This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft File: O-7kvaWgSxBLHXLmAcMJONuktkQ.mft (raw, json) Hash identifier: euOaPTgcMWyGPOW9AV3+Oe0deuB18s6E4QqSDUjkJMc= Subject key identifier: F6:28:CE:67:6A:C7:E4:50:ED:75:EB:8F:86:73:E2:94:01:68:EA:C0 Authority key identifier: 3B:EE:E4:BD:A5:A0:4B:10:4B:1D:72:E6:01:C3:09:38:DB:A4:B6:44 Certificate issuer: /CN=A911D2A3/serialNumber=3BEEE4BDA5A04B104B1D72E601C30938DBA4B644 Certificate serial: 156E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft Manifest number: 1562 Signing time: Sat 06 Dec 2025 16:21:42 +0000 Manifest this update: Sat 06 Dec 2025 16:21:42 +0000 Manifest next update: Sat 13 Dec 2025 16:21:42 +0000 Files and hashes: 1: O-7kvaWgSxBLHXLmAcMJONuktkQ.crl (hash: aoDDW9Yx95ekJoeoWNcVmqzYI6oN3ob0u/1EkFfqkxk=) 2: D9EDB272C44C11ECA07C2D77C4F9AE02.roa (hash: Iuc0hvonCQ52vF8J3PK6U6v3ddTApNkT2+JlMCbgaDs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.crl rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 16:21:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5486 (0x156e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D2A3, serialNumber=3BEEE4BDA5A04B104B1D72E601C30938DBA4B644 Validity Not Before: Dec 6 16:21:42 2025 GMT Not After : Dec 13 16:21:42 2025 GMT Subject: CN=69345816-6836 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:c1:04:79:d5:3b:ae:9c:dd:32:c9:6f:c1:3b: 18:f4:1a:b5:ae:4d:f7:62:c8:73:02:43:fd:be:2a: 2c:2d:c2:c5:1e:03:7c:c5:5b:99:2c:71:43:1f:63: 53:83:b2:7d:5b:4e:de:5c:77:ef:16:28:1a:c7:4d: c6:4f:74:74:c6:64:65:6b:f3:f8:86:10:74:39:0c: e5:8b:3f:9f:b4:e2:f8:75:f2:db:23:f6:6d:6f:8a: 71:5f:ce:a0:44:d6:1e:06:6a:8a:65:ce:86:70:f5: 2b:a9:bc:63:3a:87:b8:2a:4c:1d:2a:36:1d:ce:3a: dd:be:7d:5e:72:3f:84:97:0d:84:e2:6c:0a:61:47: 91:6f:8f:b5:68:12:78:01:81:94:6a:ef:ef:1e:f2: 7c:31:68:52:4d:5a:d8:b0:6f:20:06:0f:1b:c4:e4: bd:b0:cf:42:37:7e:3e:91:00:a6:95:d2:5d:5f:99: 2f:75:00:84:13:d9:ff:4b:9b:a7:b5:33:d0:4c:ce: 15:dd:e9:bf:a9:48:02:26:d6:e9:ae:03:7e:5e:95: 93:99:f8:23:9e:fa:41:cb:00:27:84:80:31:f5:37: 35:d2:e5:40:ab:7d:65:69:24:bc:67:a8:89:00:67: 15:32:20:45:7e:9f:59:bc:40:0a:22:6d:d1:b8:09: 24:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:28:CE:67:6A:C7:E4:50:ED:75:EB:8F:86:73:E2:94:01:68:EA:C0 X509v3 Authority Key Identifier: keyid:3B:EE:E4:BD:A5:A0:4B:10:4B:1D:72:E6:01:C3:09:38:DB:A4:B6:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O-7kvaWgSxBLHXLmAcMJONuktkQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D2A3/F6AC63864EFD11E8892B8683C4F9AE02/O-7kvaWgSxBLHXLmAcMJONuktkQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:79:cc:a1:91:3b:54:6b:79:5f:90:40:1d:b8:2e:2b:a1:6e: 7f:78:e3:65:9c:fc:18:dc:87:a7:fb:2e:15:96:e7:8a:33:8e: 39:75:9e:dd:85:0b:42:cc:50:03:f1:03:46:ea:37:a3:de:e2: 8d:d1:65:d3:ca:ff:99:9b:1e:f3:44:49:24:02:13:23:85:a4: c9:28:73:c6:e6:02:30:e3:00:5d:79:ec:ab:53:7c:02:a5:f7: b7:9c:f1:9d:75:e5:28:b9:07:1a:a1:58:77:62:21:fa:9c:3a: 38:ac:15:42:47:dd:e5:c3:fb:4b:e6:8a:70:4a:52:95:9e:17: 2f:80:e7:45:17:c7:50:bd:35:79:f6:a0:23:b1:e4:8f:02:e1: 8a:1d:6d:04:19:b0:ca:48:a7:23:a7:15:26:88:91:e4:59:03: a4:fc:c9:db:00:aa:0b:56:d0:0f:06:f0:fd:a2:3d:9b:81:34: 2b:36:55:0f:b2:10:a6:ee:e3:d1:d6:24:8d:aa:76:f1:5e:14: d4:02:15:32:f1:10:fa:c3:d0:3b:b9:de:d4:af:54:af:31:f7: 93:90:dd:ee:49:59:77:3e:eb:bc:56:40:b2:b2:fe:05:ac:01: 30:ba:55:f8:5d:cb:49:c4:94:3e:18:6c:6d:26:69:44:5c:2f: d2:b0:c5:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQyQTMxMTAvBgNVBAUTKDNCRUVFNEJEQTVBMDRCMTA0QjFENzJFNjAxQzMwOTM4 REJBNEI2NDQwHhcNMjUxMjA2MTYyMTQyWhcNMjUxMjEzMTYyMTQyWjAYMRYwFAYD VQQDEw02OTM0NTgxNi02ODM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlsEEedU7rpzdMslvwTsY9Bq1rk33YshzAkP9viosLcLFHgN8xVuZLHFDH2NT g7J9W07eXHfvFigax03GT3R0xmRla/P4hhB0OQzliz+ftOL4dfLbI/Ztb4pxX86g RNYeBmqKZc6GcPUrqbxjOoe4KkwdKjYdzjrdvn1ecj+Elw2E4mwKYUeRb4+1aBJ4 AYGUau/vHvJ8MWhSTVrYsG8gBg8bxOS9sM9CN34+kQCmldJdX5kvdQCEE9n/S5un tTPQTM4V3em/qUgCJtbprgN+XpWTmfgjnvpBywAnhIAx9Tc10uVAq31laSS8Z6iJ AGcVMiBFfp9ZvEAKIm3RuAkkvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPYozmdq x+RQ7XXrj4Zz4pQBaOrAMB8GA1UdIwQYMBaAFDvu5L2loEsQSx1y5gHDCTjbpLZE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDJBMy9GNkFDNjM4NjRF RkQxMUU4ODkyQjg2ODNDNEY5QUUwMi9PLTdrdmFXZ1N4QkxIWExtQWNNSk9OdWt0 a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08tN2t2YVdnU3hCTEhYTG1BY01KT051a3RrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDJBMy9GNkFDNjM4NjRFRkQxMUU4ODkyQjg2ODNDNEY5QUUwMi9PLTdrdmFXZ1N4 QkxIWExtQWNNSk9OdWt0a1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5ecyhkTtUa3lfkEAduC4roW5/eONlnPwY3Ien+y4VlueKM445dZ7d hQtCzFAD8QNG6jej3uKN0WXTyv+Zmx7zREkkAhMjhaTJKHPG5gIw4wBdeeyrU3wC pfe3nPGddeUouQcaoVh3YiH6nDo4rBVCR93lw/tL5opwSlKVnhcvgOdFF8dQvTV5 9qAjseSPAuGKHW0EGbDKSKcjpxUmiJHkWQOk/MnbAKoLVtAPBvD9oj2bgTQrNlUP shCm7uPR1iSNqnbxXhTUAhUy8RD6w9A7ud7Ur1SvMfeTkN3uSVl3Puu8VkCysv4F rAEwulX4XctJxJQ+GGxtJmlEXC/SsMV6 -----END CERTIFICATE-----Generated at Sun Dec 7 02:56:24 2025 by rpki-client