This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft File: _ONoVUVgesO8wzQNA5shaIJxJ74.mft (raw, json) Hash identifier: FQNuSFmFRsS1kZ1kKL/iMKh3o9kciJx5AFZVX7wUdIU= Subject key identifier: F4:E6:5A:41:1F:DD:FA:B2:A5:72:AF:97:BB:55:39:CD:6C:4E:0B:37 Authority key identifier: FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE Certificate issuer: /CN=A9198D02/serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Certificate serial: 089D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft Manifest number: 0884 Signing time: Sat 06 Dec 2025 19:43:21 +0000 Manifest this update: Sat 06 Dec 2025 19:43:21 +0000 Manifest next update: Sat 13 Dec 2025 19:43:21 +0000 Files and hashes: 1: _ONoVUVgesO8wzQNA5shaIJxJ74.crl (hash: raYLoufTSiwyzwDzL/JXOmxm7ew01AwJbNTRggHEVLo=) 2: 3BF0A4D868F511ECAB15DE18C4F9AE02.roa (hash: Wvwkw2qq7X3gm9ipfWCc3BGdmbxdjnrv9dxFhs0Hnp4=) 3: 51A7E3C28EB711EBB8A7B01DC4F9AE02.roa (hash: DAWoyEN2Fc3h4hex7mVD7U45759qmKwV9gi2n6Era6M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2205 (0x89d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D02, serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Validity Not Before: Dec 6 19:43:21 2025 GMT Not After : Dec 13 19:43:21 2025 GMT Subject: CN=69348759-e3f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:16:f7:8d:f6:5e:67:c3:b5:ce:03:aa:4a:a8: 92:8f:a4:6a:89:4c:da:73:72:fc:5b:8c:8e:0c:d0: 5a:da:03:e2:df:69:77:ae:14:65:c1:a7:cf:84:52: 63:a7:15:09:91:71:98:51:2d:fe:5f:6c:16:3f:bc: ba:ed:59:d7:10:7b:80:0a:d0:86:6f:4c:7d:7d:14: af:4d:30:4a:4b:32:36:be:fd:a4:4e:a8:06:39:83: 76:49:0a:41:38:91:f6:35:0c:97:df:15:eb:a9:b3: 7b:93:22:f4:3c:3e:89:d7:79:28:30:ea:47:ab:86: fb:34:98:db:25:f4:9d:a3:26:fa:38:2d:c5:d7:9a: a9:38:1e:b6:15:26:dc:1c:2a:88:42:2e:20:cf:89: 72:39:02:02:4f:69:b5:69:85:56:b0:3c:09:23:73: 74:45:60:8d:de:9f:3f:19:44:17:2b:8f:7f:9e:5f: 73:fe:6d:05:9c:7f:af:ae:88:95:b6:d2:53:99:85: c0:d5:f4:63:d0:1e:a1:ab:2b:17:50:b1:42:45:7e: 3e:02:1a:ef:4d:ac:51:ed:2b:97:4a:38:37:23:75: 7a:29:a5:0c:45:84:3e:c5:ef:cc:e5:b5:24:6d:1d: 3a:e7:2c:ac:26:34:98:26:36:c6:e3:56:34:59:5b: 64:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:E6:5A:41:1F:DD:FA:B2:A5:72:AF:97:BB:55:39:CD:6C:4E:0B:37 X509v3 Authority Key Identifier: keyid:FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:cc:f0:6c:2c:77:e1:e7:e0:ca:fe:28:32:10:48:5d:1d:ee: 4c:33:27:30:ef:85:6e:66:a7:f8:17:5b:13:e3:eb:38:89:8f: d7:03:b2:1f:8f:80:42:d2:40:13:08:50:43:93:8a:d0:88:d8: 47:6c:0d:16:5c:1e:c9:cd:ea:41:5a:0d:7c:1b:3e:1b:f9:94: c2:d4:19:b6:cf:5c:3d:7c:69:c2:95:01:38:af:5f:f0:9e:a0: e5:bd:3c:72:3b:06:fc:b3:41:31:f6:de:af:49:34:97:41:fe: ba:27:a7:91:04:de:d6:c6:85:6f:bd:40:56:6d:57:9a:86:06: 27:c9:81:07:55:c9:ab:4a:11:82:5b:d1:86:97:ac:10:8a:02: 91:9b:00:d3:3e:65:2d:26:6a:2d:cd:cb:7f:77:aa:87:b5:ce: e6:ef:77:30:69:79:b1:ae:29:4a:30:09:11:24:3b:a6:59:c2: 72:43:03:5a:4b:67:f5:b0:92:0d:96:68:01:e5:ff:33:96:73: 6e:ba:3e:79:8e:d0:d9:3e:b9:02:99:15:16:ba:e7:dd:b1:ba: 64:60:79:9b:c0:26:71:49:03:20:ed:05:0d:7b:59:5c:bc:b0: bb:78:32:26:14:61:20:71:91:de:2e:1c:7a:d6:62:c7:3a:46: ab:90:9d:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEMDIxMTAvBgNVBAUTKEZDRTM2ODU1NDU2MDdBQzNCQ0MzMzQwRDAzOUIyMTY4 ODI3MTI3QkUwHhcNMjUxMjA2MTk0MzIxWhcNMjUxMjEzMTk0MzIxWjAYMRYwFAYD VQQDEw02OTM0ODc1OS1lM2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqBb3jfZeZ8O1zgOqSqiSj6RqiUzac3L8W4yODNBa2gPi32l3rhRlwafPhFJj pxUJkXGYUS3+X2wWP7y67VnXEHuACtCGb0x9fRSvTTBKSzI2vv2kTqgGOYN2SQpB OJH2NQyX3xXrqbN7kyL0PD6J13koMOpHq4b7NJjbJfSdoyb6OC3F15qpOB62FSbc HCqIQi4gz4lyOQICT2m1aYVWsDwJI3N0RWCN3p8/GUQXK49/nl9z/m0FnH+vroiV ttJTmYXA1fRj0B6hqysXULFCRX4+AhrvTaxR7SuXSjg3I3V6KaUMRYQ+xe/M5bUk bR065yysJjSYJjbG41Y0WVtkhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPTmWkEf 3fqypXKvl7tVOc1sTgs3MB8GA1UdIwQYMBaAFPzjaFVFYHrDvMM0DQObIWiCcSe+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQwMi8yOEE1MDZGQUQ4 NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2VzTzh3elFOQTVzaGFJSnhK NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19PTm9WVVZnZXNPOHd6UU5BNXNoYUlKeEo3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQwMi8yOEE1MDZGQUQ4NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2Vz Tzh3elFOQTVzaGFJSnhKNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQzPBsLHfh5+DK/igyEEhdHe5MMycw74VuZqf4F1sT4+s4iY/XA7If j4BC0kATCFBDk4rQiNhHbA0WXB7JzepBWg18Gz4b+ZTC1Bm2z1w9fGnClQE4r1/w nqDlvTxyOwb8s0Ex9t6vSTSXQf66J6eRBN7WxoVvvUBWbVeahgYnyYEHVcmrShGC W9GGl6wQigKRmwDTPmUtJmotzct/d6qHtc7m73cwaXmxrilKMAkRJDumWcJyQwNa S2f1sJINlmgB5f8zlnNuuj55jtDZPrkCmRUWuufdsbpkYHmbwCZxSQMg7QUNe1lc vLC7eDImFGEgcZHeLhx61mLHOkarkJ2I -----END CERTIFICATE-----Generated at Sat Dec 6 22:07:34 2025 by rpki-client