This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EF94/5029554C8A7911EE85441918C4F9AE02/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.mft File: oeTwnS9HB4Z8-uJ-jxMjafuX0O0.mft (raw, json) Hash identifier: aS1rUlWBcJ6+xZpDBK/BjAGp2N4V0pxbb5wLQqC8Ffc= Subject key identifier: F1:AE:DE:E3:A3:56:18:8F:14:A8:AC:05:F8:0D:FD:48:A7:BB:1A:C0 Authority key identifier: A1:E4:F0:9D:2F:47:07:86:7C:FA:E2:7E:8F:13:23:69:FB:97:D0:ED Certificate issuer: /CN=A918EF94/serialNumber=A1E4F09D2F4707867CFAE27E8F132369FB97D0ED Certificate serial: 017D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EF94/5029554C8A7911EE85441918C4F9AE02/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.mft Manifest number: 017D Signing time: Tue 02 Dec 2025 17:21:54 +0000 Manifest this update: Tue 02 Dec 2025 17:21:54 +0000 Manifest next update: Tue 09 Dec 2025 17:21:54 +0000 Files and hashes: 1: oeTwnS9HB4Z8-uJ-jxMjafuX0O0.crl (hash: kbqikSn5GCIpXu1Z+zVwRBAfnWIoOB8e7Y6Q+o/phm4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EF94/5029554C8A7911EE85441918C4F9AE02/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.crl rsync://rpki.apnic.net/member_repository/A918EF94/5029554C8A7911EE85441918C4F9AE02/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 17:21:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 381 (0x17d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EF94, serialNumber=A1E4F09D2F4707867CFAE27E8F132369FB97D0ED Validity Not Before: Dec 2 17:21:54 2025 GMT Not After : Dec 9 17:21:54 2025 GMT Subject: CN=692f2032-602d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:1f:41:28:b2:9a:5f:12:1f:3a:5a:34:8d:10: 2a:08:1f:0c:48:9b:da:8e:db:19:47:32:35:6a:9e: 57:a5:cc:94:ad:c9:c6:cf:b1:cb:87:e9:3c:08:0b: 73:7f:6d:e2:c9:a7:be:69:73:35:29:e4:6b:95:ba: de:d7:80:9e:8e:38:df:e1:3d:48:ab:bc:c9:83:cf: 86:d0:00:80:14:7f:14:0c:16:1c:57:50:21:47:39: c7:a1:af:05:02:ca:dc:cf:79:52:59:67:b4:62:69: 30:4f:eb:2e:fb:46:32:f6:97:1a:39:fd:ad:6c:c2: 3c:36:95:bb:c3:8e:dd:a1:14:09:b4:f4:80:0a:32: 7f:e8:fc:7f:4c:66:a3:6a:e1:0f:50:81:09:72:a7: fe:ce:f8:d3:ff:1f:a7:66:ca:7d:08:e3:67:f5:ae: 40:ad:70:3f:d0:30:5e:87:0a:30:1f:90:03:fb:74: 1d:df:99:b2:8a:ba:d1:ca:d2:a3:d5:22:17:65:8a: 88:28:2a:90:6f:0c:57:12:64:bf:f0:14:33:12:f0: 53:a6:eb:7a:d1:d6:87:71:bc:79:2e:1f:7d:88:4f: c6:ab:72:03:55:27:98:84:b2:22:98:bc:f8:bc:ea: b0:b0:ec:1b:c5:54:6d:7b:aa:ef:c5:8b:04:63:f1: a7:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:AE:DE:E3:A3:56:18:8F:14:A8:AC:05:F8:0D:FD:48:A7:BB:1A:C0 X509v3 Authority Key Identifier: keyid:A1:E4:F0:9D:2F:47:07:86:7C:FA:E2:7E:8F:13:23:69:FB:97:D0:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EF94/5029554C8A7911EE85441918C4F9AE02/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EF94/5029554C8A7911EE85441918C4F9AE02/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:78:ca:c9:9b:23:b2:65:fa:0b:66:ef:49:52:15:88:c7:f4: 2a:5e:48:4e:f9:97:d6:44:06:c6:47:73:c3:53:ce:17:cc:f1: 54:00:19:a5:e1:5d:bc:58:2c:3d:d7:cb:1a:05:c9:05:9d:43: e0:b9:97:a8:6e:4e:a0:d1:3c:a3:63:5a:0e:29:52:fc:2b:d5: bb:73:aa:de:c0:19:bf:b6:ba:59:94:b5:ab:fd:83:20:22:17: 5e:03:6f:6b:dc:e6:70:e9:92:41:6d:f3:13:b0:2d:f6:67:35: b0:a9:bd:7c:d4:11:f9:a1:e1:f8:27:15:f6:4e:c1:5e:65:4f: 0d:ce:40:2d:43:79:36:c1:8c:e8:93:23:80:67:10:dd:88:f4: f3:ce:4a:67:92:2d:e2:61:b5:4d:ad:fe:b1:7a:9f:ce:b1:de: 50:b1:f1:da:85:ed:1b:37:28:a3:5a:31:cc:ad:2a:9b:d7:6e: c7:78:d7:4f:99:3c:09:9c:9a:2d:6e:12:6b:36:03:55:07:aa: f8:bf:b6:82:5d:45:2a:5a:cb:cb:45:6d:8a:bb:d0:8a:50:52: 2e:31:2f:ab:2f:3b:b0:e8:06:48:bd:44:5d:a3:06:cb:4c:4a: 8e:a0:0c:38:1b:04:d7:71:5e:1e:88:52:3e:a4:e3:24:0e:cf: ba:c6:29:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVGOTQxMTAvBgNVBAUTKEExRTRGMDlEMkY0NzA3ODY3Q0ZBRTI3RThGMTMyMzY5 RkI5N0QwRUQwHhcNMjUxMjAyMTcyMTU0WhcNMjUxMjA5MTcyMTU0WjAYMRYwFAYD VQQDEw02OTJmMjAzMi02MDJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmB9BKLKaXxIfOlo0jRAqCB8MSJvajtsZRzI1ap5XpcyUrcnGz7HLh+k8CAtz f23iyae+aXM1KeRrlbre14Cejjjf4T1Iq7zJg8+G0ACAFH8UDBYcV1AhRznHoa8F Asrcz3lSWWe0YmkwT+su+0Yy9pcaOf2tbMI8NpW7w47doRQJtPSACjJ/6Px/TGaj auEPUIEJcqf+zvjT/x+nZsp9CONn9a5ArXA/0DBehwowH5AD+3Qd35myirrRytKj 1SIXZYqIKCqQbwxXEmS/8BQzEvBTput60daHcbx5Lh99iE/Gq3IDVSeYhLIimLz4 vOqwsOwbxVRte6rvxYsEY/GnWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPGu3uOj VhiPFKisBfgN/UinuxrAMB8GA1UdIwQYMBaAFKHk8J0vRweGfPrifo8TI2n7l9Dt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUY5NC81MDI5NTU0QzhB NzkxMUVFODU0NDE5MThDNEY5QUUwMi9vZVR3blM5SEI0WjgtdUotanhNamFmdVgw TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29lVHduUzlIQjRaOC11Si1qeE1qYWZ1WDBPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RUY5NC81MDI5NTU0QzhBNzkxMUVFODU0NDE5MThDNEY5QUUwMi9vZVR3blM5SEI0 WjgtdUotanhNamFmdVgwTzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFeMrJmyOyZfoLZu9JUhWIx/QqXkhO+ZfWRAbGR3PDU84XzPFUABml 4V28WCw918saBckFnUPguZeobk6g0TyjY1oOKVL8K9W7c6rewBm/trpZlLWr/YMg IhdeA29r3OZw6ZJBbfMTsC32ZzWwqb181BH5oeH4JxX2TsFeZU8NzkAtQ3k2wYzo kyOAZxDdiPTzzkpnki3iYbVNrf6xep/Osd5QsfHahe0bNyijWjHMrSqb127HeNdP mTwJnJotbhJrNgNVB6r4v7aCXUUqWsvLRW2Ku9CKUFIuMS+rLzuw6AZIvURdowbL TEqOoAw4GwTXcV4eiFI+pOMkDs+6xil8 -----END CERTIFICATE-----Generated at Wed Dec 3 14:56:45 2025 by rpki-client