This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft File: os0QpH7XI-HEi19Q1oDPT2f8sdM.mft (raw, json) Hash identifier: 7W9yL+GC0DVx6hPuc3QuYQ3emuAggAM8jOB2yf4O0xI= Subject key identifier: 54:E5:B2:C9:8A:B0:91:34:5B:34:6B:E1:E0:68:C9:09:72:FB:0E:1F Authority key identifier: A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3 Certificate issuer: /CN=A9194C0D/serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3 Certificate serial: 01B5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft Manifest number: 01AD Signing time: Fri 05 Dec 2025 01:34:14 +0000 Manifest this update: Fri 05 Dec 2025 01:34:13 +0000 Manifest next update: Fri 12 Dec 2025 01:34:13 +0000 Files and hashes: 1: os0QpH7XI-HEi19Q1oDPT2f8sdM.crl (hash: yB/CwQEVhiEorXkS2uR+E5lR1MafEoGELvgPTDmSPj4=) 2: 9D5E6AF8600F11EE98AFFB11C4F9AE02.roa (hash: G0w0TQdZeUrlcSkeMZASVFwkhbdyy5+tF+86mftNAhQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:34:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 437 (0x1b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194C0D, serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3 Validity Not Before: Dec 5 01:34:13 2025 GMT Not After : Dec 12 01:34:13 2025 GMT Subject: CN=69323696-25cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:80:47:91:82:a5:2d:65:17:74:15:52:61:18: 47:66:0c:5d:74:7d:a7:0c:74:41:78:df:20:2c:64: b5:16:cf:c6:1d:b2:ff:75:14:9f:fe:9f:32:89:04: 40:ee:16:04:1b:a1:a5:d9:fb:03:42:62:64:ee:c7: 54:fb:d0:3b:fb:01:dd:b8:84:e6:b3:b6:30:32:3e: 7f:81:ab:9b:59:c3:80:ac:79:a9:ac:f7:03:a1:9e: 52:14:b4:ef:37:83:84:bd:c2:e4:72:90:b3:47:7d: f0:fc:2c:a7:5c:0f:51:bf:36:d3:87:d7:65:b6:fb: 2d:c3:f0:29:e0:c5:f3:b2:55:39:0a:59:3e:c0:f8: a3:2a:2c:95:86:95:ec:29:e1:a1:66:e2:90:c8:4c: c5:ec:06:cb:1c:43:75:17:18:40:94:61:ed:78:3e: 21:94:22:13:48:8d:06:5c:29:ee:99:95:fc:72:28: ea:5d:69:89:66:30:47:c7:47:08:2d:87:2d:8a:33: c8:fa:fd:d7:1f:28:e9:b3:07:df:d7:b8:48:62:8d: 46:27:e7:3e:c3:e6:84:d3:f0:a4:5c:94:fd:58:bf: 3e:b4:07:df:84:46:6c:e9:21:d3:6a:e6:52:7d:7a: 0f:d2:70:7c:79:0a:62:01:dc:a3:60:59:88:e0:e0: a5:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:E5:B2:C9:8A:B0:91:34:5B:34:6B:E1:E0:68:C9:09:72:FB:0E:1F X509v3 Authority Key Identifier: keyid:A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:64:aa:ac:8a:d7:f4:71:86:54:ea:fa:6e:b5:b8:a1:f4:e3: e3:39:9d:cc:24:69:9b:6d:33:f0:1e:ce:7f:14:98:58:6b:18: c1:7b:0e:e6:e8:b5:14:85:36:65:f9:ee:e8:ea:05:68:d7:30: dd:55:9e:73:39:17:1e:ac:fb:52:a6:54:bf:1d:ce:13:05:db: 8b:3b:27:d2:ec:fb:bb:8f:ea:d5:63:d6:2b:44:5b:b6:55:23: 2d:98:3d:14:c3:9a:1c:86:01:b6:cb:55:3e:86:cd:15:ce:10: 4d:a9:74:0c:d5:56:23:a1:d8:21:bf:b3:c9:88:26:c8:f4:49: 0a:af:33:ac:6e:9b:10:b2:11:aa:5e:2f:84:36:f0:cf:ba:8a: 70:53:51:53:70:bb:80:b4:14:cc:d9:68:1a:54:19:4d:4a:30: d5:64:ed:4c:06:34:b5:cc:63:58:4e:16:ce:89:5a:16:34:66: d1:39:a3:69:d1:0b:17:43:44:fb:21:db:de:56:3b:24:87:41: b0:99:2b:7a:9f:5f:f7:35:fc:f4:5c:26:23:cb:b2:66:0d:64: 47:6f:c2:33:24:c2:17:29:06:d1:17:d9:d4:ad:91:f7:ed:02: 8a:15:14:79:4b:f4:29:a2:33:c7:f0:40:77:c3:0f:2d:8e:fd: 61:87:7f:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRDMEQxMTAvBgNVBAUTKEEyQ0QxMEE0N0VENzIzRTFDNDhCNUY1MEQ2ODBDRjRG NjdGQ0IxRDMwHhcNMjUxMjA1MDEzNDEzWhcNMjUxMjEyMDEzNDEzWjAYMRYwFAYD VQQDEw02OTMyMzY5Ni0yNWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnIBHkYKlLWUXdBVSYRhHZgxddH2nDHRBeN8gLGS1Fs/GHbL/dRSf/p8yiQRA 7hYEG6Gl2fsDQmJk7sdU+9A7+wHduITms7YwMj5/gaubWcOArHmprPcDoZ5SFLTv N4OEvcLkcpCzR33w/CynXA9RvzbTh9dltvstw/Ap4MXzslU5Clk+wPijKiyVhpXs KeGhZuKQyEzF7AbLHEN1FxhAlGHteD4hlCITSI0GXCnumZX8cijqXWmJZjBHx0cI LYctijPI+v3XHyjpswff17hIYo1GJ+c+w+aE0/CkXJT9WL8+tAffhEZs6SHTauZS fXoP0nB8eQpiAdyjYFmI4OClewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFTlssmK sJE0WzRr4eBoyQly+w4fMB8GA1UdIwQYMBaAFKLNEKR+1yPhxItfUNaAz09n/LHT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEMwRC9BNDcwNzg1RTU3 NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9vczBRcEg3WEktSEVpMTlRMW9EUFQyZjhz ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29zMFFwSDdYSS1IRWkxOVExb0RQVDJmOHNkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEMwRC9BNDcwNzg1RTU3NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9vczBRcEg3WEkt SEVpMTlRMW9EUFQyZjhzZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBZKqsitf0cYZU6vputbih9OPjOZ3MJGmbbTPwHs5/FJhYaxjBew7m 6LUUhTZl+e7o6gVo1zDdVZ5zORcerPtSplS/Hc4TBduLOyfS7Pu7j+rVY9YrRFu2 VSMtmD0Uw5ochgG2y1U+hs0VzhBNqXQM1VYjodghv7PJiCbI9EkKrzOsbpsQshGq Xi+ENvDPuopwU1FTcLuAtBTM2WgaVBlNSjDVZO1MBjS1zGNYThbOiVoWNGbROaNp 0QsXQ0T7IdveVjskh0GwmSt6n1/3Nfz0XCYjy7JmDWRHb8IzJMIXKQbRF9nUrZH3 7QKKFRR5S/QpojPH8EB3ww8tjv1hh3+J -----END CERTIFICATE-----Generated at Sat Dec 6 20:42:07 2025 by rpki-client