This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft File: oOoqcgysMcg3X1Vs-Uv--NERafY.mft (raw, json) Hash identifier: NLxeFjq6yuN4D4ZEiZ1rpFjd7LU6Wub5TYk13zx7Ukk= Subject key identifier: 35:FE:61:39:38:27:CA:F7:C4:25:F3:DC:BA:1E:D8:65:F9:6E:9C:01 Authority key identifier: A0:EA:2A:72:0C:AC:31:C8:37:5F:55:6C:F9:4B:FE:F8:D1:11:69:F6 Certificate issuer: /CN=A917C0F3/serialNumber=A0EA2A720CAC31C8375F556CF94BFEF8D11169F6 Certificate serial: A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft Manifest number: A7 Signing time: Fri 05 Dec 2025 04:11:42 +0000 Manifest this update: Fri 05 Dec 2025 04:11:41 +0000 Manifest next update: Fri 12 Dec 2025 04:11:41 +0000 Files and hashes: 1: oOoqcgysMcg3X1Vs-Uv--NERafY.crl (hash: iGHWQWZ6ZpskMI6IcEFUTPwrsA+Hz7Y9z3YGh0SOLuY=) 2: 02F0D9DED0BA11EFA8B5A526C4F9AE02.roa (hash: sDB2dzkpvGOMbxnCK5hWZ3ZmmwAVruvEUCtgdzq6VhA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.crl rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:11:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C0F3, serialNumber=A0EA2A720CAC31C8375F556CF94BFEF8D11169F6 Validity Not Before: Dec 5 04:11:41 2025 GMT Not After : Dec 12 04:11:41 2025 GMT Subject: CN=69325b7e-19f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a1:77:77:62:7a:6b:81:e3:d4:ed:72:c0:e2: 3f:38:9c:ba:7c:24:5f:d3:0d:c7:65:11:d5:5d:25: a7:ee:16:39:58:12:77:65:d6:a7:42:ab:e0:4c:5f: df:1a:78:e7:45:26:79:92:0e:82:0a:8f:7d:d8:ba: 51:34:ac:1e:30:4f:1b:71:6e:e3:8d:bf:10:99:f5: fa:37:9b:01:52:e7:f6:31:46:2a:fb:a9:85:bf:84: 5e:28:6f:e9:73:49:3f:3f:16:a0:bb:ce:43:8c:b0: a7:80:2c:dd:bb:ae:9a:d1:39:72:5f:c0:7a:43:69: 53:43:64:3b:d0:4d:a1:30:68:d1:b0:7a:eb:20:c3: a4:b5:eb:9e:06:fa:fb:73:0c:a4:b9:87:ea:17:0f: f6:fa:a9:4a:f4:a5:5a:cf:a3:3a:df:29:bd:47:bb: 08:fc:81:e5:9d:c8:dc:b8:d9:7c:97:76:74:84:07: 4b:33:86:16:e5:b7:eb:98:ff:8a:f5:77:dc:86:cc: 3a:6d:74:a2:7a:74:7b:bf:c5:cc:ed:7a:5f:2c:56: e2:1f:56:da:80:5a:70:2d:0e:d8:79:e3:f4:f4:40: 65:90:d6:f4:fa:57:e2:d0:8a:e0:01:d1:05:e7:99: fa:98:35:e1:b9:06:3d:b3:55:eb:31:d1:ea:f6:e9: 8e:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:FE:61:39:38:27:CA:F7:C4:25:F3:DC:BA:1E:D8:65:F9:6E:9C:01 X509v3 Authority Key Identifier: keyid:A0:EA:2A:72:0C:AC:31:C8:37:5F:55:6C:F9:4B:FE:F8:D1:11:69:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:f3:33:ae:27:a4:56:53:97:8d:46:9d:54:bb:3f:28:82:61: 3c:ad:55:2a:93:36:06:e7:3b:31:7f:45:22:62:9b:39:6e:2f: af:d1:57:2a:7f:44:6e:7b:7d:63:49:6b:63:56:b2:43:d5:0e: d3:38:6c:ab:1e:07:73:e4:b9:80:0b:d0:67:bd:bc:67:7e:bb: 83:ac:f4:e2:26:f9:c2:1c:e8:1b:a7:88:24:e6:a7:bd:a6:33: 6a:8d:19:7d:b6:14:ef:f5:57:13:36:34:dd:68:55:3f:f9:0a: cd:d9:ff:e3:0d:26:c9:9b:7f:99:97:79:f8:0c:83:f6:d1:e5: 56:ba:5a:d6:df:6f:36:61:a9:ac:f3:ee:e9:7b:67:4d:d2:c4: 5c:e2:d8:ce:b4:49:73:9b:74:3c:b7:79:31:e7:8d:e1:03:6a: e5:4d:a0:cc:46:fd:75:ce:cf:03:7b:86:d7:2f:35:da:fb:bc: 03:5f:9b:9a:97:62:6e:7c:35:56:30:42:40:39:2d:3a:f4:35: b4:f4:72:cf:93:bd:ac:82:dd:c8:48:e7:9b:a6:97:8e:86:92: 48:e2:ed:8f:c4:4e:93:d1:8c:c7:74:a3:dc:6b:16:20:02:a2: 92:45:20:8b:4f:f1:f8:e9:06:73:ae:6b:04:dc:de:33:85:ee: 10:98:03:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MwRjMxMTAvBgNVBAUTKEEwRUEyQTcyMENBQzMxQzgzNzVGNTU2Q0Y5NEJGRUY4 RDExMTY5RjYwHhcNMjUxMjA1MDQxMTQxWhcNMjUxMjEyMDQxMTQxWjAYMRYwFAYD VQQDEw02OTMyNWI3ZS0xOWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyaF3d2J6a4Hj1O1ywOI/OJy6fCRf0w3HZRHVXSWn7hY5WBJ3ZdanQqvgTF/f GnjnRSZ5kg6CCo992LpRNKweME8bcW7jjb8QmfX6N5sBUuf2MUYq+6mFv4ReKG/p c0k/Pxagu85DjLCngCzdu66a0TlyX8B6Q2lTQ2Q70E2hMGjRsHrrIMOkteueBvr7 cwykuYfqFw/2+qlK9KVaz6M63ym9R7sI/IHlncjcuNl8l3Z0hAdLM4YW5bfrmP+K 9Xfchsw6bXSienR7v8XM7XpfLFbiH1bagFpwLQ7YeeP09EBlkNb0+lfi0IrgAdEF 55n6mDXhuQY9s1XrMdHq9umOnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDX+YTk4 J8r3xCXz3Loe2GX5bpwBMB8GA1UdIwQYMBaAFKDqKnIMrDHIN19VbPlL/vjREWn2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzBGMy82MEUyMDdCQ0Qw QjkxMUVGQTA4NDg4MjVDNEY5QUUwMi9vT29xY2d5c01jZzNYMVZzLVV2LS1ORVJh ZlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Pb3FjZ3lzTWNnM1gxVnMtVXYtLU5FUmFmWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzBGMy82MEUyMDdCQ0QwQjkxMUVGQTA4NDg4MjVDNEY5QUUwMi9vT29xY2d5c01j ZzNYMVZzLVV2LS1ORVJhZlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBe8zOuJ6RWU5eNRp1Uuz8ogmE8rVUqkzYG5zsxf0UiYps5bi+v0Vcq f0Rue31jSWtjVrJD1Q7TOGyrHgdz5LmAC9BnvbxnfruDrPTiJvnCHOgbp4gk5qe9 pjNqjRl9thTv9VcTNjTdaFU/+QrN2f/jDSbJm3+Zl3n4DIP20eVWulrW3282Yams 8+7pe2dN0sRc4tjOtElzm3Q8t3kx543hA2rlTaDMRv11zs8De4bXLzXa+7wDX5ua l2JufDVWMEJAOS069DW09HLPk72sgt3ISOebppeOhpJI4u2PxE6T0YzHdKPcaxYg AqKSRSCLT/H46QZzrmsE3N4zhe4QmAPc -----END CERTIFICATE-----Generated at Sat Dec 6 23:06:25 2025 by rpki-client