This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft File: OYkRMAEE18WLMm5WZLPXmi1GRuA.mft (raw, json) Hash identifier: fzomid7z5sY6y6QoHz9uOwy5Qxy2WTAlSWqMYcNVCqY= Subject key identifier: 45:24:A2:23:C9:9B:F2:06:64:21:C6:4C:8C:A2:B3:C7:52:B5:60:DA Authority key identifier: 39:89:11:30:01:04:D7:C5:8B:32:6E:56:64:B3:D7:9A:2D:46:46:E0 Certificate issuer: /CN=A918F1C9/serialNumber=398911300104D7C58B326E5664B3D79A2D4646E0 Certificate serial: 0A66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYkRMAEE18WLMm5WZLPXmi1GRuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft Manifest number: 0AE8 Signing time: Thu 04 Dec 2025 19:01:09 +0000 Manifest this update: Thu 04 Dec 2025 19:01:09 +0000 Manifest next update: Thu 11 Dec 2025 19:01:09 +0000 Files and hashes: 1: OYkRMAEE18WLMm5WZLPXmi1GRuA.crl (hash: d9Br0G5qw4g3dSqeu1OVtJdcFw10Ocq7NF7rmXpYmIM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.crl rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYkRMAEE18WLMm5WZLPXmi1GRuA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2662 (0xa66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F1C9, serialNumber=398911300104D7C58B326E5664B3D79A2D4646E0 Validity Not Before: Dec 4 19:01:09 2025 GMT Not After : Dec 11 19:01:09 2025 GMT Subject: CN=6931da75-f5a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:13:fc:05:25:b9:c9:30:06:ac:eb:bb:a6:c9: b9:18:4a:22:93:f9:51:13:fc:64:39:46:34:53:93: 24:d9:d7:dc:90:3b:e6:29:48:4f:8f:9c:b4:87:a4: 19:91:d9:45:fa:a9:a8:93:c7:77:cd:6e:bc:02:84: c5:ff:00:48:76:cf:fe:b1:f4:5f:2b:65:4c:7f:8b: 82:1a:13:d1:27:90:6c:c6:c4:71:47:76:c9:12:04: 0f:5d:65:f1:4c:6d:00:8e:21:85:7f:c1:81:ba:68: 57:e8:39:16:16:fc:a1:87:2d:c0:82:7f:d5:bb:8a: 22:d1:ed:5d:61:e7:3d:b4:b1:c4:59:9b:f5:22:6b: 84:1e:35:62:22:fb:fc:a3:ed:8c:49:5b:dd:45:a6: f4:b8:c4:4d:0f:c1:50:9e:1a:ec:06:f8:ec:e8:39: 2f:eb:07:06:45:d7:3e:2a:4f:e1:3d:07:14:da:f0: 25:bf:10:59:69:8f:e8:d1:f1:94:b8:2c:7b:41:6c: f4:ce:ca:f6:85:83:4d:fe:5c:42:1c:ef:cf:9f:03: 26:bd:09:05:2d:c6:d7:92:b7:f3:ef:51:cf:9f:f9: 94:22:b9:2b:25:09:e7:58:16:86:51:56:1d:b4:be: 33:e9:cd:dc:fe:31:74:ff:e8:1d:79:97:d4:44:58: 20:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:24:A2:23:C9:9B:F2:06:64:21:C6:4C:8C:A2:B3:C7:52:B5:60:DA X509v3 Authority Key Identifier: keyid:39:89:11:30:01:04:D7:C5:8B:32:6E:56:64:B3:D7:9A:2D:46:46:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYkRMAEE18WLMm5WZLPXmi1GRuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:1c:63:dd:d6:0a:9f:01:34:44:dd:c0:66:03:63:82:54:5d: 84:71:19:6a:e1:a7:1f:80:62:4c:85:0e:43:ec:59:22:9a:ea: 32:fa:5b:fb:09:fa:d4:f2:c6:44:f1:d5:dc:4c:06:05:97:0d: 12:c6:59:5b:65:d2:01:37:e2:97:03:4d:d4:73:af:2c:85:23: b4:9a:79:45:1d:2c:38:5f:a1:be:ae:a3:8c:40:32:fd:b3:71: 6c:14:99:9c:95:c8:90:df:11:3d:df:e0:80:4b:07:07:db:88: 9b:df:a4:c1:1c:ca:4c:eb:5a:88:d0:57:dd:fd:81:d0:5b:b1: 1d:08:22:39:c4:8e:c5:31:10:64:a1:93:5e:70:ce:3c:dc:31: e4:3d:52:30:96:5e:9d:95:47:29:e0:a0:14:d7:dc:20:3c:83: c6:af:32:4d:8e:b8:38:89:35:66:a7:d9:bf:c8:71:c6:98:5f: 9e:fa:58:2b:33:b0:0d:1e:3f:61:e1:80:bb:14:e8:c0:91:44: 59:43:59:71:26:0c:60:64:41:66:95:dc:9e:08:51:ab:e2:25: 86:bc:95:8e:f3:cf:1c:bd:50:89:7a:bd:dd:0a:6e:c7:4c:20: 72:f8:3c:88:71:f1:68:64:f0:29:4a:99:ad:7d:0d:c5:49:8a: aa:c2:c6:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEYxQzkxMTAvBgNVBAUTKDM5ODkxMTMwMDEwNEQ3QzU4QjMyNkU1NjY0QjNENzlB MkQ0NjQ2RTAwHhcNMjUxMjA0MTkwMTA5WhcNMjUxMjExMTkwMTA5WjAYMRYwFAYD VQQDEw02OTMxZGE3NS1mNWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1xP8BSW5yTAGrOu7psm5GEoik/lRE/xkOUY0U5Mk2dfckDvmKUhPj5y0h6QZ kdlF+qmok8d3zW68AoTF/wBIds/+sfRfK2VMf4uCGhPRJ5BsxsRxR3bJEgQPXWXx TG0AjiGFf8GBumhX6DkWFvyhhy3Agn/Vu4oi0e1dYec9tLHEWZv1ImuEHjViIvv8 o+2MSVvdRab0uMRND8FQnhrsBvjs6Dkv6wcGRdc+Kk/hPQcU2vAlvxBZaY/o0fGU uCx7QWz0zsr2hYNN/lxCHO/PnwMmvQkFLcbXkrfz71HPn/mUIrkrJQnnWBaGUVYd tL4z6c3c/jF0/+gdeZfURFggbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEUkoiPJ m/IGZCHGTIyis8dStWDaMB8GA1UdIwQYMBaAFDmJETABBNfFizJuVmSz15otRkbg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjFDOS82QTU3QUI4QzdG OTUxMUVBQjBFRDg1MzdDNEY5QUUwMi9PWWtSTUFFRTE4V0xNbTVXWkxQWG1pMUdS dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09Za1JNQUVFMThXTE1tNVdaTFBYbWkxR1J1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjFDOS82QTU3QUI4QzdGOTUxMUVBQjBFRDg1MzdDNEY5QUUwMi9PWWtSTUFFRTE4 V0xNbTVXWkxQWG1pMUdSdUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSHGPd1gqfATRE3cBmA2OCVF2EcRlq4acfgGJMhQ5D7Fkimuoy+lv7 CfrU8sZE8dXcTAYFlw0SxllbZdIBN+KXA03Uc68shSO0mnlFHSw4X6G+rqOMQDL9 s3FsFJmclciQ3xE93+CASwcH24ib36TBHMpM61qI0Ffd/YHQW7EdCCI5xI7FMRBk oZNecM483DHkPVIwll6dlUcp4KAU19wgPIPGrzJNjrg4iTVmp9m/yHHGmF+e+lgr M7ANHj9h4YC7FOjAkURZQ1lxJgxgZEFmldyeCFGr4iWGvJWO888cvVCJer3dCm7H TCBy+DyIcfFoZPApSpmtfQ3FSYqqwsb8 -----END CERTIFICATE-----Generated at Sat Dec 6 12:22:06 2025 by rpki-client