This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft File: OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft (raw, json) Hash identifier: on7iGFaG1Ldy+v891N+DNd3WAEOym4GAlHwigqPnz8I= Subject key identifier: DE:AB:5F:8F:CC:7B:A3:96:20:5C:B4:DD:92:F0:32:7B:06:AD:64:F4 Authority key identifier: 39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD Certificate issuer: /CN=A9157D67/serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD Certificate serial: 0BE4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft Manifest number: 0A16 Signing time: Thu 18 Dec 2025 21:05:20 +0000 Manifest this update: Thu 18 Dec 2025 21:05:19 +0000 Manifest next update: Thu 25 Dec 2025 21:05:19 +0000 Files and hashes: 1: OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl (hash: GQ1D0ReY1udi8178kxVJqdMNfzVe91qo2JGVRgYU+T0=) 2: B8D1EFFECFF111F085D0CF76C4F9AE02.roa (hash: O3l12cVrUOS8U9iR93efMuyRPJjx+/kubWNGPD9xecQ=) 3: 61EE2500936E11F091943583C4F9AE02.roa (hash: qQaUk6cquZP7nNyZHTQszjiLtFKFkr+G2zqYs9o1x6o=) 4: 263DB02C4BB611EE9B959267C4F9AE02.roa (hash: uy/Ya9Uphz8yk5gzFrvw8K92wA25vKbiFTbIY5cp56U=) 5: AB96EF3852CD11ECAB209C5FC4F9AE02.roa (hash: KHmIhJVDnUN/JIAGOGyBUT9fEQNuIGqQSzduAjkMS7g=) 6: 72C9BE36950211EFAC892C5EC4F9AE02.roa (hash: tUqKc58G4NP/ZiNhEE4m52A3vGMH09GTzhVMgnnCe/8=) 7: 93EE047E4BB511EE9309AA4EC4F9AE02.roa (hash: vQWuHkxNO3W+64VKIpJFVWJTeNRMIc+wKzNHsAhde4Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 21:05:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3044 (0xbe4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D67, serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD Validity Not Before: Dec 18 21:05:19 2025 GMT Not After : Dec 25 21:05:19 2025 GMT Subject: CN=69446c90-f667 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:8e:c7:12:0a:86:69:69:b7:04:c1:75:e8:05: 5c:f9:95:d8:76:5f:69:3e:2f:1c:99:00:37:cb:30: 72:b7:63:38:1c:d0:64:84:2f:b6:6e:f7:67:88:0f: db:43:35:53:71:d3:37:59:8e:66:0b:c8:35:fd:bd: ac:bd:4b:fe:9a:dd:15:d7:84:03:ec:30:83:96:9f: 28:b6:28:75:50:35:cf:5a:5e:45:09:e2:f6:81:a2: 5f:55:d5:7f:7c:23:7e:ce:d3:cb:47:ec:05:c2:c2: 1a:e9:58:4c:35:06:b2:31:ef:fd:c5:80:62:92:88: 43:42:22:23:f6:3e:73:5e:e2:06:3e:fd:5e:0f:be: 8d:92:c5:72:dd:5c:15:ad:74:09:b0:50:6c:66:f2: b8:c4:77:7d:ca:af:57:20:6c:15:e1:2a:7a:fe:91: 5e:03:78:f9:5d:a0:2f:92:75:2e:30:a0:81:27:2b: ff:03:c3:1b:a6:54:83:00:54:de:af:d4:f7:73:0d: 2a:ab:35:ac:c7:1f:49:2a:f9:f6:67:32:c8:00:a9: ee:8f:b2:fb:ae:76:27:0c:23:20:1c:3a:a7:51:43: 5c:53:1a:8a:13:0c:f1:d7:a8:b9:6a:ab:b6:b3:4d: 3f:a3:1a:e5:0b:c1:e1:fa:f2:42:67:e1:b0:df:7b: 64:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:AB:5F:8F:CC:7B:A3:96:20:5C:B4:DD:92:F0:32:7B:06:AD:64:F4 X509v3 Authority Key Identifier: keyid:39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:94:99:5b:c9:0f:e8:ef:27:5b:b0:f9:05:9c:bb:de:36:64: e5:ba:2e:ac:5a:1a:3e:2e:7d:e7:7d:15:e7:da:f4:7c:cf:c7: 82:26:a3:ff:3e:c6:92:ae:96:33:9d:84:51:58:06:cd:29:b3: e0:7e:0c:7b:d3:12:1c:ca:02:4b:29:e3:ad:ca:eb:10:f5:64: dd:ce:21:fa:33:ae:5c:4a:fc:71:41:a1:46:76:28:98:e6:bb: 2a:e8:f0:00:b7:b7:ea:27:60:60:6b:93:a7:7b:e7:a8:4e:88: f1:38:1e:20:b0:63:9a:63:d4:67:1c:3b:09:20:1d:37:23:e4: 58:b7:c1:08:c0:98:33:24:31:38:7b:c3:7d:51:bd:07:c1:cd: 1d:1f:27:16:1c:24:26:ba:ba:f1:74:34:5a:ee:3d:4e:a6:92: 72:bf:80:46:d9:24:67:e0:4f:42:e6:1b:fa:04:c8:60:45:b0: 8f:75:25:8f:38:c1:fd:06:89:20:21:fc:91:74:d4:22:7f:29: 76:dd:16:81:3b:0c:34:5e:8f:2d:99:17:90:46:b2:8c:b1:73: 01:93:26:26:69:8b:04:ec:2e:94:d3:6c:6e:1e:33:57:76:ed: 03:bc:c4:4d:9e:55:49:c3:07:5e:de:97:f0:75:9e:92:29:b1: 77:2a:46:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdENjcxMTAvBgNVBAUTKDM5QzQzOTY3NTcwMDg3RjU4M0U0MjVBOUZFOUI2OUI5 NTA2QTU5QkQwHhcNMjUxMjE4MjEwNTE5WhcNMjUxMjI1MjEwNTE5WjAYMRYwFAYD VQQDDA02OTQ0NmM5MC1mNjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwI7HEgqGaWm3BMF16AVc+ZXYdl9pPi8cmQA3yzByt2M4HNBkhC+2bvdniA/b QzVTcdM3WY5mC8g1/b2svUv+mt0V14QD7DCDlp8otih1UDXPWl5FCeL2gaJfVdV/ fCN+ztPLR+wFwsIa6VhMNQayMe/9xYBikohDQiIj9j5zXuIGPv1eD76NksVy3VwV rXQJsFBsZvK4xHd9yq9XIGwV4Sp6/pFeA3j5XaAvknUuMKCBJyv/A8MbplSDAFTe r9T3cw0qqzWsxx9JKvn2ZzLIAKnuj7L7rnYnDCMgHDqnUUNcUxqKEwzx16i5aqu2 s00/oxrlC8Hh+vJCZ+Gw33tkCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN6rX4/M e6OWIFy03ZLwMnsGrWT0MB8GA1UdIwQYMBaAFDnEOWdXAIf1g+Qlqf6bablQalm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q2Ny82OUU2QzE2QTQ0 MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9PY1E1WjFjQWhfV0Q1Q1dwX3B0cHVWQnFX YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jUTVaMWNBaF9XRDVDV3BfcHRwdVZCcVdiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0Q2Ny82OUU2QzE2QTQ0MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9PY1E1WjFjQWhf V0Q1Q1dwX3B0cHVWQnFXYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7lJlbyQ/o7ydbsPkFnLveNmTlui6sWho+Ln3nfRXn2vR8z8eCJqP/ PsaSrpYznYRRWAbNKbPgfgx70xIcygJLKeOtyusQ9WTdziH6M65cSvxxQaFGdiiY 5rsq6PAAt7fqJ2Bga5One+eoTojxOB4gsGOaY9RnHDsJIB03I+RYt8EIwJgzJDE4 e8N9Ub0Hwc0dHycWHCQmurrxdDRa7j1OppJyv4BG2SRn4E9C5hv6BMhgRbCPdSWP OMH9BokgIfyRdNQifyl23RaBOww0Xo8tmReQRrKMsXMBkyYmaYsE7C6U02xuHjNX du0DvMRNnlVJwwde3pfwdZ6SKbF3KkbS -----END CERTIFICATE-----Generated at Fri Dec 19 21:59:33 2025 by rpki-client