This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft File: oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft (raw, json) Hash identifier: sFItyJpwWIS54ZQs4u4PfW/QdV/PJI+vRWwgk3WY/nI= Subject key identifier: 02:B9:64:A3:07:95:7E:BA:90:DD:11:76:78:A1:EA:B6:AD:9F:5C:5F Authority key identifier: A2:DA:36:37:D3:25:3F:89:97:D8:8D:0B:D8:DA:95:98:F7:83:F9:91 Certificate issuer: /CN=A918AAA1/serialNumber=A2DA3637D3253F8997D88D0BD8DA9598F783F991 Certificate serial: 01A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft Manifest number: 01A6 Signing time: Fri 05 Dec 2025 01:28:42 +0000 Manifest this update: Fri 05 Dec 2025 01:28:42 +0000 Manifest next update: Fri 12 Dec 2025 01:28:42 +0000 Files and hashes: 1: oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl (hash: wR+AMAhXO99lSiyrvTCzU/snaOqnHCdl0edxzN+TRwc=) 2: E6EB2B10486E11EEB4D5FF2DC4F9AE02.roa (hash: 5JFgGi1zcqLdr4l1Ei+0uqRhphNnP2rP0bMb+qfmJXM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:28:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 425 (0x1a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AAA1, serialNumber=A2DA3637D3253F8997D88D0BD8DA9598F783F991 Validity Not Before: Dec 5 01:28:42 2025 GMT Not After : Dec 12 01:28:42 2025 GMT Subject: CN=6932354a-4164 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7c:6f:d1:fc:e0:3e:9a:c5:69:1c:70:bb:b0: 47:1c:75:08:ad:8b:b5:0c:06:f3:3f:d3:32:8f:65: 26:f0:38:f1:8e:d7:9c:21:c6:bd:91:cd:eb:c8:7a: d1:7b:e7:d7:5e:dc:75:b0:38:70:01:fa:78:a6:c8: 65:08:ef:1a:21:8b:a7:67:1e:ab:c9:36:7e:c9:ec: 50:19:c0:80:ef:e8:6d:ce:21:6b:e6:6d:65:2d:38: 79:ee:32:47:ea:fd:b6:01:64:8e:ec:cd:d2:d9:09: 54:f5:6d:ac:26:75:0a:5a:04:dd:94:3b:77:5e:21: 68:56:01:c1:60:85:2a:94:64:64:ec:df:7e:7c:f1: b8:c1:3f:76:75:ff:2b:45:25:2c:66:fc:0f:97:83: 2f:61:24:b8:2d:80:47:fa:c3:7d:e1:6a:06:6d:43: 7c:ff:2d:c9:b3:55:f0:aa:59:b9:b5:e2:4c:45:28: 6b:8e:ee:e7:92:46:0a:3f:a3:e7:45:3c:95:7e:06: 4f:2c:13:82:b7:5a:76:29:77:9b:a2:a3:83:2b:6a: 87:52:97:91:cf:5e:14:13:a7:45:a5:4b:9e:e6:d6: 49:3f:fd:d1:1a:fd:fd:cf:5b:db:81:44:0d:bc:3a: b0:56:2b:93:09:c1:70:69:98:8e:3d:00:74:9e:c9: c7:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:B9:64:A3:07:95:7E:BA:90:DD:11:76:78:A1:EA:B6:AD:9F:5C:5F X509v3 Authority Key Identifier: keyid:A2:DA:36:37:D3:25:3F:89:97:D8:8D:0B:D8:DA:95:98:F7:83:F9:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:3a:cd:2c:9f:a1:c4:7c:48:d4:ec:87:1e:c9:b9:89:f0:3c: 2d:44:8b:0c:9d:18:b0:55:54:ce:8a:c8:18:69:50:26:2d:e8: b1:31:26:7d:ef:aa:21:a5:05:a9:38:02:25:61:33:bd:2f:b4: ec:e6:70:2b:64:01:e3:3e:6a:64:7f:76:3d:90:d1:29:f2:40: 2f:ed:d4:3f:f3:9a:cf:ad:ff:41:30:5b:a4:46:67:3f:f3:90: 34:27:eb:6c:11:d2:18:20:aa:a0:45:9f:c1:ba:2e:e3:9d:56: 31:86:9b:a1:2a:57:fa:88:39:fc:47:9f:a4:bf:b6:29:21:5e: 71:c8:09:28:60:70:f2:1a:36:39:77:18:b4:d0:61:26:d4:42: 39:a1:03:56:06:fe:97:21:3a:64:ad:23:09:a9:4d:62:c4:0e: c4:8c:27:58:53:36:7c:1c:0e:b2:c9:4d:6c:10:75:73:c1:8f: 89:02:d4:94:61:52:71:b6:6f:ab:2f:cd:e7:16:44:b1:15:c1: 53:97:d5:e1:4d:ed:3a:70:53:6e:8a:f3:70:b4:09:36:cc:66: 04:16:c7:61:01:48:d4:de:cf:d6:ff:aa:99:48:c4:a1:0d:b5: bd:01:14:e3:f9:ec:10:12:64:1a:be:46:24:71:1b:1d:56:5d: 0e:0a:5f:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFBQTExMTAvBgNVBAUTKEEyREEzNjM3RDMyNTNGODk5N0Q4OEQwQkQ4REE5NTk4 Rjc4M0Y5OTEwHhcNMjUxMjA1MDEyODQyWhcNMjUxMjEyMDEyODQyWjAYMRYwFAYD VQQDEw02OTMyMzU0YS00MTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXxv0fzgPprFaRxwu7BHHHUIrYu1DAbzP9Myj2Um8DjxjtecIca9kc3ryHrR e+fXXtx1sDhwAfp4pshlCO8aIYunZx6ryTZ+yexQGcCA7+htziFr5m1lLTh57jJH 6v22AWSO7M3S2QlU9W2sJnUKWgTdlDt3XiFoVgHBYIUqlGRk7N9+fPG4wT92df8r RSUsZvwPl4MvYSS4LYBH+sN94WoGbUN8/y3Js1Xwqlm5teJMRShrju7nkkYKP6Pn RTyVfgZPLBOCt1p2KXeboqODK2qHUpeRz14UE6dFpUue5tZJP/3RGv39z1vbgUQN vDqwViuTCcFwaZiOPQB0nsnHrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAK5ZKMH lX66kN0Rdnih6ratn1xfMB8GA1UdIwQYMBaAFKLaNjfTJT+Jl9iNC9jalZj3g/mR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUFBMS84MTE0Qzc5QzQ4 NkUxMUVFQTk2MDk0MkNDNEY5QUUwMi9vdG8yTjlNbFA0bVgySTBMMk5xVm1QZUQt WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL290bzJOOU1sUDRtWDJJMEwyTnFWbVBlRC1aRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUFBMS84MTE0Qzc5QzQ4NkUxMUVFQTk2MDk0MkNDNEY5QUUwMi9vdG8yTjlNbFA0 bVgySTBMMk5xVm1QZUQtWkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGOs0sn6HEfEjU7IceybmJ8DwtRIsMnRiwVVTOisgYaVAmLeixMSZ9 76ohpQWpOAIlYTO9L7Ts5nArZAHjPmpkf3Y9kNEp8kAv7dQ/85rPrf9BMFukRmc/ 85A0J+tsEdIYIKqgRZ/Bui7jnVYxhpuhKlf6iDn8R5+kv7YpIV5xyAkoYHDyGjY5 dxi00GEm1EI5oQNWBv6XITpkrSMJqU1ixA7EjCdYUzZ8HA6yyU1sEHVzwY+JAtSU YVJxtm+rL83nFkSxFcFTl9XhTe06cFNuivNwtAk2zGYEFsdhAUjU3s/W/6qZSMSh DbW9ARTj+ewQEmQavkYkcRsdVl0OCl+t -----END CERTIFICATE-----Generated at Sat Dec 6 17:26:46 2025 by rpki-client