This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft File: Ok9ILhJcCNuDBRbVGkot8eCqiso.mft (raw, json) Hash identifier: jI8Rdglj/O7PWKJEvmubd7N3g1e/rtv1jOf3dXM2iss= Subject key identifier: CF:37:54:7D:30:17:C6:A2:E7:F1:B7:EF:3B:27:0D:FB:33:32:C3:CA Authority key identifier: 3A:4F:48:2E:12:5C:08:DB:83:05:16:D5:1A:4A:2D:F1:E0:AA:8A:CA Certificate issuer: /CN=A918C158/serialNumber=3A4F482E125C08DB830516D51A4A2DF1E0AA8ACA Certificate serial: 0ABD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft Manifest number: 0AB7 Signing time: Mon 22 Dec 2025 18:56:56 +0000 Manifest this update: Mon 22 Dec 2025 18:56:56 +0000 Manifest next update: Mon 29 Dec 2025 18:56:56 +0000 Files and hashes: 1: Ok9ILhJcCNuDBRbVGkot8eCqiso.crl (hash: esmEcVrNdr81hIorG2U+dosMY1d1L533cOIFVnKk7dg=) 2: F25A6266796A11EB82E0EE24C4F9AE02.roa (hash: O/F4TEeQrnUUSKYZMDqIO0+JzSXznAo+/sHQLTeUsVk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.crl rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:56:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2749 (0xabd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C158, serialNumber=3A4F482E125C08DB830516D51A4A2DF1E0AA8ACA Validity Not Before: Dec 22 18:56:56 2025 GMT Not After : Dec 29 18:56:56 2025 GMT Subject: CN=69499478-4e9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:fa:e6:84:8e:86:b3:b5:1d:16:9e:bd:4e:6c: 1e:6a:4c:b3:c4:e2:e7:1d:5e:3e:5e:94:36:26:32: d6:e2:16:3c:d9:dc:da:7c:28:9c:9a:1b:60:a0:fd: 55:6f:76:a8:47:e1:a4:30:16:96:eb:80:b3:52:55: b2:8a:11:67:e7:7a:64:19:34:7c:6b:13:17:0b:11: 3a:5f:bf:fc:f8:57:19:65:a7:97:a1:f1:17:12:2f: f6:81:4a:f4:fb:83:40:14:a1:93:e8:b0:7c:54:d2: 90:ae:40:7f:ab:58:1c:7d:d5:ea:dd:20:3c:f3:99: 17:4f:56:92:c6:60:92:8b:32:7d:b8:02:0e:e3:61: 75:ad:f2:1a:a1:1d:b0:9e:ce:c0:37:1b:16:74:01: 1d:29:4e:13:86:dc:50:93:ca:8a:6a:ac:a3:7e:c1: 83:24:4d:41:d4:48:95:ad:73:25:0c:16:a9:db:01: 4f:94:2c:c1:b5:9a:9a:2f:59:d0:03:59:d1:e9:76: e6:29:04:03:e9:cb:fd:d1:b9:4e:db:02:bc:cb:a9: 02:cd:ba:f2:4f:ea:4a:18:a7:57:78:89:f3:0e:8b: ff:30:79:9d:cb:f1:b2:93:eb:b5:73:c8:51:25:00: f2:5b:8b:71:9d:70:5f:a6:bc:13:87:bf:51:be:33: e4:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:37:54:7D:30:17:C6:A2:E7:F1:B7:EF:3B:27:0D:FB:33:32:C3:CA X509v3 Authority Key Identifier: keyid:3A:4F:48:2E:12:5C:08:DB:83:05:16:D5:1A:4A:2D:F1:E0:AA:8A:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ok9ILhJcCNuDBRbVGkot8eCqiso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C158/AE51D802673B11EA99B2E556C4F9AE02/Ok9ILhJcCNuDBRbVGkot8eCqiso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:6a:d0:c6:c3:33:a7:31:f6:2c:2d:35:44:b4:cd:2b:61:32: ae:52:f9:2a:d1:2b:6b:fe:c5:a6:6a:2f:2e:14:d3:ab:a7:ab: d2:e7:60:a8:62:63:12:6c:6d:9a:6c:c2:06:f9:54:d6:81:c7: 8a:2e:7c:39:f4:12:2d:df:1c:f0:3b:6e:f7:71:83:77:7d:80: 7e:ac:b5:a2:c2:a6:82:9a:94:2d:9f:f4:26:c7:51:22:d0:ce: 91:8d:c1:40:d4:5e:f1:8d:8f:85:c6:d5:e0:ab:a0:f8:cc:08: ba:53:f6:8b:b7:bc:4e:7f:8e:46:6c:17:6f:33:15:cc:77:4c: 60:f1:b5:d5:cb:67:69:e7:b6:37:3a:31:22:12:bb:ca:e8:70: 2e:ef:79:2c:7a:96:0f:83:46:e4:de:dc:2f:17:e8:dd:d5:21: 78:6a:df:5f:bf:32:19:05:1e:f0:18:d7:9e:ad:1c:a6:2a:42: d6:df:e2:94:fd:2e:b6:60:ff:4a:45:71:28:5b:76:27:00:ed: f3:e6:03:f0:ea:5e:38:f6:c0:ca:1a:89:b8:74:5f:86:c0:56: bf:9b:9c:57:42:40:d1:9b:de:1b:6d:87:c9:da:92:25:60:2c: 91:11:08:62:2e:52:c6:2f:b3:c1:22:20:b8:2f:6a:d1:bc:e5: 13:93:57:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCr0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMxNTgxMTAvBgNVBAUTKDNBNEY0ODJFMTI1QzA4REI4MzA1MTZENTFBNEEyREYx RTBBQThBQ0EwHhcNMjUxMjIyMTg1NjU2WhcNMjUxMjI5MTg1NjU2WjAYMRYwFAYD VQQDDA02OTQ5OTQ3OC00ZTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmvrmhI6Gs7UdFp69TmweakyzxOLnHV4+XpQ2JjLW4hY82dzafCicmhtgoP1V b3aoR+GkMBaW64CzUlWyihFn53pkGTR8axMXCxE6X7/8+FcZZaeXofEXEi/2gUr0 +4NAFKGT6LB8VNKQrkB/q1gcfdXq3SA885kXT1aSxmCSizJ9uAIO42F1rfIaoR2w ns7ANxsWdAEdKU4ThtxQk8qKaqyjfsGDJE1B1EiVrXMlDBap2wFPlCzBtZqaL1nQ A1nR6XbmKQQD6cv90blO2wK8y6kCzbryT+pKGKdXeInzDov/MHmdy/Gyk+u1c8hR JQDyW4txnXBfprwTh79RvjPk2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM83VH0w F8ai5/G37zsnDfszMsPKMB8GA1UdIwQYMBaAFDpPSC4SXAjbgwUW1RpKLfHgqorK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzE1OC9BRTUxRDgwMjY3 M0IxMUVBOTlCMkU1NTZDNEY5QUUwMi9PazlJTGhKY0NOdURCUmJWR2tvdDhlQ3Fp c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rOUlMaEpjQ051REJSYlZHa290OGVDcWlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzE1OC9BRTUxRDgwMjY3M0IxMUVBOTlCMkU1NTZDNEY5QUUwMi9PazlJTGhKY0NO dURCUmJWR2tvdDhlQ3Fpc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJatDGwzOnMfYsLTVEtM0rYTKuUvkq0Str/sWmai8uFNOrp6vS52Co YmMSbG2abMIG+VTWgceKLnw59BIt3xzwO273cYN3fYB+rLWiwqaCmpQtn/Qmx1Ei 0M6RjcFA1F7xjY+FxtXgq6D4zAi6U/aLt7xOf45GbBdvMxXMd0xg8bXVy2dp57Y3 OjEiErvK6HAu73ksepYPg0bk3twvF+jd1SF4at9fvzIZBR7wGNeerRymKkLW3+KU /S62YP9KRXEoW3YnAO3z5gPw6l449sDKGom4dF+GwFa/m5xXQkDRm94bbYfJ2pIl YCyREQhiLlLGL7PBIiC4L2rRvOUTk1ed -----END CERTIFICATE-----Generated at Wed Dec 24 17:37:34 2025 by rpki-client