This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.mft File: LnNTksaGuNjciMDM1Zvyrvun6LA.mft (raw, json) Hash identifier: rPHOgfMJLFD4jOq8kuJSpzWguj/QpqK1F0eagaponFg= Subject key identifier: 0C:53:72:68:5C:BE:51:89:18:CE:06:1E:5C:D1:3B:A5:12:72:E6:31 Authority key identifier: 2E:73:53:92:C6:86:B8:D8:DC:88:C0:CC:D5:9B:F2:AE:FB:A7:E8:B0 Certificate issuer: /CN=A911D340/serialNumber=2E735392C686B8D8DC88C0CCD59BF2AEFBA7E8B0 Certificate serial: 0B9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNTksaGuNjciMDM1Zvyrvun6LA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.mft Manifest number: 0B92 Signing time: Mon 22 Dec 2025 18:32:02 +0000 Manifest this update: Mon 22 Dec 2025 18:32:02 +0000 Manifest next update: Mon 29 Dec 2025 18:32:02 +0000 Files and hashes: 1: LnNTksaGuNjciMDM1Zvyrvun6LA.crl (hash: j6lbBowC8lct+deIOvD7k5/vEBhUQdf2Ush28t96x1s=) 2: 14B2A85C3DA611EAAD093F5EC4F9AE02.roa (hash: U5r4SWMbZzX6cEmOkEoVm3P+a9O6vlGibQIW9uT8u/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.crl rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNTksaGuNjciMDM1Zvyrvun6LA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:32:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2971 (0xb9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D340, serialNumber=2E735392C686B8D8DC88C0CCD59BF2AEFBA7E8B0 Validity Not Before: Dec 22 18:32:02 2025 GMT Not After : Dec 29 18:32:02 2025 GMT Subject: CN=69498ea2-a4c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:38:9b:2e:ff:9f:63:a7:2f:63:94:b8:fc:32: b5:14:6d:70:89:49:e0:6e:2c:67:b3:17:ad:e1:aa: 2d:de:43:aa:05:49:a2:93:d1:ae:93:fd:fa:4b:7c: da:38:06:5f:36:5d:88:ba:63:e1:eb:7b:43:2d:63: 40:9b:83:be:07:9e:11:8d:d7:04:7a:57:b6:79:32: 74:ae:30:11:37:87:6d:88:1f:7e:45:ff:c7:de:6a: 38:10:79:02:0d:e9:7d:9c:97:26:8c:2f:be:8e:2f: 02:43:0d:24:cb:36:e6:63:98:8d:01:65:0f:72:b3: a5:7e:10:5e:59:ca:e8:74:0d:7f:90:f8:d5:30:58: bf:26:6d:ae:77:09:13:d8:10:82:56:a4:18:66:91: 40:f1:aa:e4:a5:4e:73:c0:d5:f9:f4:f4:52:e3:fa: fe:b9:1c:7b:fa:28:17:81:bf:ed:50:d0:33:d4:5b: fa:15:47:05:07:f9:b4:29:5c:d5:d4:b7:35:68:58: 6a:f0:c1:2f:66:2b:4a:85:d0:df:82:c4:e3:5f:f9: 84:6c:6d:50:2d:9f:6e:a5:23:e8:1c:51:9a:5f:89: fa:40:05:f2:fc:2c:04:aa:53:07:23:27:fc:b5:2f: 80:f8:7b:f0:e8:e9:5f:9f:10:65:c8:ef:e5:13:da: 16:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:53:72:68:5C:BE:51:89:18:CE:06:1E:5C:D1:3B:A5:12:72:E6:31 X509v3 Authority Key Identifier: keyid:2E:73:53:92:C6:86:B8:D8:DC:88:C0:CC:D5:9B:F2:AE:FB:A7:E8:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNTksaGuNjciMDM1Zvyrvun6LA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:19:bf:a8:05:69:4a:78:7f:4a:f2:77:32:69:a5:c5:db:70: 5b:dd:ed:46:da:0e:6e:81:a6:73:39:29:ff:32:88:af:df:0f: 4f:0c:75:73:cf:6d:00:62:83:1c:dc:23:4b:12:c7:99:eb:bf: a4:00:6e:8b:a2:8e:0b:43:ad:26:9c:92:9d:d2:4c:63:00:37: 38:96:ea:04:f1:91:a8:74:a3:96:f5:09:1a:af:71:81:fe:d0: f6:8a:80:4f:11:a7:19:47:78:d2:fb:11:68:be:4b:90:6d:c4: a9:8d:4f:51:33:71:6e:61:ec:08:e2:14:1f:df:45:e0:29:ec: f9:15:97:0b:bb:df:fa:7d:fe:54:a4:41:ce:f9:47:28:a5:5b: df:98:62:a9:b2:e6:08:75:b5:44:23:fd:20:7d:0e:a0:73:29: ed:28:52:8a:9e:9b:0b:a4:e5:dc:36:62:e7:5a:ed:30:5f:f9: d9:44:f8:b5:02:6d:e4:36:e1:bd:d5:ba:cb:73:9d:e7:f9:ec: dc:3f:95:0d:f7:6c:27:63:94:2c:97:cc:60:50:82:61:53:4f: 8f:0a:5b:c5:14:6a:96:48:de:f8:07:4a:24:5c:1b:eb:07:fc: 18:b8:72:8e:1f:a1:1a:87:5a:d2:57:d8:38:26:29:1c:50:c6: 00:de:12:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQzNDAxMTAvBgNVBAUTKDJFNzM1MzkyQzY4NkI4RDhEQzg4QzBDQ0Q1OUJGMkFF RkJBN0U4QjAwHhcNMjUxMjIyMTgzMjAyWhcNMjUxMjI5MTgzMjAyWjAYMRYwFAYD VQQDDA02OTQ5OGVhMi1hNGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTibLv+fY6cvY5S4/DK1FG1wiUngbixnsxet4aot3kOqBUmik9Guk/36S3za OAZfNl2IumPh63tDLWNAm4O+B54RjdcEele2eTJ0rjARN4dtiB9+Rf/H3mo4EHkC Del9nJcmjC++ji8CQw0kyzbmY5iNAWUPcrOlfhBeWcrodA1/kPjVMFi/Jm2udwkT 2BCCVqQYZpFA8arkpU5zwNX59PRS4/r+uRx7+igXgb/tUNAz1Fv6FUcFB/m0KVzV 1Lc1aFhq8MEvZitKhdDfgsTjX/mEbG1QLZ9upSPoHFGaX4n6QAXy/CwEqlMHIyf8 tS+A+Hvw6OlfnxBlyO/lE9oWBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAxTcmhc vlGJGM4GHlzRO6UScuYxMB8GA1UdIwQYMBaAFC5zU5LGhrjY3IjAzNWb8q77p+iw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDM0MC8wNDY4Mzk3QTND NEUxMUVBOTQ3MjVDMjhDNEY5QUUwMi9Mbk5Ua3NhR3VOamNpTURNMVp2eXJ2dW42 TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xuTlRrc2FHdU5qY2lNRE0xWnZ5cnZ1bjZMQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDM0MC8wNDY4Mzk3QTNDNEUxMUVBOTQ3MjVDMjhDNEY5QUUwMi9Mbk5Ua3NhR3VO amNpTURNMVp2eXJ2dW42TEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmGb+oBWlKeH9K8ncyaaXF23Bb3e1G2g5ugaZzOSn/Moiv3w9PDHVz z20AYoMc3CNLEseZ67+kAG6Loo4LQ60mnJKd0kxjADc4luoE8ZGodKOW9Qkar3GB /tD2ioBPEacZR3jS+xFovkuQbcSpjU9RM3FuYewI4hQf30XgKez5FZcLu9/6ff5U pEHO+UcopVvfmGKpsuYIdbVEI/0gfQ6gcyntKFKKnpsLpOXcNmLnWu0wX/nZRPi1 Am3kNuG91brLc53n+ezcP5UN92wnY5Qsl8xgUIJhU0+PClvFFGqWSN74B0okXBvr B/wYuHKOH6Eah1rSV9g4JikcUMYA3hJO -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:20 2025 by rpki-client