This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft File: RiOppNLqhemPtaEaDSywgDiHjw8.mft (raw, json) Hash identifier: pL5oYIWcn+2bqq525NY7+tAkVba4jDO4+zdURXdzLc8= Subject key identifier: A5:59:D1:72:02:7E:69:BA:C5:DD:ED:D0:0A:1F:7A:8B:36:1E:AB:54 Authority key identifier: 46:23:A9:A4:D2:EA:85:E9:8F:B5:A1:1A:0D:2C:B0:80:38:87:8F:0F Certificate issuer: /CN=A9128DE9/serialNumber=4623A9A4D2EA85E98FB5A11A0D2CB08038878F0F Certificate serial: 0C37 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft Manifest number: 0C30 Signing time: Sat 06 Dec 2025 18:02:04 +0000 Manifest this update: Sat 06 Dec 2025 18:02:03 +0000 Manifest next update: Sat 13 Dec 2025 18:02:03 +0000 Files and hashes: 1: RiOppNLqhemPtaEaDSywgDiHjw8.crl (hash: MemPARSFOVOLkoOfM0tTaBOd1C8gu+nyb5lJsUd8ShI=) 2: 75E6DD481BDA11EAB3F45D44C4F9AE02.roa (hash: CqtlIV8oyS/ltG/c7wrvUbZ8dS3VADjXiEg/AjA1Uu4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.crl rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3127 (0xc37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128DE9, serialNumber=4623A9A4D2EA85E98FB5A11A0D2CB08038878F0F Validity Not Before: Dec 6 18:02:03 2025 GMT Not After : Dec 13 18:02:03 2025 GMT Subject: CN=69346f9c-3ffe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:3f:9a:99:fa:ad:43:e0:39:22:d2:52:92:07: c7:7c:bf:59:e8:b6:75:9d:55:4d:87:75:39:fb:99: 56:90:16:f5:45:72:a4:85:05:83:66:7e:e5:77:f8: 39:94:bd:ce:f2:af:f3:47:8c:5d:8d:7c:d2:72:5c: 60:ff:fd:39:ab:6f:cb:c4:a9:7e:a0:36:6e:59:e1: f7:06:06:ac:4c:63:71:4b:83:24:85:51:30:c8:42: a9:dd:f5:a3:7e:1f:4b:07:b0:67:56:b2:dd:7a:9e: 17:11:a8:01:c5:6f:c4:2d:ad:40:c5:fb:f3:fc:92: 47:d6:0e:4e:6d:a3:d5:d6:51:60:47:b0:98:64:fe: 14:d3:3b:20:c0:2b:0d:10:b2:80:0b:6f:33:d7:aa: bb:b1:c8:e0:75:2a:cf:86:c3:15:ae:df:ca:8d:09: 7c:50:26:b6:ed:0a:88:0d:fb:9c:9f:1e:dd:f0:69: a2:73:e4:95:c6:6c:4e:16:0d:b7:43:a7:f4:b8:51: 00:6a:77:ba:54:5b:f5:e9:9a:5a:82:fe:27:bb:f1: 0d:fc:82:c1:9d:1e:8b:01:11:73:c6:12:e9:3a:fa: c3:b4:ed:41:d7:c7:33:26:b6:48:bc:bc:ed:d8:70: 24:49:7e:62:e2:4b:4b:b6:be:c8:60:6c:82:a4:24: 13:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:59:D1:72:02:7E:69:BA:C5:DD:ED:D0:0A:1F:7A:8B:36:1E:AB:54 X509v3 Authority Key Identifier: keyid:46:23:A9:A4:D2:EA:85:E9:8F:B5:A1:1A:0D:2C:B0:80:38:87:8F:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:8b:1a:a2:18:82:c3:72:3b:c2:8b:95:15:7b:16:f3:e9:8c: c9:9b:84:80:c4:2f:b5:c8:20:8c:08:27:cb:11:0f:7b:33:52: 53:2a:4c:ea:55:5d:7c:a6:6c:ae:9f:11:ef:06:ea:23:23:ec: 1c:17:9a:50:12:6d:43:5f:88:87:83:bf:a5:ec:6c:aa:47:0f: 79:fd:7c:38:87:df:6b:26:5a:15:8d:79:5b:f9:85:0d:95:9b: 80:53:31:88:7d:d8:a2:dc:37:a2:33:60:ad:24:94:c0:b8:63: 5d:e7:fe:c1:1b:48:a7:bd:42:c9:f8:2d:7e:5a:95:6c:43:64: ef:27:d6:8e:81:8e:28:d0:d5:4f:0f:2f:c7:7d:3f:44:b2:cc: 3e:84:ba:c0:52:07:11:90:4c:d2:9f:22:a0:4c:5b:99:48:3e: 9f:ac:40:f2:f6:aa:78:cd:f6:48:a2:ff:8a:34:3b:7f:62:1a: aa:08:35:4e:0f:46:24:a5:ed:48:46:cd:aa:b6:98:06:7d:c1: c2:0f:aa:be:01:45:4b:5d:8b:2a:1d:cf:0b:df:82:46:a9:04: 59:e4:1c:67:69:e8:88:4d:d6:9a:47:2f:0b:4a:59:33:e4:4a: d2:bd:86:2b:3c:0c:9b:73:8f:e2:24:dd:14:43:98:37:72:2f: 3a:83:15:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhERTkxMTAvBgNVBAUTKDQ2MjNBOUE0RDJFQTg1RTk4RkI1QTExQTBEMkNCMDgw Mzg4NzhGMEYwHhcNMjUxMjA2MTgwMjAzWhcNMjUxMjEzMTgwMjAzWjAYMRYwFAYD VQQDEw02OTM0NmY5Yy0zZmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7T+amfqtQ+A5ItJSkgfHfL9Z6LZ1nVVNh3U5+5lWkBb1RXKkhQWDZn7ld/g5 lL3O8q/zR4xdjXzSclxg//05q2/LxKl+oDZuWeH3BgasTGNxS4MkhVEwyEKp3fWj fh9LB7BnVrLdep4XEagBxW/ELa1Axfvz/JJH1g5ObaPV1lFgR7CYZP4U0zsgwCsN ELKAC28z16q7scjgdSrPhsMVrt/KjQl8UCa27QqIDfucnx7d8Gmic+SVxmxOFg23 Q6f0uFEAane6VFv16Zpagv4nu/EN/ILBnR6LARFzxhLpOvrDtO1B18czJrZIvLzt 2HAkSX5i4ktLtr7IYGyCpCQThQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKVZ0XIC fmm6xd3t0Aofeos2HqtUMB8GA1UdIwQYMBaAFEYjqaTS6oXpj7WhGg0ssIA4h48P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOERFOS9EMDA0OUY4NjFC RDUxMUVBODBDQkNGMzZDNEY5QUUwMi9SaU9wcE5McWhlbVB0YUVhRFN5d2dEaUhq dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JpT3BwTkxxaGVtUHRhRWFEU3l3Z0RpSGp3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OERFOS9EMDA0OUY4NjFCRDUxMUVBODBDQkNGMzZDNEY5QUUwMi9SaU9wcE5McWhl bVB0YUVhRFN5d2dEaUhqdzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCixqiGILDcjvCi5UVexbz6YzJm4SAxC+1yCCMCCfLEQ97M1JTKkzq VV18pmyunxHvBuojI+wcF5pQEm1DX4iHg7+l7GyqRw95/Xw4h99rJloVjXlb+YUN lZuAUzGIfdii3DeiM2CtJJTAuGNd5/7BG0invULJ+C1+WpVsQ2TvJ9aOgY4o0NVP Dy/HfT9Essw+hLrAUgcRkEzSnyKgTFuZSD6frEDy9qp4zfZIov+KNDt/YhqqCDVO D0Ykpe1IRs2qtpgGfcHCD6q+AUVLXYsqHc8L34JGqQRZ5BxnaeiITdaaRy8LSlkz 5ErSvYYrPAybc4/iJN0UQ5g3ci86gxUF -----END CERTIFICATE-----Generated at Sun Dec 7 03:24:51 2025 by rpki-client