This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft File: OAHjYU99QEcCrkIssnnlHcnRTKI.mft (raw, json) Hash identifier: xeomBsIAsUbGBvkVgLpAe6utS9KMGJq2gyND3iisXEU= Subject key identifier: D0:1A:C5:55:40:78:C8:56:92:98:56:7A:B7:9A:3A:9D:D9:CA:C3:53 Authority key identifier: 38:01:E3:61:4F:7D:40:47:02:AE:42:2C:B2:79:E5:1D:C9:D1:4C:A2 Certificate issuer: /CN=A912383B/serialNumber=3801E3614F7D404702AE422CB279E51DC9D14CA2 Certificate serial: 0877 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft Manifest number: 0870 Signing time: Thu 18 Dec 2025 20:09:42 +0000 Manifest this update: Thu 18 Dec 2025 20:09:42 +0000 Manifest next update: Thu 25 Dec 2025 20:09:42 +0000 Files and hashes: 1: OAHjYU99QEcCrkIssnnlHcnRTKI.crl (hash: X2EnWFYhnCSuyGRlwOgSmE+LhUT1HPMXbYeCZi8fqEg=) 2: 4E4AF4A2C2B111EBABFFA212C4F9AE02.roa (hash: OwVRnVKX5TIRRxRa7tYPZCkquxRI/+jnc5rYmXmYkKM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.crl rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 20:09:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2167 (0x877) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912383B, serialNumber=3801E3614F7D404702AE422CB279E51DC9D14CA2 Validity Not Before: Dec 18 20:09:42 2025 GMT Not After : Dec 25 20:09:42 2025 GMT Subject: CN=69445f86-b409 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:5a:05:7d:18:65:d7:ec:9f:6e:82:ef:12:14: 90:1c:d2:55:d4:27:8f:eb:d1:a9:f7:19:96:ce:f3: 64:0e:15:d7:93:dc:8f:ec:7e:e6:9d:5a:bb:aa:bd: 89:e0:84:ce:d3:a8:23:ba:a9:40:81:96:35:dd:90: d4:ba:71:bb:70:a5:26:ef:f4:0b:84:3a:de:c3:3d: 3f:6a:9a:12:88:27:f6:c5:24:6c:da:8e:24:cd:03: 8f:70:a8:16:31:19:d2:e7:5c:dc:33:36:4e:c2:71: db:f0:3a:7f:81:ee:b3:06:60:da:08:6b:58:9e:1a: a6:c4:de:b6:3b:7c:72:68:f1:82:f1:6f:41:ce:ac: 5f:ae:a1:24:61:44:bd:24:2a:88:93:e8:bd:5d:37: 58:f1:71:67:cd:d2:86:bc:5c:90:47:ba:1c:2c:0c: a2:5a:01:da:70:4b:70:1e:70:ca:be:db:9b:35:6a: 62:19:68:5a:cc:95:2f:6b:a5:9a:d0:2e:b3:de:14: c7:9f:f1:a4:fd:1c:c1:49:06:43:d6:17:dd:93:48: c1:00:cd:f6:b8:c8:11:7a:cc:5b:a0:dc:08:c6:74: 6d:19:12:c8:10:62:58:97:32:3c:3a:1d:d2:bb:b6: 23:0c:08:58:66:97:80:bf:85:e7:25:6b:eb:8d:cf: c4:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:1A:C5:55:40:78:C8:56:92:98:56:7A:B7:9A:3A:9D:D9:CA:C3:53 X509v3 Authority Key Identifier: keyid:38:01:E3:61:4F:7D:40:47:02:AE:42:2C:B2:79:E5:1D:C9:D1:4C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OAHjYU99QEcCrkIssnnlHcnRTKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912383B/FBBA9E9CE02311EA9922DE42C4F9AE02/OAHjYU99QEcCrkIssnnlHcnRTKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:52:5f:87:bb:86:a1:7a:93:c1:76:46:70:54:eb:4d:af:4d: 5d:99:ed:0b:1d:44:9b:81:89:74:53:a9:25:57:de:d5:b9:66: e8:ff:9e:4b:a4:57:a2:9f:31:fc:cd:d4:db:ec:3b:88:1d:b1: dd:3a:d8:33:b3:38:43:37:6d:c2:65:8f:99:01:f1:7c:60:1d: 7f:38:32:b0:20:02:17:71:d7:c1:ae:da:fb:59:3e:e7:5e:59: 12:3b:e3:82:26:c0:7d:98:94:5d:95:2c:8c:23:cd:5f:70:b1: 34:26:07:b9:2e:67:af:f8:d6:2a:57:18:11:83:79:f4:9d:55: bc:bd:ce:6b:9a:50:e0:13:75:fb:c7:f0:78:72:ed:91:20:9e: 5d:c5:7a:8a:c3:e3:3e:a7:f2:2d:9d:28:4b:33:e2:b6:82:62: 3c:0c:0e:d5:5d:5b:82:ba:1e:09:76:34:03:44:ce:90:90:2d: e2:5a:96:2a:18:55:7e:43:73:33:c9:31:b2:26:35:2f:73:73: 4b:32:27:20:ad:a4:7c:d2:0a:69:9f:db:d0:89:0c:84:90:17: 8a:ee:cd:26:1c:e4:da:77:c4:08:f8:80:1d:ac:e8:21:20:f9: 5f:9d:2a:50:b7:6e:4e:b5:2a:c7:b5:32:15:c3:74:c9:9f:54: d5:45:f9:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4M0IxMTAvBgNVBAUTKDM4MDFFMzYxNEY3RDQwNDcwMkFFNDIyQ0IyNzlFNTFE QzlEMTRDQTIwHhcNMjUxMjE4MjAwOTQyWhcNMjUxMjI1MjAwOTQyWjAYMRYwFAYD VQQDDA02OTQ0NWY4Ni1iNDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk1oFfRhl1+yfboLvEhSQHNJV1CeP69Gp9xmWzvNkDhXXk9yP7H7mnVq7qr2J 4ITO06gjuqlAgZY13ZDUunG7cKUm7/QLhDrewz0/apoSiCf2xSRs2o4kzQOPcKgW MRnS51zcMzZOwnHb8Dp/ge6zBmDaCGtYnhqmxN62O3xyaPGC8W9BzqxfrqEkYUS9 JCqIk+i9XTdY8XFnzdKGvFyQR7ocLAyiWgHacEtwHnDKvtubNWpiGWhazJUva6Wa 0C6z3hTHn/Gk/RzBSQZD1hfdk0jBAM32uMgResxboNwIxnRtGRLIEGJYlzI8Oh3S u7YjDAhYZpeAv4XnJWvrjc/EDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNAaxVVA eMhWkphWereaOp3ZysNTMB8GA1UdIwQYMBaAFDgB42FPfUBHAq5CLLJ55R3J0Uyi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgzQi9GQkJBOUU5Q0Uw MjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9PQUhqWVU5OVFFY0Nya0lzc25ubEhjblJU S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09BSGpZVTk5UUVjQ3JrSXNzbm5sSGNuUlRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzgzQi9GQkJBOUU5Q0UwMjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9PQUhqWVU5OVFF Y0Nya0lzc25ubEhjblJUS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHUl+Hu4ahepPBdkZwVOtNr01dme0LHUSbgYl0U6klV97VuWbo/55L pFeinzH8zdTb7DuIHbHdOtgzszhDN23CZY+ZAfF8YB1/ODKwIAIXcdfBrtr7WT7n XlkSO+OCJsB9mJRdlSyMI81fcLE0Jge5Lmev+NYqVxgRg3n0nVW8vc5rmlDgE3X7 x/B4cu2RIJ5dxXqKw+M+p/ItnShLM+K2gmI8DA7VXVuCuh4JdjQDRM6QkC3iWpYq GFV+Q3MzyTGyJjUvc3NLMicgraR80gppn9vQiQyEkBeK7s0mHOTad8QI+IAdrOgh IPlfnSpQt25OtSrHtTIVw3TJn1TVRflN -----END CERTIFICATE-----Generated at Fri Dec 19 17:46:46 2025 by rpki-client