This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.mft File: Ol4QKeZcY2gSMttn2AU90vaU5h8.mft (raw, json) Hash identifier: SeaMpP9gzDX30TfcX5xDxmM8Qm9uPMkqBGiOzYecMG8= Subject key identifier: 62:E2:3A:38:74:B5:59:36:F9:67:73:78:08:96:E4:42:D3:EB:DC:2D Authority key identifier: 3A:5E:10:29:E6:5C:63:68:12:32:DB:67:D8:05:3D:D2:F6:94:E6:1F Certificate issuer: /CN=A9174EC5/serialNumber=3A5E1029E65C63681232DB67D8053DD2F694E61F Certificate serial: A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ol4QKeZcY2gSMttn2AU90vaU5h8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.mft Manifest number: A3 Signing time: Fri 05 Dec 2025 04:16:55 +0000 Manifest this update: Fri 05 Dec 2025 04:16:55 +0000 Manifest next update: Fri 12 Dec 2025 04:16:55 +0000 Files and hashes: 1: Ol4QKeZcY2gSMttn2AU90vaU5h8.crl (hash: U67J1D4aLYTG0mAEQ7L/WE+aVfYfvMKfschW3yfc02o=) 2: 3154E9E8993A11F0837A6E45C4F9AE02.roa (hash: kx9lWNj7NgSUFsuMfRCJDT7t5wBdkdtWpvVdEqQ2TDo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.crl rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ol4QKeZcY2gSMttn2AU90vaU5h8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:16:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EC5, serialNumber=3A5E1029E65C63681232DB67D8053DD2F694E61F Validity Not Before: Dec 5 04:16:55 2025 GMT Not After : Dec 12 04:16:55 2025 GMT Subject: CN=69325cb7-a932 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:1d:d6:b1:a0:67:b8:24:89:0b:79:1c:df:a0: cc:5b:5a:4f:9e:ca:05:1d:f7:93:a2:9c:2b:78:d5: 9f:b8:77:18:20:fb:25:78:82:5a:81:3d:27:37:ac: f1:8b:c9:c0:56:2b:ba:4e:81:30:de:31:fb:db:42: 0c:65:94:ad:be:d0:3b:07:a6:fd:25:59:73:6f:ea: fc:e9:bb:64:f3:18:31:a8:d5:e8:8e:68:ea:43:2e: 63:9d:7a:94:bf:17:4e:70:0b:74:d5:26:12:65:03: f0:b4:e2:70:d9:f3:cf:66:5f:77:1d:a0:7a:82:76: 16:1b:22:a4:5c:90:8a:a4:f0:58:45:f7:2e:5b:bf: 7d:02:ab:16:fa:c0:67:03:b0:eb:4f:d9:d5:12:70: 82:cb:0f:10:38:e3:ca:a3:c3:e3:54:ff:c3:08:1d: bb:72:26:2d:4a:de:be:07:cc:cc:37:ec:d3:6c:16: b6:18:0f:aa:51:0a:0e:33:24:ad:91:0b:a9:d4:ff: 97:21:8b:65:bb:ad:ec:e4:34:6f:07:58:17:14:3d: ba:d0:d4:bc:54:44:83:0f:49:09:3f:ff:6e:e6:d6: 00:84:20:7f:0e:d7:a9:e3:09:df:5f:c3:ad:a4:63: ec:18:c1:d0:1e:86:b3:e1:5e:88:30:16:51:05:ce: 39:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:E2:3A:38:74:B5:59:36:F9:67:73:78:08:96:E4:42:D3:EB:DC:2D X509v3 Authority Key Identifier: keyid:3A:5E:10:29:E6:5C:63:68:12:32:DB:67:D8:05:3D:D2:F6:94:E6:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ol4QKeZcY2gSMttn2AU90vaU5h8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:92:8c:4c:f8:1d:88:c7:67:a8:da:7e:b4:b1:11:45:ad:e6: 61:22:ee:ab:6a:4b:df:4b:2d:5d:36:f7:a7:81:12:c2:09:1d: 63:51:72:2d:40:ff:8a:b8:f3:6c:44:1e:42:c3:bc:c4:72:c0: 3a:87:1f:b3:66:b4:47:ea:04:6c:1e:65:d0:44:a4:57:41:e7: 21:0a:46:5b:a5:b8:7b:49:7d:53:7c:56:56:16:3c:76:1d:ee: d5:71:2e:90:1f:62:c4:af:43:49:2e:1b:9d:43:44:18:56:24: dd:fb:07:6e:ee:0d:e0:a6:44:56:4c:ca:4f:e2:62:ff:97:0f: 64:29:24:df:c9:54:ad:6a:03:b6:e5:e4:6e:96:80:5c:98:cc: 8d:75:a0:cc:fe:e2:3a:89:35:fc:6c:be:91:ae:9a:86:a1:a2: 39:41:4c:81:a1:a4:8f:8b:e9:d8:3e:f9:ca:6f:9d:59:a5:c0: 29:3e:cd:49:3d:3e:d7:e2:49:8b:7a:41:ca:de:83:24:8a:c1: 09:94:4f:95:b3:28:cb:6c:e8:6b:91:40:41:66:47:78:d3:f1: 44:2a:92:a4:7e:6a:a9:46:82:70:96:e1:28:e6:2d:65:52:96: 53:50:ea:42:52:54:f7:66:41:ca:61:51:55:82:e2:55:02:b4: 26:b5:bd:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRFQzUxMTAvBgNVBAUTKDNBNUUxMDI5RTY1QzYzNjgxMjMyREI2N0Q4MDUzREQy RjY5NEU2MUYwHhcNMjUxMjA1MDQxNjU1WhcNMjUxMjEyMDQxNjU1WjAYMRYwFAYD VQQDEw02OTMyNWNiNy1hOTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4x3WsaBnuCSJC3kc36DMW1pPnsoFHfeTopwreNWfuHcYIPsleIJagT0nN6zx i8nAViu6ToEw3jH720IMZZStvtA7B6b9JVlzb+r86btk8xgxqNXojmjqQy5jnXqU vxdOcAt01SYSZQPwtOJw2fPPZl93HaB6gnYWGyKkXJCKpPBYRfcuW799AqsW+sBn A7DrT9nVEnCCyw8QOOPKo8PjVP/DCB27ciYtSt6+B8zMN+zTbBa2GA+qUQoOMySt kQup1P+XIYtlu63s5DRvB1gXFD260NS8VESDD0kJP/9u5tYAhCB/Dtep4wnfX8Ot pGPsGMHQHoaz4V6IMBZRBc45ywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGLiOjh0 tVk2+WdzeAiW5ELT69wtMB8GA1UdIwQYMBaAFDpeECnmXGNoEjLbZ9gFPdL2lOYf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEVDNS84MjMzNUEyMEQ5 NUExMUVGQTAyRkI0NkZDNEY5QUUwMi9PbDRRS2VaY1kyZ1NNdHRuMkFVOTB2YVU1 aDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09sNFFLZVpjWTJnU010dG4yQVU5MHZhVTVoOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEVDNS84MjMzNUEyMEQ5NUExMUVGQTAyRkI0NkZDNEY5QUUwMi9PbDRRS2VaY1ky Z1NNdHRuMkFVOTB2YVU1aDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJkoxM+B2Ix2eo2n60sRFFreZhIu6rakvfSy1dNvengRLCCR1jUXIt QP+KuPNsRB5Cw7zEcsA6hx+zZrRH6gRsHmXQRKRXQechCkZbpbh7SX1TfFZWFjx2 He7VcS6QH2LEr0NJLhudQ0QYViTd+wdu7g3gpkRWTMpP4mL/lw9kKSTfyVStagO2 5eRuloBcmMyNdaDM/uI6iTX8bL6RrpqGoaI5QUyBoaSPi+nYPvnKb51ZpcApPs1J PT7X4kmLekHK3oMkisEJlE+VsyjLbOhrkUBBZkd40/FEKpKkfmqpRoJwluEo5i1l UpZTUOpCUlT3ZkHKYVFVguJVArQmtb0p -----END CERTIFICATE-----Generated at Sat Dec 6 22:44:33 2025 by rpki-client