This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft File: OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft (raw, json) Hash identifier: LX5U5GEY7OTTPNC61/Ez3Ws32gfG6JhM4TiTMNDxYbw= Subject key identifier: 65:9E:0E:E7:80:71:28:2F:66:4C:03:B2:9E:CF:8E:01:48:A5:29:9A Authority key identifier: 3A:43:78:0F:6C:43:2D:EE:47:4A:8A:95:68:59:02:82:DB:EA:5D:B3 Certificate issuer: /CN=A915802B/serialNumber=3A43780F6C432DEE474A8A9568590282DBEA5DB3 Certificate serial: 0AE0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft Manifest number: 0AD7 Signing time: Thu 04 Dec 2025 18:45:48 +0000 Manifest this update: Thu 04 Dec 2025 18:45:48 +0000 Manifest next update: Thu 11 Dec 2025 18:45:48 +0000 Files and hashes: 1: OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl (hash: p5F0bUieliUFvMXnM6+kUtfOAw8LeP3y4KmRbUz/o4s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:45:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2784 (0xae0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915802B, serialNumber=3A43780F6C432DEE474A8A9568590282DBEA5DB3 Validity Not Before: Dec 4 18:45:48 2025 GMT Not After : Dec 11 18:45:48 2025 GMT Subject: CN=6931d6dc-e7a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:10:12:f8:25:d1:8e:ce:12:40:f7:21:65:df: 91:72:22:56:d1:ac:d9:b3:71:cf:4f:06:79:37:b1: a9:a7:18:34:bc:7b:b9:3b:45:6d:76:f6:40:35:2c: 09:60:18:b0:74:1f:a1:2b:b6:d0:d4:b4:fc:aa:b1: 98:4c:65:29:de:39:b8:0f:37:50:ab:db:18:fa:1f: 77:36:b9:e7:24:b1:81:e8:f6:ee:f7:5d:3a:fd:e1: 4a:b0:63:0f:a4:17:76:6b:1e:09:e3:d4:bd:61:7a: 4d:ed:b4:61:fd:1d:fe:f2:65:ed:13:62:86:82:15: ed:18:4c:11:3c:ed:09:ea:62:81:fd:f3:dc:75:50: 2d:44:b5:c5:d3:91:2f:ee:27:73:12:27:31:b4:fb: 60:72:66:5f:08:f3:b0:8b:67:cf:50:d7:a4:f9:e7: d5:1d:d5:c8:66:3b:d1:4e:80:9c:b6:84:28:df:1a: aa:ec:08:cc:49:87:31:75:76:1e:2f:60:14:ee:42: 70:d8:05:b9:cf:ca:f7:1f:e8:60:63:70:2c:46:01: f8:1d:53:51:2d:9a:f7:d8:44:c4:de:64:ba:c1:a8: 96:6e:26:90:40:d0:ce:09:03:22:cf:59:dc:6d:a2: 27:5d:b6:fb:6e:af:e3:66:4f:31:d0:67:23:1c:83: d0:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:9E:0E:E7:80:71:28:2F:66:4C:03:B2:9E:CF:8E:01:48:A5:29:9A X509v3 Authority Key Identifier: keyid:3A:43:78:0F:6C:43:2D:EE:47:4A:8A:95:68:59:02:82:DB:EA:5D:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:9b:fb:de:b6:1b:74:f3:f9:b7:44:15:bd:db:64:2a:ff:2e: 78:b2:0f:fa:d1:5d:f6:4c:25:87:d5:5e:93:9c:a4:66:44:d5: 3d:e9:aa:a8:3d:40:46:d4:4e:70:8a:1c:01:91:dd:60:70:d5: 21:55:2e:26:3e:2e:52:ca:38:44:f0:ea:45:c5:aa:00:98:4b: 59:ce:4c:ba:36:5f:78:89:14:2c:45:da:cf:3b:7e:56:73:a8: d3:19:73:54:35:06:31:61:bb:00:56:f8:30:77:92:8a:f4:e3: dd:4f:80:57:a0:de:4b:bd:d1:d6:af:09:60:39:ac:fb:63:1c: 94:fd:d5:ba:4d:b1:e5:83:92:77:14:5e:40:da:79:1c:3b:7d: 12:a4:c8:72:89:93:8a:cb:83:b0:63:d9:f8:b9:c6:54:db:75: 94:d9:8f:0c:5a:14:ee:e9:47:46:c7:a1:25:04:51:68:32:9d: b1:0e:18:7f:1c:e4:26:ff:07:d2:74:35:eb:28:e3:35:d8:b5: ef:12:cd:35:d5:30:b5:b6:ed:a3:8b:75:3b:f6:9d:15:fa:03: 4e:c2:29:5c:03:f4:9c:b3:11:dc:c5:31:c2:ba:10:66:7c:fa: dd:08:67:5a:5a:19:b2:b6:d0:16:7f:ad:06:58:d2:15:36:7f: 15:17:b3:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwMkIxMTAvBgNVBAUTKDNBNDM3ODBGNkM0MzJERUU0NzRBOEE5NTY4NTkwMjgy REJFQTVEQjMwHhcNMjUxMjA0MTg0NTQ4WhcNMjUxMjExMTg0NTQ4WjAYMRYwFAYD VQQDEw02OTMxZDZkYy1lN2ExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4hAS+CXRjs4SQPchZd+RciJW0azZs3HPTwZ5N7Gppxg0vHu5O0VtdvZANSwJ YBiwdB+hK7bQ1LT8qrGYTGUp3jm4DzdQq9sY+h93NrnnJLGB6Pbu9106/eFKsGMP pBd2ax4J49S9YXpN7bRh/R3+8mXtE2KGghXtGEwRPO0J6mKB/fPcdVAtRLXF05Ev 7idzEicxtPtgcmZfCPOwi2fPUNek+efVHdXIZjvRToCctoQo3xqq7AjMSYcxdXYe L2AU7kJw2AW5z8r3H+hgY3AsRgH4HVNRLZr32ETE3mS6waiWbiaQQNDOCQMiz1nc baInXbb7bq/jZk8x0GcjHIPQfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGWeDueA cSgvZkwDsp7PjgFIpSmaMB8GA1UdIwQYMBaAFDpDeA9sQy3uR0qKlWhZAoLb6l2z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODAyQi8zMzBDQzNDNDYw NTAxMUVBOTU3NzY3NTRDNEY5QUUwMi9Pa040RDJ4RExlNUhTb3FWYUZrQ2d0dnFY Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rTjREMnhETGU1SFNvcVZhRmtDZ3R2cVhiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODAyQi8zMzBDQzNDNDYwNTAxMUVBOTU3NzY3NTRDNEY5QUUwMi9Pa040RDJ4RExl NUhTb3FWYUZrQ2d0dnFYYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgm/vetht08/m3RBW922Qq/y54sg/60V32TCWH1V6TnKRmRNU96aqo PUBG1E5wihwBkd1gcNUhVS4mPi5SyjhE8OpFxaoAmEtZzky6Nl94iRQsRdrPO35W c6jTGXNUNQYxYbsAVvgwd5KK9OPdT4BXoN5LvdHWrwlgOaz7YxyU/dW6TbHlg5J3 FF5A2nkcO30SpMhyiZOKy4OwY9n4ucZU23WU2Y8MWhTu6UdGx6ElBFFoMp2xDhh/ HOQm/wfSdDXrKOM12LXvEs011TC1tu2ji3U79p0V+gNOwilcA/ScsxHcxTHCuhBm fPrdCGdaWhmyttAWf60GWNIVNn8VF7OX -----END CERTIFICATE-----Generated at Sat Dec 6 19:13:03 2025 by rpki-client