This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft File: opgFnwZTffjAi4klX3lZQaMcGAA.mft (raw, json) Hash identifier: A9uvTv3v7wlfDFqlqOKPUl4oY2SZ0zrwq8/MCAq7DsE= Subject key identifier: 03:8B:95:48:6D:B7:FC:4B:31:00:A1:CE:F8:38:1A:3B:18:3A:EC:1B Authority key identifier: A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00 Certificate issuer: /CN=A9144CB7/serialNumber=A298059F06537DF8C08B89255F795941A31C1800 Certificate serial: A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft Manifest number: A4 Signing time: Fri 19 Dec 2025 05:20:45 +0000 Manifest this update: Fri 19 Dec 2025 05:20:44 +0000 Manifest next update: Fri 26 Dec 2025 05:20:44 +0000 Files and hashes: 1: opgFnwZTffjAi4klX3lZQaMcGAA.crl (hash: 0mlmX4AyoyhZPStTLFKj/21vOwQJ3WgpxDqCh1GyZ2U=) 2: E8716FD4EA3511EF89116C52C4F9AE02.roa (hash: /ib2O66BEz/+EIpjbYLfsm9ZEc6Tr2GDRN2PvAJwp9o=) 3: 903E0F1652BD11F0A9261F57C4F9AE02.roa (hash: wehugKaizIxEhZtf3yJWa3v9WBxQforOS0s0qf27ViE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.crl rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:20:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144CB7, serialNumber=A298059F06537DF8C08B89255F795941A31C1800 Validity Not Before: Dec 19 05:20:44 2025 GMT Not After : Dec 26 05:20:44 2025 GMT Subject: CN=6944e0ad-fa3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f3:06:7b:0f:f5:c8:07:34:2d:cf:73:3d:46: 76:61:68:74:f6:f8:1d:29:7e:2f:2c:fe:62:3c:58: 9e:c7:88:96:84:b1:b5:35:18:40:e1:a5:29:ec:0a: a2:61:fc:24:19:a0:a4:14:a7:2a:5f:e4:9c:d4:43: fd:19:a7:ad:4c:f4:00:8b:aa:83:7a:b8:e6:74:45: c3:76:98:03:59:da:76:5f:f9:57:f6:8b:1d:3b:80: 8d:ee:7f:06:d7:d7:c5:63:d5:f6:00:08:82:c3:06: b4:6c:25:e2:4f:21:38:de:1d:75:40:c9:32:42:4d: 4d:5c:8a:e9:6c:8a:19:49:fe:74:21:10:41:a8:38: 50:bd:92:63:95:3b:d7:a9:42:1f:ce:ef:3a:2a:1f: fc:ae:6c:6c:4c:73:89:6c:43:a7:fa:e7:e5:8a:af: f1:54:ea:38:75:b6:29:9a:77:3e:27:e5:68:19:e0: 97:a3:76:e1:21:5b:21:99:e2:e4:92:56:ff:cc:84: c2:30:fa:93:11:63:20:6a:94:2d:56:95:be:ae:7c: 85:d6:d6:05:b2:15:90:23:76:f2:ec:f4:f1:ce:dd: 37:52:26:bb:df:61:47:2b:a6:6f:6e:e5:54:01:84: a8:83:c4:49:ae:80:3f:1a:c1:e9:2d:50:71:cf:29: bd:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:8B:95:48:6D:B7:FC:4B:31:00:A1:CE:F8:38:1A:3B:18:3A:EC:1B X509v3 Authority Key Identifier: keyid:A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:9d:63:51:dc:55:a4:16:89:da:98:64:6a:e1:ec:4b:d8:4a: ec:46:3c:9d:43:32:2c:e2:db:1f:2d:ea:e5:06:29:48:c7:b0: 99:ac:ba:c0:6f:bc:58:f7:68:39:01:a8:a1:08:74:f6:d3:38: 74:3e:b0:fb:4c:af:b1:6c:87:3e:49:9e:2e:a4:85:79:a7:30: 2d:dc:8f:d7:cb:a4:87:8e:3a:f6:c4:f7:82:32:8a:43:51:6d: 42:de:33:3a:ef:3b:92:62:59:9d:8e:e9:90:cb:49:9a:8b:71: 27:98:1e:55:17:05:74:e4:d1:60:72:da:f6:40:70:56:48:3d: 85:44:ff:14:6f:38:87:4b:27:1e:b1:f4:9a:51:17:f0:e3:5d: 39:f6:7c:12:8d:cb:b2:9d:2d:aa:75:fa:37:34:85:21:bd:0f: 6f:d5:32:79:c1:ac:f5:62:65:f6:b4:6a:21:2f:ca:8e:1f:ef: 61:24:cd:d6:87:64:bf:dd:64:1f:c2:f7:e7:b8:3b:0b:9b:55: 64:39:43:18:50:69:35:6f:5d:dd:47:73:1c:a1:80:8e:d6:e0: 6e:5c:a1:60:28:a6:fb:4d:ce:db:18:62:e8:b6:7c:22:dc:e8: c2:82:7d:ba:1a:a3:fa:f6:bf:31:49:20:21:d5:f5:59:5a:77: f8:9b:e7:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRDQjcxMTAvBgNVBAUTKEEyOTgwNTlGMDY1MzdERjhDMDhCODkyNTVGNzk1OTQx QTMxQzE4MDAwHhcNMjUxMjE5MDUyMDQ0WhcNMjUxMjI2MDUyMDQ0WjAYMRYwFAYD VQQDDA02OTQ0ZTBhZC1mYTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp/MGew/1yAc0Lc9zPUZ2YWh09vgdKX4vLP5iPFiex4iWhLG1NRhA4aUp7Aqi YfwkGaCkFKcqX+Sc1EP9GaetTPQAi6qDerjmdEXDdpgDWdp2X/lX9osdO4CN7n8G 19fFY9X2AAiCwwa0bCXiTyE43h11QMkyQk1NXIrpbIoZSf50IRBBqDhQvZJjlTvX qUIfzu86Kh/8rmxsTHOJbEOn+ufliq/xVOo4dbYpmnc+J+VoGeCXo3bhIVshmeLk klb/zITCMPqTEWMgapQtVpW+rnyF1tYFshWQI3by7PTxzt03Uia732FHK6ZvbuVU AYSog8RJroA/GsHpLVBxzym9awIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAOLlUht t/xLMQChzvg4GjsYOuwbMB8GA1UdIwQYMBaAFKKYBZ8GU334wIuJJV95WUGjHBgA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NENCNy84QzkzRjc2Q0Ux NzYxMUVGQjc5ODFCMTlDNEY5QUUwMi9vcGdGbndaVGZmakFpNGtsWDNsWlFhTWNH QUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29wZ0Zud1pUZmZqQWk0a2xYM2xaUWFNY0dBQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NENCNy84QzkzRjc2Q0UxNzYxMUVGQjc5ODFCMTlDNEY5QUUwMi9vcGdGbndaVGZm akFpNGtsWDNsWlFhTWNHQUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWnWNR3FWkFonamGRq4exL2ErsRjydQzIs4tsfLerlBilIx7CZrLrA b7xY92g5AaihCHT20zh0PrD7TK+xbIc+SZ4upIV5pzAt3I/Xy6SHjjr2xPeCMopD UW1C3jM67zuSYlmdjumQy0mai3EnmB5VFwV05NFgctr2QHBWSD2FRP8UbziHSyce sfSaURfw41059nwSjcuynS2qdfo3NIUhvQ9v1TJ5waz1YmX2tGohL8qOH+9hJM3W h2S/3WQfwvfnuDsLm1VkOUMYUGk1b13dR3McoYCO1uBuXKFgKKb7Tc7bGGLotnwi 3OjCgn26GqP69r8xSSAh1fVZWnf4m+dS -----END CERTIFICATE-----Generated at Fri Dec 19 17:46:58 2025 by rpki-client