This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft File: OPsGr2SfQA9ROZSTW-335JJwyKo.mft (raw, json) Hash identifier: /iTeOM/HlgTAdKkUb5s3EubseHECUySWAMsjeyuyplU= Subject key identifier: 6F:BB:DC:51:28:98:DD:7B:F2:27:DB:1A:9F:AB:A1:0C:1B:D3:B7:F2 Authority key identifier: 38:FB:06:AF:64:9F:40:0F:51:39:94:93:5B:ED:F7:E4:92:70:C8:AA Certificate issuer: /CN=A9198267/serialNumber=38FB06AF649F400F513994935BEDF7E49270C8AA Certificate serial: 0A71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft Manifest number: 0A62 Signing time: Mon 22 Dec 2025 19:05:15 +0000 Manifest this update: Mon 22 Dec 2025 19:05:14 +0000 Manifest next update: Mon 29 Dec 2025 19:05:14 +0000 Files and hashes: 1: OPsGr2SfQA9ROZSTW-335JJwyKo.crl (hash: H5nB6agN4juOkWInaR6ju167jloSxfGmFrG+45Fixz4=) 2: 2F43EE7278CC11EAB69DAC75C4F9AE02.roa (hash: vryPQgJZ9HPQvb4c/vnzkdnAafqVRFouOd+j23S6sMU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.crl rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:05:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2673 (0xa71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198267, serialNumber=38FB06AF649F400F513994935BEDF7E49270C8AA Validity Not Before: Dec 22 19:05:14 2025 GMT Not After : Dec 29 19:05:14 2025 GMT Subject: CN=6949966a-9669 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:dd:a7:33:48:89:d2:f6:55:43:d5:a6:fb:4f: 7b:39:47:bd:ce:41:46:a3:72:62:77:b6:7e:9b:e3: 30:60:97:3a:ea:30:d8:24:76:8d:15:b5:da:07:e0: 92:42:2f:f6:0f:74:ec:d2:bf:9a:37:36:99:a3:05: 66:89:c5:d4:58:ce:03:f7:f5:48:54:83:55:2b:c0: 3f:8b:24:ef:e0:c1:5f:6c:38:92:f2:01:36:8d:d0: 18:59:4c:17:76:32:80:9b:78:30:d0:72:dc:91:4e: b6:a2:c8:09:6d:80:7a:f7:d4:61:93:d8:20:38:8e: bd:fb:cd:62:04:71:1c:07:b0:7d:83:fb:80:c8:12: 0f:ca:28:b2:91:f4:7a:6c:eb:06:65:ae:79:06:38: 51:35:bb:e3:2e:34:df:b5:39:c8:49:38:39:40:8b: 0a:84:06:ad:21:47:76:4d:70:c5:85:5d:e2:88:73: a2:17:57:a0:99:ec:78:18:a3:ec:e8:2f:5c:50:96: 08:bc:92:38:bb:5f:d9:b2:f0:70:ee:48:45:29:51: a0:a7:bf:57:f7:0c:6d:89:ec:4f:f4:71:80:ba:4c: fc:65:59:bd:1b:02:e7:cc:9e:17:ad:d0:a2:7b:56: 06:c1:77:45:91:59:47:1d:fb:88:9c:af:a1:47:e6: b3:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:BB:DC:51:28:98:DD:7B:F2:27:DB:1A:9F:AB:A1:0C:1B:D3:B7:F2 X509v3 Authority Key Identifier: keyid:38:FB:06:AF:64:9F:40:0F:51:39:94:93:5B:ED:F7:E4:92:70:C8:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:b7:e6:4e:c7:06:f7:67:9b:d6:bc:42:e3:28:6f:7f:82:54: 0d:db:20:8e:de:6c:d0:e9:7e:8c:fd:e5:87:d7:8f:1f:cd:4b: 9f:b6:38:f5:80:ad:5a:35:b3:83:89:62:5c:8e:d2:24:97:b6: 26:ab:e9:c8:5f:e0:62:5b:85:7a:b6:b5:da:95:df:2c:11:20: 80:f2:b8:8c:2b:e2:0d:3c:29:11:59:7f:cf:0c:ab:82:d7:94: 35:9e:46:44:af:f7:71:be:2c:12:b5:3e:2f:4d:0d:ba:70:fc: 3e:9e:15:10:a7:c1:03:15:03:79:03:16:05:db:0c:7b:a7:c7: ba:82:05:c3:ea:d5:1a:97:7f:17:f8:a7:b7:e6:7b:0d:4b:42: a4:5f:ac:12:7f:3d:9a:ae:54:0a:b6:99:66:fd:00:6d:d8:f7: d7:9b:f9:dc:45:ac:f2:f1:df:6e:ed:8d:67:81:57:4a:e9:c4: f1:19:07:85:ce:f6:b3:77:6f:39:65:15:28:4a:17:d0:44:ba: a9:c1:c9:73:38:36:a4:85:62:49:2b:4a:8e:8a:97:91:98:83: 7a:24:81:2a:a0:c7:4b:44:b5:86:f2:3d:eb:50:37:db:ea:aa: 3c:d8:bb:fb:91:da:d8:4b:ae:73:7b:94:23:0d:ca:a5:6c:4f: 04:78:0f:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgyNjcxMTAvBgNVBAUTKDM4RkIwNkFGNjQ5RjQwMEY1MTM5OTQ5MzVCRURGN0U0 OTI3MEM4QUEwHhcNMjUxMjIyMTkwNTE0WhcNMjUxMjI5MTkwNTE0WjAYMRYwFAYD VQQDDA02OTQ5OTY2YS05NjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApt2nM0iJ0vZVQ9Wm+097OUe9zkFGo3Jid7Z+m+MwYJc66jDYJHaNFbXaB+CS Qi/2D3Ts0r+aNzaZowVmicXUWM4D9/VIVINVK8A/iyTv4MFfbDiS8gE2jdAYWUwX djKAm3gw0HLckU62osgJbYB699Rhk9ggOI69+81iBHEcB7B9g/uAyBIPyiiykfR6 bOsGZa55BjhRNbvjLjTftTnISTg5QIsKhAatIUd2TXDFhV3iiHOiF1egmex4GKPs 6C9cUJYIvJI4u1/ZsvBw7khFKVGgp79X9wxtiexP9HGAukz8ZVm9GwLnzJ4XrdCi e1YGwXdFkVlHHfuInK+hR+azqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG+73FEo mN178ifbGp+roQwb07fyMB8GA1UdIwQYMBaAFDj7Bq9kn0APUTmUk1vt9+SScMiq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODI2Ny8wMkM4NkVBQTc4 Q0IxMUVBODIwRDcyNzRDNEY5QUUwMi9PUHNHcjJTZlFBOVJPWlNUVy0zMzVKSnd5 S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09Qc0dyMlNmUUE5Uk9aU1RXLTMzNUpKd3lLby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODI2Ny8wMkM4NkVBQTc4Q0IxMUVBODIwRDcyNzRDNEY5QUUwMi9PUHNHcjJTZlFB OVJPWlNUVy0zMzVKSnd5S28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFt+ZOxwb3Z5vWvELjKG9/glQN2yCO3mzQ6X6M/eWH148fzUuftjj1 gK1aNbODiWJcjtIkl7Ymq+nIX+BiW4V6trXald8sESCA8riMK+INPCkRWX/PDKuC 15Q1nkZEr/dxviwStT4vTQ26cPw+nhUQp8EDFQN5AxYF2wx7p8e6ggXD6tUal38X +Ke35nsNS0KkX6wSfz2arlQKtplm/QBt2PfXm/ncRazy8d9u7Y1ngVdK6cTxGQeF zvazd285ZRUoShfQRLqpwclzODakhWJJK0qOipeRmIN6JIEqoMdLRLWG8j3rUDfb 6qo82Lv7kdrYS65ze5QjDcqlbE8EeA+l -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:36 2025 by rpki-client