This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft File: OvnsvEXk4pfSm6bEEfGgXIudqeM.mft (raw, json) Hash identifier: oyj9saJZraEEK4Hi3zU1rgxCNQRzs6bEE8F1MbDaXMQ= Subject key identifier: E2:E5:4F:41:E6:26:64:A6:E5:65:B9:8C:93:B4:BF:2F:40:A9:2F:16 Authority key identifier: 3A:F9:EC:BC:45:E4:E2:97:D2:9B:A6:C4:11:F1:A0:5C:8B:9D:A9:E3 Certificate issuer: /CN=A919CA18/serialNumber=3AF9ECBC45E4E297D29BA6C411F1A05C8B9DA9E3 Certificate serial: 020B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft Manifest number: 0209 Signing time: Fri 05 Dec 2025 00:37:17 +0000 Manifest this update: Fri 05 Dec 2025 00:37:16 +0000 Manifest next update: Fri 12 Dec 2025 00:37:16 +0000 Files and hashes: 1: OvnsvEXk4pfSm6bEEfGgXIudqeM.crl (hash: ALJLvjObZdg+pZxFIKlPQtDhso3Kmr18+DE0tDgHIm0=) 2: 82E99F5A10FC11EF95048154C4F9AE02.roa (hash: KiSgunw3k37SA5qIOSFD0yKCbhYgrY4Gzd+tIVRajoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.crl rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:37:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 523 (0x20b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CA18, serialNumber=3AF9ECBC45E4E297D29BA6C411F1A05C8B9DA9E3 Validity Not Before: Dec 5 00:37:16 2025 GMT Not After : Dec 12 00:37:16 2025 GMT Subject: CN=6932293c-83e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:3b:1b:2d:8e:bb:16:05:45:42:8d:65:8b:f3: c9:69:a6:2b:00:e8:52:88:81:2e:12:e8:43:f0:ac: 3e:8c:e9:c4:ac:39:e2:63:ec:81:f0:66:da:26:cb: 21:c1:0b:d2:75:77:aa:08:7a:5c:f1:03:e0:cd:a0: 6b:35:b1:3e:6b:36:23:1e:e1:f9:e0:97:55:89:97: d7:bc:3e:ed:d2:00:f0:20:19:6c:66:3d:30:67:90: e7:99:50:19:d5:05:d4:68:85:91:3c:9a:9e:ba:f6: 32:61:2d:9a:b9:58:6d:54:8d:f6:48:d7:1f:f2:63: 3e:18:d8:9a:80:ba:22:d5:49:2a:d1:33:f4:e3:ed: ef:09:00:10:64:01:66:50:49:e7:ea:85:c3:57:9a: 5e:92:38:01:47:33:f2:70:4e:73:91:15:fe:67:96: e2:61:8d:e8:24:2c:33:b1:fa:ff:09:3b:56:cf:cd: 36:cc:95:97:58:d1:1b:b4:b7:55:f4:50:d5:ac:72: 5e:45:40:af:50:f5:06:d1:df:54:6f:dd:0d:f0:b7: 5c:68:c1:ec:3e:0b:c0:38:a4:d7:45:9e:0a:a2:cb: be:fe:b8:ee:cb:35:69:56:6f:bd:f8:70:47:0f:d0: 5e:df:cb:70:9c:7f:ce:f7:b4:41:92:84:bd:2e:fc: 54:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:E5:4F:41:E6:26:64:A6:E5:65:B9:8C:93:B4:BF:2F:40:A9:2F:16 X509v3 Authority Key Identifier: keyid:3A:F9:EC:BC:45:E4:E2:97:D2:9B:A6:C4:11:F1:A0:5C:8B:9D:A9:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OvnsvEXk4pfSm6bEEfGgXIudqeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CA18/6D059BBCB1B211ED8D7C2F2BC4F9AE02/OvnsvEXk4pfSm6bEEfGgXIudqeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:39:05:cc:dd:43:25:ba:49:51:f1:eb:88:7e:73:b3:59:7c: 62:cc:5f:70:91:c3:81:9c:16:66:e3:cb:7a:7d:e9:2e:39:56: 61:49:6a:26:db:72:44:27:50:29:77:c6:e5:d1:46:44:bc:50: 02:d1:80:ff:91:40:c2:a0:ee:7e:20:e8:eb:66:fb:a2:fd:2d: 1d:48:e3:33:ce:09:b1:67:d3:9c:99:99:8b:2e:4c:f0:26:6a: 55:bf:c2:84:28:a9:ba:63:17:4c:00:d0:5c:78:87:a1:c9:38: 5b:19:b2:b8:9d:65:19:e8:a3:4a:e3:ac:bc:a2:a9:d2:b8:f9: f3:1d:a4:af:50:bd:df:41:fc:8c:9b:77:9d:c2:b3:b4:b3:23: b5:c1:93:56:a4:19:2b:e7:b0:8f:99:a3:ca:51:3e:f9:7b:b8: d7:0a:a8:fc:2d:bf:e9:08:0d:c8:92:0e:9d:12:44:c7:36:1a: d0:39:f8:8e:6f:d2:db:e9:45:7b:30:ca:3b:d3:15:f9:b6:4b: 94:4f:7a:b2:33:6b:57:49:c0:c3:67:44:48:52:98:48:3f:15: 41:f9:03:bc:44:c3:d8:93:cf:b1:53:40:2e:84:f1:e7:e4:c1: 08:d4:6c:c9:01:60:cf:fe:0f:b4:04:38:7d:68:0b:14:27:d7: 64:38:c7:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNBMTgxMTAvBgNVBAUTKDNBRjlFQ0JDNDVFNEUyOTdEMjlCQTZDNDExRjFBMDVD OEI5REE5RTMwHhcNMjUxMjA1MDAzNzE2WhcNMjUxMjEyMDAzNzE2WjAYMRYwFAYD VQQDEw02OTMyMjkzYy04M2UyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArzsbLY67FgVFQo1li/PJaaYrAOhSiIEuEuhD8Kw+jOnErDniY+yB8GbaJssh wQvSdXeqCHpc8QPgzaBrNbE+azYjHuH54JdViZfXvD7t0gDwIBlsZj0wZ5DnmVAZ 1QXUaIWRPJqeuvYyYS2auVhtVI32SNcf8mM+GNiagLoi1Ukq0TP04+3vCQAQZAFm UEnn6oXDV5pekjgBRzPycE5zkRX+Z5biYY3oJCwzsfr/CTtWz802zJWXWNEbtLdV 9FDVrHJeRUCvUPUG0d9Ub90N8LdcaMHsPgvAOKTXRZ4Kosu+/rjuyzVpVm+9+HBH D9Be38twnH/O97RBkoS9LvxUoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOLlT0Hm JmSm5WW5jJO0vy9AqS8WMB8GA1UdIwQYMBaAFDr57LxF5OKX0pumxBHxoFyLnanj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0ExOC82RDA1OUJCQ0Ix QjIxMUVEOEQ3QzJGMkJDNEY5QUUwMi9Pdm5zdkVYazRwZlNtNmJFRWZHZ1hJdWRx ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL092bnN2RVhrNHBmU202YkVFZkdnWEl1ZHFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Q0ExOC82RDA1OUJCQ0IxQjIxMUVEOEQ3QzJGMkJDNEY5QUUwMi9Pdm5zdkVYazRw ZlNtNmJFRWZHZ1hJdWRxZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACOQXM3UMluklR8euIfnOzWXxizF9wkcOBnBZm48t6fekuOVZhSWom 23JEJ1Apd8bl0UZEvFAC0YD/kUDCoO5+IOjrZvui/S0dSOMzzgmxZ9OcmZmLLkzw JmpVv8KEKKm6YxdMANBceIehyThbGbK4nWUZ6KNK46y8oqnSuPnzHaSvUL3fQfyM m3edwrO0syO1wZNWpBkr57CPmaPKUT75e7jXCqj8Lb/pCA3Ikg6dEkTHNhrQOfiO b9Lb6UV7MMo70xX5tkuUT3qyM2tXScDDZ0RIUphIPxVB+QO8RMPYk8+xU0AuhPHn 5MEI1GzJAWDP/g+0BDh9aAsUJ9dkOMe+ -----END CERTIFICATE-----Generated at Sat Dec 6 18:33:47 2025 by rpki-client