This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft File: os0QpH7XI-HEi19Q1oDPT2f8sdM.mft (raw, json) Hash identifier: CorPVY5qSGDC4XigfEA/x9rf3bIwWCdmY+zOk8MhiNE= Subject key identifier: 3D:5A:9F:3A:49:4A:1E:30:FD:08:F9:74:BA:FF:7D:3B:0E:41:E0:3C Authority key identifier: A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3 Certificate issuer: /CN=A9194C0D/serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3 Certificate serial: 01B7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft Manifest number: 01AF Signing time: Tue 09 Dec 2025 01:30:20 +0000 Manifest this update: Tue 09 Dec 2025 01:30:19 +0000 Manifest next update: Tue 16 Dec 2025 01:30:19 +0000 Files and hashes: 1: os0QpH7XI-HEi19Q1oDPT2f8sdM.crl (hash: ewuMRXs8OGZ4V669NmM7PBCC0DTPw7mycZddr9logAk=) 2: 9D5E6AF8600F11EE98AFFB11C4F9AE02.roa (hash: G0w0TQdZeUrlcSkeMZASVFwkhbdyy5+tF+86mftNAhQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Dec 2025 01:30:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 439 (0x1b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194C0D, serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3 Validity Not Before: Dec 9 01:30:19 2025 GMT Not After : Dec 16 01:30:19 2025 GMT Subject: CN=69377bab-4c9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:2e:6a:8b:a1:11:ad:73:3d:3b:3e:3a:38:f4: 46:60:84:04:34:24:8b:75:0e:b0:9d:64:3f:c7:2c: 18:9d:af:29:73:73:47:87:e4:0d:21:e8:74:82:6a: 9d:ae:fd:02:b3:07:12:00:11:51:1a:1c:ac:19:40: 26:53:a8:3e:a3:82:b3:04:2d:2d:55:0e:b4:39:19: 22:8c:87:1f:77:de:b3:55:73:be:12:3e:6d:bc:33: 15:08:62:7c:2a:e1:c4:32:3f:68:2c:3e:39:ce:4a: 66:83:c7:30:f5:51:19:f5:a0:b3:d7:44:e8:a1:32: 17:99:ee:47:74:46:4c:b4:c7:3d:5f:cd:c6:fd:37: 57:c6:75:f1:27:ba:62:0f:bb:0f:14:03:bf:91:69: b6:bb:0b:11:22:ea:83:63:e6:b4:f5:05:96:63:14: ed:77:b7:aa:04:cd:4e:d0:b8:b0:06:00:c9:c9:11: 2f:44:e1:d5:c7:29:d1:2d:d4:e7:98:63:f2:cb:77: 45:8c:46:68:43:43:e4:7c:f8:81:f8:d2:32:5d:13: f9:e2:d7:53:ee:2b:a3:a3:33:dd:9b:b2:54:6a:dc: 04:6e:ec:58:c0:3b:25:d8:8e:c1:c2:af:e3:51:b1: 98:3d:a7:69:75:57:45:45:d9:ee:1b:2c:bf:2f:3d: 2c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:5A:9F:3A:49:4A:1E:30:FD:08:F9:74:BA:FF:7D:3B:0E:41:E0:3C X509v3 Authority Key Identifier: keyid:A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:30:02:36:70:8f:4a:5c:d6:6e:80:4c:f2:34:e1:41:6b:a6: 91:63:a7:9b:76:1c:aa:98:16:cb:44:1c:08:6d:b3:15:cc:a7: dc:c4:00:8c:d5:f2:e3:ce:8f:c1:29:f5:41:66:7e:75:f3:14: 11:68:ad:51:c1:59:5b:f6:58:ee:86:94:eb:0e:5a:af:b1:c4: 7a:fe:28:6d:78:43:3f:a9:8a:fa:8b:14:7d:4c:2e:e8:a1:e7: b8:e2:eb:39:c5:7f:09:13:4d:2a:1a:ab:91:76:69:ae:07:44: 62:bf:cb:07:29:e8:ed:0a:46:78:b4:a7:5d:a1:a3:06:ed:3c: f5:fc:f2:63:c7:2c:8d:ee:cd:fe:ee:a3:7e:66:be:5f:d5:98: ea:61:b8:06:6b:92:fb:19:3f:85:1e:80:a2:75:df:04:0c:3c: c7:de:4d:ca:c4:ea:da:09:f8:35:bb:e4:5a:b8:45:f5:3a:80: 92:61:1c:c2:19:57:c1:98:77:d7:e2:ea:ff:49:a1:a8:80:3c: 99:6d:ff:54:0b:fe:e4:eb:42:b8:0f:95:52:93:81:bf:9e:fd: 90:4f:d5:8f:73:f0:65:c6:25:29:d7:72:ea:14:7e:71:ac:e3: f2:44:65:99:10:a6:10:ef:6b:aa:39:df:f2:52:66:8a:cc:63: e6:b3:7b:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRDMEQxMTAvBgNVBAUTKEEyQ0QxMEE0N0VENzIzRTFDNDhCNUY1MEQ2ODBDRjRG NjdGQ0IxRDMwHhcNMjUxMjA5MDEzMDE5WhcNMjUxMjE2MDEzMDE5WjAYMRYwFAYD VQQDEw02OTM3N2JhYi00YzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApy5qi6ERrXM9Oz46OPRGYIQENCSLdQ6wnWQ/xywYna8pc3NHh+QNIeh0gmqd rv0CswcSABFRGhysGUAmU6g+o4KzBC0tVQ60ORkijIcfd96zVXO+Ej5tvDMVCGJ8 KuHEMj9oLD45zkpmg8cw9VEZ9aCz10TooTIXme5HdEZMtMc9X83G/TdXxnXxJ7pi D7sPFAO/kWm2uwsRIuqDY+a09QWWYxTtd7eqBM1O0LiwBgDJyREvROHVxynRLdTn mGPyy3dFjEZoQ0PkfPiB+NIyXRP54tdT7iujozPdm7JUatwEbuxYwDsl2I7Bwq/j UbGYPadpdVdFRdnuGyy/Lz0s0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD1anzpJ Sh4w/Qj5dLr/fTsOQeA8MB8GA1UdIwQYMBaAFKLNEKR+1yPhxItfUNaAz09n/LHT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEMwRC9BNDcwNzg1RTU3 NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9vczBRcEg3WEktSEVpMTlRMW9EUFQyZjhz ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29zMFFwSDdYSS1IRWkxOVExb0RQVDJmOHNkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEMwRC9BNDcwNzg1RTU3NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9vczBRcEg3WEkt SEVpMTlRMW9EUFQyZjhzZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMMAI2cI9KXNZugEzyNOFBa6aRY6ebdhyqmBbLRBwIbbMVzKfcxACM 1fLjzo/BKfVBZn518xQRaK1RwVlb9ljuhpTrDlqvscR6/ihteEM/qYr6ixR9TC7o oee44us5xX8JE00qGquRdmmuB0Riv8sHKejtCkZ4tKddoaMG7Tz1/PJjxyyN7s3+ 7qN+Zr5f1ZjqYbgGa5L7GT+FHoCidd8EDDzH3k3KxOraCfg1u+RauEX1OoCSYRzC GVfBmHfX4ur/SaGogDyZbf9UC/7k60K4D5VSk4G/nv2QT9WPc/BlxiUp13LqFH5x rOPyRGWZEKYQ72uqOd/yUmaKzGPms3vB -----END CERTIFICATE-----Generated at Wed Dec 10 05:26:19 2025 by rpki-client