This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft File: OLX3py9k7NJYhfi0dYUC4j2oOLs.mft (raw, json) Hash identifier: aOfMhZxD22yBlPb8hg+HcdHGVhD+6FOLs1rbo+susOs= Subject key identifier: E6:97:D3:E7:79:C4:0D:A0:F3:DF:2B:B7:B2:13:16:30:04:63:28:AF Authority key identifier: 38:B5:F7:A7:2F:64:EC:D2:58:85:F8:B4:75:85:02:E2:3D:A8:38:BB Certificate issuer: /CN=A912C039/serialNumber=38B5F7A72F64ECD25885F8B4758502E23DA838BB Certificate serial: 0A8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OLX3py9k7NJYhfi0dYUC4j2oOLs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft Manifest number: 0A75 Signing time: Thu 18 Dec 2025 19:14:59 +0000 Manifest this update: Thu 18 Dec 2025 19:14:59 +0000 Manifest next update: Thu 25 Dec 2025 19:14:59 +0000 Files and hashes: 1: OLX3py9k7NJYhfi0dYUC4j2oOLs.crl (hash: rKUEQ3uYsn1MjzJ8c1HqFSu462oYWUnw81V0+pL7bbM=) 2: 2E53CDEC139C11EF8D2CFD84C4F9AE02.roa (hash: +OxVgsTFeHXtInD93OSVx4VoDwnGKpFnWPCaCB5ImQ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.crl rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OLX3py9k7NJYhfi0dYUC4j2oOLs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:14:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2698 (0xa8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C039, serialNumber=38B5F7A72F64ECD25885F8B4758502E23DA838BB Validity Not Before: Dec 18 19:14:59 2025 GMT Not After : Dec 25 19:14:59 2025 GMT Subject: CN=694452b3-53f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f8:fe:fa:3c:3a:ec:5b:48:be:79:c4:c8:6d: ef:a8:92:63:7a:f5:25:45:f3:92:df:bf:1a:6a:c7: 5d:c9:93:cb:cc:06:f9:d1:51:05:04:e1:87:44:37: cb:94:14:f9:5a:79:5d:dd:84:8a:61:49:4e:57:72: c2:4d:89:a8:ac:02:d8:7d:81:77:04:d7:18:d8:67: 2c:d6:66:8c:e7:e3:c9:40:f9:ed:29:49:be:c4:5e: 45:30:e6:a0:55:f4:aa:61:58:69:04:63:fe:19:e5: 8d:00:08:13:59:9b:70:ce:ae:69:1b:3c:6a:44:81: 06:0a:36:f9:2f:15:50:3e:8d:c6:c0:94:7e:f5:08: 58:20:4f:dc:4c:8a:58:06:50:55:4c:9a:9a:aa:13: 76:2c:d6:00:45:43:12:00:5f:59:ad:42:03:46:1a: 6b:8b:eb:38:ce:42:29:f5:10:b7:ce:96:e0:46:4e: 1f:55:a4:b9:5c:d1:1f:79:bb:ff:4a:86:6b:24:ef: 01:cf:d6:88:39:61:f4:a3:02:3e:f4:fd:03:df:19: 01:13:7d:bf:21:67:e9:dd:19:f2:5e:7e:0b:3f:e4: 7c:ae:41:80:c4:37:d8:07:c1:1d:8c:48:8c:8f:eb: 94:cd:45:80:03:10:4d:85:cf:c8:5a:d1:b7:0f:72: 64:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:97:D3:E7:79:C4:0D:A0:F3:DF:2B:B7:B2:13:16:30:04:63:28:AF X509v3 Authority Key Identifier: keyid:38:B5:F7:A7:2F:64:EC:D2:58:85:F8:B4:75:85:02:E2:3D:A8:38:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OLX3py9k7NJYhfi0dYUC4j2oOLs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C039/C25D02FE789D11EABDA6F05FC4F9AE02/OLX3py9k7NJYhfi0dYUC4j2oOLs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:ac:70:87:78:c9:25:de:0e:da:6e:f3:04:c7:71:51:5c:b6: e3:1c:d6:a6:1b:75:62:b9:87:34:49:4a:0e:8a:17:1b:3b:9d: 6b:c4:fd:dc:1b:3a:1b:c2:f0:c5:9f:d5:9c:e0:f9:a9:a2:96: 75:08:7b:f9:6b:a5:dd:4b:56:cb:79:1e:5c:d9:2e:b2:3b:90: af:af:b5:a1:3f:55:ee:b0:05:ca:7c:85:af:a2:05:f7:bf:e2: 11:d5:b9:9d:f8:0e:ff:06:fe:f8:de:c6:56:f0:14:99:2b:62: b2:db:ae:86:e6:06:20:06:0f:1c:4c:87:48:98:7e:24:1e:fd: 70:8a:ff:fd:27:59:79:f3:cc:2f:e8:b9:86:8a:45:b6:21:31: fd:4b:a8:e6:48:6e:9e:2e:45:94:56:91:22:8e:0b:d6:f4:56: 2c:fa:c5:33:b5:ea:40:79:2f:04:69:00:07:38:ae:9e:fd:3f: ac:63:ca:26:f7:31:3c:fd:20:4d:a5:9d:af:25:cb:14:65:f8: 75:b7:da:6c:5f:6e:28:0e:5e:12:4e:25:79:ac:da:34:47:b0: ae:58:e1:c4:90:df:d7:5a:62:76:16:2c:b4:79:ea:83:5b:8f: a9:42:1b:31:b4:7f:67:d5:b9:1a:8f:1d:28:df:78:1b:f1:ee: 05:ad:c9:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCoowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkMwMzkxMTAvBgNVBAUTKDM4QjVGN0E3MkY2NEVDRDI1ODg1RjhCNDc1ODUwMkUy M0RBODM4QkIwHhcNMjUxMjE4MTkxNDU5WhcNMjUxMjI1MTkxNDU5WjAYMRYwFAYD VQQDDA02OTQ0NTJiMy01M2Y4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp/j++jw67FtIvnnEyG3vqJJjevUlRfOS378aasddyZPLzAb50VEFBOGHRDfL lBT5Wnld3YSKYUlOV3LCTYmorALYfYF3BNcY2Gcs1maM5+PJQPntKUm+xF5FMOag VfSqYVhpBGP+GeWNAAgTWZtwzq5pGzxqRIEGCjb5LxVQPo3GwJR+9QhYIE/cTIpY BlBVTJqaqhN2LNYARUMSAF9ZrUIDRhpri+s4zkIp9RC3zpbgRk4fVaS5XNEfebv/ SoZrJO8Bz9aIOWH0owI+9P0D3xkBE32/IWfp3RnyXn4LP+R8rkGAxDfYB8EdjEiM j+uUzUWAAxBNhc/IWtG3D3JkBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOaX0+d5 xA2g898rt7ITFjAEYyivMB8GA1UdIwQYMBaAFDi196cvZOzSWIX4tHWFAuI9qDi7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzAzOS9DMjVEMDJGRTc4 OUQxMUVBQkRBNkYwNUZDNEY5QUUwMi9PTFgzcHk5azdOSlloZmkwZFlVQzRqMm9P THMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09MWDNweTlrN05KWWhmaTBkWVVDNGoyb09Mcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzAzOS9DMjVEMDJGRTc4OUQxMUVBQkRBNkYwNUZDNEY5QUUwMi9PTFgzcHk5azdO SlloZmkwZFlVQzRqMm9PTHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDrHCHeMkl3g7abvMEx3FRXLbjHNamG3ViuYc0SUoOihcbO51rxP3c GzobwvDFn9Wc4PmpopZ1CHv5a6XdS1bLeR5c2S6yO5Cvr7WhP1XusAXKfIWvogX3 v+IR1bmd+A7/Bv743sZW8BSZK2Ky266G5gYgBg8cTIdImH4kHv1wiv/9J1l588wv 6LmGikW2ITH9S6jmSG6eLkWUVpEijgvW9FYs+sUztepAeS8EaQAHOK6e/T+sY8om 9zE8/SBNpZ2vJcsUZfh1t9psX24oDl4STiV5rNo0R7CuWOHEkN/XWmJ2Fiy0eeqD W4+pQhsxtH9n1bkajx0o33gb8e4Frcmj -----END CERTIFICATE-----Generated at Fri Dec 19 23:56:21 2025 by rpki-client