This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft File: oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft (raw, json) Hash identifier: HCLjRDlbk+fCwyW9bJvEYYJ52LWum4bITWHr3jjAB48= Subject key identifier: F2:E8:EE:AF:2C:84:1B:5A:DA:8A:D2:81:CA:D9:21:94:90:58:03:F7 Authority key identifier: A2:DA:36:37:D3:25:3F:89:97:D8:8D:0B:D8:DA:95:98:F7:83:F9:91 Certificate issuer: /CN=A918AAA1/serialNumber=A2DA3637D3253F8997D88D0BD8DA9598F783F991 Certificate serial: 01AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft Manifest number: 01A8 Signing time: Tue 09 Dec 2025 01:24:48 +0000 Manifest this update: Tue 09 Dec 2025 01:24:47 +0000 Manifest next update: Tue 16 Dec 2025 01:24:47 +0000 Files and hashes: 1: oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl (hash: rePkkhQ0ibSMXXDMhQkTJEMG2RNeFb1eAXvOqhRG58A=) 2: E6EB2B10486E11EEB4D5FF2DC4F9AE02.roa (hash: 5JFgGi1zcqLdr4l1Ei+0uqRhphNnP2rP0bMb+qfmJXM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Dec 2025 01:24:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 427 (0x1ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AAA1, serialNumber=A2DA3637D3253F8997D88D0BD8DA9598F783F991 Validity Not Before: Dec 9 01:24:47 2025 GMT Not After : Dec 16 01:24:47 2025 GMT Subject: CN=69377a60-d984 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:1f:c1:30:3e:59:1c:91:38:43:6a:e6:e5:83: 60:7f:9d:99:23:e4:a2:d6:3c:b3:98:95:ff:2e:f1: 62:8a:4f:bb:ba:00:71:fb:cd:24:13:98:8b:29:6a: 61:c3:f7:f9:5b:2a:22:64:1a:83:59:e7:ce:90:26: f0:d8:49:83:22:bc:dd:42:da:bd:80:7a:7d:92:07: e6:02:4a:bf:f6:af:5a:8a:2e:9f:cb:37:b1:ae:f6: fa:68:55:19:b2:81:27:6d:50:e4:42:93:d8:c8:05: b9:67:ce:2f:84:db:d8:0a:a3:94:bc:e8:d2:9e:d9: 72:c2:9c:08:d0:33:a9:75:d0:c1:1c:6c:7a:02:03: 22:8f:cc:47:f2:da:12:61:b0:06:81:b7:6e:68:c3: b1:63:37:9b:c7:bd:03:0e:17:8a:6c:15:e1:5c:13: 9a:3f:07:5a:63:bf:f4:50:ce:d8:e3:62:03:15:f2: 32:b0:68:d6:51:b6:b5:e5:a6:72:ca:67:67:3b:1e: 4a:6b:6f:e9:cf:60:2b:04:06:c8:c5:cd:2e:94:41: d5:40:ef:15:d3:03:de:92:f0:0e:38:17:18:05:a8: 30:cf:12:7e:80:de:a4:c6:a4:9d:4a:f3:65:d1:1a: db:a6:55:bd:75:36:33:f0:23:f2:a6:38:1a:a2:47: 56:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:E8:EE:AF:2C:84:1B:5A:DA:8A:D2:81:CA:D9:21:94:90:58:03:F7 X509v3 Authority Key Identifier: keyid:A2:DA:36:37:D3:25:3F:89:97:D8:8D:0B:D8:DA:95:98:F7:83:F9:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:d5:0c:2c:49:d8:06:c3:3c:b9:7d:4b:8f:a9:0d:fd:9d:f8: 59:f4:43:c3:42:24:83:a4:6f:cb:5e:14:36:7f:71:61:d4:36: d9:c5:53:45:a5:44:59:6d:ee:7a:df:78:5e:cb:8f:ff:cf:23: 18:68:62:3e:d7:53:21:96:d9:a7:cb:a4:d8:59:f5:e5:ce:8d: 48:dd:6e:62:99:6a:80:9f:11:07:c5:c4:e2:c7:40:3b:69:cf: ef:b6:44:80:e7:b8:c9:ac:70:65:67:8d:44:d7:07:b0:6b:86: a1:c2:66:0d:df:0a:84:81:51:53:2d:b6:a1:4d:24:be:ac:c9: f0:d9:4f:aa:2f:ec:f2:79:0d:ca:39:05:c1:eb:00:09:90:f9: 38:48:0b:c7:41:ce:1a:e8:f6:6a:bd:ee:f8:c9:f3:45:80:ee: 49:50:b2:4a:96:da:7e:d8:14:22:19:01:b0:d2:f6:fd:75:7f: 34:2b:ee:e7:55:a1:a4:f4:4b:30:d0:55:46:9d:87:c2:0c:b1: 44:75:2e:ca:52:c1:e3:73:0f:d5:e8:4d:3b:c7:97:f9:4f:de: af:bb:f8:e8:73:bd:20:e8:c0:c8:ae:1e:52:9d:2e:cd:4f:85: ba:a5:85:da:d9:76:61:a4:8c:8e:f2:fb:66:7c:b5:4b:e9:23: 0d:a9:e6:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFBQTExMTAvBgNVBAUTKEEyREEzNjM3RDMyNTNGODk5N0Q4OEQwQkQ4REE5NTk4 Rjc4M0Y5OTEwHhcNMjUxMjA5MDEyNDQ3WhcNMjUxMjE2MDEyNDQ3WjAYMRYwFAYD VQQDEw02OTM3N2E2MC1kOTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwR/BMD5ZHJE4Q2rm5YNgf52ZI+Si1jyzmJX/LvFiik+7ugBx+80kE5iLKWph w/f5WyoiZBqDWefOkCbw2EmDIrzdQtq9gHp9kgfmAkq/9q9aii6fyzexrvb6aFUZ soEnbVDkQpPYyAW5Z84vhNvYCqOUvOjSntlywpwI0DOpddDBHGx6AgMij8xH8toS YbAGgbduaMOxYzebx70DDheKbBXhXBOaPwdaY7/0UM7Y42IDFfIysGjWUba15aZy ymdnOx5Ka2/pz2ArBAbIxc0ulEHVQO8V0wPekvAOOBcYBagwzxJ+gN6kxqSdSvNl 0RrbplW9dTYz8CPypjgaokdWMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPLo7q8s hBta2orSgcrZIZSQWAP3MB8GA1UdIwQYMBaAFKLaNjfTJT+Jl9iNC9jalZj3g/mR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUFBMS84MTE0Qzc5QzQ4 NkUxMUVFQTk2MDk0MkNDNEY5QUUwMi9vdG8yTjlNbFA0bVgySTBMMk5xVm1QZUQt WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL290bzJOOU1sUDRtWDJJMEwyTnFWbVBlRC1aRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUFBMS84MTE0Qzc5QzQ4NkUxMUVFQTk2MDk0MkNDNEY5QUUwMi9vdG8yTjlNbFA0 bVgySTBMMk5xVm1QZUQtWkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBn1QwsSdgGwzy5fUuPqQ39nfhZ9EPDQiSDpG/LXhQ2f3Fh1DbZxVNF pURZbe5633hey4//zyMYaGI+11Mhltmny6TYWfXlzo1I3W5imWqAnxEHxcTix0A7 ac/vtkSA57jJrHBlZ41E1wewa4ahwmYN3wqEgVFTLbahTSS+rMnw2U+qL+zyeQ3K OQXB6wAJkPk4SAvHQc4a6PZqve74yfNFgO5JULJKltp+2BQiGQGw0vb9dX80K+7n VaGk9Esw0FVGnYfCDLFEdS7KUsHjcw/V6E07x5f5T96vu/joc70g6MDIrh5SnS7N T4W6pYXa2XZhpIyO8vtmfLVL6SMNqeZz -----END CERTIFICATE-----Generated at Wed Dec 10 06:01:19 2025 by rpki-client