This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.mft File: l9pBnzurP2V6paXATgV8StlhvFs.mft (raw, json) Hash identifier: PuZRMgFzWCqEF/MEH3yL7vgozjC7kizufPag8gN8lBM= Subject key identifier: 00:07:61:9D:34:90:53:B4:75:91:B1:4C:65:7D:69:3A:FF:D3:A0:48 Authority key identifier: 97:DA:41:9F:3B:AB:3F:65:7A:A5:A5:C0:4E:05:7C:4A:D9:61:BC:5B Certificate issuer: /CN=A911251C/serialNumber=97DA419F3BAB3F657AA5A5C04E057C4AD961BC5B Certificate serial: 0247 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9pBnzurP2V6paXATgV8StlhvFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.mft Manifest number: 0242 Signing time: Tue 23 Dec 2025 00:52:42 +0000 Manifest this update: Tue 23 Dec 2025 00:52:42 +0000 Manifest next update: Tue 30 Dec 2025 00:52:42 +0000 Files and hashes: 1: l9pBnzurP2V6paXATgV8StlhvFs.crl (hash: wciy8yLpIaE7VxJqHIOwjIA5CzK9VtAAwRHuNAEx4eU=) 2: B2F017A26BE311ED8B83B484C4F9AE02.roa (hash: eEPdVRPjMFChXAnZ+AFBDP2qN9nX/mupKkDoS8rA9tY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.crl rsync://rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9pBnzurP2V6paXATgV8StlhvFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:52:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 583 (0x247) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911251C, serialNumber=97DA419F3BAB3F657AA5A5C04E057C4AD961BC5B Validity Not Before: Dec 23 00:52:42 2025 GMT Not After : Dec 30 00:52:42 2025 GMT Subject: CN=6949e7da-6462 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:4d:71:82:15:64:fb:a9:d6:60:b2:eb:df:f4: 2a:d2:30:45:55:78:c2:91:70:b0:b4:db:68:0d:63: 63:96:37:14:f7:c3:25:56:4b:82:55:8f:14:33:c7: b5:cd:ae:d5:d3:c2:b4:9a:49:88:35:40:30:ab:ce: c1:43:dd:24:d1:c9:8e:fc:d9:76:f9:67:8d:72:68: 4f:b5:cb:36:c0:37:ea:28:99:d0:82:b0:f8:5b:8b: 7c:42:5b:6a:f6:2f:61:53:77:a3:40:83:b9:72:e1: 25:2a:a1:a0:e9:f3:9c:c1:76:26:79:fa:87:8d:04: 27:a5:27:00:db:54:07:df:1e:cb:ad:a2:5e:a8:09: 4f:9a:af:27:8f:8f:a3:8b:7f:19:63:87:e4:d2:17: db:b8:18:ad:2c:9c:3a:a6:38:16:1a:35:5a:dd:8a: 7d:cf:d2:63:55:1d:e1:98:d7:f5:7a:44:b8:78:4e: d9:93:5e:9e:58:bc:e1:6e:91:68:7d:8d:02:ea:23: 40:0c:d2:42:13:4c:b6:38:ac:e1:b8:00:1d:5f:ab: 31:26:3e:e4:11:02:11:27:df:01:a5:b4:44:96:73: 74:cb:c4:79:58:55:69:68:6d:c9:ed:b7:46:b4:0a: 52:3d:b5:36:ea:a4:88:97:9d:7f:3d:ca:75:14:9c: 8d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:07:61:9D:34:90:53:B4:75:91:B1:4C:65:7D:69:3A:FF:D3:A0:48 X509v3 Authority Key Identifier: keyid:97:DA:41:9F:3B:AB:3F:65:7A:A5:A5:C0:4E:05:7C:4A:D9:61:BC:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9pBnzurP2V6paXATgV8StlhvFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:f2:96:f7:d4:66:c9:b7:66:7f:0e:f5:72:cf:ac:d2:fe:11: d9:ed:3e:c4:22:c6:66:bb:9f:a5:f6:5d:2b:12:ee:b0:eb:5d: 46:9b:5c:fb:20:7d:7a:91:90:9f:c5:f4:d9:c4:2b:7d:b8:2a: 37:65:e7:44:e3:00:1f:33:c2:da:3a:13:0b:bd:12:cb:78:c8: 21:70:5f:5d:45:cc:ed:02:46:5d:13:60:01:32:71:35:ae:1c: 95:56:e7:ef:00:b4:a5:f7:85:5c:1a:83:cf:96:74:63:b0:09: a5:b9:2f:d8:57:44:09:a6:25:52:d5:07:d4:64:30:89:40:c5: a1:f5:e4:3e:19:7b:0e:be:ff:0a:6b:43:fd:3f:d5:ef:1b:34: e0:3c:9b:6d:57:d5:af:30:21:37:47:03:dc:f2:43:c5:c8:e4: a9:0e:ff:cd:9c:c6:24:c1:bc:1a:af:2b:4f:53:15:94:00:41: 7d:87:06:7a:85:74:2f:ce:be:12:ae:1c:05:ca:b2:ab:0a:70: ff:86:57:50:75:d7:cf:ac:a2:4e:2d:62:52:d0:43:b2:d3:0e: f0:87:38:5c:40:52:10:8a:aa:00:2b:ee:b4:5f:f6:05:8a:28: 7a:01:65:c2:34:03:2e:5e:be:e4:63:30:55:87:80:28:01:94: 25:67:79:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx MTI1MUMxMTAvBgNVBAUTKDk3REE0MTlGM0JBQjNGNjU3QUE1QTVDMDRFMDU3QzRB RDk2MUJDNUIwHhcNMjUxMjIzMDA1MjQyWhcNMjUxMjMwMDA1MjQyWjAYMRYwFAYD VQQDDA02OTQ5ZTdkYS02NDYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsk1xghVk+6nWYLLr3/Qq0jBFVXjCkXCwtNtoDWNjljcU98MlVkuCVY8UM8e1 za7V08K0mkmINUAwq87BQ90k0cmO/Nl2+WeNcmhPtcs2wDfqKJnQgrD4W4t8Qltq 9i9hU3ejQIO5cuElKqGg6fOcwXYmefqHjQQnpScA21QH3x7LraJeqAlPmq8nj4+j i38ZY4fk0hfbuBitLJw6pjgWGjVa3Yp9z9JjVR3hmNf1ekS4eE7Zk16eWLzhbpFo fY0C6iNADNJCE0y2OKzhuAAdX6sxJj7kEQIRJ98BpbRElnN0y8R5WFVpaG3J7bdG tApSPbU26qSIl51/Pcp1FJyN2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAAHYZ00 kFO0dZGxTGV9aTr/06BIMB8GA1UdIwQYMBaAFJfaQZ87qz9leqWlwE4FfErZYbxb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjUxQy9GOEY3RTI1MDZC RTAxMUVEOTkxOTZGNjJDNEY5QUUwMi9sOXBCbnp1clAyVjZwYVhBVGdWOFN0bGh2 RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w5cEJuenVyUDJWNnBhWEFUZ1Y4U3RsaHZGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjUxQy9GOEY3RTI1MDZCRTAxMUVEOTkxOTZGNjJDNEY5QUUwMi9sOXBCbnp1clAy VjZwYVhBVGdWOFN0bGh2RnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCy8pb31GbJt2Z/DvVyz6zS/hHZ7T7EIsZmu5+l9l0rEu6w611Gm1z7 IH16kZCfxfTZxCt9uCo3ZedE4wAfM8LaOhMLvRLLeMghcF9dRcztAkZdE2ABMnE1 rhyVVufvALSl94VcGoPPlnRjsAmluS/YV0QJpiVS1QfUZDCJQMWh9eQ+GXsOvv8K a0P9P9XvGzTgPJttV9WvMCE3RwPc8kPFyOSpDv/NnMYkwbwarytPUxWUAEF9hwZ6 hXQvzr4SrhwFyrKrCnD/hldQddfPrKJOLWJS0EOy0w7whzhcQFIQiqoAK+60X/YF iih6AWXCNAMuXr7kYzBVh4AoAZQlZ3kr -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:52 2025 by rpki-client