This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft File: OqWspVx7NeP5Iru42qsdfYhw43M.mft (raw, json) Hash identifier: TRlfS0Lwbb3slHFrgIi3jsV+lhao4jQljXOWr10Ygnw= Subject key identifier: 1B:7D:1A:5D:07:BA:6A:4C:3C:B9:5D:1B:F0:CD:D9:7B:89:6B:35:50 Authority key identifier: 3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 Certificate issuer: /CN=A915A533/serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Certificate serial: 01E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft Manifest number: 01E0 Signing time: Fri 05 Dec 2025 01:00:36 +0000 Manifest this update: Fri 05 Dec 2025 01:00:35 +0000 Manifest next update: Fri 12 Dec 2025 01:00:35 +0000 Files and hashes: 1: OqWspVx7NeP5Iru42qsdfYhw43M.crl (hash: EfrBAgCLOnlOcre1bMpaEWJkOK3o/Bu23FZ0lbni5gM=) 2: 052E6FBAF9F511EDB2CAA636C4F9AE02.roa (hash: ex5ur3WLVmySdJlK4OpXRFFofMyw8LoQvz2jf4rLqkc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 485 (0x1e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A533, serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Validity Not Before: Dec 5 01:00:35 2025 GMT Not After : Dec 12 01:00:35 2025 GMT Subject: CN=69322eb4-2a34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c5:fa:b9:2e:6a:98:04:d5:89:2f:6b:76:45: df:63:29:36:9b:0d:a9:24:db:12:4f:84:bb:7c:93: 42:62:22:66:b5:da:4e:e7:6d:f0:ae:c1:d1:57:c9: 41:9c:54:0f:e1:22:33:a5:9b:6c:ef:b3:15:8f:f4: 3d:a0:5e:00:cf:af:f9:50:cf:2a:19:d9:82:18:a0: ef:63:e3:78:ca:96:60:75:24:e4:23:84:70:fe:1c: b3:50:c2:7f:00:d2:17:57:f7:e6:01:89:89:2f:2d: c3:dc:f1:80:2f:e0:76:06:85:b9:06:be:d7:0d:ee: 77:ae:bf:9a:0f:81:69:c7:4c:67:d4:97:ed:7f:87: 96:39:a4:3a:82:f3:8a:1a:4e:ed:12:6b:dc:8c:db: 6c:cc:45:a0:e5:28:bd:e6:c4:4b:b3:ca:b8:2c:c0: dd:e6:cb:5e:81:d6:c2:6c:53:b8:36:c1:cc:20:19: 49:9d:d9:25:95:f6:35:1a:3a:80:39:80:00:f8:61: 5c:69:ba:6d:ee:3c:cb:cf:2c:81:ab:36:c2:5b:8a: c1:3a:9e:53:19:ad:d6:24:c4:ab:dc:dc:80:c3:92: c0:b2:08:53:32:ed:3b:2d:f5:91:13:f2:b0:96:08: 7a:20:8a:a5:48:80:9f:c7:f6:52:f1:62:bc:4a:02: 29:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:7D:1A:5D:07:BA:6A:4C:3C:B9:5D:1B:F0:CD:D9:7B:89:6B:35:50 X509v3 Authority Key Identifier: keyid:3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:66:92:ee:d0:35:de:da:48:d9:bf:cf:6d:ec:2b:55:4c:a3: 9d:e6:9b:ca:c9:d4:cc:49:e9:f3:a6:4c:a6:46:dd:4a:65:c1: 13:ff:c2:17:9b:0f:b9:84:0e:1a:21:60:27:03:a8:11:a5:20: 63:48:ab:6c:08:40:7f:13:b5:14:30:ef:0f:2b:02:8a:e2:f6: 32:65:b2:d2:ac:a8:70:08:0e:14:f4:c9:35:86:3a:bd:f1:47: 88:5f:40:5d:5c:12:77:75:3e:00:9e:21:fd:90:28:fc:d4:a8: ef:40:04:f5:24:fd:b0:3c:e5:d9:26:bc:b7:3c:d4:a3:33:4b: 31:e9:cc:d9:be:a7:1a:4e:10:1c:c5:44:47:37:c5:15:63:7a: f4:29:3c:bf:0a:80:4c:e5:f5:c9:ad:db:c6:79:e0:50:5d:f9: cc:11:31:fa:69:6f:8f:95:5f:f4:b5:c5:ce:17:5f:bf:75:d3: 38:8f:b3:eb:0c:0c:46:3f:73:4e:b7:f7:a8:59:f8:30:91:b6: 75:78:1b:d9:dc:1a:5b:b3:5e:3a:39:35:3d:bd:b0:5a:8c:e3: 82:05:6c:70:ea:8b:2b:27:8c:c2:c0:6b:1f:d4:84:d0:ea:ca: 7e:d5:d0:cf:3f:1b:dd:ac:f0:97:dd:de:97:69:8e:d5:0f:03: 44:ee:91:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE1MzMxMTAvBgNVBAUTKDNBQTVBQ0E1NUM3QjM1RTNGOTIyQkJCOERBQUIxRDdE ODg3MEUzNzMwHhcNMjUxMjA1MDEwMDM1WhcNMjUxMjEyMDEwMDM1WjAYMRYwFAYD VQQDEw02OTMyMmViNC0yYTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApMX6uS5qmATViS9rdkXfYyk2mw2pJNsST4S7fJNCYiJmtdpO523wrsHRV8lB nFQP4SIzpZts77MVj/Q9oF4Az6/5UM8qGdmCGKDvY+N4ypZgdSTkI4Rw/hyzUMJ/ ANIXV/fmAYmJLy3D3PGAL+B2BoW5Br7XDe53rr+aD4Fpx0xn1Jftf4eWOaQ6gvOK Gk7tEmvcjNtszEWg5Si95sRLs8q4LMDd5stegdbCbFO4NsHMIBlJndkllfY1GjqA OYAA+GFcabpt7jzLzyyBqzbCW4rBOp5TGa3WJMSr3NyAw5LAsghTMu07LfWRE/Kw lgh6IIqlSICfx/ZS8WK8SgIpLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBt9Gl0H umpMPLldG/DN2XuJazVQMB8GA1UdIwQYMBaAFDqlrKVcezXj+SK7uNqrHX2IcONz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTUzMy80MDI5OTc4QUY4 N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05lUDVJcnU0MnFzZGZZaHc0 M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xV3NwVng3TmVQNUlydTQycXNkZllodzQzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTUzMy80MDI5OTc4QUY4N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05l UDVJcnU0MnFzZGZZaHc0M00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnZpLu0DXe2kjZv89t7CtVTKOd5pvKydTMSenzpkymRt1KZcET/8IX mw+5hA4aIWAnA6gRpSBjSKtsCEB/E7UUMO8PKwKK4vYyZbLSrKhwCA4U9Mk1hjq9 8UeIX0BdXBJ3dT4AniH9kCj81KjvQAT1JP2wPOXZJry3PNSjM0sx6czZvqcaThAc xURHN8UVY3r0KTy/CoBM5fXJrdvGeeBQXfnMETH6aW+PlV/0tcXOF1+/ddM4j7Pr DAxGP3NOt/eoWfgwkbZ1eBvZ3Bpbs146OTU9vbBajOOCBWxw6osrJ4zCwGsf1ITQ 6sp+1dDPPxvdrPCX3d6XaY7VDwNE7pGb -----END CERTIFICATE-----Generated at Sat Dec 6 17:06:57 2025 by rpki-client