This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft File: OT6njk2TI25QcfuK_61B1iQmql0.mft (raw, json) Hash identifier: BIa/FpDg3Bg1gYGGnhPk7/0+IghfAQkp+STb/3nkBb8= Subject key identifier: 27:0B:A0:13:1C:4A:17:15:F2:34:EE:A1:93:EE:91:31:DE:40:E8:E5 Authority key identifier: 39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D Certificate issuer: /CN=A917B520/serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Certificate serial: BF Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft Manifest number: BD Signing time: Fri 05 Dec 2025 00:54:18 +0000 Manifest this update: Fri 05 Dec 2025 00:54:17 +0000 Manifest next update: Fri 12 Dec 2025 00:54:17 +0000 Files and hashes: 1: OT6njk2TI25QcfuK_61B1iQmql0.crl (hash: EfjOLqa5MBFMKrFdkSqTPR/OjgJYE2CCiRQjxsNVhzo=) 2: 3CFE7680BC5C11EFB951FD4FC4F9AE02.roa (hash: ZZGoLs5i6C2o6YDndsUsPxgi/aWEUfS/++aNSMKH7qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:54:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Validity Not Before: Dec 5 00:54:17 2025 GMT Not After : Dec 12 00:54:17 2025 GMT Subject: CN=69322d3a-a267 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f5:3d:5f:d0:10:33:f8:07:51:8d:b6:ac:ee: 2d:db:60:2c:12:79:30:6e:a3:81:ad:99:20:83:ae: 02:82:dc:0d:1c:14:7a:43:09:f7:40:86:71:1e:d2: d4:2e:37:92:a9:66:40:a0:a9:c8:20:79:b5:b2:98: 28:a7:da:5f:92:a1:67:61:a0:fa:45:f7:4d:10:12: 91:d2:bf:ea:2d:58:50:05:06:22:f7:81:76:9b:fe: de:03:5b:20:43:f1:04:a5:f6:24:7a:d1:de:ec:83: ba:a0:de:71:e1:2f:77:51:2c:b6:94:6b:6e:7d:b9: 85:61:bc:4a:f1:88:87:87:2a:0c:c9:34:fe:41:be: e5:cb:03:3d:d6:89:d3:38:c5:a5:8d:8d:87:cc:ec: b3:4a:b6:e6:f4:7f:fa:1e:4b:3e:38:96:1b:7a:71: be:55:d5:ac:61:00:be:5e:65:e7:c7:d8:21:01:d5: 1b:73:fe:ae:6c:20:7d:9c:31:fd:43:cf:67:b5:3c: f9:28:02:1a:cf:0a:82:28:c7:2a:4d:c9:8a:dc:af: b0:13:80:d1:e6:6f:46:2d:ae:92:34:bb:77:0f:dd: 12:1d:21:63:73:e3:70:32:99:10:d3:6e:02:8b:fa: 04:f1:c1:40:87:fd:c6:e7:21:06:3c:f6:68:57:0d: fb:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:0B:A0:13:1C:4A:17:15:F2:34:EE:A1:93:EE:91:31:DE:40:E8:E5 X509v3 Authority Key Identifier: keyid:39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:01:e0:9f:37:74:55:0b:67:7c:f3:15:26:b3:f5:a6:6f:c1: 93:82:dc:81:01:e8:ac:06:0d:87:3e:61:cf:b6:5d:4c:f5:34: 22:4a:7b:2d:e1:50:d2:97:1d:17:67:63:ea:4b:13:42:6b:00: 74:2d:69:4d:8a:ac:72:43:aa:9d:63:6f:92:99:66:d2:4d:8c: 66:d1:80:66:c3:39:d5:85:ef:18:0f:93:eb:ae:3b:23:8f:1b: 7a:16:2e:32:70:0c:96:54:45:57:37:aa:98:d8:8b:10:6e:c7: 06:f0:89:59:27:52:18:d3:f0:36:88:82:e4:25:71:54:67:d0: a9:20:5e:4d:3f:bc:8c:6a:22:18:7c:48:1d:24:be:66:2d:4f: 5a:ad:c4:2b:5b:d4:ef:32:46:79:d5:02:10:f3:3e:23:7a:c3: aa:1a:71:24:8b:0c:b6:f7:65:13:b2:dd:4b:cb:1f:be:59:11: a1:85:2e:15:2e:63:c4:1f:69:a0:ff:d7:c8:25:5e:48:c0:a8: fb:5f:13:ca:0f:9a:37:f1:81:59:29:63:28:a6:79:3c:03:02: c5:af:f1:b1:85:bf:75:9a:73:01:ce:a3:90:7d:97:c2:aa:6e: 5f:ad:ee:8b:0d:56:e7:f0:21:ba:48:d5:59:16:f8:ae:13:b8: c7:62:ff:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDM5M0VBNzhFNEQ5MzIzNkU1MDcxRkI4QUZGQUQ0MUQ2 MjQyNkFBNUQwHhcNMjUxMjA1MDA1NDE3WhcNMjUxMjEyMDA1NDE3WjAYMRYwFAYD VQQDEw02OTMyMmQzYS1hMjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/U9X9AQM/gHUY22rO4t22AsEnkwbqOBrZkgg64CgtwNHBR6Qwn3QIZxHtLU LjeSqWZAoKnIIHm1spgop9pfkqFnYaD6RfdNEBKR0r/qLVhQBQYi94F2m/7eA1sg Q/EEpfYketHe7IO6oN5x4S93USy2lGtufbmFYbxK8YiHhyoMyTT+Qb7lywM91onT OMWljY2HzOyzSrbm9H/6Hks+OJYbenG+VdWsYQC+XmXnx9ghAdUbc/6ubCB9nDH9 Q89ntTz5KAIazwqCKMcqTcmK3K+wE4DR5m9GLa6SNLt3D90SHSFjc+NwMpkQ024C i/oE8cFAh/3G5yEGPPZoVw37ywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCcLoBMc ShcV8jTuoZPukTHeQOjlMB8GA1UdIwQYMBaAFDk+p45NkyNuUHH7iv+tQdYkJqpd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC80Q0ZDMDhEQUI3 NkMxMUVGQjg3NDI3NkVDNEY5QUUwMi9PVDZuamsyVEkyNVFjZnVLXzYxQjFpUW1x bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL09UNm5qazJUSTI1UWNmdUtfNjFCMWlRbXFsMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC80Q0ZDMDhEQUI3NkMxMUVGQjg3NDI3NkVDNEY5QUUwMi9PVDZuamsyVEky NVFjZnVLXzYxQjFpUW1xbDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABAeCfN3RVC2d88xUms/Wmb8GTgtyBAeisBg2HPmHPtl1M9TQiSnst 4VDSlx0XZ2PqSxNCawB0LWlNiqxyQ6qdY2+SmWbSTYxm0YBmwznVhe8YD5Prrjsj jxt6Fi4ycAyWVEVXN6qY2IsQbscG8IlZJ1IY0/A2iILkJXFUZ9CpIF5NP7yMaiIY fEgdJL5mLU9arcQrW9TvMkZ51QIQ8z4jesOqGnEkiwy292UTst1Lyx++WRGhhS4V LmPEH2mg/9fIJV5IwKj7XxPKD5o38YFZKWMopnk8AwLFr/Gxhb91mnMBzqOQfZfC qm5fre6LDVbn8CG6SNVZFviuE7jHYv92 -----END CERTIFICATE-----Generated at Sat Dec 6 18:04:00 2025 by rpki-client