This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.mft File: OVr1eRN2M5r53uVtah4TtHq1xGY.mft (raw, json) Hash identifier: 6JPE+1E6iFsDIQbXeZhJXfd3Zsx1w8k1zIj4tfaUxa0= Subject key identifier: 19:7A:E3:ED:80:FF:47:81:A4:9E:11:16:37:65:7C:49:F2:0D:F0:F2 Authority key identifier: 39:5A:F5:79:13:76:33:9A:F9:DE:E5:6D:6A:1E:13:B4:7A:B5:C4:66 Certificate issuer: /CN=A91316B0/serialNumber=395AF5791376339AF9DEE56D6A1E13B47AB5C466 Certificate serial: 0130 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OVr1eRN2M5r53uVtah4TtHq1xGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.mft Manifest number: 05D3 Signing time: Thu 04 Dec 2025 22:32:46 +0000 Manifest this update: Thu 04 Dec 2025 22:32:45 +0000 Manifest next update: Thu 11 Dec 2025 22:32:45 +0000 Files and hashes: 1: OVr1eRN2M5r53uVtah4TtHq1xGY.crl (hash: r1GPQVV+Z4TcEk68uAkNeCjHj0DwyQaQY70DdEYdcX4=) 2: C6EFDF5C0C3311EFB37BD03FC4F9AE02.roa (hash: +baf+FBOvTO91WyGSxfLgP4c75Re+v5ehq0gcaeZq1U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.crl rsync://rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OVr1eRN2M5r53uVtah4TtHq1xGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:32:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91316B0, serialNumber=395AF5791376339AF9DEE56D6A1E13B47AB5C466 Validity Not Before: Dec 4 22:32:45 2025 GMT Not After : Dec 11 22:32:45 2025 GMT Subject: CN=69320c0e-e771 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:49:a2:6c:8c:96:12:d9:88:04:50:92:f2:64: 0a:57:7e:e5:55:3f:62:c8:2d:4c:49:44:e2:57:06: 9d:20:2c:19:86:30:1b:fd:61:9b:36:bc:ef:7c:09: 39:87:b1:9b:67:f3:9f:0b:74:65:09:7f:e7:e2:c9: f1:b4:ea:5a:e3:4b:28:78:b2:31:e8:20:86:df:6b: 4d:87:29:4c:95:e4:3f:75:6c:c2:c9:35:6d:8a:d2: 6f:06:3a:84:92:26:a6:ff:82:fc:32:ca:1b:4f:57: 2e:1d:96:f5:df:28:10:79:b8:c8:05:89:e3:9b:e6: c6:68:c5:2b:38:f2:10:54:41:b1:64:18:1e:10:92: 90:a9:03:0e:3c:1a:db:1f:1d:52:52:18:bf:74:98: 5a:ab:bf:04:c1:60:c9:e7:cd:5c:b2:ca:bd:72:2b: 00:27:36:da:86:ab:d1:dc:e0:75:ce:fc:3e:d5:f2: b4:99:b4:ec:b8:0e:98:0e:be:50:48:7f:eb:ba:44: f4:66:4b:68:f7:55:93:a1:a7:90:39:4d:6f:fb:6c: 4c:35:a5:00:db:07:ef:64:5e:37:b1:15:ae:ee:d5: 30:e1:67:01:c6:b6:12:aa:b1:7a:42:cd:25:9c:47: 10:19:31:1e:7f:64:fa:b0:d7:99:17:ca:f9:38:d9: b3:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:7A:E3:ED:80:FF:47:81:A4:9E:11:16:37:65:7C:49:F2:0D:F0:F2 X509v3 Authority Key Identifier: keyid:39:5A:F5:79:13:76:33:9A:F9:DE:E5:6D:6A:1E:13:B4:7A:B5:C4:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OVr1eRN2M5r53uVtah4TtHq1xGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91316B0/2337F2325E3E11ECA1FFEB4CC4F9AE02/OVr1eRN2M5r53uVtah4TtHq1xGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:75:27:18:44:2c:f9:ad:4f:d2:78:ee:b3:85:58:d5:1b:e6: 1f:c1:97:b9:73:3e:84:f0:07:da:0c:63:f0:05:2a:ff:12:44: c3:cf:2a:3b:44:54:aa:ba:41:f4:8a:8c:b6:89:37:5d:6c:7c: 2b:29:e4:a2:31:1b:49:e3:39:39:b5:36:52:ae:98:ac:07:10: a4:66:30:50:e2:31:e2:22:26:bb:dd:46:8f:38:bf:2e:54:0a: 48:e5:14:0f:22:5d:2c:43:4f:4e:c9:5d:a4:56:e1:27:c1:f9: 25:d0:76:bf:8b:90:74:98:9d:93:be:48:84:af:f2:62:66:d7: 99:5e:01:cb:df:2a:ec:bb:78:ec:d2:c3:17:e1:61:c2:70:db: 19:76:f4:a5:5a:90:67:ff:c8:5e:4e:e8:d9:8a:34:35:31:81: de:71:23:54:ef:d2:54:f1:e8:0d:37:1c:c8:f0:05:94:7e:2c: b3:e9:0b:d2:67:4a:b9:a1:61:e2:d4:a1:df:7e:fb:53:84:87: ae:26:7e:17:6c:06:d5:77:7f:b5:a3:fd:d1:2d:65:78:37:2a: 58:68:10:b5:5c:5c:08:47:6d:52:0a:47:46:50:45:b4:45:a9: 61:1e:49:ec:8b:c0:34:da:93:08:e9:60:72:36:85:9f:ae:42: 7b:5d:ab:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE2QjAxMTAvBgNVBAUTKDM5NUFGNTc5MTM3NjMzOUFGOURFRTU2RDZBMUUxM0I0 N0FCNUM0NjYwHhcNMjUxMjA0MjIzMjQ1WhcNMjUxMjExMjIzMjQ1WjAYMRYwFAYD VQQDEw02OTMyMGMwZS1lNzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtEmibIyWEtmIBFCS8mQKV37lVT9iyC1MSUTiVwadICwZhjAb/WGbNrzvfAk5 h7GbZ/OfC3RlCX/n4snxtOpa40soeLIx6CCG32tNhylMleQ/dWzCyTVtitJvBjqE kiam/4L8MsobT1cuHZb13ygQebjIBYnjm+bGaMUrOPIQVEGxZBgeEJKQqQMOPBrb Hx1SUhi/dJhaq78EwWDJ581cssq9cisAJzbahqvR3OB1zvw+1fK0mbTsuA6YDr5Q SH/rukT0Zkto91WToaeQOU1v+2xMNaUA2wfvZF43sRWu7tUw4WcBxrYSqrF6Qs0l nEcQGTEef2T6sNeZF8r5ONmzXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBl64+2A /0eBpJ4RFjdlfEnyDfDyMB8GA1UdIwQYMBaAFDla9XkTdjOa+d7lbWoeE7R6tcRm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTZCMC8yMzM3RjIzMjVF M0UxMUVDQTFGRkVCNENDNEY5QUUwMi9PVnIxZVJOMk01cjUzdVZ0YWg0VHRIcTF4 R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09WcjFlUk4yTTVyNTN1VnRhaDRUdEhxMXhHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTZCMC8yMzM3RjIzMjVFM0UxMUVDQTFGRkVCNENDNEY5QUUwMi9PVnIxZVJOMk01 cjUzdVZ0YWg0VHRIcTF4R1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUdScYRCz5rU/SeO6zhVjVG+YfwZe5cz6E8AfaDGPwBSr/EkTDzyo7 RFSqukH0ioy2iTddbHwrKeSiMRtJ4zk5tTZSrpisBxCkZjBQ4jHiIia73UaPOL8u VApI5RQPIl0sQ09OyV2kVuEnwfkl0Ha/i5B0mJ2TvkiEr/JiZteZXgHL3yrsu3js 0sMX4WHCcNsZdvSlWpBn/8heTujZijQ1MYHecSNU79JU8egNNxzI8AWUfiyz6QvS Z0q5oWHi1KHffvtThIeuJn4XbAbVd3+1o/3RLWV4NypYaBC1XFwIR21SCkdGUEW0 RalhHknsi8A02pMI6WByNoWfrkJ7XasD -----END CERTIFICATE-----Generated at Sat Dec 6 19:16:43 2025 by rpki-client