This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft File: OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft (raw, json) Hash identifier: xUrbXio4tWR0C3KXq6crb/kTpfTxA2vbydQvTPkWUUU= Subject key identifier: 74:64:DC:AB:AD:87:9C:C6:A8:5E:5B:B6:82:3F:3C:B9:76:7B:56:20 Authority key identifier: 38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A Certificate issuer: /CN=A917B520/serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Certificate serial: 0135 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft Manifest number: 012F Signing time: Fri 05 Dec 2025 00:54:23 +0000 Manifest this update: Fri 05 Dec 2025 00:54:22 +0000 Manifest next update: Fri 12 Dec 2025 00:54:22 +0000 Files and hashes: 1: OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl (hash: I8OQwv0NF5dFUrtMoJq737JPazfxAq7IhVWPwW0hKIw=) 2: 9580A702548211EFAADB996FC4F9AE02.roa (hash: nFQQw/dyghkb1sXKy9uupZRqxzdAPtcnxFOFgRiXGi4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:54:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Validity Not Before: Dec 5 00:54:22 2025 GMT Not After : Dec 12 00:54:22 2025 GMT Subject: CN=69322d3f-391d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:5c:5f:30:6e:1f:8e:ff:4a:30:82:7d:b5:9c: 7b:3a:2d:25:64:cc:93:8d:26:6d:f7:1a:0d:23:d7: ca:b6:bb:67:fb:a8:51:41:3d:3a:f5:cc:15:bd:c3: 80:5e:b3:5b:e1:69:9f:9a:0b:af:11:c7:05:8b:ce: e8:bb:ea:d5:8c:81:12:38:f5:df:04:0f:fb:95:60: 62:89:4a:56:a6:90:11:7b:7e:d5:41:ff:86:d5:7b: 1d:57:0e:b1:85:cd:14:78:91:99:bc:13:a7:23:10: e2:eb:88:da:fb:26:6c:bf:c1:8d:c2:d2:e9:3d:be: 07:f5:e2:e1:79:5c:24:70:74:a3:89:f3:30:ef:12: 06:be:ca:ac:96:88:bf:03:09:1e:10:62:09:30:b7: 9b:5e:0b:8c:b6:84:c6:35:5e:89:3f:9f:c0:ed:ba: 9a:03:43:1b:d4:c0:74:10:11:85:e6:37:ed:d5:a9: af:2a:04:6f:76:ca:7e:f7:10:90:95:aa:fd:be:08: c2:88:b1:50:39:13:3c:83:03:7f:b8:87:15:ba:b2: 09:6a:5f:cb:85:3e:24:9c:a8:ed:15:17:f4:4d:37: 26:97:f2:4c:74:b2:b7:b4:79:28:3d:bf:3c:7c:a0: 67:95:65:1c:a6:b6:5d:01:ba:7b:0e:a6:d4:98:e8: 0a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:64:DC:AB:AD:87:9C:C6:A8:5E:5B:B6:82:3F:3C:B9:76:7B:56:20 X509v3 Authority Key Identifier: keyid:38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:de:f3:6b:04:db:ba:8a:bd:d5:f3:af:90:f5:f0:b0:65:14: 69:6a:73:bc:74:bb:7d:30:7c:17:c7:a1:78:d3:2d:02:c4:9d: 6d:79:2e:b8:25:77:26:22:5b:f8:0b:d0:6b:c2:87:3c:ea:f4: 43:ca:e5:ae:78:7f:1e:99:71:58:e8:d9:6e:78:9d:89:45:4f: 14:7d:b8:ce:f9:75:73:f5:99:03:3c:1e:75:44:eb:0c:44:6b: d3:5d:10:55:11:f6:a7:c1:e2:95:28:02:0c:92:04:1f:60:4d: f8:fb:a3:0f:a0:2a:b4:6f:f3:15:e2:91:95:fc:b6:8f:2e:6b: a4:f0:cd:ff:68:b6:7e:f5:82:93:96:a8:e8:e3:7e:48:4d:28: 38:45:13:b8:13:4c:68:a8:c7:a8:d3:da:5f:ca:ac:53:5a:5b: 3d:07:9c:75:e9:49:fa:15:09:e6:74:4b:51:6d:49:da:b5:dc: 60:d9:42:f4:f7:ba:0b:a0:24:b9:e4:a9:31:ee:38:35:ab:00: 4e:6d:ab:94:f2:b7:8c:4c:71:8d:3a:16:69:fe:3b:89:ee:28: 7e:80:b2:a7:a7:e7:4a:37:f9:b4:be:19:1e:9f:43:15:78:65: 1b:20:0c:68:cf:3d:26:89:0c:61:2d:5e:2b:d8:51:cc:1c:e0: bb:54:a5:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDM4MENENkJDQzlFMUMxMUZFQzRFRTI3REE4OTM4MjRE QURCNTIxMkEwHhcNMjUxMjA1MDA1NDIyWhcNMjUxMjEyMDA1NDIyWjAYMRYwFAYD VQQDEw02OTMyMmQzZi0zOTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo1xfMG4fjv9KMIJ9tZx7Oi0lZMyTjSZt9xoNI9fKtrtn+6hRQT069cwVvcOA XrNb4WmfmguvEccFi87ou+rVjIESOPXfBA/7lWBiiUpWppARe37VQf+G1XsdVw6x hc0UeJGZvBOnIxDi64ja+yZsv8GNwtLpPb4H9eLheVwkcHSjifMw7xIGvsqsloi/ AwkeEGIJMLebXguMtoTGNV6JP5/A7bqaA0Mb1MB0EBGF5jft1amvKgRvdsp+9xCQ lar9vgjCiLFQORM8gwN/uIcVurIJal/LhT4knKjtFRf0TTcml/JMdLK3tHkoPb88 fKBnlWUcprZdAbp7DqbUmOgKmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHRk3Kut h5zGqF5btoI/PLl2e1YgMB8GA1UdIwQYMBaAFDgM1rzJ4cEf7E7ifaiTgk2ttSEq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC84RjkwOTFENDMy QjAxMUVGQTRDQkY5NkFDNEY5QUUwMi9PQXpXdk1uaHdSX3NUdUo5cUpPQ1RhMjFJ U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09Beld2TW5od1Jfc1R1SjlxSk9DVGEyMUlTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC84RjkwOTFENDMyQjAxMUVGQTRDQkY5NkFDNEY5QUUwMi9PQXpXdk1uaHdS X3NUdUo5cUpPQ1RhMjFJU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCW3vNrBNu6ir3V86+Q9fCwZRRpanO8dLt9MHwXx6F40y0CxJ1teS64 JXcmIlv4C9Brwoc86vRDyuWueH8emXFY6NlueJ2JRU8UfbjO+XVz9ZkDPB51ROsM RGvTXRBVEfanweKVKAIMkgQfYE34+6MPoCq0b/MV4pGV/LaPLmuk8M3/aLZ+9YKT lqjo435ITSg4RRO4E0xoqMeo09pfyqxTWls9B5x16Un6FQnmdEtRbUnatdxg2UL0 97oLoCS55Kkx7jg1qwBObauU8reMTHGNOhZp/juJ7ih+gLKnp+dKN/m0vhken0MV eGUbIAxozz0miQxhLV4r2FHMHOC7VKUL -----END CERTIFICATE-----Generated at Sun Dec 7 00:38:46 2025 by rpki-client