This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft File: OHvc-OlHoaBOL0OH-99wZUpE0b0.mft (raw, json) Hash identifier: Ezc8eIzdeYZl7lJNlu4Pk4C44WSrsetxP+3SvkOAVTU= Subject key identifier: 39:E2:B4:C3:5A:AE:EB:4E:D5:A2:5B:E8:D9:83:B0:6B:73:D7:79:D2 Authority key identifier: 38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD Certificate issuer: /CN=A913ACF4/serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Certificate serial: 09B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft Manifest number: 09AB Signing time: Sat 06 Dec 2025 19:12:57 +0000 Manifest this update: Sat 06 Dec 2025 19:12:56 +0000 Manifest next update: Sat 13 Dec 2025 19:12:56 +0000 Files and hashes: 1: OHvc-OlHoaBOL0OH-99wZUpE0b0.crl (hash: DCO2Dhq6IkUTn78rVkXsNTYJSqG/ffgoozIWK21GE8I=) 2: 25E6E72899FE11EAB3E30513C4F9AE02.roa (hash: Z6vRCcxL1bmdrItPmj7qCyzvetl7oMIALv4P0w4CxB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:12:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2482 (0x9b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913ACF4, serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Validity Not Before: Dec 6 19:12:56 2025 GMT Not After : Dec 13 19:12:56 2025 GMT Subject: CN=69348039-6222 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2d:d3:e9:80:b4:89:eb:1e:17:36:41:f8:95: 36:3d:c1:1d:8c:a3:9e:ff:60:26:75:c0:14:6c:92: 8a:08:f9:08:6a:06:37:18:cf:3a:0a:f7:6d:f0:a6: 6c:c2:2f:c2:8b:5e:e6:e8:2c:eb:da:3e:de:67:9a: 6e:ed:bb:85:1b:fd:90:3a:df:91:e1:a3:9a:9a:17: be:a0:ef:5e:70:af:d8:b1:d5:29:10:de:63:08:70: 91:e8:3b:24:ce:88:ba:b0:0e:a7:96:8a:84:04:57: 46:e2:61:35:54:16:56:ec:3c:de:01:8c:57:de:c3: 4c:e1:1c:32:9c:66:cf:57:2f:5a:32:e2:5a:ef:99: 6f:28:50:4a:82:93:96:1a:a9:4d:b5:0e:f1:36:2b: 99:2e:02:ab:11:42:77:63:39:47:53:5d:d8:cc:a5: a8:1d:d1:d4:83:36:34:d7:c9:0a:1e:05:12:71:41: 6d:be:01:9c:17:55:6d:b3:14:0d:a4:59:07:2f:a3: 70:6a:b4:71:f1:2c:2b:51:29:59:3f:30:02:5e:84: de:18:57:4b:3a:f2:fc:36:1a:3b:bd:04:93:4b:59: 3d:65:f5:c1:77:92:f1:a3:f3:63:5e:db:3b:06:eb: a3:96:8e:31:b1:97:d5:fb:77:c7:a1:a8:f0:d4:dc: 0e:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:E2:B4:C3:5A:AE:EB:4E:D5:A2:5B:E8:D9:83:B0:6B:73:D7:79:D2 X509v3 Authority Key Identifier: keyid:38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:67:8c:fe:5b:c0:be:da:02:74:23:88:0b:3f:99:49:6d:61: a6:cd:85:fa:f3:d5:ef:fc:f5:0f:1e:8f:43:b9:4f:96:a3:1e: 26:ac:1a:d2:57:26:a1:73:64:71:65:4b:93:77:0c:9a:26:db: 74:fd:6c:19:97:02:d8:06:c4:15:a1:1a:24:03:bb:0d:dd:1e: 4d:7f:b7:45:17:73:a1:ed:5e:93:c5:10:a7:5f:3a:70:42:9e: 2f:10:1b:a4:23:19:9d:f9:d9:df:b6:56:74:49:df:cc:46:e8: f9:be:08:a8:bc:d7:7e:48:e5:49:4b:ce:bc:59:51:7e:4e:0d: 2b:00:19:18:fa:7a:58:be:a7:0a:5b:ba:79:ce:c6:52:2c:96: 32:64:92:5a:c4:65:60:ed:f8:f7:a0:4c:e2:a3:54:19:8d:3a: dd:d3:28:67:08:df:90:2a:9e:ae:c7:ea:f7:16:d7:2f:02:c1: 47:7b:1d:3d:7b:ce:ab:7c:cb:cd:92:1e:f0:78:ed:8b:d9:13: c1:2a:58:ff:9b:75:8c:60:77:10:5a:74:0d:72:e5:0f:74:53: 93:24:b1:87:bd:c5:59:49:fd:55:c8:8a:08:21:6b:d7:d8:7d: 95:ec:89:47:1d:15:7f:d0:fd:3b:83:61:45:70:d6:b2:05:a5: ec:fc:10:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FDRjQxMTAvBgNVBAUTKDM4N0JEQ0Y4RTk0N0ExQTA0RTJGNDM4N0ZCREY3MDY1 NEE0NEQxQkQwHhcNMjUxMjA2MTkxMjU2WhcNMjUxMjEzMTkxMjU2WjAYMRYwFAYD VQQDEw02OTM0ODAzOS02MjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwC3T6YC0ieseFzZB+JU2PcEdjKOe/2AmdcAUbJKKCPkIagY3GM86Cvdt8KZs wi/Ci17m6Czr2j7eZ5pu7buFG/2QOt+R4aOamhe+oO9ecK/YsdUpEN5jCHCR6Dsk zoi6sA6nloqEBFdG4mE1VBZW7DzeAYxX3sNM4RwynGbPVy9aMuJa75lvKFBKgpOW GqlNtQ7xNiuZLgKrEUJ3YzlHU13YzKWoHdHUgzY018kKHgUScUFtvgGcF1VtsxQN pFkHL6NwarRx8SwrUSlZPzACXoTeGFdLOvL8Nho7vQSTS1k9ZfXBd5Lxo/NjXts7 Buujlo4xsZfV+3fHoajw1NwO9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDnitMNa rutO1aJb6NmDsGtz13nSMB8GA1UdIwQYMBaAFDh73PjpR6GgTi9Dh/vfcGVKRNG9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUNGNC83MEUzMDM2Qzk5 RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9hQk9MME9ILTk5d1pVcEUw YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09IdmMtT2xIb2FCT0wwT0gtOTl3WlVwRTBiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUNGNC83MEUzMDM2Qzk5RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9h Qk9MME9ILTk5d1pVcEUwYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbZ4z+W8C+2gJ0I4gLP5lJbWGmzYX689Xv/PUPHo9DuU+Wox4mrBrS Vyahc2RxZUuTdwyaJtt0/WwZlwLYBsQVoRokA7sN3R5Nf7dFF3Oh7V6TxRCnXzpw Qp4vEBukIxmd+dnftlZ0Sd/MRuj5vgiovNd+SOVJS868WVF+Tg0rABkY+npYvqcK W7p5zsZSLJYyZJJaxGVg7fj3oEzio1QZjTrd0yhnCN+QKp6ux+r3FtcvAsFHex09 e86rfMvNkh7weO2L2RPBKlj/m3WMYHcQWnQNcuUPdFOTJLGHvcVZSf1VyIoIIWvX 2H2V7IlHHRV/0P07g2FFcNayBaXs/BC5 -----END CERTIFICATE-----Generated at Sun Dec 7 03:43:58 2025 by rpki-client