:9f:8b:f0:a8:e3:22:9a:a4:7d:d2:db: 1e:db:ae:92:c7:69:87:4f:09:7b:45:ef:4f:8f:ec: 51:8a:3d:24:68:b5:d0:8b:4a:f9:e1:e0:89:c3:f4: e9:78:87:db:06:16:7f:bf:78:15:ae:c7:2b:20:d1: 60:64:62:0e:87:2f:28:fb:4a:2f:d2:79:ad:d0:ae: 32:e9:3c:8f:1c:84:5c:05:e5:39:e3:b3:28:54:f6: e8:08:98:cd:5c:4e:70:cf:d4:1c:71:b3:8d:86:dc: 85:4e:78:8a:72:bd:3e:af:50:b2:cb:0f:d1:4c:74: 2d:d9:fb:54:0a:80:d7:cf:c3:a1:88:d6:f6:fe:6e: cc:a0:ff:91:db:2e:d5:79:84:1c:6c:bc:70:45:5f: 7a:5a:7c:22:ec:00:51:59:45:11:29:52:fc:6d:a7: d4:39:09:3f:17:fb:72:ac:ce:8b:b3:bd:78:29:a8: 39:df:1d:8a:a2:5b:a0:c2:aa:41:fc:ff:cf:31:55: 0a:b1:19:66:aa:62:81:77:aa:40:8d:42:6b:5e:a2: c1:03:3e:70:1d:27:7d:81:dd:2b:42:09:ca:52:0c: 84:57:00:64:52:9d:a7:10:4f:1e:b0:40:cd:39:79: 36:27:06:54:7c:c7:67:4e:61:96:98:3f:f7:ce:1c: 2f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:CC:E5:65:EC:50:F4:28:55:9D:DE:43:EF:66:B3:28:A3:7A:64:1C X509v3 Authority Key Identifier: keyid:A1:06:03:30:2B:FE:C8:2A:07:F8:C5:D4:2E:45:8B:76:C5:FF:91:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oQYDMCv-yCoH-MXULkWLdsX_kaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A3BE/89B4F678841911EA98FF0637C4F9AE02/oQYDMCv-yCoH-MXULkWLdsX_kaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:3d:4f:c8:59:b4:5a:0e:83:22:c4:bb:54:9a:d2:94:31:87: d2:a4:c1:0c:61:5c:5f:76:63:8b:b4:23:67:2e:06:99:31:27: d9:9a:45:fa:d1:73:47:40:ab:d0:e1:52:15:5c:2e:2e:26:c0: 89:e0:a7:8d:fd:c3:8b:f2:23:66:7c:09:b4:17:e3:e2:bf:d5: 49:fb:23:f5:fc:6f:fa:28:34:2f:4a:bb:c7:ba:02:77:25:ce: e6:02:06:a2:c8:90:75:f2:08:ab:88:2d:19:64:b8:2c:3f:19: 98:44:23:2e:d5:f4:c9:fc:01:38:f6:ce:90:3f:f3:55:e7:07: 6a:33:af:86:9d:be:7a:54:b4:65:43:c5:89:98:92:47:5e:30: 82:1c:4a:a0:82:0e:8d:02:ba:af:11:8c:d1:93:18:9c:a4:70: 9d:70:46:dd:89:2f:2b:ed:22:ea:fa:87:7f:22:2d:22:a4:86: 7b:9e:2a:e1:9f:e3:c0:17:41:51:17:ba:26:1e:10:32:eb:d0: 69:66:8d:12:a3:eb:de:59:02:84:02:fe:bd:db:97:93:13:43: 8e:eb:51:fc:e4:3f:bb:9e:8e:4e:de:fb:ca:4b:41:34:34:3a: a4:e0:43:43:79:90:bc:7c:a7:0b:25:15:7b:fd:ef:53:a1:a3: 89:10:0a:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzQkUxMTAvBgNVBAUTKEExMDYwMzMwMkJGRUM4MkEwN0Y4QzVENDJFNDU4Qjc2 QzVGRjkxQTQwHhcNMjUxMjIyMTkxMjIyWhcNMjUxMjI5MTkxMjIyWjAYMRYwFAYD VQQDDA02OTQ5OTgxNi04MGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApzGun4vwqOMimqR90tse266Sx2mHTwl7Re9Pj+xRij0kaLXQi0r54eCJw/Tp eIfbBhZ/v3gVrscrINFgZGIOhy8o+0ov0nmt0K4y6TyPHIRcBeU547MoVPboCJjN XE5wz9QccbONhtyFTniKcr0+r1Cyyw/RTHQt2ftUCoDXz8OhiNb2/m7MoP+R2y7V eYQcbLxwRV96Wnwi7ABRWUURKVL8bafUOQk/F/tyrM6Ls714Kag53x2KolugwqpB /P/PMVUKsRlmqmKBd6pAjUJrXqLBAz5wHSd9gd0rQgnKUgyEVwBkUp2nEE8esEDN OXk2JwZUfMdnTmGWmD/3zhwvMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFHM5WXs UPQoVZ3eQ+9msyijemQcMB8GA1UdIwQYMBaAFKEGAzAr/sgqB/jF1C5Fi3bF/5Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTNCRS84OUI0RjY3ODg0 MTkxMUVBOThGRjA2MzdDNEY5QUUwMi9vUVlETUN2LXlDb0gtTVhVTGtXTGRzWF9r YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29RWURNQ3YteUNvSC1NWFVMa1dMZHNYX2thUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTNCRS84OUI0RjY3ODg0MTkxMUVBOThGRjA2MzdDNEY5QUUwMi9vUVlETUN2LXlD b0gtTVhVTGtXTGRzWF9rYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2PU/IWbRaDoMixLtUmtKUMYfSpMEMYVxfdmOLtCNnLgaZMSfZmkX6 0XNHQKvQ4VIVXC4uJsCJ4KeN/cOL8iNmfAm0F+Piv9VJ+yP1/G/6KDQvSrvHugJ3 Jc7mAgaiyJB18giriC0ZZLgsPxmYRCMu1fTJ/AE49s6QP/NV5wdqM6+Gnb56VLRl Q8WJmJJHXjCCHEqggg6NArqvEYzRkxicpHCdcEbdiS8r7SLq+od/Ii0ipIZ7nirh n+PAF0FRF7omHhAy69BpZo0So+veWQKEAv6925eTE0OO61H85D+7no5O3vvKS0E0 NDqk4ENDeZC8fKcLJRV7/e9ToaOJEArn -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:18 2025 by rpki-client