This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.mft File: 2o28OwmXQtOr0qiV3RM5iTuaj18.mft (raw, json) Hash identifier: zO/trsfjiVgnjWNYbu6CNIilP+MieEK7hyvJyl20BME= Subject key identifier: 36:5B:88:DC:60:EC:89:EF:C1:CB:AD:65:0C:44:47:A4:AC:65:5D:97 Authority key identifier: DA:8D:BC:3B:09:97:42:D3:AB:D2:A8:95:DD:13:39:89:3B:9A:8F:5F Certificate issuer: /CN=A916B0A3/serialNumber=DA8DBC3B099742D3ABD2A895DD1339893B9A8F5F Certificate serial: 0B90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2o28OwmXQtOr0qiV3RM5iTuaj18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.mft Manifest number: 3241 Signing time: Tue 24 Jun 2025 15:39:29 +0000 Manifest this update: Tue 24 Jun 2025 15:39:29 +0000 Manifest next update: Tue 01 Jul 2025 15:39:29 +0000 Files and hashes: 1: 2o28OwmXQtOr0qiV3RM5iTuaj18.crl (hash: 0dezSZPc4pmNZhqRhHLa1JPMUguh/8YZ3J3TifR5afA=) 2: B37405A2471511F09FBEF658C4F9AE02.roa (hash: spiY1S4xmXMWxSqgBgjtmH8oE6DA/8KCGZHvFE8s5XI=) Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 2960 (0xb90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B0A3, serialNumber=DA8DBC3B099742D3ABD2A895DD1339893B9A8F5F Validity Not Before: Jun 24 15:39:29 2025 GMT Not After : Jul 1 15:39:29 2025 GMT Subject: CN=685ac6b1-19e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:cc:ca:d8:ff:65:ec:13:81:c5:2c:f8:b1:77: 34:6d:21:9d:d2:45:86:b6:2a:e2:e4:e1:bb:8b:a8: 5b:2a:1d:a2:f7:82:0a:7a:38:0e:9d:1b:ca:41:89: a6:c6:6a:a6:0a:3e:c2:2b:1f:6d:46:d8:a3:4b:79: d9:e5:34:c4:1f:90:5b:99:83:20:f3:82:75:77:e5: 8e:d3:95:e9:88:ff:56:e4:2b:5d:50:a6:5f:2f:42: d6:ee:92:f8:71:4b:cf:2e:4a:64:5e:1d:53:3e:cc: 00:19:6d:82:5e:32:86:22:9c:7d:27:32:51:6e:45: e2:cd:5b:da:d9:7b:7a:8e:38:29:7c:1f:38:97:ba: 89:1e:a6:94:43:33:1b:c7:6e:5f:41:0a:ed:d4:26: 08:89:c0:77:a0:37:d0:0e:bc:11:10:51:92:b7:81: e9:5a:2c:5e:d8:2c:93:83:7d:2d:c4:c3:9a:15:0f: 3e:8b:7f:e3:3f:9f:b2:b1:49:98:50:d7:b8:78:98: b1:66:60:08:84:f9:a2:5f:0c:43:27:5c:ae:6e:13: 30:ac:1f:e6:0f:49:36:5f:bc:d9:68:95:fd:9d:e1: 6e:25:65:45:9f:76:23:5f:de:07:28:87:08:27:de: 32:67:49:e2:94:ea:51:e6:2f:51:18:5e:3b:4f:74: 8e:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:5B:88:DC:60:EC:89:EF:C1:CB:AD:65:0C:44:47:A4:AC:65:5D:97 X509v3 Authority Key Identifier: keyid:DA:8D:BC:3B:09:97:42:D3:AB:D2:A8:95:DD:13:39:89:3B:9A:8F:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2o28OwmXQtOr0qiV3RM5iTuaj18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:f8:a7:80:02:a7:67:5a:28:51:09:4b:52:87:40:d9:05:fe: 9b:13:23:d7:0d:7a:5b:45:8d:bd:98:ff:65:68:92:e1:92:4d: fe:19:9a:e2:86:4a:4c:15:d1:15:89:7d:af:6c:ba:73:fc:9c: 95:d8:16:2e:af:4e:89:c3:ba:91:08:77:1e:47:dd:86:5d:2a: c3:fb:73:d0:f2:40:93:30:92:c4:fb:29:dd:ef:4b:22:ca:d1: 5a:e9:73:0f:07:91:b2:39:e7:85:d4:e9:01:ff:27:7b:a1:65: a9:a1:5e:de:84:f3:60:f4:d5:bc:0f:36:f7:1e:84:c3:f6:d4: f0:58:20:8a:f7:58:a7:39:b4:c2:08:4e:71:37:26:da:a4:a9: 6e:5c:0b:2b:9f:3c:7b:06:e9:85:12:e5:cc:b8:f2:bd:60:db: 2d:59:c4:0f:31:8f:8b:ce:f6:d6:33:e9:6f:5c:33:db:c6:4b: 4e:b6:d1:ad:fe:0c:80:bd:b8:36:2d:52:9a:e0:f8:0d:fc:01: 18:95:49:f9:e5:90:b6:db:f5:79:60:95:21:d6:d9:f8:41:13: 56:e1:1b:c9:89:5b:c8:5f:b0:46:e4:69:78:86:7e:a8:96:9e: df:78:00:77:f2:ce:67:78:14:07:a2:a5:d7:e6:c1:5c:9f:a8: 43:c6:b9:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIwQTMxMTAvBgNVBAUTKERBOERCQzNCMDk5NzQyRDNBQkQyQTg5NUREMTMzOTg5 M0I5QThGNUYwHhcNMjUwNjI0MTUzOTI5WhcNMjUwNzAxMTUzOTI5WjAYMRYwFAYD VQQDEw02ODVhYzZiMS0xOWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyMzK2P9l7BOBxSz4sXc0bSGd0kWGtiri5OG7i6hbKh2i94IKejgOnRvKQYmm xmqmCj7CKx9tRtijS3nZ5TTEH5BbmYMg84J1d+WO05XpiP9W5CtdUKZfL0LW7pL4 cUvPLkpkXh1TPswAGW2CXjKGIpx9JzJRbkXizVva2Xt6jjgpfB84l7qJHqaUQzMb x25fQQrt1CYIicB3oDfQDrwREFGSt4HpWixe2CyTg30txMOaFQ8+i3/jP5+ysUmY UNe4eJixZmAIhPmiXwxDJ1yubhMwrB/mD0k2X7zZaJX9neFuJWVFn3YjX94HKIcI J94yZ0nilOpR5i9RGF47T3SO6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDZbiNxg 7InvwcutZQxER6SsZV2XMB8GA1UdIwQYMBaAFNqNvDsJl0LTq9Kold0TOYk7mo9f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjBBMy83MUFERTFGRUQ4 MjgxMUU0QUE3QzhBNDdDNEY5QUUwMi8ybzI4T3dtWFF0T3IwcWlWM1JNNWlUdWFq MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJvMjhPd21YUXRPcjBxaVYzUk01aVR1YWoxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjBBMy83MUFERTFGRUQ4MjgxMUU0QUE3QzhBNDdDNEY5QUUwMi8ybzI4T3dtWFF0 T3IwcWlWM1JNNWlUdWFqMTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAP+KeAAqdnWihRCUtSh0DZBf6bEyPXDXpbRY29mP9laJLhkk3+GZri hkpMFdEViX2vbLpz/JyV2BYur06Jw7qRCHceR92GXSrD+3PQ8kCTMJLE+ynd70si ytFa6XMPB5GyOeeF1OkB/yd7oWWpoV7ehPNg9NW8Dzb3HoTD9tTwWCCK91inObTC CE5xNybapKluXAsrnzx7BumFEuXMuPK9YNstWcQPMY+LzvbWM+lvXDPbxktOttGt /gyAvbg2LVKa4PgN/AEYlUn55ZC22/V5YJUh1tn4QRNW4RvJiVvIX7BG5Gl4hn6o lp7feAB38s5neBQHoqXX5sFcn6hDxrlQ -----END CERTIFICATE-----Generated at Mon Dec 29 00:53:29 2025 by rpki-client