This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft File: OYkRMAEE18WLMm5WZLPXmi1GRuA.mft (raw, json) Hash identifier: m0bd/m06YWyiweWa9nJQOG/P2UHKgy7GzUKRXQw2qIY= Subject key identifier: FB:CE:6A:2F:DC:B4:C3:1F:26:3E:7E:B9:D1:BB:56:85:42:9E:A1:86 Authority key identifier: 39:89:11:30:01:04:D7:C5:8B:32:6E:56:64:B3:D7:9A:2D:46:46:E0 Certificate issuer: /CN=A918F1C9/serialNumber=398911300104D7C58B326E5664B3D79A2D4646E0 Certificate serial: 0A6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYkRMAEE18WLMm5WZLPXmi1GRuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft Manifest number: 0AFA Signing time: Mon 22 Dec 2025 19:08:52 +0000 Manifest this update: Mon 22 Dec 2025 19:08:52 +0000 Manifest next update: Mon 29 Dec 2025 19:08:52 +0000 Files and hashes: 1: OYkRMAEE18WLMm5WZLPXmi1GRuA.crl (hash: lEgu+bTL57Q1up5JRoD6AEEGvmgFetgk6mMmDt9TvQA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.crl rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYkRMAEE18WLMm5WZLPXmi1GRuA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2671 (0xa6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F1C9, serialNumber=398911300104D7C58B326E5664B3D79A2D4646E0 Validity Not Before: Dec 22 19:08:52 2025 GMT Not After : Dec 29 19:08:52 2025 GMT Subject: CN=69499744-a000 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:bc:5a:32:06:b9:a0:df:99:f6:20:3a:7f:b5: 61:16:e7:27:75:f9:9a:41:b6:77:85:da:af:b5:96: 31:61:7e:2a:68:e6:eb:cf:6f:1e:28:8d:51:a3:a5: 23:7f:8e:bd:14:74:77:4c:b9:26:2f:16:1c:eb:22: 36:4f:ee:20:cc:d6:6c:5b:e9:15:00:0a:3b:c7:28: eb:0c:2a:09:c4:bf:0f:99:e4:88:e5:82:98:99:5c: 4b:bb:db:81:b2:2e:9a:13:ee:60:b5:8f:2d:45:a1: 70:42:ff:b6:6a:90:fe:17:26:9f:0b:27:7e:0a:2f: 3c:cc:7b:d0:51:64:bf:51:ee:87:c1:50:68:23:88: b9:03:97:13:2f:dd:d6:04:c6:18:cf:e0:9b:8d:6e: d8:4e:2a:38:e4:55:d5:f2:90:90:c3:45:a2:62:87: db:08:08:4a:ca:b2:b4:86:3d:3a:89:57:6d:c9:b3: 50:8b:d5:da:2a:45:81:d7:d7:c7:da:ea:4e:f4:ee: 30:08:3d:f3:5c:dd:c9:57:ca:d3:a6:c3:c5:9b:e2: e9:f6:92:70:28:2e:2f:f5:70:62:c4:d8:25:cf:c9: 6e:01:3d:07:65:9d:ad:30:cc:12:cf:7b:09:98:b8: 36:95:4f:ad:6d:5a:47:90:d0:b5:dd:ab:51:28:31: b6:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:CE:6A:2F:DC:B4:C3:1F:26:3E:7E:B9:D1:BB:56:85:42:9E:A1:86 X509v3 Authority Key Identifier: keyid:39:89:11:30:01:04:D7:C5:8B:32:6E:56:64:B3:D7:9A:2D:46:46:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYkRMAEE18WLMm5WZLPXmi1GRuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:e9:c6:71:0a:88:60:7a:e5:f4:fe:17:4b:18:d5:a6:20:58: da:d8:07:aa:bf:5f:8d:77:01:fd:32:3e:8a:02:5f:d3:ce:74: 9f:0f:25:fa:5f:37:da:92:37:8b:bf:32:9d:0a:94:a3:46:b0: 60:24:12:69:73:f0:76:28:30:33:81:1a:b8:4b:9f:21:b7:cd: 47:47:b5:b3:9f:48:98:81:fd:c6:54:40:80:70:9a:80:68:2f: dc:44:a7:b9:f6:50:93:3a:cd:e0:cb:21:d6:d1:1f:e3:d4:6e: 29:24:e5:77:ce:fe:95:f0:38:c0:75:93:60:c6:e0:51:0a:a0: c1:6e:08:0a:bc:0c:f2:16:b3:45:d5:1b:55:6a:dc:e1:8c:01: c1:f0:12:18:42:df:7b:2b:1c:07:70:ca:26:a1:b0:a0:6b:f2: 2e:1b:f0:bd:75:cc:9d:d8:7d:3b:8e:0b:0d:e8:c3:c0:bd:df: 6e:ec:65:35:78:fa:8b:09:6c:24:13:b3:de:18:88:e4:34:5d: d2:13:e6:3a:ec:2e:c9:8f:9f:ed:01:6a:f8:80:8e:22:2d:fd: 68:35:04:52:34:da:0d:a4:3c:cf:53:48:1d:3d:71:a3:fe:b4: 4f:86:02:62:65:7b:5b:53:4d:98:7c:56:8c:75:f7:df:ea:33: d2:a7:f3:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEYxQzkxMTAvBgNVBAUTKDM5ODkxMTMwMDEwNEQ3QzU4QjMyNkU1NjY0QjNENzlB MkQ0NjQ2RTAwHhcNMjUxMjIyMTkwODUyWhcNMjUxMjI5MTkwODUyWjAYMRYwFAYD VQQDDA02OTQ5OTc0NC1hMDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3bxaMga5oN+Z9iA6f7VhFucndfmaQbZ3hdqvtZYxYX4qaObrz28eKI1Ro6Uj f469FHR3TLkmLxYc6yI2T+4gzNZsW+kVAAo7xyjrDCoJxL8PmeSI5YKYmVxLu9uB si6aE+5gtY8tRaFwQv+2apD+FyafCyd+Ci88zHvQUWS/Ue6HwVBoI4i5A5cTL93W BMYYz+CbjW7YTio45FXV8pCQw0WiYofbCAhKyrK0hj06iVdtybNQi9XaKkWB19fH 2upO9O4wCD3zXN3JV8rTpsPFm+Lp9pJwKC4v9XBixNglz8luAT0HZZ2tMMwSz3sJ mLg2lU+tbVpHkNC13atRKDG28wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPvOai/c tMMfJj5+udG7VoVCnqGGMB8GA1UdIwQYMBaAFDmJETABBNfFizJuVmSz15otRkbg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjFDOS82QTU3QUI4QzdG OTUxMUVBQjBFRDg1MzdDNEY5QUUwMi9PWWtSTUFFRTE4V0xNbTVXWkxQWG1pMUdS dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09Za1JNQUVFMThXTE1tNVdaTFBYbWkxR1J1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjFDOS82QTU3QUI4QzdGOTUxMUVBQjBFRDg1MzdDNEY5QUUwMi9PWWtSTUFFRTE4 V0xNbTVXWkxQWG1pMUdSdUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAM6cZxCohgeuX0/hdLGNWmIFja2Aeqv1+NdwH9Mj6KAl/TznSfDyX6 XzfakjeLvzKdCpSjRrBgJBJpc/B2KDAzgRq4S58ht81HR7Wzn0iYgf3GVECAcJqA aC/cRKe59lCTOs3gyyHW0R/j1G4pJOV3zv6V8DjAdZNgxuBRCqDBbggKvAzyFrNF 1RtVatzhjAHB8BIYQt97KxwHcMomobCga/IuG/C9dcyd2H07jgsN6MPAvd9u7GU1 ePqLCWwkE7PeGIjkNF3SE+Y67C7Jj5/tAWr4gI4iLf1oNQRSNNoNpDzPU0gdPXGj /rRPhgJiZXtbU02YfFaMdfff6jPSp/Oe -----END CERTIFICATE-----Generated at Wed Dec 24 15:42:06 2025 by rpki-client