This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft File: OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft (raw, json) Hash identifier: hUoBNPD8bFeG9iT929CKLyIlvOq8NBvYVweYRuNGJ/o= Subject key identifier: 80:3D:2B:64:1B:9A:E7:90:8B:B7:44:5F:5E:FA:06:10:4D:5E:A7:93 Authority key identifier: 38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A Certificate issuer: /CN=A917B520/serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Certificate serial: 013D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft Manifest number: 0137 Signing time: Sun 21 Dec 2025 01:47:59 +0000 Manifest this update: Sun 21 Dec 2025 01:47:59 +0000 Manifest next update: Sun 28 Dec 2025 01:47:59 +0000 Files and hashes: 1: OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl (hash: IAcw40RAiWwtoaLRcR4FyBNBOT7Z3v6qraYsXcqmtaU=) 2: 9580A702548211EFAADB996FC4F9AE02.roa (hash: nFQQw/dyghkb1sXKy9uupZRqxzdAPtcnxFOFgRiXGi4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 01:47:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 317 (0x13d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Validity Not Before: Dec 21 01:47:59 2025 GMT Not After : Dec 28 01:47:59 2025 GMT Subject: CN=694751cf-5c4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:18:9b:a9:50:1f:f6:e6:ec:e3:37:22:8a:f4: bb:16:37:cd:98:cc:80:9d:74:d2:5b:58:37:12:e3: b1:0b:ed:c3:89:85:4c:d3:12:bc:44:47:85:48:df: 10:f5:0e:1a:ee:7c:fa:1a:96:db:e6:f7:cb:f8:6c: 85:2f:2c:10:b4:bd:e3:ce:9d:26:00:c8:f3:de:5e: 98:49:87:86:93:b0:7e:82:3a:f7:fa:e0:18:30:7f: 25:9b:d4:8f:b6:8d:4a:00:4d:19:49:10:a5:6a:37: a8:46:1d:b4:de:e7:4f:db:2a:63:38:9f:87:98:15: b8:7e:8e:30:9b:df:89:68:e4:d5:da:c9:e4:06:33: 85:bd:d4:17:d7:9a:8a:c4:86:fa:bb:91:5f:0d:74: 63:c2:0a:3d:e7:b0:ff:ce:90:86:9d:54:5e:ba:a1: e9:5d:70:51:c5:95:de:01:89:8a:4a:d0:2c:fd:06: 19:84:c1:ba:3a:d3:20:61:a0:2a:20:b6:d8:f4:4d: bb:83:a2:47:25:72:92:1c:f8:39:34:f3:1a:e2:44: 02:b7:64:81:f0:f2:35:ae:6a:4a:de:a5:b9:6d:5e: 54:5e:c3:b4:f5:30:a1:45:9b:15:53:78:d9:57:94: 1a:91:e8:0d:0f:d6:f9:92:e2:41:75:5d:46:a7:02: 25:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:3D:2B:64:1B:9A:E7:90:8B:B7:44:5F:5E:FA:06:10:4D:5E:A7:93 X509v3 Authority Key Identifier: keyid:38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:19:5a:8b:c1:a0:d7:0a:ac:3c:ec:5d:be:9d:b3:b0:19:b5: 09:be:bd:76:70:74:ee:d6:c8:73:6c:c6:fc:65:58:9a:a1:4b: 17:0e:14:6b:ba:41:c7:d9:78:c8:42:58:2c:d8:96:9b:62:01: 94:e3:bc:5c:fd:87:20:5f:27:1c:cc:cd:cf:41:f8:7d:28:7d: 9c:fb:28:4b:c8:a4:20:a9:37:5f:d2:28:b9:a1:33:e4:6e:55: 05:28:3e:12:fa:c3:a1:16:2d:6f:ce:84:b3:18:6a:7a:38:bd: b6:c2:0d:f1:7b:4a:db:11:4c:8a:bc:63:c0:e4:35:51:47:e5: 72:65:cb:17:c2:8b:eb:a7:9a:82:c0:55:ad:6e:c6:a7:ad:6f: ae:a7:c8:77:ee:ee:c9:9d:b4:a9:5e:cf:1b:43:d6:7a:38:ff: 27:19:31:d2:77:ea:35:37:5d:d4:8c:7b:8f:44:5f:35:29:d5: 25:c2:c1:42:4b:fe:fb:a8:d2:32:8d:41:f9:0d:68:35:e8:3b: a8:f9:6f:4f:44:3a:70:02:0c:e8:f8:70:ab:59:c5:2c:be:4d: e7:58:78:9c:06:49:e2:24:21:53:a7:d0:c8:ea:a0:10:b7:b4: aa:b5:c4:29:9f:e3:7c:aa:66:5b:fa:90:71:77:81:eb:65:2f: d3:83:cc:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDM4MENENkJDQzlFMUMxMUZFQzRFRTI3REE4OTM4MjRE QURCNTIxMkEwHhcNMjUxMjIxMDE0NzU5WhcNMjUxMjI4MDE0NzU5WjAYMRYwFAYD VQQDDA02OTQ3NTFjZi01YzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsxibqVAf9ubs4zciivS7FjfNmMyAnXTSW1g3EuOxC+3DiYVM0xK8REeFSN8Q 9Q4a7nz6Gpbb5vfL+GyFLywQtL3jzp0mAMjz3l6YSYeGk7B+gjr3+uAYMH8lm9SP to1KAE0ZSRClajeoRh203udP2ypjOJ+HmBW4fo4wm9+JaOTV2snkBjOFvdQX15qK xIb6u5FfDXRjwgo957D/zpCGnVReuqHpXXBRxZXeAYmKStAs/QYZhMG6OtMgYaAq ILbY9E27g6JHJXKSHPg5NPMa4kQCt2SB8PI1rmpK3qW5bV5UXsO09TChRZsVU3jZ V5QakegND9b5kuJBdV1GpwIlNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIA9K2Qb mueQi7dEX176BhBNXqeTMB8GA1UdIwQYMBaAFDgM1rzJ4cEf7E7ifaiTgk2ttSEq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC84RjkwOTFENDMy QjAxMUVGQTRDQkY5NkFDNEY5QUUwMi9PQXpXdk1uaHdSX3NUdUo5cUpPQ1RhMjFJ U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09Beld2TW5od1Jfc1R1SjlxSk9DVGEyMUlTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC84RjkwOTFENDMyQjAxMUVGQTRDQkY5NkFDNEY5QUUwMi9PQXpXdk1uaHdS X3NUdUo5cUpPQ1RhMjFJU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJGVqLwaDXCqw87F2+nbOwGbUJvr12cHTu1shzbMb8ZViaoUsXDhRr ukHH2XjIQlgs2JabYgGU47xc/YcgXycczM3PQfh9KH2c+yhLyKQgqTdf0ii5oTPk blUFKD4S+sOhFi1vzoSzGGp6OL22wg3xe0rbEUyKvGPA5DVRR+VyZcsXwovrp5qC wFWtbsanrW+up8h37u7JnbSpXs8bQ9Z6OP8nGTHSd+o1N13UjHuPRF81KdUlwsFC S/77qNIyjUH5DWg16Duo+W9PRDpwAgzo+HCrWcUsvk3nWHicBkniJCFTp9DI6qAQ t7SqtcQpn+N8qmZb+pBxd4HrZS/Tg8wT -----END CERTIFICATE-----Generated at Sun Dec 21 14:40:47 2025 by rpki-client