This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft File: oTW4FOHrHifJWX7tLoIoVJMNP88.mft (raw, json) Hash identifier: SXcEpkYW/gi/ZxWfB6bE+tQbayivvYKGUQXrt4LwJ54= Subject key identifier: C5:23:F0:03:B8:DA:2B:66:13:18:E5:98:81:07:81:17:9A:94:96:C7 Authority key identifier: A1:35:B8:14:E1:EB:1E:27:C9:59:7E:ED:2E:82:28:54:93:0D:3F:CF Certificate issuer: /CN=A9197390/serialNumber=A135B814E1EB1E27C9597EED2E822854930D3FCF Certificate serial: 01FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft Manifest number: 01DB Signing time: Fri 19 Dec 2025 02:17:17 +0000 Manifest this update: Fri 19 Dec 2025 02:17:17 +0000 Manifest next update: Fri 26 Dec 2025 02:17:17 +0000 Files and hashes: 1: oTW4FOHrHifJWX7tLoIoVJMNP88.crl (hash: Zt+NPoZE+KEDm+cfASYOpBRdC15eEwpR9r2835zyt7I=) 2: CD168A226C2111EFB0ACC153C4F9AE02.roa (hash: F8BQEsLxz2XO34zN3GNH3AuMPZU87rOGItPVHiqWabQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.crl rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 507 (0x1fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197390, serialNumber=A135B814E1EB1E27C9597EED2E822854930D3FCF Validity Not Before: Dec 19 02:17:17 2025 GMT Not After : Dec 26 02:17:17 2025 GMT Subject: CN=6944b5ad-0fd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:37:bb:da:d9:82:98:51:a8:48:11:18:eb:d2: c6:1c:53:d3:8c:17:f6:8e:f2:59:eb:82:cf:58:7e: dd:67:18:3f:60:d2:e0:40:0d:19:e4:ec:23:60:7a: 97:6e:02:c2:3d:f5:c6:72:3b:ea:9f:44:ac:54:9c: a5:c0:05:95:f6:a3:b3:e4:4f:f6:a0:09:20:62:1c: a2:ef:03:87:06:a8:d9:9b:11:38:82:db:08:bb:40: 17:96:08:e8:bf:38:b9:db:73:15:14:27:68:3b:21: 71:a3:6b:5c:f4:2d:f7:56:f0:78:63:5d:e0:30:1a: 25:45:53:6e:44:f2:0b:f7:e7:31:ae:85:db:53:3b: 84:6a:4c:b8:d3:32:f4:e2:c4:83:e5:3e:f7:df:e6: 64:33:66:14:c7:5b:30:12:bd:84:15:ef:ff:ed:62: 85:78:35:72:26:ab:28:ab:92:03:df:7c:87:7f:08: ba:a8:f8:66:b2:88:e0:e3:64:59:aa:bc:f0:38:e9: 25:13:f7:66:6b:5d:ee:05:3b:ad:b2:cf:fd:44:a4: 12:7a:0a:49:20:7a:9b:a2:7c:31:71:c7:f3:06:22: 46:f7:67:13:a3:c7:eb:9a:df:c7:7d:8d:a9:61:af: 20:f4:ba:3c:5d:99:14:16:a3:2d:69:70:08:4d:ca: cf:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:23:F0:03:B8:DA:2B:66:13:18:E5:98:81:07:81:17:9A:94:96:C7 X509v3 Authority Key Identifier: keyid:A1:35:B8:14:E1:EB:1E:27:C9:59:7E:ED:2E:82:28:54:93:0D:3F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oTW4FOHrHifJWX7tLoIoVJMNP88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197390/D2C7E7163E7A11EEA977D620C4F9AE02/oTW4FOHrHifJWX7tLoIoVJMNP88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:7e:fc:75:8d:ee:9b:f5:0e:d3:75:c7:2c:c7:6b:a8:6a:07: d4:42:b0:8a:06:8a:96:68:97:59:03:c7:7f:c1:5a:e3:22:88: 73:49:6a:16:a4:b5:2e:98:dc:04:30:e5:6c:60:7a:5d:67:01: ab:c5:b2:2a:3a:20:ed:bd:af:cc:ad:20:3f:9e:7a:ef:d2:62: 97:02:db:94:e0:6d:e8:ab:a2:ac:a4:86:f6:17:cd:66:6e:e0: 22:9f:61:a6:70:e2:e8:25:87:9c:68:16:b6:a4:9f:d5:63:25: 26:f6:de:d2:5e:5c:26:84:e1:89:46:80:9b:b7:2e:85:b6:b8: bd:ff:39:69:8f:55:d3:6f:3b:6f:94:7b:e8:0e:8a:c8:bf:5d: 17:8a:c4:8e:17:5f:d9:b3:34:d4:a1:40:ab:ac:d7:94:a7:7e: 3c:50:fc:02:8c:6e:35:7a:8c:0f:b0:99:85:73:a3:07:5b:5d: 0f:1f:e3:3d:05:cb:ed:1d:dc:89:ae:16:94:d6:2e:19:41:7c: e2:33:5e:34:3d:5f:c8:f9:82:97:a1:0c:18:23:1d:11:cd:65: 1a:2b:e3:21:f2:0e:e0:99:28:b4:a0:dd:50:6e:e5:24:0b:00: 4f:56:50:bf:b2:ec:45:90:eb:6b:5b:4b:f2:48:81:e5:58:eb: f1:47:d9:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTczOTAxMTAvBgNVBAUTKEExMzVCODE0RTFFQjFFMjdDOTU5N0VFRDJFODIyODU0 OTMwRDNGQ0YwHhcNMjUxMjE5MDIxNzE3WhcNMjUxMjI2MDIxNzE3WjAYMRYwFAYD VQQDDA02OTQ0YjVhZC0wZmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsje72tmCmFGoSBEY69LGHFPTjBf2jvJZ64LPWH7dZxg/YNLgQA0Z5OwjYHqX bgLCPfXGcjvqn0SsVJylwAWV9qOz5E/2oAkgYhyi7wOHBqjZmxE4gtsIu0AXlgjo vzi523MVFCdoOyFxo2tc9C33VvB4Y13gMBolRVNuRPIL9+cxroXbUzuEaky40zL0 4sSD5T733+ZkM2YUx1swEr2EFe//7WKFeDVyJqsoq5ID33yHfwi6qPhmsojg42RZ qrzwOOklE/dma13uBTutss/9RKQSegpJIHqbonwxccfzBiJG92cTo8frmt/HfY2p Ya8g9Lo8XZkUFqMtaXAITcrPDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMUj8AO4 2itmExjlmIEHgRealJbHMB8GA1UdIwQYMBaAFKE1uBTh6x4nyVl+7S6CKFSTDT/P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzM5MC9EMkM3RTcxNjNF N0ExMUVFQTk3N0Q2MjBDNEY5QUUwMi9vVFc0Rk9IckhpZkpXWDd0TG9Jb1ZKTU5Q ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29UVzRGT0hySGlmSldYN3RMb0lvVkpNTlA4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzM5MC9EMkM3RTcxNjNFN0ExMUVFQTk3N0Q2MjBDNEY5QUUwMi9vVFc0Rk9Ickhp ZkpXWDd0TG9Jb1ZKTU5QODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBfvx1je6b9Q7Tdccsx2uoagfUQrCKBoqWaJdZA8d/wVrjIohzSWoW pLUumNwEMOVsYHpdZwGrxbIqOiDtva/MrSA/nnrv0mKXAtuU4G3oq6KspIb2F81m buAin2GmcOLoJYecaBa2pJ/VYyUm9t7SXlwmhOGJRoCbty6Ftri9/zlpj1XTbztv lHvoDorIv10XisSOF1/ZszTUoUCrrNeUp348UPwCjG41eowPsJmFc6MHW10PH+M9 BcvtHdyJrhaU1i4ZQXziM140PV/I+YKXoQwYIx0RzWUaK+Mh8g7gmSi0oN1QbuUk CwBPVlC/suxFkOtrW0vySIHlWOvxR9kU -----END CERTIFICATE-----Generated at Fri Dec 19 17:47:23 2025 by rpki-client