This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft File: OYN8tL7K9qYmyRaulgJBtgnmsgo.mft (raw, json) Hash identifier: N06oY1tq+bCF63Qv7ryCt+C8gWxWg/m4rwfIGqscprE= Subject key identifier: AD:D7:2D:2A:AF:3C:77:D0:BC:D0:B3:66:8F:46:66:5B:64:D6:C5:43 Authority key identifier: 39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A Certificate issuer: /CN=A918C3B7/serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A Certificate serial: 0179 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft Manifest number: 0177 Signing time: Sun 07 Dec 2025 02:11:46 +0000 Manifest this update: Sun 07 Dec 2025 02:11:45 +0000 Manifest next update: Sun 14 Dec 2025 02:11:45 +0000 Files and hashes: 1: OYN8tL7K9qYmyRaulgJBtgnmsgo.crl (hash: mAUeMaMPnpAg20s3AjOoakuOrjgJHGLCO4QQRe9SUow=) 2: C635D41E611411EF9B00D029C4F9AE02.roa (hash: rOwD6kKfHs7j3niSOFa7ZxwcRgpXDjpa8bFCR+QwO/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 377 (0x179) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C3B7, serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A Validity Not Before: Dec 7 02:11:45 2025 GMT Not After : Dec 14 02:11:45 2025 GMT Subject: CN=6934e262-e3e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1c:1d:ec:84:a2:25:b3:1b:df:e1:bf:90:ef: f0:ac:c2:cb:c9:e6:63:16:59:99:5e:9a:26:e3:93: 6c:85:7d:4e:cb:29:47:76:de:5d:61:e4:f1:1c:97: f7:0d:bf:cf:47:1d:bc:d6:cf:52:c6:a0:9d:f6:77: 5a:3b:25:a7:36:cf:0a:55:3d:18:2c:be:dd:bb:0e: fe:65:77:71:c8:c6:97:26:7c:73:28:23:94:81:29: 05:f5:ab:ad:75:a0:e0:c4:5f:9e:2e:12:ea:43:69: 53:e5:d9:fe:db:41:7a:b0:10:a2:11:ce:ad:1e:74: 05:bb:7c:86:24:6d:b4:f7:d1:bf:f4:3e:1f:0c:c6: 69:41:69:d3:33:5e:6e:8b:70:11:4c:96:bd:8e:7f: 9f:85:29:6a:fc:f5:56:43:30:34:9e:27:0e:9a:c1: 17:01:99:52:ef:6d:a1:92:8e:a1:fd:25:4f:3f:0f: 39:ea:46:bb:7d:58:09:b6:e8:77:5d:83:d9:b4:db: 4e:e9:9a:53:d2:45:65:d4:d5:31:92:2a:25:cd:48: be:c8:f9:3d:56:d2:6a:e0:18:50:37:e0:c2:7f:e9: b8:ba:3e:0b:b4:eb:02:0f:05:6f:f7:7a:a9:e9:f2: da:b9:90:9d:df:53:d7:fb:1e:00:85:de:9d:fc:6e: 8b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:D7:2D:2A:AF:3C:77:D0:BC:D0:B3:66:8F:46:66:5B:64:D6:C5:43 X509v3 Authority Key Identifier: keyid:39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:e8:1f:13:66:7e:34:bf:58:9f:50:39:cd:31:eb:96:c7:ea: 87:54:6a:12:de:2b:04:7e:12:75:b7:0c:39:df:7f:64:bb:83: 7d:75:9f:b8:37:29:a1:7b:00:1e:6b:02:c6:f5:54:04:0f:88: b0:43:36:0d:9a:f3:23:58:60:da:e1:c4:26:9b:86:12:92:00: f5:99:09:89:d3:a2:ad:5a:c6:e7:2c:41:0e:da:70:25:46:b5: 10:4c:60:f1:62:23:89:01:84:4f:d3:45:a8:f3:03:90:53:a6: fe:e5:ef:6c:0b:25:18:55:c0:c9:d6:a5:43:75:a0:60:78:f3: b3:b3:da:1f:54:64:f9:44:b0:04:31:22:21:90:2c:9e:61:5d: 88:ea:a3:80:6c:72:e2:36:fc:f3:7d:fa:7b:fc:eb:a3:8e:72: d3:e2:e9:77:b6:ef:17:09:c6:07:9b:4c:0c:80:43:7f:61:c4: 31:d9:a2:ff:89:68:72:53:93:90:53:7f:e7:eb:38:0d:59:8d: 3d:68:9b:6f:1d:2d:a6:26:72:89:b9:fe:e9:58:7f:8c:f6:b4: 15:3a:ca:98:85:44:5c:52:25:88:17:f6:32:f5:5f:c2:53:3f: c4:a8:fb:b8:7b:f2:20:18:b5:db:40:cc:de:66:15:55:37:55: 57:af:fd:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMzQjcxMTAvBgNVBAUTKDM5ODM3Q0I0QkVDQUY2QTYyNkM5MTZBRTk2MDI0MUI2 MDlFNkIyMEEwHhcNMjUxMjA3MDIxMTQ1WhcNMjUxMjE0MDIxMTQ1WjAYMRYwFAYD VQQDEw02OTM0ZTI2Mi1lM2U5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRwd7ISiJbMb3+G/kO/wrMLLyeZjFlmZXpom45NshX1OyylHdt5dYeTxHJf3 Db/PRx281s9SxqCd9ndaOyWnNs8KVT0YLL7duw7+ZXdxyMaXJnxzKCOUgSkF9aut daDgxF+eLhLqQ2lT5dn+20F6sBCiEc6tHnQFu3yGJG2099G/9D4fDMZpQWnTM15u i3ARTJa9jn+fhSlq/PVWQzA0nicOmsEXAZlS722hko6h/SVPPw856ka7fVgJtuh3 XYPZtNtO6ZpT0kVl1NUxkiolzUi+yPk9VtJq4BhQN+DCf+m4uj4LtOsCDwVv93qp 6fLauZCd31PX+x4Ahd6d/G6LZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK3XLSqv PHfQvNCzZo9GZltk1sVDMB8GA1UdIwQYMBaAFDmDfLS+yvamJskWrpYCQbYJ5rIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzNCNy8xNTlBNEFEMDkz MjUxMUVFQkU5ODdGNjBDNEY5QUUwMi9PWU44dEw3SzlxWW15UmF1bGdKQnRnbm1z Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09ZTjh0TDdLOXFZbXlSYXVsZ0pCdGdubXNnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzNCNy8xNTlBNEFEMDkzMjUxMUVFQkU5ODdGNjBDNEY5QUUwMi9PWU44dEw3Szlx WW15UmF1bGdKQnRnbm1zZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCG6B8TZn40v1ifUDnNMeuWx+qHVGoS3isEfhJ1tww5339ku4N9dZ+4 NymhewAeawLG9VQED4iwQzYNmvMjWGDa4cQmm4YSkgD1mQmJ06KtWsbnLEEO2nAl RrUQTGDxYiOJAYRP00Wo8wOQU6b+5e9sCyUYVcDJ1qVDdaBgePOzs9ofVGT5RLAE MSIhkCyeYV2I6qOAbHLiNvzzffp7/OujjnLT4ul3tu8XCcYHm0wMgEN/YcQx2aL/ iWhyU5OQU3/n6zgNWY09aJtvHS2mJnKJuf7pWH+M9rQVOsqYhURcUiWIF/Yy9V/C Uz/EqPu4e/IgGLXbQMzeZhVVN1VXr/3/ -----END CERTIFICATE-----Generated at Sun Dec 7 04:20:59 2025 by rpki-client