This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft File: oTW4FOHrHifJWX7tLoIoVJMNP88.mft (raw, json) Hash identifier: Ioib+D95ExfKHsBEOSY69wjaDvDi2Xhw03GQw0Ljvdo= Subject key identifier: 95:D6:3F:8D:5F:CB:6B:04:5D:D9:E3:BF:C5:8C:AC:67:07:4C:98:45 Authority key identifier: A1:35:B8:14:E1:EB:1E:27:C9:59:7E:ED:2E:82:28:54:93:0D:3F:CF Certificate issuer: /CN=A9197390/serialNumber=A135B814E1EB1E27C9597EED2E822854930D3FCF Certificate serial: 01FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft Manifest number: 01DD Signing time: Tue 23 Dec 2025 02:05:37 +0000 Manifest this update: Tue 23 Dec 2025 02:05:37 +0000 Manifest next update: Tue 30 Dec 2025 02:05:37 +0000 Files and hashes: 1: oTW4FOHrHifJWX7tLoIoVJMNP88.crl (hash: DSVpsoG0bwxVmYh76yLJ+2XfoDVQ+nNHaUqLaAJQgFg=) 2: CD168A226C2111EFB0ACC153C4F9AE02.roa (hash: F8BQEsLxz2XO34zN3GNH3AuMPZU87rOGItPVHiqWabQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.crl rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:05:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 509 (0x1fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197390, serialNumber=A135B814E1EB1E27C9597EED2E822854930D3FCF Validity Not Before: Dec 23 02:05:37 2025 GMT Not After : Dec 30 02:05:37 2025 GMT Subject: CN=6949f8f1-bd8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:fb:84:04:4d:19:4a:1e:af:f1:2f:ff:3b:98: 8e:e0:3e:06:16:a7:1f:e3:f9:39:da:1d:7c:12:7b: 68:15:3c:7c:e5:7a:b5:45:50:94:ba:54:5d:ce:5e: 52:9f:9f:da:5f:95:75:40:bc:b4:6f:45:6f:8f:d9: 6c:38:f9:08:db:45:df:d7:c3:d8:e6:48:a3:b1:a5: 6a:07:71:c6:0a:96:09:1b:b5:38:04:bc:b9:51:f5: 14:82:b0:cd:69:b0:94:81:2b:a6:f4:40:1f:ab:82: 39:0a:b6:c7:43:87:4e:de:bd:97:8c:c9:b1:4d:6b: 3e:13:9d:27:10:f8:ab:4f:c2:eb:ea:24:0d:57:0c: a3:39:36:4c:9a:c2:29:99:68:27:89:9a:56:fb:e7: 0c:e2:2a:de:1d:ea:cd:04:a9:da:85:0d:17:17:3a: 25:1d:9b:86:94:d0:b3:05:10:af:8e:f6:b9:de:50: 16:4d:12:bf:a7:49:e7:50:9e:ed:66:b4:24:02:ff: 87:3a:e9:d8:e6:2f:69:21:25:e2:b1:e2:2f:43:93: 45:49:06:bd:ef:89:d2:40:6d:39:fc:39:14:65:9c: e6:4a:27:2f:84:ef:80:44:13:2c:21:79:98:db:e4: 37:bc:d3:e1:68:33:a8:46:4a:5c:87:96:7a:cf:4b: d8:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:D6:3F:8D:5F:CB:6B:04:5D:D9:E3:BF:C5:8C:AC:67:07:4C:98:45 X509v3 Authority Key Identifier: keyid:A1:35:B8:14:E1:EB:1E:27:C9:59:7E:ED:2E:82:28:54:93:0D:3F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:ce:db:96:b6:73:13:42:e3:df:25:c4:3b:03:32:f0:d6:9d: 76:db:29:5e:e0:96:8d:4b:32:93:4a:20:70:cb:3b:ad:2a:fc: f6:9a:1f:4a:b0:d2:c5:eb:23:1f:42:00:5d:2a:f6:66:89:d2: 68:f5:eb:3c:e8:f8:7f:f9:8c:30:ea:a7:3a:bc:e9:e1:eb:0b: 73:1b:b1:f2:ed:b4:24:d5:9c:c9:30:f6:e4:0a:05:9d:a0:f1: c5:bb:16:5d:22:69:52:ce:27:bd:29:bb:8b:b9:cf:c3:f3:3c: 34:6e:7b:5e:20:b8:f5:5b:bf:00:5b:f2:05:33:57:ff:a2:98: a9:c4:14:42:44:f3:7c:80:55:d9:24:0e:08:4d:a1:53:6e:cf: bb:82:42:40:98:e0:b3:1e:47:80:b3:c4:b9:3a:cc:a3:b8:69: b4:0e:56:a7:39:2d:d5:19:6e:c3:cd:10:14:4c:97:f7:7b:a1: 40:f7:e3:9e:dc:36:df:de:11:dc:33:7c:d2:77:e1:73:39:97: 98:a0:83:63:5f:54:76:66:d5:5b:d5:8e:6d:bd:90:53:9e:18: f8:7b:40:b1:cc:dd:3b:c8:63:bb:c4:4b:e6:f7:aa:52:2c:b7: 0a:b9:12:b1:c3:43:90:58:4b:29:ca:a0:e0:35:3a:70:74:3d: 51:4a:af:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTczOTAxMTAvBgNVBAUTKEExMzVCODE0RTFFQjFFMjdDOTU5N0VFRDJFODIyODU0 OTMwRDNGQ0YwHhcNMjUxMjIzMDIwNTM3WhcNMjUxMjMwMDIwNTM3WjAYMRYwFAYD VQQDDA02OTQ5ZjhmMS1iZDhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5fuEBE0ZSh6v8S//O5iO4D4GFqcf4/k52h18EntoFTx85Xq1RVCUulRdzl5S n5/aX5V1QLy0b0Vvj9lsOPkI20Xf18PY5kijsaVqB3HGCpYJG7U4BLy5UfUUgrDN abCUgSum9EAfq4I5CrbHQ4dO3r2XjMmxTWs+E50nEPirT8Lr6iQNVwyjOTZMmsIp mWgniZpW++cM4ireHerNBKnahQ0XFzolHZuGlNCzBRCvjva53lAWTRK/p0nnUJ7t ZrQkAv+HOunY5i9pISXiseIvQ5NFSQa974nSQG05/DkUZZzmSicvhO+ARBMsIXmY 2+Q3vNPhaDOoRkpch5Z6z0vYwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJXWP41f y2sEXdnjv8WMrGcHTJhFMB8GA1UdIwQYMBaAFKE1uBTh6x4nyVl+7S6CKFSTDT/P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzM5MC9EMkM3RTcxNjNF N0ExMUVFQTk3N0Q2MjBDNEY5QUUwMi9vVFc0Rk9IckhpZkpXWDd0TG9Jb1ZKTU5Q ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29UVzRGT0hySGlmSldYN3RMb0lvVkpNTlA4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzM5MC9EMkM3RTcxNjNFN0ExMUVFQTk3N0Q2MjBDNEY5QUUwMi9vVFc0Rk9Ickhp ZkpXWDd0TG9Jb1ZKTU5QODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXztuWtnMTQuPfJcQ7AzLw1p122yle4JaNSzKTSiBwyzutKvz2mh9K sNLF6yMfQgBdKvZmidJo9es86Ph/+Yww6qc6vOnh6wtzG7Hy7bQk1ZzJMPbkCgWd oPHFuxZdImlSzie9KbuLuc/D8zw0bnteILj1W78AW/IFM1f/opipxBRCRPN8gFXZ JA4ITaFTbs+7gkJAmOCzHkeAs8S5OsyjuGm0DlanOS3VGW7DzRAUTJf3e6FA9+Oe 3Dbf3hHcM3zSd+FzOZeYoINjX1R2ZtVb1Y5tvZBTnhj4e0CxzN07yGO7xEvm96pS LLcKuRKxw0OQWEspyqDgNTpwdD1RSq+U -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:42 2025 by rpki-client