This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft File: FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft (raw, json) Hash identifier: zo0RCmJxKmi45PqqtNO7un9UKOyHeJbdgm9b0Jf+W68= Subject key identifier: 78:92:1A:AB:05:5E:BD:FA:3C:68:11:EE:3F:CE:27:5E:3C:A3:CF:6A Authority key identifier: 14:E5:5E:C3:42:8E:3D:2B:A4:DC:71:C1:59:E5:F6:06:1F:16:3C:6D Certificate issuer: /CN=A916E343/serialNumber=14E55EC3428E3D2BA4DC71C159E5F6061F163C6D Certificate serial: 015C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FOVew0KOPSuk3HHBWeX2Bh8WPG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft Manifest number: 015C Signing time: Wed 03 Dec 2025 01:50:05 +0000 Manifest this update: Wed 03 Dec 2025 01:50:04 +0000 Manifest next update: Wed 10 Dec 2025 01:50:04 +0000 Files and hashes: 1: FOVew0KOPSuk3HHBWeX2Bh8WPG0.crl (hash: VcHl4lQH7/4+L97WXFXoFfLLx4fyzvdOOZc7tEmpLXU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.crl rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FOVew0KOPSuk3HHBWeX2Bh8WPG0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 01:50:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E343, serialNumber=14E55EC3428E3D2BA4DC71C159E5F6061F163C6D Validity Not Before: Dec 3 01:50:04 2025 GMT Not After : Dec 10 01:50:04 2025 GMT Subject: CN=692f974d-c50f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:7b:e2:7e:d3:30:05:a2:18:45:32:fb:96:bb: f3:52:b9:1f:5f:af:ef:7e:1e:48:77:6c:26:ac:bf: 56:d5:89:d7:82:e1:bd:82:d7:cf:f4:99:c6:44:69: b2:74:be:41:be:d0:31:0f:78:44:a3:af:1b:58:d4: 25:ca:dd:da:a5:96:4b:72:f6:1f:d7:c3:77:5f:13: 66:9e:70:a0:89:26:ee:03:f2:ed:55:22:67:8e:c1: 54:a5:78:dd:10:11:aa:fc:62:d4:1e:9d:17:0e:e3: af:c7:11:6f:42:18:7f:c5:50:8b:11:cb:8e:b2:37: 6b:37:40:d5:b0:cc:eb:d1:f6:79:96:97:93:e0:35: e7:af:40:af:56:99:a8:1d:30:bb:6d:e6:0a:cf:9e: ed:36:b3:d6:45:bd:9e:89:a5:cc:2c:46:f6:1e:d0: 19:b6:91:a6:fa:35:b1:90:a8:6c:4f:01:bd:80:54: 50:3c:8a:57:ff:7c:3f:0e:0b:90:d0:11:53:54:2e: 1b:9b:40:a9:ed:db:e1:be:73:07:80:7e:d4:01:9d: 15:b9:84:41:f5:41:4e:d1:03:c4:9d:d1:28:0a:dd: f5:ac:ef:4f:c6:a9:60:9d:0e:de:eb:7b:51:5d:22: 69:74:3a:62:c5:94:39:21:28:02:5c:2e:29:d6:3e: b6:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:92:1A:AB:05:5E:BD:FA:3C:68:11:EE:3F:CE:27:5E:3C:A3:CF:6A X509v3 Authority Key Identifier: keyid:14:E5:5E:C3:42:8E:3D:2B:A4:DC:71:C1:59:E5:F6:06:1F:16:3C:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FOVew0KOPSuk3HHBWeX2Bh8WPG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:eb:52:3d:ef:36:3e:62:de:25:bb:07:37:e5:0b:73:a5:04: d4:aa:16:c1:65:99:60:84:46:fe:63:a7:8b:9f:42:ff:44:a5: 50:34:39:dd:2b:f8:28:89:05:4c:fc:88:ea:63:78:10:7a:7b: 7a:30:fa:1b:30:bf:96:69:4f:5f:0d:ba:73:ae:d2:b8:68:f0: 50:e0:bd:cc:ea:0e:7f:b4:b5:2f:bf:a8:e4:70:81:b7:b2:b1: b5:7f:ed:68:f5:72:df:d7:83:36:15:28:ff:12:60:69:d0:b9: 7e:a8:35:78:a9:b4:a0:46:2f:ba:34:89:45:ae:63:78:8c:d1: af:18:43:d6:08:d6:27:5a:c0:a9:d6:93:a1:92:ab:b6:48:3f: 36:18:74:3c:74:15:22:e1:5b:37:22:80:fd:f8:85:b0:43:57: 15:2a:01:f7:05:a3:a6:94:b5:82:d7:ea:03:02:08:5d:02:c6: ff:70:26:83:c5:18:64:bd:30:74:ee:ca:3f:9d:19:a3:12:0b: d1:d0:a7:b9:fe:51:1b:51:a9:31:b7:93:6d:9a:1e:63:d2:36: 42:59:71:0f:db:fc:ff:e2:79:86:5e:fa:9f:5e:9c:f7:61:cb: 93:4f:32:7d:00:bd:51:53:74:f9:2f:c2:3f:aa:31:b1:84:21: 18:d6:15:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkUzNDMxMTAvBgNVBAUTKDE0RTU1RUMzNDI4RTNEMkJBNERDNzFDMTU5RTVGNjA2 MUYxNjNDNkQwHhcNMjUxMjAzMDE1MDA0WhcNMjUxMjEwMDE1MDA0WjAYMRYwFAYD VQQDEw02OTJmOTc0ZC1jNTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1HviftMwBaIYRTL7lrvzUrkfX6/vfh5Id2wmrL9W1YnXguG9gtfP9JnGRGmy dL5BvtAxD3hEo68bWNQlyt3apZZLcvYf18N3XxNmnnCgiSbuA/LtVSJnjsFUpXjd EBGq/GLUHp0XDuOvxxFvQhh/xVCLEcuOsjdrN0DVsMzr0fZ5lpeT4DXnr0CvVpmo HTC7beYKz57tNrPWRb2eiaXMLEb2HtAZtpGm+jWxkKhsTwG9gFRQPIpX/3w/DguQ 0BFTVC4bm0Cp7dvhvnMHgH7UAZ0VuYRB9UFO0QPEndEoCt31rO9PxqlgnQ7e63tR XSJpdDpixZQ5ISgCXC4p1j62LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHiSGqsF Xr36PGgR7j/OJ148o89qMB8GA1UdIwQYMBaAFBTlXsNCjj0rpNxxwVnl9gYfFjxt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTM0My8zQUU3MzlBRUI5 N0UxMUVFQjNDMjI5NTVDNEY5QUUwMi9GT1ZldzBLT1BTdWszSEhCV2VYMkJoOFdQ RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0ZPVmV3MEtPUFN1azNISEJXZVgyQmg4V1BHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTM0My8zQUU3MzlBRUI5N0UxMUVFQjNDMjI5NTVDNEY5QUUwMi9GT1ZldzBLT1BT dWszSEhCV2VYMkJoOFdQRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCV61I97zY+Yt4luwc35QtzpQTUqhbBZZlghEb+Y6eLn0L/RKVQNDnd K/goiQVM/IjqY3gQent6MPobML+WaU9fDbpzrtK4aPBQ4L3M6g5/tLUvv6jkcIG3 srG1f+1o9XLf14M2FSj/EmBp0Ll+qDV4qbSgRi+6NIlFrmN4jNGvGEPWCNYnWsCp 1pOhkqu2SD82GHQ8dBUi4Vs3IoD9+IWwQ1cVKgH3BaOmlLWC1+oDAghdAsb/cCaD xRhkvTB07so/nRmjEgvR0Ke5/lEbUakxt5Ntmh5j0jZCWXEP2/z/4nmGXvqfXpz3 YcuTTzJ9AL1RU3T5L8I/qjGxhCEY1hUy -----END CERTIFICATE-----Generated at Wed Dec 3 14:46:14 2025 by rpki-client