This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.mft File: OGxcstbg7GFBrrc_STUhsFIKPPo.mft (raw, json) Hash identifier: NrASMEH+AgxmKVJ02j94s/Udlww9mJiN5ngy9c+Ai28= Subject key identifier: AA:CC:AE:21:F7:0B:43:0C:03:50:80:BF:4E:35:19:C8:2B:37:27:20 Authority key identifier: 38:6C:5C:B2:D6:E0:EC:61:41:AE:B7:3F:49:35:21:B0:52:0A:3C:FA Certificate issuer: /CN=A9123AB4/serialNumber=386C5CB2D6E0EC6141AEB73F493521B0520A3CFA Certificate serial: 1DAB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGxcstbg7GFBrrc_STUhsFIKPPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.mft Manifest number: 1D9C Signing time: Sat 20 Dec 2025 15:56:29 +0000 Manifest this update: Sat 20 Dec 2025 15:56:29 +0000 Manifest next update: Sat 27 Dec 2025 15:56:29 +0000 Files and hashes: 1: OGxcstbg7GFBrrc_STUhsFIKPPo.crl (hash: A4MSOczIqITXeVOh2/1bl1kWAoYKuEDVdlnldOqWwbo=) 2: DD9C07828D8B11EBB959991DC4F9AE02.roa (hash: KcmqJfHxUpDuc0ECvYHJhDG4s7ZruYPj6RgZ3nxOtpo=) 3: DE5B018C8D8B11EBB959991DC4F9AE02.roa (hash: GTYplA3+/oqNyhCsSIMGIT62xAe/H3EJbhvf29oZLZM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.crl rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGxcstbg7GFBrrc_STUhsFIKPPo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 15:56:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7595 (0x1dab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123AB4, serialNumber=386C5CB2D6E0EC6141AEB73F493521B0520A3CFA Validity Not Before: Dec 20 15:56:29 2025 GMT Not After : Dec 27 15:56:29 2025 GMT Subject: CN=6946c72d-500c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:15:dd:25:47:2a:c3:8b:6d:61:82:0a:e1:6a: 70:0f:76:0a:73:4b:6e:50:03:7e:2d:76:e9:8b:09: 01:0a:8b:27:4e:a1:fc:81:9c:b8:8e:d8:71:27:cb: 7b:e9:b1:d9:0f:05:a5:33:74:57:c8:02:a8:38:dc: 99:41:4f:b1:03:7a:c9:34:9b:36:e8:6f:e3:c4:0b: 7a:26:56:e5:d7:c7:92:ce:af:2c:75:4f:88:1c:60: 7a:3d:c4:62:81:7e:cc:1a:c9:c5:dc:ba:87:44:ac: e8:37:79:05:f8:7c:a0:0a:ef:76:a0:41:8b:e8:5a: 4f:f8:db:00:65:77:30:ee:e6:2e:0a:93:95:da:75: aa:97:f1:db:ab:98:4d:2e:ae:5c:dc:a6:d3:7d:db: e0:14:d9:53:db:63:0e:85:d5:f0:6b:04:2a:8d:22: 34:9e:0b:37:5e:41:8b:63:ee:d0:7b:ef:87:10:a9: 5e:2e:33:ec:18:3d:8b:0f:87:32:23:7f:8d:e8:5d: c0:e1:e6:6a:0c:0b:f2:4e:b9:64:9c:bb:50:3e:5a: c7:59:44:3d:14:93:00:f4:f5:a6:19:8e:00:91:5a: 39:f5:40:3a:83:1c:aa:fb:67:91:4e:c9:f2:15:f8: ca:b0:db:99:84:1f:37:fc:df:10:44:aa:e5:36:7f: 41:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:CC:AE:21:F7:0B:43:0C:03:50:80:BF:4E:35:19:C8:2B:37:27:20 X509v3 Authority Key Identifier: keyid:38:6C:5C:B2:D6:E0:EC:61:41:AE:B7:3F:49:35:21:B0:52:0A:3C:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGxcstbg7GFBrrc_STUhsFIKPPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:73:a7:8d:67:19:1e:d0:f1:e8:fb:89:e0:d3:53:a0:3d:39: 8d:73:48:24:2f:da:24:0b:33:da:66:54:b0:9a:9d:6b:16:83: 17:3b:ab:9a:70:f2:dc:38:f7:c1:d5:3c:f9:de:fd:ee:02:9e: 4f:45:3d:38:98:8d:af:c0:86:b7:59:a4:ea:2a:85:4f:8b:b7: e4:3e:79:7d:20:ad:b8:8f:6d:d8:b6:4a:5e:9e:91:7a:f1:d8: c1:0f:e5:d1:15:e8:1b:ab:88:4e:b5:8a:34:54:56:56:9d:b7: d8:1e:38:76:f8:9c:2b:f7:ee:aa:44:b9:56:19:d6:20:37:1c: 3b:51:ec:90:ef:fc:ce:4f:fa:51:00:e7:a7:4b:4a:d7:82:25: 1b:65:a0:16:96:51:7e:5d:9b:d0:4f:ac:17:3e:68:9d:b9:4a: 5e:33:e5:11:2f:58:b7:45:bf:f6:ce:c1:71:f7:50:1f:cd:b8: 5e:41:44:e1:3f:c6:5d:af:54:1e:78:a7:7f:7b:76:ad:f0:eb: 1c:9f:b0:b4:77:b4:4d:ee:fa:be:3f:8d:d6:66:33:8a:2f:69: 2c:16:28:f7:c3:f1:c6:03:08:78:da:e7:92:3f:ef:77:c7:c6: 4e:df:f1:b6:37:54:91:c3:5b:f1:99:5d:5d:12:89:3c:67:6f: 78:c7:e3:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNBQjQxMTAvBgNVBAUTKDM4NkM1Q0IyRDZFMEVDNjE0MUFFQjczRjQ5MzUyMUIw NTIwQTNDRkEwHhcNMjUxMjIwMTU1NjI5WhcNMjUxMjI3MTU1NjI5WjAYMRYwFAYD VQQDDA02OTQ2YzcyZC01MDBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9RXdJUcqw4ttYYIK4WpwD3YKc0tuUAN+LXbpiwkBCosnTqH8gZy4jthxJ8t7 6bHZDwWlM3RXyAKoONyZQU+xA3rJNJs26G/jxAt6Jlbl18eSzq8sdU+IHGB6PcRi gX7MGsnF3LqHRKzoN3kF+HygCu92oEGL6FpP+NsAZXcw7uYuCpOV2nWql/Hbq5hN Lq5c3KbTfdvgFNlT22MOhdXwawQqjSI0ngs3XkGLY+7Qe++HEKleLjPsGD2LD4cy I3+N6F3A4eZqDAvyTrlknLtQPlrHWUQ9FJMA9PWmGY4AkVo59UA6gxyq+2eRTsny FfjKsNuZhB83/N8QRKrlNn9B/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKrMriH3 C0MMA1CAv041GcgrNycgMB8GA1UdIwQYMBaAFDhsXLLW4OxhQa63P0k1IbBSCjz6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0FCNC8xRkIwNDBBMEIx NzQxMUU2OEVDODg1MThDNEY5QUUwMi9PR3hjc3RiZzdHRkJycmNfU1RVaHNGSUtQ UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09HeGNzdGJnN0dGQnJyY19TVFVoc0ZJS1BQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0FCNC8xRkIwNDBBMEIxNzQxMUU2OEVDODg1MThDNEY5QUUwMi9PR3hjc3RiZzdH RkJycmNfU1RVaHNGSUtQUG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtc6eNZxke0PHo+4ng01OgPTmNc0gkL9okCzPaZlSwmp1rFoMXO6ua cPLcOPfB1Tz53v3uAp5PRT04mI2vwIa3WaTqKoVPi7fkPnl9IK24j23YtkpenpF6 8djBD+XRFegbq4hOtYo0VFZWnbfYHjh2+Jwr9+6qRLlWGdYgNxw7UeyQ7/zOT/pR AOenS0rXgiUbZaAWllF+XZvQT6wXPmiduUpeM+URL1i3Rb/2zsFx91AfzbheQUTh P8Zdr1QeeKd/e3at8Oscn7C0d7RN7vq+P43WZjOKL2ksFij3w/HGAwh42ueSP+93 x8ZO3/G2N1SRw1vxmV1dEok8Z294x+NS -----END CERTIFICATE-----Generated at Sun Dec 21 15:22:57 2025 by rpki-client