This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912E411/F0B00EB4191411EA86F2481EC4F9AE02/OIgNuTaszJvXTT2434iHsyjleI0.mft File: OIgNuTaszJvXTT2434iHsyjleI0.mft (raw, json) Hash identifier: DzfP2yow5TqQFSDiwmMQnOO+qvOeSFAi3j86fB08BjY= Subject key identifier: 0D:3F:8C:CF:9E:64:D4:E0:73:D1:A4:2B:3F:12:D1:79:A7:E5:AE:14 Authority key identifier: 38:88:0D:B9:36:AC:CC:9B:D7:4D:3D:B8:DF:88:87:B3:28:E5:78:8D Certificate issuer: /CN=A912E411/serialNumber=38880DB936ACCC9BD74D3DB8DF8887B328E5788D Certificate serial: 08F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIgNuTaszJvXTT2434iHsyjleI0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E411/F0B00EB4191411EA86F2481EC4F9AE02/OIgNuTaszJvXTT2434iHsyjleI0.mft Manifest number: 1521 Signing time: Sat 06 Dec 2025 18:00:06 +0000 Manifest this update: Sat 06 Dec 2025 18:00:05 +0000 Manifest next update: Sat 13 Dec 2025 18:00:05 +0000 Files and hashes: 1: OIgNuTaszJvXTT2434iHsyjleI0.crl (hash: RJ1kNLNSwrzphB+XR1nNgAYgSuoHAuW8U9R7TbXS6vY=) 2: F6EC251224E711F087B2F571C4F9AE02.roa (hash: ixwNvaFcfk2na9cvy/T/P4B71LV0FaS6LsHWYtDlPXs=) 3: C766E398C0EE11EA94A1F146C4F9AE02.roa (hash: 4Kv7xQwln4PVRYcYiLH9p6kQ8sftutG3ICgl5f6YZnI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E411/F0B00EB4191411EA86F2481EC4F9AE02/OIgNuTaszJvXTT2434iHsyjleI0.crl rsync://rpki.apnic.net/member_repository/A912E411/F0B00EB4191411EA86F2481EC4F9AE02/OIgNuTaszJvXTT2434iHsyjleI0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIgNuTaszJvXTT2434iHsyjleI0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2293 (0x8f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E411, serialNumber=38880DB936ACCC9BD74D3DB8DF8887B328E5788D Validity Not Before: Dec 6 18:00:05 2025 GMT Not After : Dec 13 18:00:05 2025 GMT Subject: CN=69346f25-e830 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:4b:f8:fe:29:ad:29:68:ff:4d:74:17:7b:a7: 67:4e:b6:64:fa:f6:94:10:53:00:a1:09:b3:90:58: 98:5f:f1:40:96:47:fb:22:95:46:39:da:db:00:b1: 29:c1:cc:91:a3:aa:63:8f:3e:5b:6f:0f:81:44:bc: 6d:43:42:bd:d2:75:f3:d7:f8:ba:44:3e:6b:3c:75: 94:0c:69:0f:10:c0:a8:64:51:61:cb:2f:a8:88:cd: 63:e1:c3:11:fe:ae:4a:ea:7a:2d:61:fc:39:b9:80: 8d:03:8e:bb:37:6b:7d:a3:3c:3b:b5:30:38:9f:35: 48:68:7c:5c:d5:cb:b4:2e:8b:db:f9:90:86:91:0e: 72:30:9e:9b:5e:5f:78:54:81:f4:dc:7d:32:f9:29: c5:7e:ac:03:88:26:e8:68:ca:ec:db:39:22:74:d6: 29:c5:d6:11:15:c5:dc:53:c1:84:c8:fc:73:79:56: 16:c4:7e:98:4c:82:8c:d7:c8:6e:6f:b6:6d:67:c7: 8d:d4:bf:d1:9d:b8:07:10:37:66:8c:ee:86:81:b9: 66:0f:a0:7d:c7:b8:a4:9d:b2:a2:02:75:e0:8e:9c: 96:d8:e1:e8:6a:8d:9f:c8:37:1d:6f:d1:8e:7e:be: d3:71:29:10:c4:ed:4a:d3:73:18:9c:36:b7:d8:cc: a9:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:3F:8C:CF:9E:64:D4:E0:73:D1:A4:2B:3F:12:D1:79:A7:E5:AE:14 X509v3 Authority Key Identifier: keyid:38:88:0D:B9:36:AC:CC:9B:D7:4D:3D:B8:DF:88:87:B3:28:E5:78:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E411/F0B00EB4191411EA86F2481EC4F9AE02/OIgNuTaszJvXTT2434iHsyjleI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OIgNuTaszJvXTT2434iHsyjleI0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E411/F0B00EB4191411EA86F2481EC4F9AE02/OIgNuTaszJvXTT2434iHsyjleI0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:fb:85:1b:f6:29:ed:af:e0:f8:d4:b9:5a:23:e2:2b:fc:95: 48:13:40:a5:0d:e7:fd:5c:27:69:0d:eb:e5:2b:1d:a9:55:96: 98:16:68:1f:31:0e:18:b9:0d:8a:0b:b7:1b:e2:a1:42:03:a0: 79:fd:31:60:e0:48:08:53:56:e0:d3:f8:9b:54:2e:13:d2:0c: c5:2f:66:6f:27:e4:c5:2a:2b:bb:34:92:b0:7a:e7:77:20:b6: da:58:af:f9:1c:ea:45:cb:ca:43:01:07:47:ea:f1:c5:88:06: 72:b3:91:d8:21:eb:ac:73:8a:dd:7e:41:f7:e1:50:38:6c:9e: ae:66:a2:ad:71:59:09:6d:6a:58:87:54:9c:9b:80:05:65:99: 51:fd:21:d0:97:05:5a:38:c3:5f:fd:a2:a6:47:c2:a2:85:d7: bb:12:72:5d:9b:44:b6:67:95:d4:56:19:6a:37:fd:13:38:6d: 9d:72:6b:fc:09:25:99:ec:60:94:33:ce:af:06:f9:d3:d1:74: be:ab:6b:2a:ff:d8:a6:44:e8:88:a2:2f:6b:53:f7:a0:e0:67: d3:e3:75:15:6b:7d:6a:d9:5f:ca:0b:62:6e:cc:0e:04:31:d8: db:af:95:78:92:8d:25:02:c0:75:64:73:f7:cc:65:cb:91:39: a4:94:97:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU0MTExMTAvBgNVBAUTKDM4ODgwREI5MzZBQ0NDOUJENzREM0RCOERGODg4N0Iz MjhFNTc4OEQwHhcNMjUxMjA2MTgwMDA1WhcNMjUxMjEzMTgwMDA1WjAYMRYwFAYD VQQDEw02OTM0NmYyNS1lODMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4kv4/imtKWj/TXQXe6dnTrZk+vaUEFMAoQmzkFiYX/FAlkf7IpVGOdrbALEp wcyRo6pjjz5bbw+BRLxtQ0K90nXz1/i6RD5rPHWUDGkPEMCoZFFhyy+oiM1j4cMR /q5K6notYfw5uYCNA467N2t9ozw7tTA4nzVIaHxc1cu0Lovb+ZCGkQ5yMJ6bXl94 VIH03H0y+SnFfqwDiCboaMrs2zkidNYpxdYRFcXcU8GEyPxzeVYWxH6YTIKM18hu b7ZtZ8eN1L/RnbgHEDdmjO6GgblmD6B9x7iknbKiAnXgjpyW2OHoao2fyDcdb9GO fr7TcSkQxO1K03MYnDa32Myp0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA0/jM+e ZNTgc9GkKz8S0Xmn5a4UMB8GA1UdIwQYMBaAFDiIDbk2rMyb1009uN+Ih7Mo5XiN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTQxMS9GMEIwMEVCNDE5 MTQxMUVBODZGMjQ4MUVDNEY5QUUwMi9PSWdOdVRhc3pKdlhUVDI0MzRpSHN5amxl STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09JZ051VGFzekp2WFRUMjQzNGlIc3lqbGVJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTQxMS9GMEIwMEVCNDE5MTQxMUVBODZGMjQ4MUVDNEY5QUUwMi9PSWdOdVRhc3pK dlhUVDI0MzRpSHN5amxlSTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAu+4Ub9intr+D41LlaI+Ir/JVIE0ClDef9XCdpDevlKx2pVZaYFmgf MQ4YuQ2KC7cb4qFCA6B5/TFg4EgIU1bg0/ibVC4T0gzFL2ZvJ+TFKiu7NJKweud3 ILbaWK/5HOpFy8pDAQdH6vHFiAZys5HYIeusc4rdfkH34VA4bJ6uZqKtcVkJbWpY h1Scm4AFZZlR/SHQlwVaOMNf/aKmR8Kihde7EnJdm0S2Z5XUVhlqN/0TOG2dcmv8 CSWZ7GCUM86vBvnT0XS+q2sq/9imROiIoi9rU/eg4GfT43UVa31q2V/KC2JuzA4E Mdjbr5V4ko0lAsB1ZHP3zGXLkTmklJfb -----END CERTIFICATE-----Generated at Sat Dec 6 23:06:13 2025 by rpki-client