This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft File: OAHjYU99QEcCrkIssnnlHcnRTKI.mft (raw, json) Hash identifier: IwZ4qlXp3bCh93zK9RYcD7rrxW4ErfkkrrR6rv8R7sk= Subject key identifier: 2B:96:52:3A:54:4C:9D:37:99:D4:40:BE:63:C7:3D:B6:F4:09:71:BE Authority key identifier: 38:01:E3:61:4F:7D:40:47:02:AE:42:2C:B2:79:E5:1D:C9:D1:4C:A2 Certificate issuer: /CN=A912383B/serialNumber=3801E3614F7D404702AE422CB279E51DC9D14CA2 Certificate serial: 0871 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft Manifest number: 086A Signing time: Sat 06 Dec 2025 19:47:05 +0000 Manifest this update: Sat 06 Dec 2025 19:47:04 +0000 Manifest next update: Sat 13 Dec 2025 19:47:04 +0000 Files and hashes: 1: OAHjYU99QEcCrkIssnnlHcnRTKI.crl (hash: wu2wFyigOnpslysjdZU5dxK3vRbLXInsqxUbLxTiHXg=) 2: 4E4AF4A2C2B111EBABFFA212C4F9AE02.roa (hash: OwVRnVKX5TIRRxRa7tYPZCkquxRI/+jnc5rYmXmYkKM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.crl rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:47:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2161 (0x871) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912383B, serialNumber=3801E3614F7D404702AE422CB279E51DC9D14CA2 Validity Not Before: Dec 6 19:47:04 2025 GMT Not After : Dec 13 19:47:04 2025 GMT Subject: CN=69348839-5e14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:70:91:df:46:51:fb:08:71:bb:89:0e:29:fd: 7d:fa:76:32:48:bd:84:d2:0a:63:74:6e:32:d3:14: 30:43:35:e9:73:82:02:06:1a:49:60:72:51:53:c3: 72:0d:ef:25:e6:60:8c:ee:26:6b:e4:ae:3d:80:6d: 0c:cc:15:82:f6:5a:46:27:a1:ba:b0:a6:ed:c1:3f: 7e:bc:a3:a5:30:05:8d:3a:00:7a:da:b8:a9:f7:47: 05:58:4a:79:1f:04:a4:12:c0:41:a8:93:64:45:59: 7e:26:5d:c4:1d:24:3b:ca:d9:cf:34:ba:14:b7:4d: 49:f3:31:d6:7b:cd:b3:ca:d0:93:f4:c3:76:2d:54: d8:81:d9:a5:80:d1:2d:b7:76:eb:1b:c4:55:f6:44: bb:f1:3d:b6:28:5b:fe:33:67:75:59:9f:df:6a:94: 60:54:b4:ab:63:5d:b0:61:68:02:80:d3:a5:52:c1: 6f:ed:ac:44:02:a3:d7:37:21:37:87:03:3e:0c:a8: 4c:30:fc:b6:4a:72:5a:81:22:f5:d3:f7:17:78:b2: 96:d4:d5:b2:6d:e2:86:07:e9:3c:1e:84:95:e8:39: bb:f4:3f:92:01:41:2e:0a:85:dc:b7:f6:13:79:f6: 60:4f:80:2c:27:d4:81:97:60:81:f5:4c:77:b2:21: 4d:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:96:52:3A:54:4C:9D:37:99:D4:40:BE:63:C7:3D:B6:F4:09:71:BE X509v3 Authority Key Identifier: keyid:38:01:E3:61:4F:7D:40:47:02:AE:42:2C:B2:79:E5:1D:C9:D1:4C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:14:2e:65:fa:66:b2:07:08:a6:e3:17:29:2c:c2:e0:1a:13: 0a:86:b1:84:ab:0d:e7:70:66:a0:51:ca:22:e2:ec:ff:e1:cc: a2:90:81:31:e5:a9:83:17:ad:bd:1a:c7:7f:81:83:8f:e5:ac: b1:07:57:34:52:17:da:72:19:b0:6c:22:8b:f6:70:b7:25:b6: 81:25:d7:4c:99:09:49:ff:5e:b1:1c:7d:40:38:cd:55:b1:68: 53:5a:65:53:0e:1b:e4:7b:af:98:fa:4e:c3:65:72:75:21:c2: 08:f6:ea:d3:87:ac:bc:32:c9:b6:ae:a3:4e:b6:94:86:15:4b: 4e:78:f6:58:41:d7:01:ce:0d:02:8b:20:d2:d8:7e:74:79:87: 57:a7:62:ff:20:f5:f5:fd:5c:29:d9:44:4f:56:69:2f:5f:92: e0:fb:73:8a:ed:3f:da:13:2d:3d:56:ff:0f:15:c7:b0:28:b4: 89:3c:7d:40:0c:42:fb:d4:aa:4f:b1:e3:53:a9:2c:d7:8d:70: 6d:dc:b4:76:50:fd:43:8e:3d:79:f1:36:7f:b5:2e:88:5e:15: 77:4c:ef:fd:40:f8:65:24:99:64:c3:86:f6:0e:a2:7d:50:fe: f4:76:e9:44:c7:da:a3:78:0e:a1:30:50:ff:42:3d:c1:df:f2: 90:ea:8d:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4M0IxMTAvBgNVBAUTKDM4MDFFMzYxNEY3RDQwNDcwMkFFNDIyQ0IyNzlFNTFE QzlEMTRDQTIwHhcNMjUxMjA2MTk0NzA0WhcNMjUxMjEzMTk0NzA0WjAYMRYwFAYD VQQDEw02OTM0ODgzOS01ZTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunCR30ZR+whxu4kOKf19+nYySL2E0gpjdG4y0xQwQzXpc4ICBhpJYHJRU8Ny De8l5mCM7iZr5K49gG0MzBWC9lpGJ6G6sKbtwT9+vKOlMAWNOgB62rip90cFWEp5 HwSkEsBBqJNkRVl+Jl3EHSQ7ytnPNLoUt01J8zHWe82zytCT9MN2LVTYgdmlgNEt t3brG8RV9kS78T22KFv+M2d1WZ/fapRgVLSrY12wYWgCgNOlUsFv7axEAqPXNyE3 hwM+DKhMMPy2SnJagSL10/cXeLKW1NWybeKGB+k8HoSV6Dm79D+SAUEuCoXct/YT efZgT4AsJ9SBl2CB9Ux3siFNwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCuWUjpU TJ03mdRAvmPHPbb0CXG+MB8GA1UdIwQYMBaAFDgB42FPfUBHAq5CLLJ55R3J0Uyi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgzQi9GQkJBOUU5Q0Uw MjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9PQUhqWVU5OVFFY0Nya0lzc25ubEhjblJU S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09BSGpZVTk5UUVjQ3JrSXNzbm5sSGNuUlRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzgzQi9GQkJBOUU5Q0UwMjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9PQUhqWVU5OVFF Y0Nya0lzc25ubEhjblJUS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0FC5l+mayBwim4xcpLMLgGhMKhrGEqw3ncGagUcoi4uz/4cyikIEx 5amDF629Gsd/gYOP5ayxB1c0UhfachmwbCKL9nC3JbaBJddMmQlJ/16xHH1AOM1V sWhTWmVTDhvke6+Y+k7DZXJ1IcII9urTh6y8Msm2rqNOtpSGFUtOePZYQdcBzg0C iyDS2H50eYdXp2L/IPX1/Vwp2URPVmkvX5Lg+3OK7T/aEy09Vv8PFcewKLSJPH1A DEL71KpPseNTqSzXjXBt3LR2UP1Djj158TZ/tS6IXhV3TO/9QPhlJJlkw4b2DqJ9 UP70dulEx9qjeA6hMFD/Qj3B3/KQ6o2G -----END CERTIFICATE-----Generated at Sun Dec 7 02:57:59 2025 by rpki-client