This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft File: OT6njk2TI25QcfuK_61B1iQmql0.mft (raw, json) Hash identifier: feeK1aM3Dx4njuE5fbLzDxAzdFSlBMGzHl20NOiaEUI= Subject key identifier: D2:46:48:11:9D:E5:4F:0B:70:9D:FC:8D:76:CF:19:F8:35:61:81:37 Authority key identifier: 39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D Certificate issuer: /CN=A917B520/serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Certificate serial: C6 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft Manifest number: C4 Signing time: Fri 19 Dec 2025 01:45:53 +0000 Manifest this update: Fri 19 Dec 2025 01:45:52 +0000 Manifest next update: Fri 26 Dec 2025 01:45:52 +0000 Files and hashes: 1: OT6njk2TI25QcfuK_61B1iQmql0.crl (hash: XQRmhR3pdisVdaSGqk+eB8UZQ2DMO2Pvp4/TFO+Mv0M=) 2: 3CFE7680BC5C11EFB951FD4FC4F9AE02.roa (hash: ZZGoLs5i6C2o6YDndsUsPxgi/aWEUfS/++aNSMKH7qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:45:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 198 (0xc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Validity Not Before: Dec 19 01:45:52 2025 GMT Not After : Dec 26 01:45:52 2025 GMT Subject: CN=6944ae51-fde2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:01:2b:b8:b3:84:1b:b3:b0:f4:25:9e:74:f4: 1f:08:fb:2e:a0:b6:7d:ab:88:c6:54:e3:82:02:a9: 8b:97:e1:2a:84:9a:5f:62:09:d6:1b:8c:0c:a7:b4: b1:75:cd:e0:68:dc:a0:08:fa:62:cc:04:48:d2:fc: ca:d4:a6:62:f7:29:42:94:ab:64:ac:74:27:aa:40: c5:f2:92:94:b3:dc:c8:e5:9c:a8:83:be:d4:f9:b1: 1a:dd:f7:75:f0:f2:05:b0:fd:bf:7b:a2:26:5e:b1: cf:85:e2:e8:a9:21:2e:f3:e3:63:a0:e1:bc:01:4a: 54:a6:27:c6:b8:44:fe:c2:7e:5e:31:dc:81:5a:40: 68:c3:52:fc:eb:04:a8:90:54:d6:82:cd:0e:ea:24: 0e:90:3b:55:88:a3:cb:ce:2d:d5:82:cb:83:9b:22: cf:c3:a8:af:65:24:ed:e3:c5:1e:58:67:12:9e:92: 33:b7:b4:be:7f:80:8d:8c:bf:2e:7f:65:a2:2c:f4: c2:de:9c:83:c5:25:62:cb:16:21:b1:af:7e:c8:4d: ce:d3:11:5a:44:35:41:b3:d1:c6:ad:bb:d3:3b:f1: 81:f8:0c:7a:a6:85:3f:40:a3:dc:d8:80:15:09:bf: fd:15:88:31:6c:ed:e9:dd:d5:47:5e:b9:19:87:40: c2:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:46:48:11:9D:E5:4F:0B:70:9D:FC:8D:76:CF:19:F8:35:61:81:37 X509v3 Authority Key Identifier: keyid:39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:19:9a:93:27:95:f1:ca:57:d2:f8:62:9c:e6:47:b1:86:3f: 05:81:2b:7f:7e:d9:96:80:31:98:a9:36:3a:a7:e6:15:61:c2: d8:7b:d2:13:7a:0f:dc:e0:b9:ac:46:d9:ec:2d:20:75:41:ad: aa:6c:ee:c3:d8:0f:e0:46:e8:66:7f:e7:98:fe:3b:71:e7:a1: 19:2d:8f:8f:8c:4c:2f:fe:b9:b2:98:ca:7d:49:0b:76:16:b6: c7:34:28:5f:a2:2c:8a:9b:07:c7:17:88:e2:b9:66:57:37:5f: e2:f7:03:94:c0:46:14:3d:fd:6c:db:fe:d0:b7:e7:30:c5:fa: d6:be:4d:ed:4e:66:08:25:c1:d4:ea:1c:5b:e0:e1:cf:01:86: c3:4d:4c:78:03:4f:db:e8:3d:51:a2:c4:06:9d:62:e2:8b:30: 85:a3:48:e2:a7:02:90:fe:77:82:d5:c5:8e:67:c1:38:b7:81: cd:32:6c:a7:6e:86:62:06:e8:ec:a0:a6:cd:41:72:9c:2b:81: 95:a8:0a:35:b1:e4:25:52:24:eb:cc:7c:2e:4d:a4:67:31:56: a0:66:9c:28:fd:aa:3d:d4:7e:de:4d:6c:69:3b:43:a5:d1:ea: 0c:2e:08:29:f2:f9:13:4f:96:2c:da:48:d5:92:25:2c:13:86: 55:6f:7c:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDM5M0VBNzhFNEQ5MzIzNkU1MDcxRkI4QUZGQUQ0MUQ2 MjQyNkFBNUQwHhcNMjUxMjE5MDE0NTUyWhcNMjUxMjI2MDE0NTUyWjAYMRYwFAYD VQQDDA02OTQ0YWU1MS1mZGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApgEruLOEG7Ow9CWedPQfCPsuoLZ9q4jGVOOCAqmLl+EqhJpfYgnWG4wMp7Sx dc3gaNygCPpizARI0vzK1KZi9ylClKtkrHQnqkDF8pKUs9zI5Zyog77U+bEa3fd1 8PIFsP2/e6ImXrHPheLoqSEu8+NjoOG8AUpUpifGuET+wn5eMdyBWkBow1L86wSo kFTWgs0O6iQOkDtViKPLzi3VgsuDmyLPw6ivZSTt48UeWGcSnpIzt7S+f4CNjL8u f2WiLPTC3pyDxSViyxYhsa9+yE3O0xFaRDVBs9HGrbvTO/GB+Ax6poU/QKPc2IAV Cb/9FYgxbO3p3dVHXrkZh0DCMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJGSBGd 5U8LcJ38jXbPGfg1YYE3MB8GA1UdIwQYMBaAFDk+p45NkyNuUHH7iv+tQdYkJqpd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC80Q0ZDMDhEQUI3 NkMxMUVGQjg3NDI3NkVDNEY5QUUwMi9PVDZuamsyVEkyNVFjZnVLXzYxQjFpUW1x bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL09UNm5qazJUSTI1UWNmdUtfNjFCMWlRbXFsMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC80Q0ZDMDhEQUI3NkMxMUVGQjg3NDI3NkVDNEY5QUUwMi9PVDZuamsyVEky NVFjZnVLXzYxQjFpUW1xbDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgGZqTJ5XxylfS+GKc5kexhj8FgSt/ftmWgDGYqTY6p+YVYcLYe9IT eg/c4LmsRtnsLSB1Qa2qbO7D2A/gRuhmf+eY/jtx56EZLY+PjEwv/rmymMp9SQt2 FrbHNChfoiyKmwfHF4jiuWZXN1/i9wOUwEYUPf1s2/7Qt+cwxfrWvk3tTmYIJcHU 6hxb4OHPAYbDTUx4A0/b6D1RosQGnWLiizCFo0jipwKQ/neC1cWOZ8E4t4HNMmyn boZiBujsoKbNQXKcK4GVqAo1seQlUiTrzHwuTaRnMVagZpwo/ao91H7eTWxpO0Ol 0eoMLggp8vkTT5Ys2kjVkiUsE4ZVb3wh -----END CERTIFICATE-----Generated at Sat Dec 20 21:07:19 2025 by rpki-client