This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.mft File: OoMNQ_NZRP-yhgHTMzAgrDwxkkE.mft (raw, json) Hash identifier: uimfQqH3tts9ucUMChF4Eb23UunI+IwBZziHk5fV0I4= Subject key identifier: 14:C6:26:98:29:AB:02:33:1B:95:51:21:C9:DF:78:01:CF:5D:F9:6C Authority key identifier: 3A:83:0D:43:F3:59:44:FF:B2:86:01:D3:33:30:20:AC:3C:31:92:41 Certificate issuer: /CN=A919F0DA/serialNumber=3A830D43F35944FFB28601D3333020AC3C319241 Certificate serial: 2448 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.mft Manifest number: 60BC Signing time: Tue 02 Dec 2025 14:15:16 +0000 Manifest this update: Tue 02 Dec 2025 14:15:16 +0000 Manifest next update: Tue 09 Dec 2025 14:15:16 +0000 Files and hashes: 1: OoMNQ_NZRP-yhgHTMzAgrDwxkkE.crl (hash: 7APvTvBsgRnjrNjMmzHkIbcbjKrleVL1AhklF7CNlBY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.crl rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 14:15:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9288 (0x2448) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0DA, serialNumber=3A830D43F35944FFB28601D3333020AC3C319241 Validity Not Before: Dec 2 14:15:16 2025 GMT Not After : Dec 9 14:15:16 2025 GMT Subject: CN=692ef474-e2f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9a:25:75:0b:32:47:7d:7b:0b:12:27:8c:3c: 49:6e:f4:65:35:8a:13:a9:77:41:46:c7:b4:af:74: 5e:02:91:a3:dc:a7:aa:d5:d2:81:81:0e:a8:a0:02: c6:e1:88:d8:31:35:06:a4:61:33:61:bc:cd:93:2d: 60:e0:fb:1c:90:02:62:dd:b7:a3:a9:4a:df:70:bf: 7d:1a:35:ad:1a:72:1c:26:f0:72:2b:91:6a:33:0a: ea:cf:7c:03:8b:c4:9a:22:6d:d7:28:4e:f9:b2:d9: 76:51:f2:76:75:c9:58:84:96:3d:b5:85:ed:ad:01: 97:b8:02:01:c0:21:c5:75:07:a1:b5:10:98:c4:ad: d6:78:bf:8c:a4:d0:ee:a8:78:59:6c:3f:a9:fc:7b: 6a:e2:69:26:07:bf:59:26:21:7b:ab:01:ea:80:fa: 49:57:65:5f:c6:bd:cf:ee:fa:8f:64:e8:b7:6c:b2: bc:1a:95:a0:40:94:22:ef:f2:3f:f4:f3:80:e3:58: e9:cd:fe:f8:2c:5f:e8:11:06:e8:9d:76:85:8f:7b: 21:45:ed:2d:94:6f:f0:bb:2d:0f:ef:c6:ff:d7:bc: 9e:ed:d6:b3:a2:3d:f2:a9:96:f0:4c:ba:81:2b:3f: cf:d2:d8:93:7f:4b:9e:f9:c4:f7:9d:33:46:82:32: 79:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:C6:26:98:29:AB:02:33:1B:95:51:21:C9:DF:78:01:CF:5D:F9:6C X509v3 Authority Key Identifier: keyid:3A:83:0D:43:F3:59:44:FF:B2:86:01:D3:33:30:20:AC:3C:31:92:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/OoMNQ_NZRP-yhgHTMzAgrDwxkkE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:c4:57:e8:97:c1:45:1b:de:d6:bd:bd:fd:86:15:15:82:d5: 8a:1c:d0:ee:2d:e7:66:f1:56:5d:8a:9a:91:cc:1c:ac:29:03: 55:d7:95:cc:0a:05:8a:4b:65:1e:2e:68:b0:32:e2:9a:1d:5e: 17:09:7f:00:97:48:63:ba:cf:6e:46:56:85:ce:b6:a1:9e:8c: d7:18:34:42:d3:8b:3a:08:e9:67:c4:a0:23:98:18:4d:9d:83: d3:88:f9:e3:be:51:b6:08:47:fc:cc:e4:6e:3a:89:e4:8e:97: 67:71:15:c2:b8:37:9e:b9:2e:07:a5:be:aa:25:94:0d:4e:96: e3:64:4a:dc:b2:a7:e5:56:aa:54:d6:c7:02:1d:8a:0c:4c:8e: 35:1f:53:ed:2c:a3:01:95:64:05:3d:ea:98:3d:3e:be:8e:46: 56:e4:a4:32:17:0c:04:af:62:cc:44:50:11:1b:7b:6a:b9:6c: 12:3b:54:48:e4:fa:83:e8:3d:82:5e:83:a2:eb:79:3b:f9:f0: 2d:2b:13:d0:4b:4b:39:55:fd:3b:bc:ec:84:25:7e:9f:d5:4e: ad:38:e1:9e:a0:a5:dd:a1:fd:3d:c2:9c:9d:3f:1a:d9:7d:f6: 8b:be:38:5a:d8:3b:89:aa:81:10:3f:5b:5c:81:34:1e:0b:dc: 68:fa:b6:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwREExMTAvBgNVBAUTKDNBODMwRDQzRjM1OTQ0RkZCMjg2MDFEMzMzMzAyMEFD M0MzMTkyNDEwHhcNMjUxMjAyMTQxNTE2WhcNMjUxMjA5MTQxNTE2WjAYMRYwFAYD VQQDEw02OTJlZjQ3NC1lMmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZoldQsyR317CxInjDxJbvRlNYoTqXdBRse0r3ReApGj3Keq1dKBgQ6ooALG 4YjYMTUGpGEzYbzNky1g4PsckAJi3bejqUrfcL99GjWtGnIcJvByK5FqMwrqz3wD i8SaIm3XKE75stl2UfJ2dclYhJY9tYXtrQGXuAIBwCHFdQehtRCYxK3WeL+MpNDu qHhZbD+p/Htq4mkmB79ZJiF7qwHqgPpJV2Vfxr3P7vqPZOi3bLK8GpWgQJQi7/I/ 9POA41jpzf74LF/oEQbonXaFj3shRe0tlG/wuy0P78b/17ye7dazoj3yqZbwTLqB Kz/P0tiTf0ue+cT3nTNGgjJ5MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBTGJpgp qwIzG5VRIcnfeAHPXflsMB8GA1UdIwQYMBaAFDqDDUPzWUT/soYB0zMwIKw8MZJB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBEQS9GQzYxRTAwODFE NjcxMUUyOEMxODI4QTQwOEIwMkNEMi9Pb01OUV9OWlJQLXloZ0hUTXpBZ3JEd3hr a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09vTU5RX05aUlAteWhnSFRNekFnckR3eGtrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjBEQS9GQzYxRTAwODFENjcxMUUyOEMxODI4QTQwOEIwMkNEMi9Pb01OUV9OWlJQ LXloZ0hUTXpBZ3JEd3hra0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7xFfol8FFG97Wvb39hhUVgtWKHNDuLedm8VZdipqRzBysKQNV15XM CgWKS2UeLmiwMuKaHV4XCX8Al0hjus9uRlaFzrahnozXGDRC04s6COlnxKAjmBhN nYPTiPnjvlG2CEf8zORuOonkjpdncRXCuDeeuS4Hpb6qJZQNTpbjZErcsqflVqpU 1scCHYoMTI41H1PtLKMBlWQFPeqYPT6+jkZW5KQyFwwEr2LMRFARG3tquWwSO1RI 5PqD6D2CXoOi63k7+fAtKxPQS0s5Vf07vOyEJX6f1U6tOOGeoKXdof09wpydPxrZ ffaLvjha2DuJqoEQP1tcgTQeC9xo+rbH -----END CERTIFICATE-----Generated at Wed Dec 3 16:08:21 2025 by rpki-client