This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft File: oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft (raw, json) Hash identifier: zq0ILSCLfRe3E9943dk50+bMwLB+cSvLtPWcnXnnDrE= Subject key identifier: 64:93:0F:CD:1E:B5:70:26:D0:87:C2:90:2F:B0:13:35:EE:E8:06:F5 Authority key identifier: A1:4B:DA:A3:15:76:A6:36:7A:0B:5C:3A:CA:B9:1C:4E:9F:31:18:EF Certificate issuer: /CN=A917604B/serialNumber=A14BDAA31576A6367A0B5C3ACAB91C4E9F3118EF Certificate serial: 01A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft Manifest number: 019D Signing time: Tue 23 Dec 2025 02:25:32 +0000 Manifest this update: Tue 23 Dec 2025 02:25:32 +0000 Manifest next update: Tue 30 Dec 2025 02:25:32 +0000 Files and hashes: 1: oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl (hash: 0J6HTVEFH0gPTxNRedTf5z6MtiTSF20uKPZhtgdhdWs=) 2: 8E87CD5A8D4C11F0AD32532AC4F9AE02.roa (hash: T+njLY2SFAOPX3VSAe1EY/xCteiDMwgUqIpmnoo6/ro=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:25:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 418 (0x1a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917604B, serialNumber=A14BDAA31576A6367A0B5C3ACAB91C4E9F3118EF Validity Not Before: Dec 23 02:25:32 2025 GMT Not After : Dec 30 02:25:32 2025 GMT Subject: CN=6949fd9c-8d65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:7e:87:aa:79:31:de:35:1a:11:8e:94:b8:a1: 44:c8:15:40:06:bb:83:03:52:17:6b:c5:37:3c:4e: dc:9d:a2:16:01:16:21:c6:aa:71:db:51:df:ef:6f: b7:d7:b9:dd:7b:d2:76:37:49:fb:ca:c1:11:78:09: de:79:72:f6:8a:4e:5e:27:e2:76:2c:d6:87:62:fb: 29:3c:16:cf:34:d8:8d:f3:f9:c5:eb:12:c2:8c:4e: 1b:3b:95:8e:d6:a2:f0:8e:08:67:37:ea:40:9e:86: 32:a9:ed:ca:cd:b5:79:1e:02:75:9e:65:f5:c4:00: ff:66:a4:91:a2:04:43:95:eb:94:a0:7c:f0:1f:d2: d4:6c:8c:2c:32:09:fa:04:23:44:39:00:e7:c5:bb: 64:1c:11:aa:e4:99:fd:42:1b:c3:b6:53:59:bd:c5: 8c:d5:ae:7c:d1:29:3e:57:0f:cc:c2:94:7f:de:b3: f6:b2:1c:6f:25:89:b4:c2:bf:e2:23:cb:5a:5a:15: d7:70:ea:ba:b4:f5:68:d2:f5:35:90:56:1e:cb:ad: 32:24:d1:58:b5:25:a7:02:84:65:90:03:e0:6d:8c: 11:ab:ab:b1:38:23:8b:d7:24:39:bf:f4:c6:1d:d9: e0:7c:fc:91:20:02:a9:3a:ae:17:4e:60:6f:af:90: 6b:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:93:0F:CD:1E:B5:70:26:D0:87:C2:90:2F:B0:13:35:EE:E8:06:F5 X509v3 Authority Key Identifier: keyid:A1:4B:DA:A3:15:76:A6:36:7A:0B:5C:3A:CA:B9:1C:4E:9F:31:18:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:31:5c:3d:dd:54:fa:3a:c6:f4:9c:56:50:fb:5b:77:c6:2c: d1:0b:fc:71:73:81:70:2f:06:6f:ec:7c:a2:27:89:a7:72:9d: 05:1d:10:30:0c:db:7c:de:86:c8:95:f2:ab:48:db:a7:de:06: ce:b8:a7:a9:07:84:aa:bf:99:69:3c:31:8a:91:03:40:20:b6: 3b:2d:22:fb:00:4f:23:ad:e0:0d:59:31:5d:c3:a1:f1:d6:b0: 81:a4:4e:00:af:b1:db:5c:bd:fe:b3:74:53:e0:e0:e3:59:0f: 0c:a1:4c:1a:95:ac:e3:8b:f3:d3:44:1d:06:5d:9b:60:6e:a5: 29:a9:25:b1:b5:e5:14:60:c9:d7:02:9d:ee:f9:5d:97:0d:db: 00:66:53:ec:39:7f:2f:5a:63:53:9b:0f:3e:77:00:16:1c:c7: 35:8a:39:f4:c6:c1:72:50:69:3c:ce:82:6b:70:11:8b:65:0d: e3:d7:49:86:52:27:dd:06:21:8c:f5:3a:df:fd:c7:47:74:d6: 18:ca:a3:c5:5a:15:56:0e:a0:99:24:47:45:1f:34:09:c0:a4: ec:31:a7:a1:7c:10:45:f6:3f:fd:71:b1:81:f4:ce:99:f8:6e: a9:34:81:f7:9d:b4:45:8c:eb:6a:3e:16:6f:b8:33:64:d7:7e: 39:01:8a:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzYwNEIxMTAvBgNVBAUTKEExNEJEQUEzMTU3NkE2MzY3QTBCNUMzQUNBQjkxQzRF OUYzMTE4RUYwHhcNMjUxMjIzMDIyNTMyWhcNMjUxMjMwMDIyNTMyWjAYMRYwFAYD VQQDDA02OTQ5ZmQ5Yy04ZDY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6H6Hqnkx3jUaEY6UuKFEyBVABruDA1IXa8U3PE7cnaIWARYhxqpx21Hf72+3 17nde9J2N0n7ysEReAneeXL2ik5eJ+J2LNaHYvspPBbPNNiN8/nF6xLCjE4bO5WO 1qLwjghnN+pAnoYyqe3KzbV5HgJ1nmX1xAD/ZqSRogRDleuUoHzwH9LUbIwsMgn6 BCNEOQDnxbtkHBGq5Jn9QhvDtlNZvcWM1a580Sk+Vw/MwpR/3rP2shxvJYm0wr/i I8taWhXXcOq6tPVo0vU1kFYey60yJNFYtSWnAoRlkAPgbYwRq6uxOCOL1yQ5v/TG HdngfPyRIAKpOq4XTmBvr5BrawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGSTD80e tXAm0IfCkC+wEzXu6Ab1MB8GA1UdIwQYMBaAFKFL2qMVdqY2egtcOsq5HE6fMRjv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjA0Qi80MUMwMTM1QzZE QUUxMUVFQTgwRDA1NzRDNEY5QUUwMi9vVXZhb3hWMnBqWjZDMXc2eXJrY1RwOHhH TzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29VdmFveFYycGpaNkMxdzZ5cmtjVHA4eEdPOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjA0Qi80MUMwMTM1QzZEQUUxMUVFQTgwRDA1NzRDNEY5QUUwMi9vVXZhb3hWMnBq WjZDMXc2eXJrY1RwOHhHTzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAMVw93VT6Osb0nFZQ+1t3xizRC/xxc4FwLwZv7HyiJ4mncp0FHRAw DNt83obIlfKrSNun3gbOuKepB4Sqv5lpPDGKkQNAILY7LSL7AE8jreANWTFdw6Hx 1rCBpE4Ar7HbXL3+s3RT4ODjWQ8MoUwalazji/PTRB0GXZtgbqUpqSWxteUUYMnX Ap3u+V2XDdsAZlPsOX8vWmNTmw8+dwAWHMc1ijn0xsFyUGk8zoJrcBGLZQ3j10mG UifdBiGM9Trf/cdHdNYYyqPFWhVWDqCZJEdFHzQJwKTsMaehfBBF9j/9cbGB9M6Z +G6pNIH3nbRFjOtqPhZvuDNk1345AYrW -----END CERTIFICATE-----Generated at Tue Dec 23 06:46:26 2025 by rpki-client