This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft File: OtjA2kteE0OjhFRLZEARiFJg_wc.mft (raw, json) Hash identifier: SUrIEgrPuLdkhgRqMhpC1xQfe89z6MCosQgem+fS9QI= Subject key identifier: 1B:FC:47:CC:42:BE:B3:AF:2B:2C:AA:DF:5E:67:51:EE:EF:4D:47:62 Authority key identifier: 3A:D8:C0:DA:4B:5E:13:43:A3:84:54:4B:64:40:11:88:52:60:FF:07 Certificate issuer: /CN=A916022F/serialNumber=3AD8C0DA4B5E1343A384544B644011885260FF07 Certificate serial: 1380 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OtjA2kteE0OjhFRLZEARiFJg_wc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft Manifest number: 2498 Signing time: Thu 04 Dec 2025 16:36:49 +0000 Manifest this update: Thu 04 Dec 2025 16:36:48 +0000 Manifest next update: Thu 11 Dec 2025 16:36:48 +0000 Files and hashes: 1: OtjA2kteE0OjhFRLZEARiFJg_wc.crl (hash: Ugm7Y9AFCywqUx0FMhRrlaDe8l01GttC/YNPSxt/FPQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.crl rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OtjA2kteE0OjhFRLZEARiFJg_wc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 16:36:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4992 (0x1380) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916022F, serialNumber=3AD8C0DA4B5E1343A384544B644011885260FF07 Validity Not Before: Dec 4 16:36:48 2025 GMT Not After : Dec 11 16:36:48 2025 GMT Subject: CN=6931b8a1-1be0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:60:9c:70:56:56:62:0f:2c:52:30:81:28:b7: bc:92:c9:61:03:bc:3d:9b:69:9b:73:2a:a5:c7:59: 26:43:38:93:66:98:55:95:f3:44:1b:b9:6f:3f:ba: 7b:d7:bc:27:3e:c1:bb:8e:00:b3:a8:8b:0d:12:7e: c0:08:7e:a0:aa:aa:6d:bd:fd:2d:89:36:88:52:8c: ee:06:42:00:e5:ea:92:b5:1f:a0:c2:07:d3:95:94: 45:99:78:2e:9b:71:e3:92:9a:4e:7b:8e:fd:ee:c4: 63:c2:53:71:b9:92:1f:9b:9b:b2:95:7a:4c:05:4c: 91:73:03:4f:83:cb:57:e4:cc:e1:56:52:91:cf:97: 99:ef:96:7c:31:ea:5c:a8:47:75:d7:21:7e:f3:8c: 56:04:b1:0b:67:64:aa:2d:5c:f2:3c:04:96:aa:48: a6:9e:8c:1c:d1:8b:be:a6:98:5f:f0:0d:96:a6:fe: fa:56:20:f2:f0:9d:c9:f0:a0:59:e7:9c:24:dd:5e: b9:b1:97:2c:1b:b4:6f:02:75:b6:2f:2a:87:1f:b9: e1:33:19:a1:a4:cc:71:b9:86:ae:23:55:16:86:28: 25:4e:d2:f2:fc:ef:f3:b7:bd:c9:06:4c:21:0d:c0: e2:b3:cb:42:96:51:0f:48:44:6b:a0:f6:83:55:b2: d8:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:FC:47:CC:42:BE:B3:AF:2B:2C:AA:DF:5E:67:51:EE:EF:4D:47:62 X509v3 Authority Key Identifier: keyid:3A:D8:C0:DA:4B:5E:13:43:A3:84:54:4B:64:40:11:88:52:60:FF:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OtjA2kteE0OjhFRLZEARiFJg_wc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/OtjA2kteE0OjhFRLZEARiFJg_wc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ea:1c:8a:69:f7:9f:1a:b9:e7:38:e4:61:a8:41:72:ac:93:73: f4:86:a3:07:9d:4b:c0:a8:ba:14:25:7c:08:b4:b9:e7:0e:14: b9:30:1e:77:ba:fe:00:df:84:d2:d2:f0:9c:cf:0d:ee:02:de: 21:4e:a8:db:2e:7c:aa:42:1e:31:23:11:f3:36:7a:92:f1:c3: 3b:5a:c7:bc:ad:4d:78:51:50:78:e9:17:66:4c:d2:21:0b:12: 6a:a2:6a:fa:b7:8c:9e:b8:b5:d4:ba:c6:ce:42:43:e5:27:f2: 5f:cc:6e:69:9d:ed:69:33:cb:ec:57:e9:8b:1d:52:e8:e2:35: b1:ac:6d:43:5b:bf:d4:ca:f5:8e:55:95:09:2c:c3:48:20:f9: b6:6c:bb:b2:a3:07:b2:d9:b0:93:fb:82:74:42:b2:ef:d6:6f: 0a:18:64:45:d6:12:bf:6f:4a:fd:12:33:b9:fe:2c:0a:0a:bb: a5:ca:20:25:9d:50:ef:ae:e4:67:32:00:42:eb:59:d2:20:83: 80:24:7c:16:04:11:c6:9b:41:af:27:01:26:53:56:ce:03:c7: 0f:24:59:8d:90:d8:b1:6e:33:4a:7c:f4:e0:40:24:86:29:c6: 9b:19:21:04:12:07:6a:69:0c:ab:47:91:b9:af:c6:49:f7:46: e5:d3:c5:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE4AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyMkYxMTAvBgNVBAUTKDNBRDhDMERBNEI1RTEzNDNBMzg0NTQ0QjY0NDAxMTg4 NTI2MEZGMDcwHhcNMjUxMjA0MTYzNjQ4WhcNMjUxMjExMTYzNjQ4WjAYMRYwFAYD VQQDEw02OTMxYjhhMS0xYmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyGCccFZWYg8sUjCBKLe8kslhA7w9m2mbcyqlx1kmQziTZphVlfNEG7lvP7p7 17wnPsG7jgCzqIsNEn7ACH6gqqptvf0tiTaIUozuBkIA5eqStR+gwgfTlZRFmXgu m3HjkppOe4797sRjwlNxuZIfm5uylXpMBUyRcwNPg8tX5MzhVlKRz5eZ75Z8Mepc qEd11yF+84xWBLELZ2SqLVzyPASWqkimnowc0Yu+pphf8A2Wpv76ViDy8J3J8KBZ 55wk3V65sZcsG7RvAnW2LyqHH7nhMxmhpMxxuYauI1UWhiglTtLy/O/zt73JBkwh DcDis8tCllEPSERroPaDVbLYowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBv8R8xC vrOvKyyq315nUe7vTUdiMB8GA1UdIwQYMBaAFDrYwNpLXhNDo4RUS2RAEYhSYP8H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDIyRi85RUM3QUZCNEFB N0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9PdGpBMmt0ZUUwT2poRlJMWkVBUmlGSmdf d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL090akEya3RlRTBPamhGUkxaRUFSaUZKZ193Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDIyRi85RUM3QUZCNEFBN0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9PdGpBMmt0ZUUw T2poRlJMWkVBUmlGSmdfd2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDqHIpp958auec45GGoQXKsk3P0hqMHnUvAqLoUJXwItLnnDhS5MB53 uv4A34TS0vCczw3uAt4hTqjbLnyqQh4xIxHzNnqS8cM7Wse8rU14UVB46RdmTNIh CxJqomr6t4yeuLXUusbOQkPlJ/JfzG5pne1pM8vsV+mLHVLo4jWxrG1DW7/UyvWO VZUJLMNIIPm2bLuyowey2bCT+4J0QrLv1m8KGGRF1hK/b0r9EjO5/iwKCrulyiAl nVDvruRnMgBC61nSIIOAJHwWBBHGm0GvJwEmU1bOA8cPJFmNkNixbjNKfPTgQCSG KcabGSEEEgdqaQyrR5G5r8ZJ90bl08U/ -----END CERTIFICATE-----Generated at Sat Dec 6 14:52:29 2025 by rpki-client