This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft File: 1OMXbLn0iT50xOgF-n-12QpKewo.mft (raw, json) Hash identifier: GfOIko99Rtz5B+j85iUJHgt29bh9vnRPC8niTluVLq0= Subject key identifier: AA:2C:FD:DA:5E:6B:AA:3A:0B:F1:A3:26:10:2A:37:D8:61:43:09:2B Authority key identifier: D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A Certificate issuer: /CN=A9154AFB/serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Certificate serial: 17A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft Manifest number: 178D Signing time: Thu 04 Dec 2025 16:16:33 +0000 Manifest this update: Thu 04 Dec 2025 16:16:32 +0000 Manifest next update: Thu 11 Dec 2025 16:16:32 +0000 Files and hashes: 1: 1OMXbLn0iT50xOgF-n-12QpKewo.crl (hash: CEItg0ItKNhzdNwWHePJ6b6khaOFVMmWHTgKyKYhSo4=) 2: 81368CD6594B11EE924DCC64C4F9AE02.roa (hash: XhkwHyloR+2rDxWbay2n/StJn5+0QtLglAfKwVMv/5o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 16:16:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6050 (0x17a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154AFB, serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Validity Not Before: Dec 4 16:16:32 2025 GMT Not After : Dec 11 16:16:32 2025 GMT Subject: CN=6931b3e0-8d5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:20:05:54:60:dd:c3:c6:4e:4a:b3:02:db:c4: 52:8c:a0:49:04:db:fc:4f:07:85:2f:ca:0f:99:11: 19:af:91:28:66:9e:ee:2c:73:92:90:dc:ac:27:3d: ef:94:49:d5:78:93:6b:12:c4:48:3f:13:c2:19:fb: 3a:bd:30:04:03:60:d9:c3:a7:41:99:06:06:de:82: 4c:e2:be:99:37:7b:43:c8:da:a2:18:98:b2:14:5c: f6:3b:5b:73:6e:b7:60:46:3f:ea:70:8f:5b:ec:6c: 97:6f:e4:32:a5:dc:a4:2d:6b:9f:b8:a0:d0:98:59: e0:ab:f7:43:fd:d4:62:72:ba:82:fe:71:65:14:b8: 0f:ca:d0:6a:5f:ff:14:10:62:bc:f9:f0:a7:e3:b4: e9:29:83:65:e0:c5:83:b8:25:7e:a0:55:41:46:33: 94:3f:7f:60:7d:4e:69:84:c4:28:d9:99:d9:dc:92: eb:dc:50:7c:6b:a4:d5:c4:f1:cb:aa:c3:ec:c4:6a: a5:c0:5f:6b:28:3d:f6:db:e3:ed:6d:a7:d7:08:1b: 7b:2c:fb:da:be:0c:02:4f:1d:63:db:e6:90:7d:41: 80:66:20:58:b3:18:6d:76:00:64:68:12:9c:d0:58: 37:0b:43:1f:6f:af:9f:fd:31:95:8f:b1:0b:13:18: ce:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:2C:FD:DA:5E:6B:AA:3A:0B:F1:A3:26:10:2A:37:D8:61:43:09:2B X509v3 Authority Key Identifier: keyid:D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:30:37:ec:81:b3:e3:05:05:90:32:7c:55:a9:9c:b1:aa:97: 6a:ec:06:f2:da:83:91:f6:b7:ca:bc:d8:12:4b:15:5a:b9:db: 49:3d:1f:10:55:ba:15:62:bb:52:3a:e9:2a:e8:7f:fe:39:6d: e3:e7:65:54:9d:bd:14:2f:cb:1a:6d:6e:f2:a0:4b:e0:33:c3: 94:aa:a2:8e:65:0b:22:9f:83:64:85:a7:8b:f2:f6:0f:60:fd: 0b:de:42:5e:9c:ed:99:c9:b5:3a:8d:bf:f0:53:ff:3f:41:a0: 7e:77:9b:10:40:d8:75:d4:e5:2e:eb:4c:e0:22:b9:23:44:93: 3c:99:d7:7e:88:95:1c:7c:7c:bf:63:de:2b:2d:4a:db:dd:45: 38:e4:d8:ef:7e:23:04:0c:3b:16:10:f5:05:e9:97:4c:d9:93: 67:08:9a:39:18:cf:d9:9a:32:82:ad:0a:d8:b6:8d:d9:20:18: b8:bd:6b:10:af:e5:4b:57:98:de:15:b2:77:c6:fc:53:61:c0: 85:fe:b3:cd:7a:eb:a2:24:3b:c3:ef:c9:49:e1:f5:47:96:a0: 78:37:03:6e:e7:02:38:f0:ca:4a:b3:fb:46:29:cc:cc:fc:01: ec:3a:eb:ac:ff:25:e1:4a:88:71:ae:11:54:98:7a:cd:f9:2c: 3c:9a:54:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRBRkIxMTAvBgNVBAUTKEQ0RTMxNzZDQjlGNDg5M0U3NEM0RTgwNUZBN0ZCNUQ5 MEE0QTdCMEEwHhcNMjUxMjA0MTYxNjMyWhcNMjUxMjExMTYxNjMyWjAYMRYwFAYD VQQDEw02OTMxYjNlMC04ZDVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwCAFVGDdw8ZOSrMC28RSjKBJBNv8TweFL8oPmREZr5EoZp7uLHOSkNysJz3v lEnVeJNrEsRIPxPCGfs6vTAEA2DZw6dBmQYG3oJM4r6ZN3tDyNqiGJiyFFz2O1tz brdgRj/qcI9b7GyXb+QypdykLWufuKDQmFngq/dD/dRicrqC/nFlFLgPytBqX/8U EGK8+fCn47TpKYNl4MWDuCV+oFVBRjOUP39gfU5phMQo2ZnZ3JLr3FB8a6TVxPHL qsPsxGqlwF9rKD322+PtbafXCBt7LPvavgwCTx1j2+aQfUGAZiBYsxhtdgBkaBKc 0Fg3C0Mfb6+f/TGVj7ELExjOTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKos/dpe a6o6C/GjJhAqN9hhQwkrMB8GA1UdIwQYMBaAFNTjF2y59Ik+dMToBfp/tdkKSnsK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEFGQi83OEEwNEU0Q0Uz MkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlUNTB4T2dGLW4tMTJRcEtl d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPTVhiTG4waVQ1MHhPZ0Ytbi0xMlFwS2V3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEFGQi83OEEwNEU0Q0UzMkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlU NTB4T2dGLW4tMTJRcEtld28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRMDfsgbPjBQWQMnxVqZyxqpdq7Aby2oOR9rfKvNgSSxVaudtJPR8Q VboVYrtSOukq6H/+OW3j52VUnb0UL8sabW7yoEvgM8OUqqKOZQsin4NkhaeL8vYP YP0L3kJenO2ZybU6jb/wU/8/QaB+d5sQQNh11OUu60zgIrkjRJM8mdd+iJUcfHy/ Y94rLUrb3UU45NjvfiMEDDsWEPUF6ZdM2ZNnCJo5GM/ZmjKCrQrYto3ZIBi4vWsQ r+VLV5jeFbJ3xvxTYcCF/rPNeuuiJDvD78lJ4fVHlqB4NwNu5wI48MpKs/tGKczM /AHsOuus/yXhSohxrhFUmHrN+Sw8mlRG -----END CERTIFICATE-----Generated at Sat Dec 6 11:23:05 2025 by rpki-client