This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft File: oNZvEXVTOiOoUulRUGXIWjOec4Y.mft (raw, json) Hash identifier: KEVvrDK1Iyz48Hkh01VuuesFl8mhjdLUGIpMb3Uct8A= Subject key identifier: FF:A4:16:05:E4:BC:F0:D3:66:3D:30:BB:FE:91:9F:C4:5F:F1:FE:70 Authority key identifier: A0:D6:6F:11:75:53:3A:23:A8:52:E9:51:50:65:C8:5A:33:9E:73:86 Certificate issuer: /CN=A9158547/serialNumber=A0D66F1175533A23A852E9515065C85A339E7386 Certificate serial: 0181 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft Manifest number: 017E Signing time: Fri 19 Dec 2025 02:53:08 +0000 Manifest this update: Fri 19 Dec 2025 02:53:07 +0000 Manifest next update: Fri 26 Dec 2025 02:53:07 +0000 Files and hashes: 1: oNZvEXVTOiOoUulRUGXIWjOec4Y.crl (hash: yqTsC2pl4MgYhVZMLBxvEOUGYDPQIHigg3ziBbjSZvM=) 2: 6E7BFE7092A611EEBD5D8720C4F9AE02.roa (hash: I77zej0g2IdMx6WMXQdInqyMmRTM3TktU3rYTAd3Uxo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.crl rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:53:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 385 (0x181) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158547, serialNumber=A0D66F1175533A23A852E9515065C85A339E7386 Validity Not Before: Dec 19 02:53:07 2025 GMT Not After : Dec 26 02:53:07 2025 GMT Subject: CN=6944be13-2337 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:cb:be:39:97:c3:e1:cf:da:8f:37:46:44:1e: 33:95:cf:f1:20:12:2d:7e:64:10:68:3b:6f:e6:4c: 87:8e:e2:16:a7:73:7e:93:e1:f0:0d:37:3d:c9:35: c0:85:0d:a5:24:5a:29:43:c8:bc:d2:db:11:5a:44: a4:4c:1f:72:ac:c8:ba:a5:6e:f9:1e:d6:8b:13:b8: 3b:43:53:70:d5:f6:67:e0:d2:6d:db:ea:2b:30:1a: ca:a3:c6:8e:91:18:8e:df:78:93:ad:ac:ba:91:e7: de:14:87:90:1c:b1:47:95:37:42:c6:0c:ad:11:77: b3:5d:f1:ac:fd:a1:64:c4:f3:3a:a2:97:29:ac:bb: a8:60:95:a8:54:ba:c1:02:66:be:d0:26:2d:5e:16: fe:f8:05:cc:a0:65:e4:4a:23:24:0d:d8:d5:e1:3d: b7:59:23:c1:f1:b8:ab:c7:be:4f:1f:a6:5c:8f:68: 76:5d:fe:c7:77:b2:13:9d:c1:96:14:b2:a0:31:a7: 94:f4:f9:73:30:04:fb:0c:1a:fd:9b:d8:a9:30:b7: 11:5d:63:2f:9f:9b:cc:9a:af:a3:b8:f6:26:51:97: 0b:b1:b6:7e:ab:6e:68:ca:ce:0a:65:a6:85:8b:0c: 4f:67:f6:79:c7:a5:15:0e:03:4c:a5:8b:d1:fa:c6: 38:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:A4:16:05:E4:BC:F0:D3:66:3D:30:BB:FE:91:9F:C4:5F:F1:FE:70 X509v3 Authority Key Identifier: keyid:A0:D6:6F:11:75:53:3A:23:A8:52:E9:51:50:65:C8:5A:33:9E:73:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:7e:97:0f:0d:55:10:d5:23:6f:5e:45:4a:25:dd:66:23:3c: 03:a6:9c:5d:b2:2a:00:9e:59:3f:d4:86:72:f1:28:32:99:ef: 9f:90:76:6b:70:45:ab:93:07:65:12:93:df:8b:3d:3c:31:c3: 31:51:7f:0f:45:24:3e:68:e8:be:cd:05:8f:bd:8b:1d:df:c0: 7c:e8:4b:3c:3c:f9:d8:97:be:09:b1:74:98:78:98:a1:5a:7d: 53:99:46:99:58:66:b0:63:cc:0c:ec:6b:bc:64:6c:16:24:37: d0:82:5a:98:b7:18:67:65:78:a5:6e:e8:52:1e:00:66:c7:b6: fc:f4:8b:59:af:33:3a:f9:21:56:f8:ab:c0:39:06:6e:79:9f: a2:e5:da:c8:f1:c3:8c:7c:7d:0b:4e:c6:ba:e0:f1:48:d3:98: 39:0f:88:71:3b:9c:ab:c4:cb:fa:e4:b1:c3:2d:43:08:4b:46: 3d:0e:3a:19:57:c4:07:9d:78:1d:a1:ba:8b:78:d4:d1:e6:cb: df:d4:8b:84:ca:bb:8c:e8:3f:35:01:8c:8d:5c:fe:6c:6f:4f: 43:c0:26:56:f2:69:1d:31:62:e3:15:98:e9:c8:8c:5e:aa:94: 94:b3:f2:2a:e1:c2:a9:3f:5e:cd:a1:8d:d3:88:c4:68:db:a0: 9c:b1:35:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NDcxMTAvBgNVBAUTKEEwRDY2RjExNzU1MzNBMjNBODUyRTk1MTUwNjVDODVB MzM5RTczODYwHhcNMjUxMjE5MDI1MzA3WhcNMjUxMjI2MDI1MzA3WjAYMRYwFAYD VQQDDA02OTQ0YmUxMy0yMzM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApsu+OZfD4c/ajzdGRB4zlc/xIBItfmQQaDtv5kyHjuIWp3N+k+HwDTc9yTXA hQ2lJFopQ8i80tsRWkSkTB9yrMi6pW75HtaLE7g7Q1Nw1fZn4NJt2+orMBrKo8aO kRiO33iTray6kefeFIeQHLFHlTdCxgytEXezXfGs/aFkxPM6opcprLuoYJWoVLrB Ama+0CYtXhb++AXMoGXkSiMkDdjV4T23WSPB8birx75PH6Zcj2h2Xf7Hd7ITncGW FLKgMaeU9PlzMAT7DBr9m9ipMLcRXWMvn5vMmq+juPYmUZcLsbZ+q25oys4KZaaF iwxPZ/Z5x6UVDgNMpYvR+sY4VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP+kFgXk vPDTZj0wu/6Rn8Rf8f5wMB8GA1UdIwQYMBaAFKDWbxF1UzojqFLpUVBlyFoznnOG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU0Ny9CMzg2NjhFNDky QTUxMUVFOENEOTVCMUVDNEY5QUUwMi9vTlp2RVhWVE9pT29VdWxSVUdYSVdqT2Vj NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29OWnZFWFZUT2lPb1V1bFJVR1hJV2pPZWM0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU0Ny9CMzg2NjhFNDkyQTUxMUVFOENEOTVCMUVDNEY5QUUwMi9vTlp2RVhWVE9p T29VdWxSVUdYSVdqT2VjNFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQfpcPDVUQ1SNvXkVKJd1mIzwDppxdsioAnlk/1IZy8Sgyme+fkHZr cEWrkwdlEpPfiz08McMxUX8PRSQ+aOi+zQWPvYsd38B86Es8PPnYl74JsXSYeJih Wn1TmUaZWGawY8wM7Gu8ZGwWJDfQglqYtxhnZXilbuhSHgBmx7b89ItZrzM6+SFW +KvAOQZueZ+i5drI8cOMfH0LTsa64PFI05g5D4hxO5yrxMv65LHDLUMIS0Y9DjoZ V8QHnXgdobqLeNTR5svf1IuEyruM6D81AYyNXP5sb09DwCZW8mkdMWLjFZjpyIxe qpSUs/Iq4cKpP17NoY3TiMRo26CcsTXO -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:19 2025 by rpki-client