This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft File: rOKNq-U2SWN_puTjId4bY0Y7g88.mft (raw, json) Hash identifier: 9ZXDvm2vJVm5kz6FjKfA1GIcJXlor1F75Spc8e0RKHQ= Subject key identifier: 02:CB:34:F2:D9:21:93:B6:CE:F1:12:60:D2:D0:84:49:6A:20:8B:80 Authority key identifier: AC:E2:8D:AB:E5:36:49:63:7F:A6:E4:E3:21:DE:1B:63:46:3B:83:CF Certificate issuer: /CN=A9186249/serialNumber=ACE28DABE53649637FA6E4E321DE1B63463B83CF Certificate serial: 0152 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOKNq-U2SWN_puTjId4bY0Y7g88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft Manifest number: 014F Signing time: Fri 05 Dec 2025 02:23:48 +0000 Manifest this update: Fri 05 Dec 2025 02:23:47 +0000 Manifest next update: Fri 12 Dec 2025 02:23:47 +0000 Files and hashes: 1: rOKNq-U2SWN_puTjId4bY0Y7g88.crl (hash: KMAVpqnaDP4J3oCs6LaoTO0uOWEbdItDmSf0LoH2axg=) 2: E7F6D15AD17411EE87F7325DC4F9AE02.roa (hash: roB5hg8LbgyHBq3NzG2BxN4ORRxykj532WnJpDlGnj0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.crl rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOKNq-U2SWN_puTjId4bY0Y7g88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:23:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186249, serialNumber=ACE28DABE53649637FA6E4E321DE1B63463B83CF Validity Not Before: Dec 5 02:23:47 2025 GMT Not After : Dec 12 02:23:47 2025 GMT Subject: CN=69324233-5b93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:bb:a6:f4:e6:e9:19:b7:ea:04:0e:14:18:bb: 8a:ec:85:29:00:63:0e:9e:9c:46:ee:8b:bd:de:19: 8a:30:2d:db:7b:a5:a2:1b:9a:17:62:8e:06:18:e9: 0a:0e:e3:73:c6:8e:28:b5:71:64:53:8b:b9:e3:9f: e5:4e:2c:97:34:cd:6c:21:39:a2:45:6d:4b:88:c5: a8:b5:86:a9:ae:7a:54:71:43:00:3e:66:9f:58:e1: 42:b9:c8:d8:d9:f7:c1:74:ce:57:0d:8b:4f:99:9c: 8b:4a:c7:c3:f0:3d:c9:ef:89:59:83:fa:34:9b:29: 54:63:ca:49:dd:9c:1e:11:10:b1:b8:64:c2:0e:98: 60:ec:f1:bc:a3:f5:1e:c3:f8:34:4a:df:10:9a:cc: 27:b2:7b:c4:dd:ff:91:94:94:ed:fc:91:f1:cc:04: de:e0:ae:90:c0:bb:21:b5:2e:16:e2:a6:ad:50:f1: 8a:d0:69:a7:49:ae:7a:42:ac:a8:64:ca:b5:c6:9f: 01:85:e3:fa:8a:1a:90:14:9b:50:ef:91:d3:57:5d: 5a:99:f3:bd:a8:e7:73:b0:b0:ab:33:d3:17:fe:9b: ca:c2:ef:1f:cd:54:fd:87:7f:eb:89:cb:c6:c9:d9: a0:dd:9d:bb:0c:d7:60:20:4f:c6:83:ea:b6:86:a9: 17:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:CB:34:F2:D9:21:93:B6:CE:F1:12:60:D2:D0:84:49:6A:20:8B:80 X509v3 Authority Key Identifier: keyid:AC:E2:8D:AB:E5:36:49:63:7F:A6:E4:E3:21:DE:1B:63:46:3B:83:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOKNq-U2SWN_puTjId4bY0Y7g88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:27:5b:ba:c9:f0:47:01:81:65:f1:59:86:6c:74:62:d3:4a: 6c:2a:08:06:45:70:92:eb:f2:80:18:47:e6:3c:97:72:bc:90: 97:0d:24:e7:26:8b:50:bd:58:df:97:56:21:2c:92:49:fc:80: e9:39:9f:da:5a:3e:65:85:ab:ed:39:00:a2:24:5c:7a:2a:4c: 23:14:1a:f9:4c:c5:e3:cd:17:5a:2d:6d:25:d4:b4:2e:94:0a: 02:ee:74:71:1e:6f:7b:61:e1:20:b2:46:c4:ec:63:93:ca:e7: f7:e2:c8:1f:81:f2:a5:15:2a:6e:d9:2b:ff:18:63:0f:3e:b5: 19:15:84:2a:b5:b5:29:38:74:a1:e2:26:da:ae:bf:91:bc:f7: 48:ef:b3:0a:68:da:7d:f5:94:23:6a:39:41:c4:bd:d4:de:07: ee:32:87:7f:96:bd:8f:79:43:53:37:9b:bf:98:cb:69:93:67: 25:3a:dc:73:73:b5:ac:92:03:94:ae:8e:fe:fd:aa:b8:de:d7: fd:4d:32:86:3f:c2:71:6d:36:de:65:96:c1:37:6f:44:eb:52: 22:df:e6:55:63:54:35:76:db:17:20:0a:e6:0d:50:37:28:77: de:54:ba:b5:0f:7d:56:d0:2b:af:6b:14:27:a2:31:db:88:09: de:96:a2:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyNDkxMTAvBgNVBAUTKEFDRTI4REFCRTUzNjQ5NjM3RkE2RTRFMzIxREUxQjYz NDYzQjgzQ0YwHhcNMjUxMjA1MDIyMzQ3WhcNMjUxMjEyMDIyMzQ3WjAYMRYwFAYD VQQDEw02OTMyNDIzMy01YjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7um9ObpGbfqBA4UGLuK7IUpAGMOnpxG7ou93hmKMC3be6WiG5oXYo4GGOkK DuNzxo4otXFkU4u545/lTiyXNM1sITmiRW1LiMWotYaprnpUcUMAPmafWOFCucjY 2ffBdM5XDYtPmZyLSsfD8D3J74lZg/o0mylUY8pJ3ZweERCxuGTCDphg7PG8o/Ue w/g0St8QmswnsnvE3f+RlJTt/JHxzATe4K6QwLshtS4W4qatUPGK0GmnSa56Qqyo ZMq1xp8BheP6ihqQFJtQ75HTV11amfO9qOdzsLCrM9MX/pvKwu8fzVT9h3/ricvG ydmg3Z27DNdgIE/Gg+q2hqkXWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFALLNPLZ IZO2zvESYNLQhElqIIuAMB8GA1UdIwQYMBaAFKzijavlNkljf6bk4yHeG2NGO4PP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjI0OS9BMUYyMzQzQ0Qx NzAxMUVFQTYxNTFDNERDNEY5QUUwMi9yT0tOcS1VMlNXTl9wdVRqSWQ0YlkwWTdn ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JPS05xLVUyU1dOX3B1VGpJZDRiWTBZN2c4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjI0OS9BMUYyMzQzQ0QxNzAxMUVFQTYxNTFDNERDNEY5QUUwMi9yT0tOcS1VMlNX Tl9wdVRqSWQ0YlkwWTdnODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiJ1u6yfBHAYFl8VmGbHRi00psKggGRXCS6/KAGEfmPJdyvJCXDSTn JotQvVjfl1YhLJJJ/IDpOZ/aWj5lhavtOQCiJFx6KkwjFBr5TMXjzRdaLW0l1LQu lAoC7nRxHm97YeEgskbE7GOTyuf34sgfgfKlFSpu2Sv/GGMPPrUZFYQqtbUpOHSh 4ibarr+RvPdI77MKaNp99ZQjajlBxL3U3gfuMod/lr2PeUNTN5u/mMtpk2clOtxz c7WskgOUro7+/aq43tf9TTKGP8JxbTbeZZbBN29E61Ii3+ZVY1Q1dtsXIArmDVA3 KHfeVLq1D31W0CuvaxQnojHbiAnelqKQ -----END CERTIFICATE-----Generated at Sun Dec 7 02:33:22 2025 by rpki-client