This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.mft File: opsbaAnOwakkcMWcbDa_pc84cYY.mft (raw, json) Hash identifier: u2NKKV3tBq7GFimZbVQ/QpvREioyklS5uaNjWRzq0xk= Subject key identifier: 6F:B0:4D:5F:20:FB:C9:BC:51:80:3C:6A:B7:9A:C1:54:C9:7E:08:5C Authority key identifier: A2:9B:1B:68:09:CE:C1:A9:24:70:C5:9C:6C:36:BF:A5:CF:38:71:86 Certificate issuer: /CN=A9187BAC/serialNumber=A29B1B6809CEC1A92470C59C6C36BFA5CF387186 Certificate serial: B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opsbaAnOwakkcMWcbDa_pc84cYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.mft Manifest number: B5 Signing time: Sun 21 Dec 2025 05:13:12 +0000 Manifest this update: Sun 21 Dec 2025 05:13:12 +0000 Manifest next update: Sun 28 Dec 2025 05:13:12 +0000 Files and hashes: 1: opsbaAnOwakkcMWcbDa_pc84cYY.crl (hash: Zt3OtMt9TBG+UIR1+MDFtxYaueW0u5zMTS59p5v5d0Q=) 2: 7375238236E411F0A95FB239C4F9AE02.roa (hash: 6GqewoLZaVKTqsSzxgnIGXRwmj2ShKpEerZMfS7j+UE=) 3: 7404496836E411F0A95FB239C4F9AE02.roa (hash: WHGMZh9P2RExWIeMMaDkbGi0VRoxW1Iai0A3Zb9yWT4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.crl rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opsbaAnOwakkcMWcbDa_pc84cYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 05:13:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 183 (0xb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187BAC, serialNumber=A29B1B6809CEC1A92470C59C6C36BFA5CF387186 Validity Not Before: Dec 21 05:13:12 2025 GMT Not After : Dec 28 05:13:12 2025 GMT Subject: CN=694781e8-5f79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a9:4a:38:6d:bc:65:62:7b:59:95:25:ad:55: 3b:80:bd:6e:61:dc:4c:c2:dd:9c:dd:6a:78:fb:27: b9:79:e3:a3:24:68:80:06:a3:25:3f:a2:72:76:f4: 8d:2a:a4:59:97:35:c5:32:61:26:2f:d7:d6:62:f8: 6f:03:a3:07:84:ec:33:03:9a:52:fd:e7:db:11:82: 98:d7:09:79:00:88:2e:92:7b:8c:ca:73:ee:b3:f5: 8f:28:cb:06:31:70:dc:be:96:62:fb:e2:8e:a8:c4: 3d:38:74:14:1e:ec:81:b3:40:32:cf:b7:a0:7d:68: 75:7f:c1:d0:19:e6:f8:8f:81:0f:96:55:0e:88:bf: 49:1b:97:90:74:e2:7a:22:00:bf:ae:b9:11:4c:e8: 20:9d:e5:a8:d9:13:f6:c5:b7:20:bf:e3:f9:02:69: eb:96:3a:8d:dc:29:dc:8a:78:f2:2b:1a:ec:dd:14: 24:87:2d:12:e9:f7:d8:82:dd:b5:8a:98:f5:22:cb: b1:12:13:5b:cf:ab:4a:6d:88:ff:e1:1b:b5:ef:e4: ec:62:78:aa:d2:b3:a9:19:af:33:fc:a3:14:a7:d8: 4f:91:5a:e0:10:2c:50:09:8e:4a:30:6b:8d:cb:3e: 05:e9:d9:0a:b5:94:8b:f6:77:b0:91:52:ba:df:1c: 07:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:B0:4D:5F:20:FB:C9:BC:51:80:3C:6A:B7:9A:C1:54:C9:7E:08:5C X509v3 Authority Key Identifier: keyid:A2:9B:1B:68:09:CE:C1:A9:24:70:C5:9C:6C:36:BF:A5:CF:38:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opsbaAnOwakkcMWcbDa_pc84cYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:3e:ce:e0:a4:a6:c2:7c:57:46:90:78:55:79:e9:2c:88:44: fb:db:75:de:0d:91:a9:39:3b:74:9d:1b:d2:3d:49:de:79:58: 80:3d:4a:f5:08:63:23:29:48:87:9d:1f:f0:7b:48:3b:7c:93: 35:b3:be:5f:1c:b0:12:4c:25:f7:1c:17:bd:4f:0a:62:8d:fc: cc:9a:b1:45:5e:92:8d:e0:ef:50:e2:ce:ff:f3:f8:d0:d5:83: 5b:ba:8d:76:20:47:b3:f7:d8:61:37:67:2c:5f:6b:58:54:95: 45:40:a0:c6:80:6f:c0:54:97:5a:8e:e0:f2:91:d9:5e:d4:2f: 0f:86:bf:60:2a:be:8f:a0:f8:c9:f4:f0:e2:ca:d2:b5:d2:82: 6b:16:bc:21:50:ce:0a:10:72:52:70:91:92:31:c3:c0:24:93: 1d:4f:80:99:56:58:35:b1:40:e8:6e:80:45:18:c3:f7:89:9d: 6a:82:d9:6e:0f:ec:c7:d8:aa:47:14:6c:68:ac:e5:7c:dd:e3: 3b:6c:9b:2f:a5:fc:04:51:38:21:c6:09:0d:b4:20:82:c2:e0: b5:c3:28:db:37:c3:cb:77:8a:23:04:96:f7:8c:e0:8a:8c:8a: 3a:16:3a:46:38:11:e6:63:04:a4:fd:9d:d6:f6:bb:a7:e6:54: 0a:62:bb:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODdCQUMxMTAvBgNVBAUTKEEyOUIxQjY4MDlDRUMxQTkyNDcwQzU5QzZDMzZCRkE1 Q0YzODcxODYwHhcNMjUxMjIxMDUxMzEyWhcNMjUxMjI4MDUxMzEyWjAYMRYwFAYD VQQDDA02OTQ3ODFlOC01Zjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6lKOG28ZWJ7WZUlrVU7gL1uYdxMwt2c3Wp4+ye5eeOjJGiABqMlP6JydvSN KqRZlzXFMmEmL9fWYvhvA6MHhOwzA5pS/efbEYKY1wl5AIguknuMynPus/WPKMsG MXDcvpZi++KOqMQ9OHQUHuyBs0Ayz7egfWh1f8HQGeb4j4EPllUOiL9JG5eQdOJ6 IgC/rrkRTOggneWo2RP2xbcgv+P5AmnrljqN3CncinjyKxrs3RQkhy0S6ffYgt21 ipj1IsuxEhNbz6tKbYj/4Ru17+TsYniq0rOpGa8z/KMUp9hPkVrgECxQCY5KMGuN yz4F6dkKtZSL9newkVK63xwHpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG+wTV8g +8m8UYA8areawVTJfghcMB8GA1UdIwQYMBaAFKKbG2gJzsGpJHDFnGw2v6XPOHGG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4N0JBQy9DNkFEM0UwQUQw MkMxMUVGQjU1ODQ5MTVDNEY5QUUwMi9vcHNiYUFuT3dha2tjTVdjYkRhX3BjODRj WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29wc2JhQW5Pd2Fra2NNV2NiRGFfcGM4NGNZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 N0JBQy9DNkFEM0UwQUQwMkMxMUVGQjU1ODQ5MTVDNEY5QUUwMi9vcHNiYUFuT3dh a2tjTVdjYkRhX3BjODRjWVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsPs7gpKbCfFdGkHhVeeksiET723XeDZGpOTt0nRvSPUneeViAPUr1 CGMjKUiHnR/we0g7fJM1s75fHLASTCX3HBe9TwpijfzMmrFFXpKN4O9Q4s7/8/jQ 1YNbuo12IEez99hhN2csX2tYVJVFQKDGgG/AVJdajuDykdle1C8Phr9gKr6PoPjJ 9PDiytK10oJrFrwhUM4KEHJScJGSMcPAJJMdT4CZVlg1sUDoboBFGMP3iZ1qgtlu D+zH2KpHFGxorOV83eM7bJsvpfwEUTghxgkNtCCCwuC1wyjbN8PLd4ojBJb3jOCK jIo6FjpGOBHmYwSk/Z3W9run5lQKYruA -----END CERTIFICATE-----Generated at Mon Dec 22 07:03:46 2025 by rpki-client