This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft File: oktqYgRLcAZfBQY4hGDkry8X8_8.mft (raw, json) Hash identifier: F6t86M4uKRR6d+USGhxtlNgAS0l7RmTt+Ibl4bFY+QM= Subject key identifier: 72:04:6C:DA:F8:E5:6A:8C:13:F9:B2:AF:2E:52:D7:2B:97:05:01:CE Authority key identifier: A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF Certificate issuer: /CN=A918F550/serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Certificate serial: 35D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft Manifest number: 3557 Signing time: Sat 06 Dec 2025 14:24:13 +0000 Manifest this update: Sat 06 Dec 2025 14:24:12 +0000 Manifest next update: Sat 13 Dec 2025 14:24:12 +0000 Files and hashes: 1: oktqYgRLcAZfBQY4hGDkry8X8_8.crl (hash: x03hbKcEKWLRlcE44XubBWVWE0o1H13engq/SFhE/XI=) 2: 2693CBBCD1EA11F0BC5A5E85C4F9AE02.roa (hash: 5TWGxM/R+EbyeUY2/N/4Eqaj6fF7nRyk9e+Inu6xkoI=) 3: 6C1B853CB93811F09BBA425FC4F9AE02.roa (hash: Uy1brxvBZUOgYCz25E+l8hAge6tUCO1Wj1Oolb03hHo=) 4: D169AD50985511F09A18185EC4F9AE02.roa (hash: gqjEr96Yck7DcthvfK2CSUidOZKPUY9JGM9VjopIO6s=) 5: CC23ED70990811F08BF0CB55C4F9AE02.roa (hash: Wb0omWMGDcuIWJtZzO5aYUeXeBS3PzZ1jDUa5EAiIV0=) 6: 02C97520985011F083EA2077C4F9AE02.roa (hash: iDndSBoFAc9uhUgvXQuDJ/5b7tXkUPKhNkfuD+XgWIQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:24:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13783 (0x35d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F550, serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Validity Not Before: Dec 6 14:24:12 2025 GMT Not After : Dec 13 14:24:12 2025 GMT Subject: CN=69343c8d-5a66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:0c:1b:c7:2a:3c:f3:8c:e9:c6:ed:57:ed:16: 79:9e:e9:2c:b8:98:53:b5:8f:f8:73:46:9f:a4:99: 0a:9d:a7:34:b4:68:2b:1d:40:77:1b:87:9f:d0:8d: 75:26:e3:ef:c9:ea:64:01:0e:72:2f:8d:9c:6c:72: af:7e:ff:45:f6:68:44:a7:f5:ca:fe:45:42:27:82: ff:b8:14:ce:5f:c6:f1:09:24:f6:c3:a9:77:19:26: cf:0f:51:1a:ab:98:c6:ee:b6:a0:34:c6:51:c6:f8: a6:d2:d5:5c:dd:bd:ba:72:72:95:0c:15:f0:6d:ae: cd:98:c9:0a:9b:26:b2:13:18:d9:91:72:26:74:96: c1:88:0d:5c:71:c2:1f:7f:a7:27:cf:b9:b8:96:f5: 9e:76:08:d8:34:16:0d:38:0f:22:a8:c6:3a:e7:03: 5d:fe:8f:be:ff:cc:d9:92:f6:3c:03:d3:db:47:ec: 9f:41:00:1b:da:7b:7d:af:49:6e:88:a4:5e:b3:45: b8:13:0f:ad:bf:ae:da:c9:7d:a8:a5:9f:b9:20:9b: 12:96:ed:ef:fa:cf:49:d4:45:ba:68:b6:46:86:72: 0c:bd:49:54:4b:d4:2a:ac:fa:0a:a4:fa:c0:10:ac: 9e:53:16:2f:40:ca:c7:b4:08:12:c9:11:6e:8e:0d: 9d:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:04:6C:DA:F8:E5:6A:8C:13:F9:B2:AF:2E:52:D7:2B:97:05:01:CE X509v3 Authority Key Identifier: keyid:A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:6f:11:36:5e:f4:d2:f1:b9:ef:34:b4:b5:b1:2d:d0:93:76: 24:44:10:40:12:a1:88:d5:23:aa:95:26:12:1d:43:14:85:7c: 86:fb:16:b2:6e:33:21:2d:05:fc:8b:12:14:b7:65:34:ca:2d: 6a:4b:84:4b:03:da:07:48:ce:b2:da:82:40:f4:a2:05:b5:df: ea:51:3f:b2:9b:59:fc:87:18:4c:7d:c3:09:5a:97:bb:c8:05: f7:b5:db:a8:a1:b1:74:56:bb:9f:33:66:01:6e:aa:bf:6a:85: 14:61:77:8a:eb:af:b5:b6:e8:83:16:8f:19:31:65:b9:de:76: 13:72:8f:fd:e4:87:0f:29:09:b1:6d:d5:86:07:e0:67:c0:57: 3d:c5:88:10:59:43:0d:c2:67:9d:0f:51:26:2d:1b:9a:ab:c7: 9d:0b:57:2e:b5:d9:ff:4d:a0:9d:6c:08:3f:a1:0b:2e:05:29: 30:fe:1e:b2:0d:05:f4:96:6c:89:d3:a6:c9:02:50:cd:de:25: 53:f0:4e:cd:b7:85:05:60:aa:bd:a6:03:e0:86:70:1a:2c:d5: 8e:da:b8:0b:8d:61:e9:65:fb:42:9e:9a:21:fe:7e:c1:28:05: 60:cd:44:1b:66:86:69:dd:5a:31:fd:50:66:10:bf:9d:85:59: ba:b8:ee:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY1NTAxMTAvBgNVBAUTKEEyNEI2QTYyMDQ0QjcwMDY1RjA1MDYzODg0NjBFNEFG MkYxN0YzRkYwHhcNMjUxMjA2MTQyNDEyWhcNMjUxMjEzMTQyNDEyWjAYMRYwFAYD VQQDEw02OTM0M2M4ZC01YTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqwwbxyo884zpxu1X7RZ5nuksuJhTtY/4c0afpJkKnac0tGgrHUB3G4ef0I11 JuPvyepkAQ5yL42cbHKvfv9F9mhEp/XK/kVCJ4L/uBTOX8bxCST2w6l3GSbPD1Ea q5jG7ragNMZRxvim0tVc3b26cnKVDBXwba7NmMkKmyayExjZkXImdJbBiA1cccIf f6cnz7m4lvWedgjYNBYNOA8iqMY65wNd/o++/8zZkvY8A9PbR+yfQQAb2nt9r0lu iKRes0W4Ew+tv67ayX2opZ+5IJsSlu3v+s9J1EW6aLZGhnIMvUlUS9QqrPoKpPrA EKyeUxYvQMrHtAgSyRFujg2d+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHIEbNr4 5WqME/myry5S1yuXBQHOMB8GA1UdIwQYMBaAFKJLamIES3AGXwUGOIRg5K8vF/P/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjU1MC84QjlCRDIwMjFE ODUxMUUyQjQxMjMwREMwOEIwMkNEMi9va3RxWWdSTGNBWmZCUVk0aEdEa3J5OFg4 XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29rdHFZZ1JMY0FaZkJRWTRoR0Rrcnk4WDhfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjU1MC84QjlCRDIwMjFEODUxMUUyQjQxMjMwREMwOEIwMkNEMi9va3RxWWdSTGNB WmZCUVk0aEdEa3J5OFg4XzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVbxE2XvTS8bnvNLS1sS3Qk3YkRBBAEqGI1SOqlSYSHUMUhXyG+xay bjMhLQX8ixIUt2U0yi1qS4RLA9oHSM6y2oJA9KIFtd/qUT+ym1n8hxhMfcMJWpe7 yAX3tduoobF0VrufM2YBbqq/aoUUYXeK66+1tuiDFo8ZMWW53nYTco/95IcPKQmx bdWGB+BnwFc9xYgQWUMNwmedD1EmLRuaq8edC1cutdn/TaCdbAg/oQsuBSkw/h6y DQX0lmyJ06bJAlDN3iVT8E7Nt4UFYKq9pgPghnAaLNWO2rgLjWHpZftCnpoh/n7B KAVgzUQbZoZp3Vox/VBmEL+dhVm6uO6m -----END CERTIFICATE-----Generated at Sat Dec 6 23:56:20 2025 by rpki-client