This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.mft File: O2JAfi5U9C-AkOLA2G_Sw6YTMLM.mft (raw, json) Hash identifier: LhlegGjb3DK5RmpsHU5B8IqrR/wDTgLmFZMcMoZk3Qw= Subject key identifier: 3A:EA:40:C5:62:38:0E:68:2E:C1:6F:0A:F2:8F:49:C7:F9:A9:80:B7 Authority key identifier: 3B:62:40:7E:2E:54:F4:2F:80:90:E2:C0:D8:6F:D2:C3:A6:13:30:B3 Certificate issuer: /CN=A91579E2/serialNumber=3B62407E2E54F42F8090E2C0D86FD2C3A61330B3 Certificate serial: 01EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.mft Manifest number: 01E8 Signing time: Sat 27 Dec 2025 01:38:32 +0000 Manifest this update: Sat 27 Dec 2025 01:38:32 +0000 Manifest next update: Sat 03 Jan 2026 01:38:32 +0000 Files and hashes: 1: O2JAfi5U9C-AkOLA2G_Sw6YTMLM.crl (hash: FGiBs5wlsRn2MGho0PBZXWAqiXwPVSoNeGyhgEiNvVc=) 2: 631D6D82F2B711EDAA29717AC4F9AE02.roa (hash: Ugoz9OgYhjx5n/wKBryzHZ0lteBuyiXAGZkUzpN/sg4=) 3: 62923A1EF2B711EDAA29717AC4F9AE02.roa (hash: oxGjZ2qP5KAlzJWT8zUJKcB63LEiuvqe3on36ROaH3g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.crl rsync://rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 Jan 2026 01:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 495 (0x1ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91579E2, serialNumber=3B62407E2E54F42F8090E2C0D86FD2C3A61330B3 Validity Not Before: Dec 27 01:38:32 2025 GMT Not After : Jan 3 01:38:32 2026 GMT Subject: CN=694f3898-b33b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:20:a9:0e:e7:d8:b0:5d:4e:db:4e:36:c0:98: 13:cc:ba:a9:c8:42:0e:8d:5e:ea:a2:af:d5:78:8f: 79:77:d0:07:f4:fa:b0:0a:5f:81:ab:c1:db:23:f6: 45:50:8c:4c:3f:c0:32:9b:84:44:00:68:e9:bc:f6: cf:72:51:30:81:d4:f1:73:46:c1:9c:0b:41:92:63: 17:ba:b3:0c:df:a6:4f:22:9f:eb:54:ba:1a:cd:f8: 08:ab:5c:4c:a9:3e:63:2b:d1:77:bd:ae:9c:3a:2e: a1:ea:5d:d7:13:a0:e0:e0:9a:49:8a:d8:ea:c8:78: e7:16:64:6f:e1:fc:a2:20:7f:35:12:b8:1f:ec:e3: df:be:a1:5e:72:05:3c:67:45:58:69:1d:bb:34:5e: ff:48:21:6f:93:ae:03:43:0a:76:5a:12:bf:83:83: 82:22:dc:ba:b5:e6:bf:0b:28:e6:92:4f:bd:3c:23: 0b:e5:81:3e:ce:ca:e4:4f:4f:0f:79:48:80:8a:5e: 22:7a:d9:94:83:8e:39:8c:40:43:14:2e:15:6f:d7: e8:66:ce:77:c2:a6:84:c7:5f:1b:71:f8:36:8b:22: eb:08:f0:3d:3a:2f:4d:cf:55:e5:0c:aa:8b:50:3c: 8d:2c:e9:d8:8a:d3:e6:c2:dd:9e:d5:8f:63:cf:48: 6f:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:EA:40:C5:62:38:0E:68:2E:C1:6F:0A:F2:8F:49:C7:F9:A9:80:B7 X509v3 Authority Key Identifier: keyid:3B:62:40:7E:2E:54:F4:2F:80:90:E2:C0:D8:6F:D2:C3:A6:13:30:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:f6:ec:b1:e8:bc:09:e5:c6:1c:44:a9:1f:30:46:fb:81:d9: 3e:ef:07:14:3a:09:40:4f:de:e7:91:39:42:f3:b3:d7:3b:2f: 37:0e:f0:22:7e:c1:7e:1a:51:ab:ef:fa:63:1e:d7:9e:25:12: 1a:7e:58:bf:0d:0f:fe:d1:5d:a6:bf:c6:b5:ff:27:0d:82:71: 0e:64:1f:cf:fb:01:7e:eb:8c:23:c6:e0:5a:a6:1f:ae:9a:f1: c7:09:4e:91:4a:b3:12:e1:64:2e:27:2a:ad:3c:2e:34:7c:f4: dd:fd:de:c0:21:59:dc:07:ba:bf:d0:bb:ad:0e:e6:64:f0:f2: 8b:d4:20:b7:7b:0a:fc:89:07:e1:5f:d1:be:f5:d2:93:b0:db: a7:df:ad:88:97:fe:1d:9a:18:53:e7:74:db:7e:68:03:bd:8d: b2:41:e3:78:55:49:57:de:1e:c9:b3:cb:2f:92:32:b9:6d:6c: 97:c9:3d:d3:08:96:8f:a6:bf:61:2f:b7:d9:19:a9:33:30:27: 07:e8:bf:5a:51:13:e6:6d:f9:b5:9a:ae:8e:e9:23:7f:53:f9: 21:d0:dd:d4:05:1c:2e:ea:24:f4:c6:15:e8:df:60:3a:3b:c4: c9:04:de:49:e7:a4:2b:60:77:33:dc:f3:58:8c:ef:e9:f3:60: f4:62:88:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc5RTIxMTAvBgNVBAUTKDNCNjI0MDdFMkU1NEY0MkY4MDkwRTJDMEQ4NkZEMkMz QTYxMzMwQjMwHhcNMjUxMjI3MDEzODMyWhcNMjYwMTAzMDEzODMyWjAYMRYwFAYD VQQDDA02OTRmMzg5OC1iMzNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApyCpDufYsF1O2042wJgTzLqpyEIOjV7qoq/VeI95d9AH9PqwCl+Bq8HbI/ZF UIxMP8Aym4REAGjpvPbPclEwgdTxc0bBnAtBkmMXurMM36ZPIp/rVLoazfgIq1xM qT5jK9F3va6cOi6h6l3XE6Dg4JpJitjqyHjnFmRv4fyiIH81Ergf7OPfvqFecgU8 Z0VYaR27NF7/SCFvk64DQwp2WhK/g4OCIty6tea/Cyjmkk+9PCML5YE+zsrkT08P eUiAil4ietmUg445jEBDFC4Vb9foZs53wqaEx18bcfg2iyLrCPA9Oi9Nz1XlDKqL UDyNLOnYitPmwt2e1Y9jz0hvRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDrqQMVi OA5oLsFvCvKPScf5qYC3MB8GA1UdIwQYMBaAFDtiQH4uVPQvgJDiwNhv0sOmEzCz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzlFMi83M0FGMkY3QUYy QjAxMUVEQTQyQjQ0NzBDNEY5QUUwMi9PMkpBZmk1VTlDLUFrT0xBMkdfU3c2WVRN TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08ySkFmaTVVOUMtQWtPTEEyR19TdzZZVE1MTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzlFMi83M0FGMkY3QUYyQjAxMUVEQTQyQjQ0NzBDNEY5QUUwMi9PMkpBZmk1VTlD LUFrT0xBMkdfU3c2WVRNTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAe9uyx6LwJ5cYcRKkfMEb7gdk+7wcUOglAT97nkTlC87PXOy83DvAi fsF+GlGr7/pjHteeJRIafli/DQ/+0V2mv8a1/ycNgnEOZB/P+wF+64wjxuBaph+u mvHHCU6RSrMS4WQuJyqtPC40fPTd/d7AIVncB7q/0LutDuZk8PKL1CC3ewr8iQfh X9G+9dKTsNun362Il/4dmhhT53TbfmgDvY2yQeN4VUlX3h7Js8svkjK5bWyXyT3T CJaPpr9hL7fZGakzMCcH6L9aURPmbfm1mq6O6SN/U/kh0N3UBRwu6iT0xhXo32A6 O8TJBN5J56QrYHcz3PNYjO/p82D0Yojm -----END CERTIFICATE-----Generated at Sat Dec 27 05:37:15 2025 by rpki-client