This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft File: OvnsvEXk4pfSm6bEEfGgXIudqeM.mft (raw, json) Hash identifier: 19YbbHrKw5mECG7vlm7gK+7QcubB+30X7NW+HggN5ME= Subject key identifier: A4:60:0B:6D:BC:4A:44:9B:4F:9F:EC:75:33:3A:B5:C2:52:1F:0C:07 Authority key identifier: 3A:F9:EC:BC:45:E4:E2:97:D2:9B:A6:C4:11:F1:A0:5C:8B:9D:A9:E3 Certificate issuer: /CN=A919CA18/serialNumber=3AF9ECBC45E4E297D29BA6C411F1A05C8B9DA9E3 Certificate serial: 0214 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft Manifest number: 0212 Signing time: Tue 23 Dec 2025 01:16:00 +0000 Manifest this update: Tue 23 Dec 2025 01:16:00 +0000 Manifest next update: Tue 30 Dec 2025 01:16:00 +0000 Files and hashes: 1: OvnsvEXk4pfSm6bEEfGgXIudqeM.crl (hash: 8wCEp1prT6aZRkH0iSsGowmBSaJADxG287Ezv4XTxys=) 2: 82E99F5A10FC11EF95048154C4F9AE02.roa (hash: KiSgunw3k37SA5qIOSFD0yKCbhYgrY4Gzd+tIVRajoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.crl rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:15:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 532 (0x214) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CA18, serialNumber=3AF9ECBC45E4E297D29BA6C411F1A05C8B9DA9E3 Validity Not Before: Dec 23 01:16:00 2025 GMT Not After : Dec 30 01:16:00 2025 GMT Subject: CN=6949ed50-d26c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:3f:98:88:bd:30:24:bc:a9:a9:f7:71:dd:30: 9e:35:4e:2d:de:77:62:da:91:1a:1a:28:3c:5c:3e: 07:21:6d:26:03:f1:b5:df:f5:6b:4a:1b:26:b1:bf: 0e:2f:15:38:ec:44:b1:c0:49:c0:e7:c4:d4:1a:2b: 48:68:40:1d:68:d3:a9:90:cd:14:d9:88:61:b5:e9: e7:2b:a8:f4:bf:f1:05:48:c6:ce:da:b0:b1:d1:62: 7e:28:7e:29:1d:45:c4:f6:46:51:0d:25:fd:40:11: b7:37:0e:e4:fc:98:69:a4:27:b4:41:75:41:6f:e8: 02:38:10:aa:39:4e:6b:c9:40:b8:c6:ec:e0:dd:36: 13:90:84:d3:47:01:e4:bc:4c:8b:84:fd:aa:67:63: 86:f5:86:64:fb:aa:57:31:9d:68:b5:4e:ff:82:d3: cd:49:96:71:98:4e:1e:b8:ae:fa:3a:56:6b:5f:56: 0d:a9:f9:ac:13:b5:93:e3:37:19:9f:db:e3:b2:11: 5d:2a:8a:b4:42:34:03:77:58:b1:85:cf:23:7d:8b: 86:00:47:1c:18:71:ef:c1:dd:99:51:ec:eb:a6:4f: 5b:e4:12:26:0a:34:b0:d5:a4:30:0c:5d:2b:e4:c2: 32:16:68:d2:32:9a:77:d5:ed:77:fc:ae:9e:69:eb: 2a:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:60:0B:6D:BC:4A:44:9B:4F:9F:EC:75:33:3A:B5:C2:52:1F:0C:07 X509v3 Authority Key Identifier: keyid:3A:F9:EC:BC:45:E4:E2:97:D2:9B:A6:C4:11:F1:A0:5C:8B:9D:A9:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:45:2a:5a:34:24:27:70:88:b9:5f:26:c6:95:29:4d:cd:ad: 2c:fe:3e:43:96:fe:e6:34:79:35:a6:b9:16:fa:ed:4c:26:d5: 21:a3:c7:53:a1:9a:e6:5b:9f:72:80:f0:7a:62:92:ee:11:6c: ae:5a:a4:9e:8b:9a:34:38:ed:47:ba:b1:39:e7:e1:b8:d0:3c: bb:5a:f3:90:43:ab:31:84:67:b8:20:6a:1b:78:7f:1b:54:1d: d0:a9:d9:e9:40:2b:57:c4:db:73:4c:f6:e3:c4:83:ea:a0:be: 2e:44:94:9f:76:76:4b:65:b4:3c:e6:4c:54:57:2f:81:47:8b: 42:ea:8c:a8:90:93:29:c3:61:33:5a:23:1f:83:2d:27:57:0e: ee:92:22:e1:a8:48:ec:eb:e0:7d:50:f9:a6:5b:f1:c3:eb:4c: ea:c2:9b:23:84:53:73:37:9e:d4:fe:8c:95:c0:5a:bb:ad:39: 49:e7:b0:1d:b9:3a:e3:de:63:3b:65:82:11:45:38:c6:56:bc: 9c:40:48:61:13:ba:b6:b3:ab:08:ff:69:09:64:eb:0a:97:dd: 37:7e:e1:9f:f6:dc:b8:69:20:5c:e1:a4:1d:d6:e6:b7:ec:74: 65:e7:4c:fb:f5:6f:d0:76:d6:81:73:d0:7a:51:1b:a2:b3:d8: e7:0c:26:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNBMTgxMTAvBgNVBAUTKDNBRjlFQ0JDNDVFNEUyOTdEMjlCQTZDNDExRjFBMDVD OEI5REE5RTMwHhcNMjUxMjIzMDExNjAwWhcNMjUxMjMwMDExNjAwWjAYMRYwFAYD VQQDDA02OTQ5ZWQ1MC1kMjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3j+YiL0wJLypqfdx3TCeNU4t3ndi2pEaGig8XD4HIW0mA/G13/VrShsmsb8O LxU47ESxwEnA58TUGitIaEAdaNOpkM0U2YhhtennK6j0v/EFSMbO2rCx0WJ+KH4p HUXE9kZRDSX9QBG3Nw7k/JhppCe0QXVBb+gCOBCqOU5ryUC4xuzg3TYTkITTRwHk vEyLhP2qZ2OG9YZk+6pXMZ1otU7/gtPNSZZxmE4euK76OlZrX1YNqfmsE7WT4zcZ n9vjshFdKoq0QjQDd1ixhc8jfYuGAEccGHHvwd2ZUezrpk9b5BImCjSw1aQwDF0r 5MIyFmjSMpp31e13/K6eaesq2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKRgC228 SkSbT5/sdTM6tcJSHwwHMB8GA1UdIwQYMBaAFDr57LxF5OKX0pumxBHxoFyLnanj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0ExOC82RDA1OUJCQ0Ix QjIxMUVEOEQ3QzJGMkJDNEY5QUUwMi9Pdm5zdkVYazRwZlNtNmJFRWZHZ1hJdWRx ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL092bnN2RVhrNHBmU202YkVFZkdnWEl1ZHFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Q0ExOC82RDA1OUJCQ0IxQjIxMUVEOEQ3QzJGMkJDNEY5QUUwMi9Pdm5zdkVYazRw ZlNtNmJFRWZHZ1hJdWRxZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXRSpaNCQncIi5XybGlSlNza0s/j5Dlv7mNHk1prkW+u1MJtUho8dT oZrmW59ygPB6YpLuEWyuWqSei5o0OO1HurE55+G40Dy7WvOQQ6sxhGe4IGobeH8b VB3QqdnpQCtXxNtzTPbjxIPqoL4uRJSfdnZLZbQ85kxUVy+BR4tC6oyokJMpw2Ez WiMfgy0nVw7ukiLhqEjs6+B9UPmmW/HD60zqwpsjhFNzN57U/oyVwFq7rTlJ57Ad uTrj3mM7ZYIRRTjGVrycQEhhE7q2s6sI/2kJZOsKl903fuGf9ty4aSBc4aQd1ua3 7HRl50z79W/QdtaBc9B6URuis9jnDCa5 -----END CERTIFICATE-----Generated at Wed Dec 24 14:07:29 2025 by rpki-client