This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft File: O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft (raw, json) Hash identifier: rbef1iuvqvcEjh1b360mk/4BTKkVS+/lUCaelNS+bec= Subject key identifier: A1:34:2F:C0:2E:CE:CB:7D:71:94:70:92:EA:AB:9C:A0:78:82:19:16 Authority key identifier: 3B:83:58:53:5B:C6:28:56:4A:F5:6F:31:D8:75:86:48:E1:D0:43:04 Certificate issuer: /CN=A911750B/serialNumber=3B8358535BC628564AF56F31D8758648E1D04304 Certificate serial: 5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft Manifest number: 5C Signing time: Fri 05 Dec 2025 05:00:27 +0000 Manifest this update: Fri 05 Dec 2025 05:00:26 +0000 Manifest next update: Fri 12 Dec 2025 05:00:26 +0000 Files and hashes: 1: O4NYU1vGKFZK9W8x2HWGSOHQQwQ.crl (hash: EOP+q35qg/OpgxViqDrYPCAV+mDCOULHhDvUkNRxOEA=) 2: D922E45E468D11F0B5D0835EC4F9AE02.roa (hash: RqRFm0koAI1zOC0qjZBwbHn7EgeV9Uebi2RR1Lc++cg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.crl rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911750B, serialNumber=3B8358535BC628564AF56F31D8758648E1D04304 Validity Not Before: Dec 5 05:00:26 2025 GMT Not After : Dec 12 05:00:26 2025 GMT Subject: CN=693266eb-3b0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:98:35:2e:35:a9:43:14:89:62:9d:69:4a:ff: 3c:7e:34:cb:aa:26:ff:56:db:7c:69:2a:ea:40:42: 36:53:ef:ef:cc:b7:80:fc:3f:ff:9b:68:34:dc:8f: 83:4b:99:f6:03:fd:be:e0:13:f9:3b:b0:d7:d8:3a: 16:53:81:2f:e2:25:99:a4:f3:f9:6c:28:68:89:96: 58:09:a8:bd:36:f8:0c:8f:78:68:67:17:38:8e:07: 86:f1:b9:be:36:0c:d9:99:46:d3:84:d6:4d:f5:9e: a9:03:73:61:99:64:00:bd:32:6a:c7:f7:49:a8:ac: 27:15:1c:ac:c0:4f:38:55:d3:0c:3a:0b:a5:74:82: dd:e4:14:ac:e9:f9:95:f5:94:b4:57:6e:35:f5:5e: 78:bd:87:0a:cf:c4:d1:33:d7:12:6e:7b:76:85:57: fd:b2:01:59:d0:82:06:ba:15:74:94:49:d2:0f:51: 42:fe:30:7f:61:98:6d:bf:bf:69:8e:b2:1a:52:30: 14:79:56:cd:15:67:6e:93:b3:a8:d4:7d:b0:37:ed: f4:03:a9:72:89:b9:09:fe:87:f8:a0:66:47:8e:46: c1:ea:37:0e:4a:43:75:e6:0f:d2:bb:96:76:93:4c: ef:b5:c1:b0:e7:e0:d9:1a:c3:1e:62:29:ed:e4:a0: b4:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:34:2F:C0:2E:CE:CB:7D:71:94:70:92:EA:AB:9C:A0:78:82:19:16 X509v3 Authority Key Identifier: keyid:3B:83:58:53:5B:C6:28:56:4A:F5:6F:31:D8:75:86:48:E1:D0:43:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911750B/64D07748468C11F084B6A539C4F9AE02/O4NYU1vGKFZK9W8x2HWGSOHQQwQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:d6:10:d7:d2:13:96:83:ec:2e:0b:49:9d:a9:34:d2:5b:b8: 78:5a:3a:16:51:a0:12:4c:d1:e4:5a:7e:60:af:c9:34:e3:3c: d2:e7:f0:7a:24:c9:00:52:9e:ed:08:02:6e:01:4c:72:4c:b0: 6b:b9:82:71:7c:f6:8c:b5:bd:a3:a8:57:84:bd:f7:28:4a:db: 24:d9:46:2b:7f:b9:b3:94:9e:be:84:3c:ed:15:38:17:e3:47: cb:b3:07:fb:9f:fd:df:61:f1:8d:65:57:00:32:f5:d4:d2:bd: 49:93:bd:7f:ef:5d:48:bd:d8:31:b6:c5:2d:63:7c:93:09:0c: 44:e6:b8:92:e2:42:46:1d:75:8b:1b:66:7b:c3:c0:7f:ae:8b: 6d:9e:9d:6e:97:72:41:26:a9:a7:d5:11:74:2c:39:53:dd:c1: 5c:db:5a:ca:bc:cd:be:8b:cb:d2:f7:91:d8:4b:e2:80:7a:b6: a4:7e:2b:7e:90:d7:14:47:34:d7:bf:80:31:6f:5c:d8:89:f6: 53:85:55:7f:f4:20:9d:26:67:4d:ef:2b:51:ea:7a:34:82:95: 3c:5d:34:5b:7c:87:35:e5:6c:22:82:37:e0:ed:45:34:c8:e6: 38:4c:dc:76:b3:60:78:a3:90:8b:1c:b6:af:1a:f3:39:0e:0f: 8f:92:27:13 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NzUwQjExMC8GA1UEBRMoM0I4MzU4NTM1QkM2Mjg1NjRBRjU2RjMxRDg3NTg2NDhF MUQwNDMwNDAeFw0yNTEyMDUwNTAwMjZaFw0yNTEyMTIwNTAwMjZaMBgxFjAUBgNV BAMTDTY5MzI2NmViLTNiMGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+mDUuNalDFIlinWlK/zx+NMuqJv9W23xpKupAQjZT7+/Mt4D8P/+baDTcj4NL mfYD/b7gE/k7sNfYOhZTgS/iJZmk8/lsKGiJllgJqL02+AyPeGhnFziOB4bxub42 DNmZRtOE1k31nqkDc2GZZAC9MmrH90morCcVHKzATzhV0ww6C6V0gt3kFKzp+ZX1 lLRXbjX1Xni9hwrPxNEz1xJue3aFV/2yAVnQgga6FXSUSdIPUUL+MH9hmG2/v2mO shpSMBR5Vs0VZ26Ts6jUfbA37fQDqXKJuQn+h/igZkeORsHqNw5KQ3XmD9K7lnaT TO+1wbDn4Nkawx5iKe3koLRlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUoTQvwC7O y31xlHCS6qucoHiCGRYwHwYDVR0jBBgwFoAUO4NYU1vGKFZK9W8x2HWGSOHQQwQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3NTBCLzY0RDA3NzQ4NDY4 QzExRjA4NEI2QTUzOUM0RjlBRTAyL080TllVMXZHS0ZaSzlXOHgySFdHU09IUVF3 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTzROWVUxdkdLRlpLOVc4eDJIV0dTT0hRUXdRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3 NTBCLzY0RDA3NzQ4NDY4QzExRjA4NEI2QTUzOUM0RjlBRTAyL080TllVMXZHS0Za SzlXOHgySFdHU09IUVF3US5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAADWENfSE5aD7C4LSZ2pNNJbuHhaOhZRoBJM0eRafmCvyTTjPNLn8Hok yQBSnu0IAm4BTHJMsGu5gnF89oy1vaOoV4S99yhK2yTZRit/ubOUnr6EPO0VOBfj R8uzB/uf/d9h8Y1lVwAy9dTSvUmTvX/vXUi92DG2xS1jfJMJDETmuJLiQkYddYsb ZnvDwH+ui22enW6XckEmqafVEXQsOVPdwVzbWsq8zb6Ly9L3kdhL4oB6tqR+K36Q 1xRHNNe/gDFvXNiJ9lOFVX/0IJ0mZ03vK1HqejSClTxdNFt8hzXlbCKCN+DtRTTI 5jhM3HazYHijkIsctq8a8zkOD4+SJxM= -----END CERTIFICATE-----Generated at Sat Dec 6 12:22:48 2025 by rpki-client