This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.mft File: 2OexX5y5FnTlEn_UBtfZ5xjgirA.mft (raw, json) Hash identifier: maamdGou0hSCIn6CsmTGxTNFHpCFA9AqfQNB6+6UMNE= Subject key identifier: 52:A6:94:90:C5:EA:22:EB:D3:DB:5E:B2:A9:3C:09:34:6C:3C:72:88 Authority key identifier: D8:E7:B1:5F:9C:B9:16:74:E5:12:7F:D4:06:D7:D9:E7:18:E0:8A:B0 Certificate issuer: /CN=A917E27F/serialNumber=D8E7B15F9CB91674E5127FD406D7D9E718E08AB0 Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2OexX5y5FnTlEn_UBtfZ5xjgirA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.mft Manifest number: 40 Signing time: Wed 03 Dec 2025 05:39:30 +0000 Manifest this update: Wed 03 Dec 2025 05:39:29 +0000 Manifest next update: Wed 10 Dec 2025 05:39:29 +0000 Files and hashes: 1: 2OexX5y5FnTlEn_UBtfZ5xjgirA.crl (hash: FKYHBZG2JUujACrhPXCGZEwroY/ZLPOZTLHwXkHRVSk=) 2: 4197AB74735611F080D68151C4F9AE02.roa (hash: uw93y6FGovmGq+bi/XnqUmoXwqLRFeM+9sTlrsvluUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.crl rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2OexX5y5FnTlEn_UBtfZ5xjgirA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 05:39:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E27F, serialNumber=D8E7B15F9CB91674E5127FD406D7D9E718E08AB0 Validity Not Before: Dec 3 05:39:29 2025 GMT Not After : Dec 10 05:39:29 2025 GMT Subject: CN=692fcd11-7ad2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:aa:2e:c8:4c:b0:0f:89:6a:4b:01:7f:89:7a: 51:e1:da:3a:92:26:61:81:45:e4:02:14:b9:66:4c: 2c:68:1a:bb:70:02:42:03:a7:7e:dc:f8:8c:6a:71: 0f:13:91:fc:ec:83:6c:8d:85:6c:03:bc:60:5c:22: 61:d6:16:33:f1:b9:34:41:da:64:90:ea:75:ac:c4: eb:0b:90:bd:d9:98:e1:ee:17:6f:fa:26:be:bf:b6: fe:77:2b:ac:86:ac:03:4e:ef:9d:c3:8d:11:69:e0: 37:d2:80:ad:5b:26:b1:6a:e4:b8:01:0a:6f:d3:2d: 5b:e2:0c:e1:71:bf:5b:6c:53:a3:df:71:35:02:e6: 29:c9:ac:9a:0f:0e:06:4f:5f:87:86:2d:4e:36:1f: 87:af:0e:d4:de:a5:60:83:81:61:20:da:bc:4c:09: 0a:46:60:20:d1:e7:3f:93:7c:69:b8:15:3f:fc:2f: 21:d7:a6:cf:67:a8:33:71:6b:b8:19:5d:68:dc:b0: df:8f:00:4e:3f:6b:0c:3b:27:fa:9d:f0:26:38:98: ad:36:67:56:48:24:01:65:cc:5f:a8:26:89:48:22: 59:45:bb:a6:bc:90:07:5c:a2:cc:c8:87:4a:c0:4a: b7:73:66:85:53:c1:04:aa:6e:38:c5:fb:36:18:92: 46:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:A6:94:90:C5:EA:22:EB:D3:DB:5E:B2:A9:3C:09:34:6C:3C:72:88 X509v3 Authority Key Identifier: keyid:D8:E7:B1:5F:9C:B9:16:74:E5:12:7F:D4:06:D7:D9:E7:18:E0:8A:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2OexX5y5FnTlEn_UBtfZ5xjgirA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:0b:1e:a6:39:d4:68:fa:b6:7c:43:ef:fa:69:c1:b8:6f:8d: 1b:16:ca:3a:0e:94:cd:ee:e7:ce:dc:29:83:16:7c:2a:76:5c: 9e:c0:67:33:89:ad:e0:60:4e:22:fe:6a:2a:6a:a2:78:11:b9: 41:37:43:a9:55:57:0a:25:3c:18:61:f8:54:05:fe:dc:47:9c: 33:b9:16:01:51:f0:9e:0d:7c:31:6f:7c:a8:da:67:97:4d:28: 30:d3:23:e6:fd:76:60:c0:69:2a:51:a7:b1:d0:b0:07:3b:63: 58:db:38:61:20:ba:77:c1:f0:19:89:81:d2:78:fb:32:55:17: d4:46:47:bd:07:46:49:f0:7e:f9:b9:1c:15:c3:47:60:7a:1e: 64:f5:90:59:e6:1d:27:de:53:42:62:98:e4:96:40:ac:5d:33: 71:14:03:23:ab:96:f1:d6:10:e8:08:a3:e1:cc:41:79:20:00: 76:2a:bc:05:dd:f0:ed:6e:d6:aa:44:0a:f5:f8:f4:67:07:d3: 2a:79:3d:fd:76:57:d8:8c:b4:ef:83:dc:d6:47:06:99:c5:9d: 22:bf:f9:a0:80:63:a5:9b:61:c1:14:e2:20:21:26:7d:bd:24: ec:01:eb:f7:13:9d:c3:45:b2:ec:7c:b1:3c:09:9c:50:b4:e6: 09:27:d1:b4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RTI3RjExMC8GA1UEBRMoRDhFN0IxNUY5Q0I5MTY3NEU1MTI3RkQ0MDZEN0Q5RTcx OEUwOEFCMDAeFw0yNTEyMDMwNTM5MjlaFw0yNTEyMTAwNTM5MjlaMBgxFjAUBgNV BAMTDTY5MmZjZDExLTdhZDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5qi7ITLAPiWpLAX+JelHh2jqSJmGBReQCFLlmTCxoGrtwAkIDp37c+IxqcQ8T kfzsg2yNhWwDvGBcImHWFjPxuTRB2mSQ6nWsxOsLkL3ZmOHuF2/6Jr6/tv53K6yG rANO753DjRFp4DfSgK1bJrFq5LgBCm/TLVviDOFxv1tsU6PfcTUC5inJrJoPDgZP X4eGLU42H4evDtTepWCDgWEg2rxMCQpGYCDR5z+TfGm4FT/8LyHXps9nqDNxa7gZ XWjcsN+PAE4/aww7J/qd8CY4mK02Z1ZIJAFlzF+oJolIIllFu6a8kAdcoszIh0rA SrdzZoVTwQSqbjjF+zYYkkZPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUqaUkMXq IuvT216yqTwJNGw8cogwHwYDVR0jBBgwFoAU2OexX5y5FnTlEn/UBtfZ5xjgirAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdFMjdGLzc2OUQyRDY2NzJC NzExRjA5QzA0NjkwREM0RjlBRTAyLzJPZXhYNXk1Rm5UbEVuX1VCdGZaNXhqZ2ly QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMk9leFg1eTVGblRsRW5fVUJ0Zlo1eGpnaXJBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdF MjdGLzc2OUQyRDY2NzJCNzExRjA5QzA0NjkwREM0RjlBRTAyLzJPZXhYNXk1Rm5U bEVuX1VCdGZaNXhqZ2lyQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEcLHqY51Gj6tnxD7/ppwbhvjRsWyjoOlM3u587cKYMWfCp2XJ7AZzOJ reBgTiL+aipqongRuUE3Q6lVVwolPBhh+FQF/txHnDO5FgFR8J4NfDFvfKjaZ5dN KDDTI+b9dmDAaSpRp7HQsAc7Y1jbOGEgunfB8BmJgdJ4+zJVF9RGR70HRknwfvm5 HBXDR2B6HmT1kFnmHSfeU0JimOSWQKxdM3EUAyOrlvHWEOgIo+HMQXkgAHYqvAXd 8O1u1qpECvX49GcH0yp5Pf12V9iMtO+D3NZHBpnFnSK/+aCAY6WbYcEU4iAhJn29 JOwB6/cTncNFsux8sTwJnFC05gkn0bQ= -----END CERTIFICATE-----Generated at Wed Dec 3 13:58:20 2025 by rpki-client