This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft File: O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft (raw, json) Hash identifier: GF6gymWVr3rxDcwjhJsYDOJgD1wtbyt6GMz1Ox3+Zks= Subject key identifier: 88:14:6D:26:F5:36:75:B1:47:F5:1F:51:85:29:30:39:16:64:BC:6E Authority key identifier: 3B:B4:99:E1:17:B2:5F:F6:FA:36:A4:4F:3A:9A:94:72:96:29:53:EC Certificate issuer: /CN=A916D2D2/serialNumber=3BB499E117B25FF6FA36A44F3A9A9472962953EC Certificate serial: 0B56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft Manifest number: 0B4F Signing time: Mon 22 Dec 2025 18:42:09 +0000 Manifest this update: Mon 22 Dec 2025 18:42:09 +0000 Manifest next update: Mon 29 Dec 2025 18:42:09 +0000 Files and hashes: 1: O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl (hash: vhm72iFwG5y8YeJbDvf8Cw63gfuIhB8YGjAXoeNMjlg=) 2: E174463E4BD411EAAD10A710C4F9AE02.roa (hash: pPxz0Xj0Q495OhV6+Bhr4ANjqSPrxc3sqmemzntEGDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:42:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2902 (0xb56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D2D2, serialNumber=3BB499E117B25FF6FA36A44F3A9A9472962953EC Validity Not Before: Dec 22 18:42:09 2025 GMT Not After : Dec 29 18:42:09 2025 GMT Subject: CN=69499101-b980 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c6:4b:24:23:a9:67:bf:1c:59:68:f1:a1:d8: 0f:8e:4e:07:ed:85:6a:d7:96:d8:e7:9f:e1:78:a5: 2c:dc:7a:89:9e:75:5b:9f:24:e5:4b:90:b0:b3:df: 67:16:2c:e4:9b:6e:b8:af:fe:94:8c:1e:95:31:ec: 6c:4c:f1:4d:c8:1d:47:74:10:9e:4f:ca:de:f8:b7: f6:a1:30:86:ac:82:68:ab:5b:36:d5:90:5f:3b:7c: ca:77:fb:46:dc:47:55:f7:2b:fd:9c:2d:6e:cd:98: 81:a8:09:20:cc:a8:dc:00:b7:8d:41:85:d2:c8:e5: 88:23:bd:3b:f1:56:1a:0c:38:3e:56:96:49:c7:80: 88:29:d7:82:c8:10:c7:8d:84:03:bc:f6:27:a0:72: 46:ae:15:1b:59:fe:a6:3f:c6:5b:03:dd:38:af:5f: 64:6e:92:e2:1c:3e:39:ba:dc:9a:6c:40:dd:12:f2: 73:ae:14:fe:a2:07:95:18:83:9f:61:7e:2d:bc:b3: 15:00:9b:1a:e7:3c:f6:4e:74:e5:bb:48:14:5f:ad: 7b:d3:ac:cd:11:4f:a6:9a:85:66:b9:dd:db:69:60: 55:38:b9:48:f0:eb:25:7c:e5:74:8c:41:6b:72:0e: c2:0d:d2:f4:1f:1d:ac:10:39:2f:2f:bc:6a:c4:5a: f9:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:14:6D:26:F5:36:75:B1:47:F5:1F:51:85:29:30:39:16:64:BC:6E X509v3 Authority Key Identifier: keyid:3B:B4:99:E1:17:B2:5F:F6:FA:36:A4:4F:3A:9A:94:72:96:29:53:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D2D2/FA1EE372489D11EAB40FA43FC4F9AE02/O7SZ4ReyX_b6NqRPOpqUcpYpU-w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:62:c9:e4:1c:de:6e:cb:8a:8c:fb:f2:16:d3:7f:9b:ac:b1: 6c:63:1d:69:12:70:65:49:22:e5:c0:44:0b:f4:61:b2:78:52: 2d:4b:d2:38:ad:a4:23:30:54:b3:80:ac:fc:4f:6a:58:12:d5: b5:46:1e:98:90:08:cf:67:7e:f3:d3:2c:a0:1a:7e:8c:1e:95: 14:c8:b2:cc:7a:c0:7f:2b:8b:f6:97:91:c6:60:79:6e:40:25: 46:ed:27:3b:f6:1b:ca:f7:c2:a0:17:e0:fc:64:a2:3f:3e:68: 51:0b:23:ff:6c:25:78:4c:07:a2:28:32:de:fc:c5:fd:01:74: f5:7e:81:ca:13:f3:bd:34:20:a9:d2:ac:83:41:c4:bf:05:f5: 78:04:f6:7d:50:b8:55:68:50:c1:ca:c5:a1:71:a7:f1:55:67: 53:a1:2f:f4:e9:64:3a:2a:c4:f4:2c:a7:b5:88:5a:73:27:4c: 80:da:80:31:72:5d:a7:2a:1c:65:10:15:cc:66:87:7b:54:2a: 76:94:c5:e6:ad:45:dd:3d:8c:3f:5a:42:32:de:ce:38:09:19: 0d:22:6f:3d:5a:d5:0e:e5:11:d3:ae:3c:8d:6b:ae:bb:13:22: 31:20:e5:6c:4b:b0:01:4f:96:23:c3:1d:a5:a6:a7:e4:65:b8: 65:d0:33:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQyRDIxMTAvBgNVBAUTKDNCQjQ5OUUxMTdCMjVGRjZGQTM2QTQ0RjNBOUE5NDcy OTYyOTUzRUMwHhcNMjUxMjIyMTg0MjA5WhcNMjUxMjI5MTg0MjA5WjAYMRYwFAYD VQQDDA02OTQ5OTEwMS1iOTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAucZLJCOpZ78cWWjxodgPjk4H7YVq15bY55/heKUs3HqJnnVbnyTlS5Cws99n Fizkm264r/6UjB6VMexsTPFNyB1HdBCeT8re+Lf2oTCGrIJoq1s21ZBfO3zKd/tG 3EdV9yv9nC1uzZiBqAkgzKjcALeNQYXSyOWII7078VYaDDg+VpZJx4CIKdeCyBDH jYQDvPYnoHJGrhUbWf6mP8ZbA904r19kbpLiHD45utyabEDdEvJzrhT+ogeVGIOf YX4tvLMVAJsa5zz2TnTlu0gUX61706zNEU+mmoVmud3baWBVOLlI8OslfOV0jEFr cg7CDdL0Hx2sEDkvL7xqxFr5RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIgUbSb1 NnWxR/UfUYUpMDkWZLxuMB8GA1UdIwQYMBaAFDu0meEXsl/2+jakTzqalHKWKVPs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDJEMi9GQTFFRTM3MjQ4 OUQxMUVBQjQwRkE0M0ZDNEY5QUUwMi9PN1NaNFJleVhfYjZOcVJQT3BxVWNwWXBV LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL083U1o0UmV5WF9iNk5xUlBPcHFVY3BZcFUtdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDJEMi9GQTFFRTM3MjQ4OUQxMUVBQjQwRkE0M0ZDNEY5QUUwMi9PN1NaNFJleVhf YjZOcVJQT3BxVWNwWXBVLXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGYsnkHN5uy4qM+/IW03+brLFsYx1pEnBlSSLlwEQL9GGyeFItS9I4 raQjMFSzgKz8T2pYEtW1Rh6YkAjPZ37z0yygGn6MHpUUyLLMesB/K4v2l5HGYHlu QCVG7Sc79hvK98KgF+D8ZKI/PmhRCyP/bCV4TAeiKDLe/MX9AXT1foHKE/O9NCCp 0qyDQcS/BfV4BPZ9ULhVaFDBysWhcafxVWdToS/06WQ6KsT0LKe1iFpzJ0yA2oAx cl2nKhxlEBXMZod7VCp2lMXmrUXdPYw/WkIy3s44CRkNIm89WtUO5RHTrjyNa667 EyIxIOVsS7ABT5Yjwx2lpqfkZbhl0DPB -----END CERTIFICATE-----Generated at Wed Dec 24 19:32:18 2025 by rpki-client