This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft File: OT6njk2TI25QcfuK_61B1iQmql0.mft (raw, json) Hash identifier: wPhA2DOpKBhFTh7lyse1ax8m3YK7q2g7sIu7N6Ln1rM= Subject key identifier: 18:51:F6:0B:26:E3:58:03:66:86:2E:A7:EE:AB:D6:0C:99:C4:3F:49 Authority key identifier: 39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D Certificate issuer: /CN=A917B520/serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft Manifest number: C8 Signing time: Sat 27 Dec 2025 01:33:35 +0000 Manifest this update: Sat 27 Dec 2025 01:33:35 +0000 Manifest next update: Sat 03 Jan 2026 01:33:35 +0000 Files and hashes: 1: OT6njk2TI25QcfuK_61B1iQmql0.crl (hash: dQVdtTwWPebnKZd4FhDKpzfW5ob/RlDOWs9/JBgoMhc=) 2: 3CFE7680BC5C11EFB951FD4FC4F9AE02.roa (hash: ZZGoLs5i6C2o6YDndsUsPxgi/aWEUfS/++aNSMKH7qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 Jan 2026 01:33:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Validity Not Before: Dec 27 01:33:35 2025 GMT Not After : Jan 3 01:33:35 2026 GMT Subject: CN=694f376f-495d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4d:6c:52:74:51:9e:48:dc:7a:36:cd:74:b2: fe:51:98:89:25:be:db:bd:ae:9b:d9:cf:e0:eb:b5: b5:a1:ae:8a:de:20:3d:a9:30:2f:dc:dd:31:ea:4e: 05:0b:3c:04:4e:1e:d0:f5:f0:ed:f6:b9:91:bd:6e: 2a:24:1c:36:86:5a:c0:58:11:5a:11:65:0b:87:81: c2:25:94:35:60:3a:5a:2f:70:a8:a2:bf:ca:d4:39: b7:1c:f5:ed:20:19:a0:19:79:bc:ba:6e:0f:1d:f8: 1f:29:2d:22:6e:71:ab:7c:e8:54:9d:95:6c:d1:b9: 21:a1:fb:b6:e0:eb:ac:a8:51:ce:a1:9a:e9:00:22: 68:7d:a3:56:5f:cb:e6:2e:bc:0e:ce:80:2a:20:3b: 72:a4:8c:22:6c:2f:17:0d:cc:50:99:c8:7e:be:a5: 70:da:06:f6:fa:9c:ed:99:c2:31:33:7a:3f:09:72: 44:e1:94:18:02:51:a8:f9:21:4a:7c:74:73:8c:7b: e5:5e:97:88:8b:fc:a8:86:ec:4c:9b:81:cf:59:45: 54:ad:11:ff:48:3d:a1:34:67:70:49:a6:99:79:bb: 52:87:d0:43:6e:65:14:09:77:24:f6:85:cd:aa:28: 63:36:ef:1c:92:9a:c7:02:08:86:28:eb:b0:3d:8d: 95:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:51:F6:0B:26:E3:58:03:66:86:2E:A7:EE:AB:D6:0C:99:C4:3F:49 X509v3 Authority Key Identifier: keyid:39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:4a:c7:72:c3:43:6f:91:3e:a1:4a:3e:78:eb:ff:25:1f:fb: 90:82:5f:ed:09:c3:10:01:23:d1:b2:45:72:7a:66:39:8d:2e: 67:f7:94:91:3f:48:c2:5f:32:1d:d3:c4:94:89:eb:22:6f:8b: db:c2:99:92:42:ed:c4:db:43:08:29:c2:c6:5c:25:89:02:0d: 04:f0:2e:1e:b8:c9:7f:ca:7a:d4:43:d3:3d:ba:d9:ed:10:a9: fc:44:eb:ad:9a:ab:0e:db:db:68:37:6f:69:7d:9c:29:82:37: 46:85:8b:8c:70:10:e9:8d:88:d5:20:fc:09:a5:53:e4:35:dc: 79:01:bf:6d:7c:65:51:8a:85:27:71:0b:72:b3:3c:10:f1:a6: 1e:6b:18:fc:56:61:fd:91:50:9a:83:03:19:a7:52:0a:59:ca: 48:74:a9:dd:89:8f:83:f2:15:4f:f8:bc:d4:62:db:0d:35:3b: bd:ff:6b:7f:d1:71:b9:2a:07:f0:42:30:b9:1f:fb:f5:fb:4d: 96:5d:f4:4d:a5:d2:e1:b8:02:9d:70:34:e5:e7:9c:d4:f2:bf: 0e:a4:48:12:1b:b3:dc:f6:4b:ad:31:d6:37:39:82:e4:f8:a3: 02:6f:ef:b0:fa:34:3e:ce:ac:3a:20:e0:50:29:aa:cb:34:97: ca:81:a1:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDM5M0VBNzhFNEQ5MzIzNkU1MDcxRkI4QUZGQUQ0MUQ2 MjQyNkFBNUQwHhcNMjUxMjI3MDEzMzM1WhcNMjYwMTAzMDEzMzM1WjAYMRYwFAYD VQQDDA02OTRmMzc2Zi00OTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq01sUnRRnkjcejbNdLL+UZiJJb7bva6b2c/g67W1oa6K3iA9qTAv3N0x6k4F CzwETh7Q9fDt9rmRvW4qJBw2hlrAWBFaEWULh4HCJZQ1YDpaL3Coor/K1Dm3HPXt IBmgGXm8um4PHfgfKS0ibnGrfOhUnZVs0bkhofu24OusqFHOoZrpACJofaNWX8vm LrwOzoAqIDtypIwibC8XDcxQmch+vqVw2gb2+pztmcIxM3o/CXJE4ZQYAlGo+SFK fHRzjHvlXpeIi/yohuxMm4HPWUVUrRH/SD2hNGdwSaaZebtSh9BDbmUUCXck9oXN qihjNu8ckprHAgiGKOuwPY2VEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBhR9gsm 41gDZoYup+6r1gyZxD9JMB8GA1UdIwQYMBaAFDk+p45NkyNuUHH7iv+tQdYkJqpd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC80Q0ZDMDhEQUI3 NkMxMUVGQjg3NDI3NkVDNEY5QUUwMi9PVDZuamsyVEkyNVFjZnVLXzYxQjFpUW1x bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL09UNm5qazJUSTI1UWNmdUtfNjFCMWlRbXFsMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC80Q0ZDMDhEQUI3NkMxMUVGQjg3NDI3NkVDNEY5QUUwMi9PVDZuamsyVEky NVFjZnVLXzYxQjFpUW1xbDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLSsdyw0NvkT6hSj546/8lH/uQgl/tCcMQASPRskVyemY5jS5n95SR P0jCXzId08SUiesib4vbwpmSQu3E20MIKcLGXCWJAg0E8C4euMl/ynrUQ9M9utnt EKn8ROutmqsO29toN29pfZwpgjdGhYuMcBDpjYjVIPwJpVPkNdx5Ab9tfGVRioUn cQtyszwQ8aYeaxj8VmH9kVCagwMZp1IKWcpIdKndiY+D8hVP+LzUYtsNNTu9/2t/ 0XG5KgfwQjC5H/v1+02WXfRNpdLhuAKdcDTl55zU8r8OpEgSG7Pc9kutMdY3OYLk +KMCb++w+jQ+zqw6IOBQKarLNJfKgaHc -----END CERTIFICATE-----Generated at Sun Dec 28 18:54:07 2025 by rpki-client