This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft File: ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft (raw, json) Hash identifier: KsVkE0DoTB1+7hi1SxPWwWK2aEUodiHiKWscVEOSSrg= Subject key identifier: DD:F5:61:70:84:64:0B:A4:7D:FA:B0:AD:6B:40:D0:F7:9C:74:55:1D Authority key identifier: 39:11:E1:EF:B0:2B:03:6F:83:5B:F6:58:E1:36:60:1A:67:42:16:93 Certificate issuer: /CN=A914CCC5/serialNumber=3911E1EFB02B036F835BF658E136601A67421693 Certificate serial: 07C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORHh77ArA2-DW_ZY4TZgGmdCFpM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft Manifest number: 07B8 Signing time: Thu 04 Dec 2025 20:21:11 +0000 Manifest this update: Thu 04 Dec 2025 20:21:11 +0000 Manifest next update: Thu 11 Dec 2025 20:21:11 +0000 Files and hashes: 1: ORHh77ArA2-DW_ZY4TZgGmdCFpM.crl (hash: p2zDmZL6wql3Ap5+EZjJN+Dc4zIdBo1Csyo8bLhcSbg=) 2: 94CB63BC241E11EB985FC048C4F9AE02.roa (hash: QadRAteDkMr+/Vf11v/PSiWZ5qLyjgZNySKVRInle2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.crl rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORHh77ArA2-DW_ZY4TZgGmdCFpM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 20:21:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1985 (0x7c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CCC5, serialNumber=3911E1EFB02B036F835BF658E136601A67421693 Validity Not Before: Dec 4 20:21:11 2025 GMT Not After : Dec 11 20:21:11 2025 GMT Subject: CN=6931ed37-9eae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:12:8a:6b:f6:90:0a:81:c4:3c:f1:40:92:4d: d0:fa:1f:38:27:51:e0:be:62:b7:00:ad:8b:71:37: 3d:19:40:29:9f:ef:92:e0:90:f2:31:57:e5:1a:b2: 2e:4d:1f:5e:1f:18:1a:25:01:14:c9:a6:22:ec:53: e4:32:6e:46:82:23:a6:9a:0b:1f:be:47:b9:b8:aa: 41:27:d2:74:cf:68:11:2e:67:8e:08:a3:9e:df:12: 40:6c:56:fb:c4:34:39:60:0c:01:ba:99:0d:fa:d8: 9b:e1:51:c5:bf:89:f5:c8:33:a4:7f:39:75:5b:f5: 8d:a2:18:d2:0b:0c:6a:ff:20:62:c1:19:ce:72:ba: 52:d5:ee:11:4d:8b:43:22:6a:90:74:4c:d6:3b:6a: f3:1b:9f:19:02:0b:a8:20:c6:64:7c:ab:bd:9e:3c: 63:c3:d5:7f:52:59:6f:56:e8:3f:3d:9b:70:a4:4c: a5:35:ce:c5:4b:17:2b:f9:0f:0a:04:17:cd:5b:68: cd:e8:2f:34:35:ab:45:62:14:c8:cf:99:e5:90:1b: b7:d3:50:0d:54:2b:6a:19:70:ba:a4:a2:fa:10:b8: 4f:27:57:35:90:ec:c1:71:cd:7e:5b:1e:ff:a7:ee: e5:3e:64:20:e8:0c:3f:28:73:8d:17:a2:f6:d6:76: 67:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:F5:61:70:84:64:0B:A4:7D:FA:B0:AD:6B:40:D0:F7:9C:74:55:1D X509v3 Authority Key Identifier: keyid:39:11:E1:EF:B0:2B:03:6F:83:5B:F6:58:E1:36:60:1A:67:42:16:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORHh77ArA2-DW_ZY4TZgGmdCFpM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:f7:6a:8b:c7:85:03:2b:90:a0:bf:a5:e1:e8:39:64:fc:0d: 02:6b:60:fb:c8:33:94:8d:51:09:7e:10:63:c0:42:bb:39:7a: 22:1c:77:cf:80:54:33:28:4b:1b:4c:57:8d:3d:f0:c0:f4:a9: 05:4d:f6:5f:80:c4:3b:59:bd:f9:94:68:b7:0c:9c:54:33:41: 3b:ac:17:ea:02:ac:4f:bf:1b:1f:78:fe:bc:1e:62:51:e9:07: bd:f4:bf:5d:34:4c:39:87:2b:68:94:cf:c9:03:9d:9a:27:46: a6:cf:84:1f:56:4d:a5:78:87:70:60:7a:62:35:aa:89:21:52: 84:8a:46:79:ad:1b:bc:2a:20:eb:77:8f:41:61:83:a3:32:f5: bd:c4:7e:eb:23:3e:53:e3:0b:9d:ee:f8:dd:b9:e4:ae:09:31: db:f7:19:ee:85:dc:2d:65:05:33:c0:51:2e:4b:4e:50:5b:69: b2:61:cd:88:23:f7:00:d4:90:23:92:ca:b9:8a:5d:ab:28:43: 3e:03:7c:27:13:71:c4:95:e1:37:ab:31:02:5e:96:0f:bd:f8: e8:b4:59:6f:cb:ae:39:15:73:e3:dc:57:20:f7:03:f2:05:6c: 15:4d:6e:03:58:96:61:cb:72:b9:50:b9:48:e5:c5:77:b6:ff: 94:05:b9:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENDQzUxMTAvBgNVBAUTKDM5MTFFMUVGQjAyQjAzNkY4MzVCRjY1OEUxMzY2MDFB Njc0MjE2OTMwHhcNMjUxMjA0MjAyMTExWhcNMjUxMjExMjAyMTExWjAYMRYwFAYD VQQDEw02OTMxZWQzNy05ZWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6hKKa/aQCoHEPPFAkk3Q+h84J1HgvmK3AK2LcTc9GUApn++S4JDyMVflGrIu TR9eHxgaJQEUyaYi7FPkMm5GgiOmmgsfvke5uKpBJ9J0z2gRLmeOCKOe3xJAbFb7 xDQ5YAwBupkN+tib4VHFv4n1yDOkfzl1W/WNohjSCwxq/yBiwRnOcrpS1e4RTYtD ImqQdEzWO2rzG58ZAguoIMZkfKu9njxjw9V/UllvVug/PZtwpEylNc7FSxcr+Q8K BBfNW2jN6C80NatFYhTIz5nlkBu301ANVCtqGXC6pKL6ELhPJ1c1kOzBcc1+Wx7/ p+7lPmQg6Aw/KHONF6L21nZnzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN31YXCE ZAukffqwrWtA0PecdFUdMB8GA1UdIwQYMBaAFDkR4e+wKwNvg1v2WOE2YBpnQhaT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0NDNS80M0I1RUZEMDI0 MUMxMUVCQUIzMkQ1NDNDNEY5QUUwMi9PUkhoNzdBckEyLURXX1pZNFRaZ0dtZENG cE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09SSGg3N0FyQTItRFdfWlk0VFpnR21kQ0ZwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0NDNS80M0I1RUZEMDI0MUMxMUVCQUIzMkQ1NDNDNEY5QUUwMi9PUkhoNzdBckEy LURXX1pZNFRaZ0dtZENGcE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBd92qLx4UDK5Cgv6Xh6Dlk/A0Ca2D7yDOUjVEJfhBjwEK7OXoiHHfP gFQzKEsbTFeNPfDA9KkFTfZfgMQ7Wb35lGi3DJxUM0E7rBfqAqxPvxsfeP68HmJR 6Qe99L9dNEw5hytolM/JA52aJ0amz4QfVk2leIdwYHpiNaqJIVKEikZ5rRu8KiDr d49BYYOjMvW9xH7rIz5T4wud7vjdueSuCTHb9xnuhdwtZQUzwFEuS05QW2myYc2I I/cA1JAjksq5il2rKEM+A3wnE3HEleE3qzECXpYPvfjotFlvy645FXPj3Fcg9wPy BWwVTW4DWJZhy3K5ULlI5cV3tv+UBblJ -----END CERTIFICATE-----Generated at Sat Dec 6 20:01:34 2025 by rpki-client