This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.mft File: OOHW4K0CW7AuZUgYPvKoIABQo2U.mft (raw, json) Hash identifier: KjbvEFoED56JqfENmiVOIxtb3LDNoy1mwQ7VZ9qTSe8= Subject key identifier: 7D:72:BB:E8:F5:97:DD:F3:29:5C:BC:46:3A:4F:C2:E0:E9:4F:83:28 Authority key identifier: 38:E1:D6:E0:AD:02:5B:B0:2E:65:48:18:3E:F2:A8:20:00:50:A3:65 Certificate issuer: /CN=A9135EC4/serialNumber=38E1D6E0AD025BB02E6548183EF2A8200050A365 Certificate serial: 34F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOHW4K0CW7AuZUgYPvKoIABQo2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.mft Manifest number: 34F2 Signing time: Sat 06 Dec 2025 14:29:00 +0000 Manifest this update: Sat 06 Dec 2025 14:28:59 +0000 Manifest next update: Sat 13 Dec 2025 14:28:59 +0000 Files and hashes: 1: OOHW4K0CW7AuZUgYPvKoIABQo2U.crl (hash: mN85b6R7MaSuBYdRanIVQFhEX0zDFa7WC+8s3Nbyp/E=) 2: E89AA63C3A3411EDA5928760C4F9AE02.roa (hash: 4I+3xavxeBJbyMnYsMSj2G6sjqqfZ0aCKkQ3nfnxOP8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.crl rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOHW4K0CW7AuZUgYPvKoIABQo2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:28:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13560 (0x34f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135EC4, serialNumber=38E1D6E0AD025BB02E6548183EF2A8200050A365 Validity Not Before: Dec 6 14:28:59 2025 GMT Not After : Dec 13 14:28:59 2025 GMT Subject: CN=69343dab-ff0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:8d:ae:b2:3a:7e:35:7e:99:93:22:98:8b:8c: 69:18:e6:46:a6:6c:4b:b6:c9:2c:96:7a:74:05:c5: 12:db:cb:8c:84:b2:95:37:ed:cf:a7:22:a2:12:75: e5:19:1c:1c:5c:35:60:8a:f6:0c:f9:0a:06:d0:b5: f6:0f:8b:cc:2a:53:47:fc:3e:87:c9:68:a1:50:69: eb:2a:45:26:5e:c0:36:ac:7d:25:0d:70:e2:8c:b3: 64:b7:75:c8:7b:ec:18:22:90:a3:79:9c:97:9e:0b: c5:38:86:31:64:f5:90:9d:61:5a:e8:c9:30:26:b0: 1d:8d:9d:f6:e6:f9:1b:f2:fb:c3:ae:7f:81:49:92: ed:0d:6e:4e:09:a0:cc:bc:39:37:23:9c:f5:27:fd: 9f:d0:d5:bd:d3:96:12:51:53:d3:ed:a0:7b:ff:b3: 55:be:91:a9:62:ff:09:db:c9:c4:ee:34:d5:95:80: 87:03:b6:29:76:48:d1:e3:5f:eb:5f:0c:98:4b:0d: f7:4e:e9:36:a9:01:24:8c:70:33:2d:4e:81:ad:82: 40:4f:41:e4:e1:8d:b0:8d:20:27:d2:b2:1e:4d:5c: e3:db:cf:51:8d:89:08:f0:69:d6:86:52:f5:c8:03: 13:96:c2:9e:a8:fe:f7:bc:5c:c7:68:37:c3:5a:34: b5:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:72:BB:E8:F5:97:DD:F3:29:5C:BC:46:3A:4F:C2:E0:E9:4F:83:28 X509v3 Authority Key Identifier: keyid:38:E1:D6:E0:AD:02:5B:B0:2E:65:48:18:3E:F2:A8:20:00:50:A3:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OOHW4K0CW7AuZUgYPvKoIABQo2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135EC4/8A9A83681D8911E29CE5ECE208B02CD2/OOHW4K0CW7AuZUgYPvKoIABQo2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:b9:3a:d6:5c:fe:01:85:e7:76:04:0e:86:23:2d:7b:1c:80: 3c:d8:d6:16:28:9a:fd:cc:c1:ce:a4:27:69:3c:dc:e5:47:e1: 08:94:9f:4e:ad:84:46:ee:c2:40:e4:39:67:65:54:16:9b:9e: 74:1d:27:df:d5:a0:4e:d2:68:8c:2f:aa:be:de:c7:db:95:b6: 40:6d:83:ad:b5:5d:86:a4:74:71:c5:f7:6b:35:7c:15:f7:40: e7:7d:68:9d:e6:66:b4:d6:ab:31:4f:72:6b:e3:15:28:42:20: 33:fe:92:19:d3:ae:26:aa:7a:d4:00:f6:1d:3c:92:b9:4d:22: be:33:16:fb:62:b5:37:53:fa:ed:89:33:7e:41:30:2a:39:0d: 2e:4a:73:4b:bb:64:0d:e2:ad:5c:6f:70:be:0f:e2:ab:8f:bc: 2e:39:15:b1:62:fa:52:a7:ae:0c:d7:fe:7a:b9:69:26:4e:1c: c2:2d:dc:f9:99:2b:b7:c7:5c:b7:83:38:1c:6e:f5:33:23:85: c4:f5:8e:10:fe:36:61:73:2d:4c:49:1a:14:7f:35:fb:b1:a5: ca:d7:12:80:d9:c0:4d:6f:f6:49:88:8f:1f:69:00:14:66:25: b4:27:89:80:bb:ce:aa:0e:df:02:00:eb:af:a8:69:a0:5c:a0: 2b:35:fd:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVFQzQxMTAvBgNVBAUTKDM4RTFENkUwQUQwMjVCQjAyRTY1NDgxODNFRjJBODIw MDA1MEEzNjUwHhcNMjUxMjA2MTQyODU5WhcNMjUxMjEzMTQyODU5WjAYMRYwFAYD VQQDEw02OTM0M2RhYi1mZjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuo2usjp+NX6ZkyKYi4xpGOZGpmxLtskslnp0BcUS28uMhLKVN+3PpyKiEnXl GRwcXDVgivYM+QoG0LX2D4vMKlNH/D6HyWihUGnrKkUmXsA2rH0lDXDijLNkt3XI e+wYIpCjeZyXngvFOIYxZPWQnWFa6MkwJrAdjZ325vkb8vvDrn+BSZLtDW5OCaDM vDk3I5z1J/2f0NW905YSUVPT7aB7/7NVvpGpYv8J28nE7jTVlYCHA7YpdkjR41/r XwyYSw33Tuk2qQEkjHAzLU6BrYJAT0Hk4Y2wjSAn0rIeTVzj289RjYkI8GnWhlL1 yAMTlsKeqP73vFzHaDfDWjS1bQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH1yu+j1 l93zKVy8RjpPwuDpT4MoMB8GA1UdIwQYMBaAFDjh1uCtAluwLmVIGD7yqCAAUKNl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUVDNC84QTlBODM2ODFE ODkxMUUyOUNFNUVDRTIwOEIwMkNEMi9PT0hXNEswQ1c3QXVaVWdZUHZLb0lBQlFv MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09PSFc0SzBDVzdBdVpVZ1lQdktvSUFCUW8yVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUVDNC84QTlBODM2ODFEODkxMUUyOUNFNUVDRTIwOEIwMkNEMi9PT0hXNEswQ1c3 QXVaVWdZUHZLb0lBQlFvMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiuTrWXP4Bhed2BA6GIy17HIA82NYWKJr9zMHOpCdpPNzlR+EIlJ9O rYRG7sJA5DlnZVQWm550HSff1aBO0miML6q+3sfblbZAbYOttV2GpHRxxfdrNXwV 90DnfWid5ma01qsxT3Jr4xUoQiAz/pIZ064mqnrUAPYdPJK5TSK+Mxb7YrU3U/rt iTN+QTAqOQ0uSnNLu2QN4q1cb3C+D+Krj7wuORWxYvpSp64M1/56uWkmThzCLdz5 mSu3x1y3gzgcbvUzI4XE9Y4Q/jZhcy1MSRoUfzX7saXK1xKA2cBNb/ZJiI8faQAU ZiW0J4mAu86qDt8CAOuvqGmgXKArNf0X -----END CERTIFICATE-----Generated at Sat Dec 6 19:41:57 2025 by rpki-client