This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft File: lqeZovSzCLIlIrzkXjGNanAmKSs.mft (raw, json) Hash identifier: M1GeCxwoJuPqGCeWtcFe8fjco1cnKt41Ob4nuEaNakc= Subject key identifier: F1:08:C5:41:D8:D2:27:A7:D1:FB:63:5B:87:2F:90:A8:AB:48:35:02 Authority key identifier: 96:A7:99:A2:F4:B3:08:B2:25:22:BC:E4:5E:31:8D:6A:70:26:29:2B Certificate issuer: /CN=A911BA4B/serialNumber=96A799A2F4B308B22522BCE45E318D6A7026292B Certificate serial: 11FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft Manifest number: 11EE Signing time: Mon 22 Dec 2025 16:52:45 +0000 Manifest this update: Mon 22 Dec 2025 16:52:44 +0000 Manifest next update: Mon 29 Dec 2025 16:52:44 +0000 Files and hashes: 1: lqeZovSzCLIlIrzkXjGNanAmKSs.crl (hash: Okd5j8yP1t77mTaoVCfb/eBPgayvcJPNyrvLd2PIiRQ=) 2: 318BC266FEA911E8BF138B59C4F9AE02.roa (hash: yyuOkKMjkxOCaqRu1AYzdE+AAsdFHVWrA4FcabEJaF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.crl rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:52:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4604 (0x11fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BA4B, serialNumber=96A799A2F4B308B22522BCE45E318D6A7026292B Validity Not Before: Dec 22 16:52:44 2025 GMT Not After : Dec 29 16:52:44 2025 GMT Subject: CN=6949775c-b518 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:36:34:63:e3:39:b3:68:db:d8:4b:16:b6:82: 65:9b:b0:f0:76:fa:d2:6f:c4:8d:12:ba:44:01:fe: e8:4a:2f:b0:71:94:6b:34:bf:c6:3e:4e:c6:e9:14: 6c:cb:e7:d5:b8:b5:b7:ed:cf:62:73:7b:76:a4:b0: 52:2d:38:ce:bb:de:9e:00:29:c5:04:bd:b8:db:d8: c3:70:36:81:67:51:b2:bb:36:3a:6f:3b:68:72:e4: b8:81:2d:e6:48:8d:92:0a:c8:ad:7d:37:6b:56:97: 48:60:98:b4:fe:dd:70:54:7a:39:ad:b1:86:8f:81: 39:86:15:2f:5d:5b:66:fa:4b:bc:fc:86:52:b5:e3: 97:bb:81:f0:03:4f:0f:6c:aa:bc:05:66:2f:22:35: 16:a7:0f:89:a4:d8:e7:6a:5c:72:54:88:5a:69:3a: 18:84:f7:48:7b:c1:b2:c0:34:fc:08:38:f1:3a:81: 2f:16:f5:45:b0:2a:80:ee:a2:43:c0:14:f4:87:3f: be:fe:6d:e5:cb:f6:00:59:3d:d5:64:1c:81:b6:a9: 38:9e:74:17:dd:45:4e:3b:bf:28:b5:02:42:71:4e: 77:11:73:13:3d:77:6a:86:1f:6a:d0:47:83:08:06: 51:25:ab:08:8c:35:ed:f3:12:74:74:6c:26:09:58: 14:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:08:C5:41:D8:D2:27:A7:D1:FB:63:5B:87:2F:90:A8:AB:48:35:02 X509v3 Authority Key Identifier: keyid:96:A7:99:A2:F4:B3:08:B2:25:22:BC:E4:5E:31:8D:6A:70:26:29:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:0c:2b:4e:10:09:2e:8e:bc:08:b0:50:eb:e1:8e:9b:09:aa: cd:5d:c9:77:2e:13:28:e1:a9:56:e2:97:ed:97:ac:8b:ca:d0: ef:da:00:d0:c1:13:a7:52:1d:cc:cc:ad:ff:70:eb:8a:af:fb: bf:8b:60:5c:98:40:67:d4:f8:57:9e:4d:24:d9:b6:96:37:b1: 53:28:9c:8c:e0:76:b7:8e:65:9e:a1:53:df:78:fc:12:72:19: d1:73:b9:76:a7:6b:42:10:a4:37:b2:07:ee:18:81:4a:6e:d2: ab:62:fc:67:28:59:e2:9b:ff:07:bc:a3:8c:ef:25:3d:81:55: 18:1a:90:7e:a6:4f:d2:e3:8b:41:a0:52:4b:ec:c0:ae:c4:dd: d8:3d:2f:a0:35:ef:e3:8b:37:14:db:f1:d9:23:d3:f6:dd:5a: 21:64:74:90:b1:e2:99:48:30:fb:11:1c:9b:1b:8a:f6:94:b3: 9a:d7:56:54:e0:03:0f:17:d0:f2:9e:ca:2a:52:78:c0:95:99: 31:01:63:c2:0a:83:37:dd:47:94:10:a9:8a:43:bb:b6:96:d5: 22:af:8f:fb:9d:91:02:54:49:03:a0:b2:db:77:12:40:b9:6e: 4f:c7:16:70:a0:1f:7b:5e:ed:23:9e:c5:b5:ef:81:ed:c0:45: b9:3d:0e:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJBNEIxMTAvBgNVBAUTKDk2QTc5OUEyRjRCMzA4QjIyNTIyQkNFNDVFMzE4RDZB NzAyNjI5MkIwHhcNMjUxMjIyMTY1MjQ0WhcNMjUxMjI5MTY1MjQ0WjAYMRYwFAYD VQQDDA02OTQ5Nzc1Yy1iNTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAozY0Y+M5s2jb2EsWtoJlm7DwdvrSb8SNErpEAf7oSi+wcZRrNL/GPk7G6RRs y+fVuLW37c9ic3t2pLBSLTjOu96eACnFBL2429jDcDaBZ1GyuzY6bztocuS4gS3m SI2SCsitfTdrVpdIYJi0/t1wVHo5rbGGj4E5hhUvXVtm+ku8/IZSteOXu4HwA08P bKq8BWYvIjUWpw+JpNjnalxyVIhaaToYhPdIe8GywDT8CDjxOoEvFvVFsCqA7qJD wBT0hz++/m3ly/YAWT3VZByBtqk4nnQX3UVOO78otQJCcU53EXMTPXdqhh9q0EeD CAZRJasIjDXt8xJ0dGwmCVgUyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPEIxUHY 0ien0ftjW4cvkKirSDUCMB8GA1UdIwQYMBaAFJanmaL0swiyJSK85F4xjWpwJikr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkE0Qi9FMzc3RkQ3QUZF QTcxMUU4QTJFNEI0NTdDNEY5QUUwMi9scWVab3ZTekNMSWxJcnprWGpHTmFuQW1L U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xxZVpvdlN6Q0xJbElyemtYakdOYW5BbUtTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkE0Qi9FMzc3RkQ3QUZFQTcxMUU4QTJFNEI0NTdDNEY5QUUwMi9scWVab3ZTekNM SWxJcnprWGpHTmFuQW1LU3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWDCtOEAkujrwIsFDr4Y6bCarNXcl3LhMo4alW4pftl6yLytDv2gDQ wROnUh3MzK3/cOuKr/u/i2BcmEBn1PhXnk0k2baWN7FTKJyM4Ha3jmWeoVPfePwS chnRc7l2p2tCEKQ3sgfuGIFKbtKrYvxnKFnim/8HvKOM7yU9gVUYGpB+pk/S44tB oFJL7MCuxN3YPS+gNe/jizcU2/HZI9P23VohZHSQseKZSDD7ERybG4r2lLOa11ZU 4AMPF9DynsoqUnjAlZkxAWPCCoM33UeUEKmKQ7u2ltUir4/7nZECVEkDoLLbdxJA uW5PxxZwoB97Xu0jnsW174HtwEW5PQ7u -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:01 2025 by rpki-client