This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.mft File: 2OexX5y5FnTlEn_UBtfZ5xjgirA.mft (raw, json) Hash identifier: ZWgBWWqbrygB/290uLf9BG8ozE0T4HkY3Xg+9PWCfls= Subject key identifier: CA:B9:E8:AA:0D:F8:7E:6C:7B:94:55:CF:F6:B6:1B:4D:A9:D9:6D:02 Authority key identifier: D8:E7:B1:5F:9C:B9:16:74:E5:12:7F:D4:06:D7:D9:E7:18:E0:8A:B0 Certificate issuer: /CN=A917E27F/serialNumber=D8E7B15F9CB91674E5127FD406D7D9E718E08AB0 Certificate serial: 42 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2OexX5y5FnTlEn_UBtfZ5xjgirA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.mft Manifest number: 41 Signing time: Fri 05 Dec 2025 05:18:05 +0000 Manifest this update: Fri 05 Dec 2025 05:18:05 +0000 Manifest next update: Fri 12 Dec 2025 05:18:05 +0000 Files and hashes: 1: 2OexX5y5FnTlEn_UBtfZ5xjgirA.crl (hash: upKEB9+mXL/mdpdyHwl58c2X6JYap/U3Ssa7MAl5tlQ=) 2: 4197AB74735611F080D68151C4F9AE02.roa (hash: uw93y6FGovmGq+bi/XnqUmoXwqLRFeM+9sTlrsvluUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.crl rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2OexX5y5FnTlEn_UBtfZ5xjgirA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:18:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E27F, serialNumber=D8E7B15F9CB91674E5127FD406D7D9E718E08AB0 Validity Not Before: Dec 5 05:18:05 2025 GMT Not After : Dec 12 05:18:05 2025 GMT Subject: CN=69326b0d-6f98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:02:31:58:5a:81:85:7c:49:5c:82:c4:5a:44: ad:17:bb:c3:ba:14:96:0b:e3:54:81:b8:00:6a:fc: c7:db:1e:a1:c3:6b:d5:21:ba:c1:e9:8e:af:4c:2f: e2:26:c2:f0:e7:e3:71:10:61:bf:0b:e1:04:47:ad: ee:65:a9:6d:6e:cb:34:53:72:90:ac:22:78:25:9b: ec:ac:3f:9e:ed:70:4d:b9:e0:a9:79:ad:59:df:a8: e5:cc:59:45:0c:bf:00:55:1a:3b:16:9e:03:96:cd: 07:11:79:2b:bb:9e:53:c5:4b:2a:a7:0e:21:60:12: 0f:80:eb:6f:ea:55:fa:cb:24:1b:2e:ae:16:44:8c: 1e:a6:c6:0c:bd:33:f7:66:e5:53:39:97:fe:7c:c3: 5d:1a:52:e3:b6:f5:14:d3:48:e5:88:fb:d1:9b:97: 9a:6b:b5:76:64:42:f3:91:cb:67:fc:82:74:ce:5e: ec:46:ba:52:1c:58:39:57:3c:ee:88:66:f0:f9:8e: b7:80:8c:f1:cc:01:f4:ba:4a:28:7b:6d:f0:27:89: 09:38:3a:75:b4:27:2a:c4:4e:d6:2a:de:eb:c2:d2: e3:42:0d:98:e4:69:00:49:f7:17:2f:ad:fa:3a:3f: 8d:0d:7b:ef:e5:a5:e7:f3:e4:52:95:84:72:c5:7f: c5:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:B9:E8:AA:0D:F8:7E:6C:7B:94:55:CF:F6:B6:1B:4D:A9:D9:6D:02 X509v3 Authority Key Identifier: keyid:D8:E7:B1:5F:9C:B9:16:74:E5:12:7F:D4:06:D7:D9:E7:18:E0:8A:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2OexX5y5FnTlEn_UBtfZ5xjgirA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:94:6b:0f:10:e0:11:de:9a:5d:a5:f8:d8:4c:06:18:5c:38: 96:6f:a0:2f:12:e6:18:8e:b8:32:27:b3:ee:9c:da:9c:ab:a6: 64:b6:b8:b8:24:70:2c:8f:df:6a:00:1c:1a:82:37:0c:33:41: f0:cb:0e:e8:93:c8:5f:dd:a2:d7:bb:78:f1:4a:da:a2:bb:14: db:23:33:ed:58:f4:5b:2c:5e:73:3c:26:8c:13:a6:b6:4c:e9: 86:87:14:cb:0b:c7:1d:12:fe:5d:3c:5f:ea:5e:0e:95:f1:1f: a1:4f:9e:56:17:90:aa:64:eb:de:ac:56:1e:95:1a:bd:e2:ce: 6f:fd:8b:b3:72:a2:b7:f8:8c:ce:02:d8:fe:3b:5f:7d:b8:9c: 99:4c:42:dd:8f:da:55:72:51:4f:43:fb:cf:77:c5:02:62:19: 39:b0:98:6e:bf:b5:63:d1:89:95:21:6b:ad:6f:92:fa:63:d4: 69:a4:a5:f1:88:2b:0f:10:b4:84:ad:0c:bc:e0:a6:bf:2e:a9: 23:c3:46:41:a7:ae:12:49:6b:d6:44:d6:bc:6e:0a:8a:e7:87: e7:22:74:2d:6d:7e:15:3b:f2:dc:65:30:1f:78:48:91:3f:34: 3f:2a:c7:00:1d:92:c7:b7:9f:3f:cd:51:6c:a6:6c:24:0c:f4: c0:b9:ad:8a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RTI3RjExMC8GA1UEBRMoRDhFN0IxNUY5Q0I5MTY3NEU1MTI3RkQ0MDZEN0Q5RTcx OEUwOEFCMDAeFw0yNTEyMDUwNTE4MDVaFw0yNTEyMTIwNTE4MDVaMBgxFjAUBgNV BAMTDTY5MzI2YjBkLTZmOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSAjFYWoGFfElcgsRaRK0Xu8O6FJYL41SBuABq/MfbHqHDa9UhusHpjq9ML+Im wvDn43EQYb8L4QRHre5lqW1uyzRTcpCsInglm+ysP57tcE254Kl5rVnfqOXMWUUM vwBVGjsWngOWzQcReSu7nlPFSyqnDiFgEg+A62/qVfrLJBsurhZEjB6mxgy9M/dm 5VM5l/58w10aUuO29RTTSOWI+9Gbl5prtXZkQvORy2f8gnTOXuxGulIcWDlXPO6I ZvD5jreAjPHMAfS6Sih7bfAniQk4OnW0JyrETtYq3uvC0uNCDZjkaQBJ9xcvrfo6 P40Ne+/lpefz5FKVhHLFf8XDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyrnoqg34 fmx7lFXP9rYbTanZbQIwHwYDVR0jBBgwFoAU2OexX5y5FnTlEn/UBtfZ5xjgirAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdFMjdGLzc2OUQyRDY2NzJC NzExRjA5QzA0NjkwREM0RjlBRTAyLzJPZXhYNXk1Rm5UbEVuX1VCdGZaNXhqZ2ly QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMk9leFg1eTVGblRsRW5fVUJ0Zlo1eGpnaXJBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdF MjdGLzc2OUQyRDY2NzJCNzExRjA5QzA0NjkwREM0RjlBRTAyLzJPZXhYNXk1Rm5U bEVuX1VCdGZaNXhqZ2lyQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABaUaw8Q4BHeml2l+NhMBhhcOJZvoC8S5hiOuDIns+6c2pyrpmS2uLgk cCyP32oAHBqCNwwzQfDLDuiTyF/dote7ePFK2qK7FNsjM+1Y9FssXnM8JowTprZM 6YaHFMsLxx0S/l08X+peDpXxH6FPnlYXkKpk696sVh6VGr3izm/9i7Nyorf4jM4C 2P47X324nJlMQt2P2lVyUU9D+893xQJiGTmwmG6/tWPRiZUha61vkvpj1GmkpfGI Kw8QtIStDLzgpr8uqSPDRkGnrhJJa9ZE1rxuCornh+cidC1tfhU78txlMB94SJE/ ND8qxwAdkse3nz/NUWymbCQM9MC5rYo= -----END CERTIFICATE-----Generated at Sun Dec 7 03:08:37 2025 by rpki-client