This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft File: oOoqcgysMcg3X1Vs-Uv--NERafY.mft (raw, json) Hash identifier: pBumA6/+LLhIqmpfc91BHdUJFUiribDiNRW1+V3NUQE= Subject key identifier: 21:25:75:AA:FD:94:F6:57:7E:E2:DF:07:FF:44:E7:8A:7C:E6:5B:EA Authority key identifier: A0:EA:2A:72:0C:AC:31:C8:37:5F:55:6C:F9:4B:FE:F8:D1:11:69:F6 Certificate issuer: /CN=A917C0F3/serialNumber=A0EA2A720CAC31C8375F556CF94BFEF8D11169F6 Certificate serial: B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft Manifest number: B0 Signing time: Tue 23 Dec 2025 05:02:39 +0000 Manifest this update: Tue 23 Dec 2025 05:02:38 +0000 Manifest next update: Tue 30 Dec 2025 05:02:38 +0000 Files and hashes: 1: oOoqcgysMcg3X1Vs-Uv--NERafY.crl (hash: 7SvAyjAd44eHWazglUU7IWrzCJgD+TM1EtASeEvVJuQ=) 2: 02F0D9DED0BA11EFA8B5A526C4F9AE02.roa (hash: sDB2dzkpvGOMbxnCK5hWZ3ZmmwAVruvEUCtgdzq6VhA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.crl rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:02:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 177 (0xb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C0F3, serialNumber=A0EA2A720CAC31C8375F556CF94BFEF8D11169F6 Validity Not Before: Dec 23 05:02:38 2025 GMT Not After : Dec 30 05:02:38 2025 GMT Subject: CN=694a226f-feb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d4:c5:74:22:76:c3:54:85:8e:94:01:43:71: 01:84:b9:50:15:74:4a:19:d9:ef:88:a5:52:bc:aa: 15:45:b4:5a:62:49:ff:30:eb:34:88:0a:4f:be:22: 99:2e:b3:ad:e0:5b:6c:ec:5b:9e:b3:66:b1:1c:5d: b1:52:98:ed:7c:00:e6:97:f0:95:e0:de:b2:32:6b: 74:4c:9a:02:2c:5a:cc:1b:0a:06:28:c0:e8:53:ee: 28:c8:ca:f1:dd:6e:f0:f2:64:e0:b9:d0:3a:9a:90: ba:c4:6f:3e:34:17:34:5c:4b:1b:2c:4f:67:b1:19: 08:28:25:ec:6f:92:10:b4:72:9a:c2:c1:23:9a:fc: 18:a8:14:f3:20:5e:4d:5c:f6:21:c7:a1:97:88:e1: bf:68:ca:68:3c:2f:c7:34:14:b5:0b:14:d1:22:2a: 57:07:18:71:fa:87:47:32:6a:1f:26:36:4e:a8:4e: 72:5d:78:c2:68:2b:24:43:32:e9:88:c6:30:b8:c8: 04:7c:27:eb:2e:96:e2:28:6b:a0:4a:10:2c:5a:0d: c8:02:58:77:b4:f9:85:70:ed:80:e1:f9:63:42:aa: 91:eb:5a:95:bc:92:0a:7e:21:47:79:3e:fd:18:c4: 84:6a:bc:9c:26:5d:1e:58:0b:bd:77:46:d6:62:ef: 06:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:25:75:AA:FD:94:F6:57:7E:E2:DF:07:FF:44:E7:8A:7C:E6:5B:EA X509v3 Authority Key Identifier: keyid:A0:EA:2A:72:0C:AC:31:C8:37:5F:55:6C:F9:4B:FE:F8:D1:11:69:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:9b:7a:41:f7:5d:3c:73:6f:f4:20:7c:63:90:6d:9b:33:f0: 6b:5b:6a:14:53:b1:35:6f:c1:4c:a1:c9:8b:de:b5:f1:e4:87: 23:0d:5a:2c:35:35:69:b2:74:3e:40:01:4f:d0:64:2a:21:c6: 13:ab:03:25:cb:19:ba:2f:71:35:69:e4:9b:0d:a6:ee:df:c7: 60:11:0e:e0:7d:c8:bf:56:71:87:4e:b3:17:c4:eb:69:5f:ad: 47:bc:af:75:60:f9:8c:e4:d8:71:f6:91:25:80:b2:5e:33:76: c0:bd:ed:23:ae:43:bb:5e:42:73:18:03:bd:e5:2c:12:f6:4f: bb:3b:37:62:f7:bf:d4:f1:7b:ab:00:9d:05:6c:ee:38:0c:42: a5:3d:1b:ff:c6:99:69:52:4c:76:d1:8a:f8:e4:6b:2e:87:19: 05:4a:1f:6e:d4:d1:43:b9:18:dd:fd:3a:e9:34:46:72:de:8c: 1b:63:a1:34:45:2c:84:77:0d:13:bb:2b:37:26:f8:27:cf:7f: 3c:0f:f8:43:56:6d:75:d6:97:bf:36:47:63:b1:3c:de:bb:31: 57:56:f6:4e:5c:2c:d5:4f:12:cf:da:93:d6:1e:19:9d:8b:b4: 34:11:e5:85:5f:28:3c:25:d5:40:e7:27:26:c1:4f:06:f6:01: e8:2d:1c:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MwRjMxMTAvBgNVBAUTKEEwRUEyQTcyMENBQzMxQzgzNzVGNTU2Q0Y5NEJGRUY4 RDExMTY5RjYwHhcNMjUxMjIzMDUwMjM4WhcNMjUxMjMwMDUwMjM4WjAYMRYwFAYD VQQDDA02OTRhMjI2Zi1mZWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdTFdCJ2w1SFjpQBQ3EBhLlQFXRKGdnviKVSvKoVRbRaYkn/MOs0iApPviKZ LrOt4Fts7Fues2axHF2xUpjtfADml/CV4N6yMmt0TJoCLFrMGwoGKMDoU+4oyMrx 3W7w8mTgudA6mpC6xG8+NBc0XEsbLE9nsRkIKCXsb5IQtHKawsEjmvwYqBTzIF5N XPYhx6GXiOG/aMpoPC/HNBS1CxTRIipXBxhx+odHMmofJjZOqE5yXXjCaCskQzLp iMYwuMgEfCfrLpbiKGugShAsWg3IAlh3tPmFcO2A4fljQqqR61qVvJIKfiFHeT79 GMSEarycJl0eWAu9d0bWYu8G/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCEldar9 lPZXfuLfB/9E54p85lvqMB8GA1UdIwQYMBaAFKDqKnIMrDHIN19VbPlL/vjREWn2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzBGMy82MEUyMDdCQ0Qw QjkxMUVGQTA4NDg4MjVDNEY5QUUwMi9vT29xY2d5c01jZzNYMVZzLVV2LS1ORVJh ZlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Pb3FjZ3lzTWNnM1gxVnMtVXYtLU5FUmFmWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzBGMy82MEUyMDdCQ0QwQjkxMUVGQTA4NDg4MjVDNEY5QUUwMi9vT29xY2d5c01j ZzNYMVZzLVV2LS1ORVJhZlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlm3pB9108c2/0IHxjkG2bM/BrW2oUU7E1b8FMocmL3rXx5IcjDVos NTVpsnQ+QAFP0GQqIcYTqwMlyxm6L3E1aeSbDabu38dgEQ7gfci/VnGHTrMXxOtp X61HvK91YPmM5Nhx9pElgLJeM3bAve0jrkO7XkJzGAO95SwS9k+7Ozdi97/U8Xur AJ0FbO44DEKlPRv/xplpUkx20Yr45GsuhxkFSh9u1NFDuRjd/TrpNEZy3owbY6E0 RSyEdw0Tuys3Jvgnz388D/hDVm111pe/NkdjsTzeuzFXVvZOXCzVTxLP2pPWHhmd i7Q0EeWFXyg8JdVA5ycmwU8G9gHoLRz5 -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:25 2025 by rpki-client