This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft File: OT6njk2TI25QcfuK_61B1iQmql0.mft (raw, json) Hash identifier: l7VbTebUM/f6Q7yYSjsDyP+8keEbygRNr2IyQJyAKa0= Subject key identifier: 33:17:37:6A:72:E4:11:C3:62:0D:9C:9B:CE:9B:2C:F5:0E:01:06:36 Authority key identifier: 39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D Certificate issuer: /CN=A917B520/serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Certificate serial: C7 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft Manifest number: C5 Signing time: Sun 21 Dec 2025 01:47:54 +0000 Manifest this update: Sun 21 Dec 2025 01:47:54 +0000 Manifest next update: Sun 28 Dec 2025 01:47:54 +0000 Files and hashes: 1: OT6njk2TI25QcfuK_61B1iQmql0.crl (hash: UHUOADdcSFA0SHO0u93bGCBTJKkIQ6bQbRlxD+iz7vA=) 2: 3CFE7680BC5C11EFB951FD4FC4F9AE02.roa (hash: ZZGoLs5i6C2o6YDndsUsPxgi/aWEUfS/++aNSMKH7qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 01:47:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Validity Not Before: Dec 21 01:47:54 2025 GMT Not After : Dec 28 01:47:54 2025 GMT Subject: CN=694751ca-af03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c4:da:32:bd:51:b1:e7:8a:38:1c:7c:c9:f1: df:20:9c:f8:5b:39:31:46:dd:96:fb:9f:3e:ef:77: 30:60:49:b9:74:21:e8:07:2a:ef:c7:34:f9:b8:99: be:c2:03:4c:3f:e4:33:04:15:04:9e:98:f0:87:fe: 85:12:4c:7d:59:49:f2:eb:a4:58:c5:14:0f:29:f3: 0c:b7:02:bf:4c:9c:15:ae:86:7f:56:59:3a:8d:fc: 57:38:bd:06:09:9b:08:b7:eb:13:c7:c1:3d:c7:71: 58:bc:99:2d:a2:00:8e:2d:60:48:5e:0b:f2:5a:5f: 2e:42:80:63:aa:da:7f:7c:7b:5b:82:d9:30:56:37: 8b:08:d6:8e:59:29:ca:b2:7c:4a:d2:d8:e6:a9:0a: f0:d2:81:28:e1:4f:49:f1:1a:98:fd:fa:a8:73:a6: f5:00:eb:89:39:ce:75:58:93:ce:6d:c5:bd:03:ae: 6a:43:c5:97:7b:dd:e3:89:89:63:97:12:8c:81:5d: 09:e8:8f:fb:b7:4b:5e:aa:85:d2:9f:76:3e:47:9b: b2:c6:d5:fd:72:36:6f:04:b1:af:0e:90:74:ed:ed: 08:b8:2b:8b:41:1f:b4:6d:65:98:37:7a:98:48:36: a2:96:1d:b5:79:6b:92:1a:1a:c6:d3:d6:7c:a7:86: 7c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:17:37:6A:72:E4:11:C3:62:0D:9C:9B:CE:9B:2C:F5:0E:01:06:36 X509v3 Authority Key Identifier: keyid:39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:7a:2a:74:1c:97:36:d9:c5:62:36:0c:07:f7:94:7b:b3:8c: b7:81:6d:20:3f:b1:df:bb:41:a1:6e:2a:ca:00:f8:50:0c:f9: 9c:8b:d5:8e:ba:52:ee:0a:d7:0e:39:49:8a:0d:81:9a:5a:bf: cb:33:e4:4e:ff:b5:71:f9:e1:de:79:aa:65:d0:af:83:2b:4c: a0:3a:74:eb:1a:29:78:75:ad:51:d2:11:81:cb:f5:bf:b2:35: 56:58:c9:7b:c5:f4:d7:93:84:82:cb:4e:2b:fc:cf:2a:55:e6: d3:b2:5c:37:b6:70:67:65:74:1c:91:18:7c:59:5a:65:48:66: ae:94:46:57:c4:6c:10:b1:0c:b0:50:8a:94:4d:49:81:45:ef: 7d:7e:bc:d9:69:8d:71:53:2b:76:e1:56:68:fd:ac:66:2a:61: f0:0d:cd:93:28:84:91:ed:1e:09:e8:86:ef:11:1c:57:ed:a9: c5:51:d4:d7:b5:df:50:e0:e9:95:96:76:72:df:c6:02:5b:9f: ff:9e:05:f2:74:cf:e6:92:4a:93:9b:ec:f7:f7:db:41:8f:58: a4:9b:3e:11:49:63:56:02:f2:be:f1:9a:71:df:85:e2:b9:d8: 8b:b1:c6:39:4e:a4:82:3b:02:1c:a3:75:5c:5b:22:e4:0c:3e: cd:02:3c:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDM5M0VBNzhFNEQ5MzIzNkU1MDcxRkI4QUZGQUQ0MUQ2 MjQyNkFBNUQwHhcNMjUxMjIxMDE0NzU0WhcNMjUxMjI4MDE0NzU0WjAYMRYwFAYD VQQDDA02OTQ3NTFjYS1hZjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxcTaMr1RseeKOBx8yfHfIJz4WzkxRt2W+58+73cwYEm5dCHoByrvxzT5uJm+ wgNMP+QzBBUEnpjwh/6FEkx9WUny66RYxRQPKfMMtwK/TJwVroZ/Vlk6jfxXOL0G CZsIt+sTx8E9x3FYvJktogCOLWBIXgvyWl8uQoBjqtp/fHtbgtkwVjeLCNaOWSnK snxK0tjmqQrw0oEo4U9J8RqY/fqoc6b1AOuJOc51WJPObcW9A65qQ8WXe93jiYlj lxKMgV0J6I/7t0teqoXSn3Y+R5uyxtX9cjZvBLGvDpB07e0IuCuLQR+0bWWYN3qY SDailh21eWuSGhrG09Z8p4Z8KwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDMXN2py 5BHDYg2cm86bLPUOAQY2MB8GA1UdIwQYMBaAFDk+p45NkyNuUHH7iv+tQdYkJqpd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC80Q0ZDMDhEQUI3 NkMxMUVGQjg3NDI3NkVDNEY5QUUwMi9PVDZuamsyVEkyNVFjZnVLXzYxQjFpUW1x bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL09UNm5qazJUSTI1UWNmdUtfNjFCMWlRbXFsMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC80Q0ZDMDhEQUI3NkMxMUVGQjg3NDI3NkVDNEY5QUUwMi9PVDZuamsyVEky NVFjZnVLXzYxQjFpUW1xbDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaeip0HJc22cViNgwH95R7s4y3gW0gP7Hfu0GhbirKAPhQDPmci9WO ulLuCtcOOUmKDYGaWr/LM+RO/7Vx+eHeeapl0K+DK0ygOnTrGil4da1R0hGBy/W/ sjVWWMl7xfTXk4SCy04r/M8qVebTslw3tnBnZXQckRh8WVplSGaulEZXxGwQsQyw UIqUTUmBRe99frzZaY1xUyt24VZo/axmKmHwDc2TKISR7R4J6IbvERxX7anFUdTX td9Q4OmVlnZy38YCW5//ngXydM/mkkqTm+z399tBj1ikmz4RSWNWAvK+8Zpx34Xi udiLscY5TqSCOwIco3VcWyLkDD7NAjy0 -----END CERTIFICATE-----Generated at Sun Dec 21 15:59:43 2025 by rpki-client