This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft File: LUmzrm2hi2NGSjF3qzIQGULmpRo.mft (raw, json) Hash identifier: ZzQptSqyRIQcvxzKofJncSCvQ0fQx78g8dvXKSxSS08= Subject key identifier: 54:CE:A3:F3:57:05:D4:30:51:46:39:E9:AF:FE:9A:BF:0B:51:BD:5F Authority key identifier: 2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A Certificate issuer: /CN=A911F753/serialNumber=2D49B3AE6DA18B63464A3177AB32101942E6A51A Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft Manifest number: C2 Signing time: Wed 03 Dec 2025 04:24:11 +0000 Manifest this update: Wed 03 Dec 2025 04:24:10 +0000 Manifest next update: Wed 10 Dec 2025 04:24:10 +0000 Files and hashes: 1: LUmzrm2hi2NGSjF3qzIQGULmpRo.crl (hash: /2UUjO8992L9MZtvSxhQaojhzJHssb281sLhGjz+GxQ=) 2: 45541EE4C9F711F087D2166DC4F9AE02.roa (hash: FajZyfrb9GeQ8s+6jriOX027rbLpwP1Hov/4rOj2+Q8=) 3: 44870D64C9F711F0BE5A166DC4F9AE02.roa (hash: bp0RLIpTitUcQ67OSTbBZOecrYQ1aQaiC31xXwpL9Bc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 04:24:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F753, serialNumber=2D49B3AE6DA18B63464A3177AB32101942E6A51A Validity Not Before: Dec 3 04:24:10 2025 GMT Not After : Dec 10 04:24:10 2025 GMT Subject: CN=692fbb6a-6f4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:60:51:dd:e1:df:86:b5:7d:66:e1:31:76:b6: f5:40:e7:4a:29:2d:15:68:cf:c2:c0:63:44:e7:03: 47:92:74:0b:45:71:80:58:2c:10:b7:a5:29:ca:05: a8:1f:64:48:14:89:ec:9e:94:55:c2:86:12:ce:60: 20:35:e2:9a:cc:a3:86:99:53:8b:f5:e9:19:94:07: e9:0e:06:0a:a0:be:e9:34:3b:1e:99:42:75:15:69: 92:75:8c:eb:b0:ab:35:26:8c:c3:16:b8:7a:8c:82: 89:47:79:2c:0b:ca:cd:13:94:95:76:9c:f9:cc:02: f9:fe:06:3f:6d:9b:47:62:8e:49:ca:27:f0:c8:6c: 33:07:31:5f:26:93:0d:c7:7a:20:c6:e8:9a:5a:cf: da:27:39:3c:f4:be:df:90:17:9a:66:d2:d8:88:18: 15:83:08:8e:05:45:3d:f5:4c:61:47:8c:11:c2:38: 38:ce:58:df:b2:a5:1f:df:97:c8:e9:07:84:dc:de: f3:37:1b:d0:97:7f:68:53:6d:90:28:b1:fa:63:5c: 3d:2d:80:40:8e:c8:87:55:8b:7a:e1:c8:03:b3:68: a8:ad:67:70:61:9d:44:90:7c:15:89:da:f4:0c:30: 54:29:be:82:a4:b3:8b:d1:c6:ee:81:42:37:7a:11: 02:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:CE:A3:F3:57:05:D4:30:51:46:39:E9:AF:FE:9A:BF:0B:51:BD:5F X509v3 Authority Key Identifier: keyid:2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:19:83:db:f0:45:b5:ec:c9:d1:0a:0e:51:36:9f:65:2c:a4: 4a:1b:57:8f:42:57:0e:a6:a5:d6:6e:7e:6e:6b:16:04:d1:b1: ec:16:14:a1:16:ab:2e:a9:da:a9:61:35:ff:5e:af:e4:e2:91: 1e:4e:33:fe:e8:1c:2f:67:db:e3:07:f5:f6:ea:69:a2:7c:a0: da:3b:32:1c:8a:06:12:0b:96:a5:65:b5:1c:b1:14:12:a9:c5: b8:57:d0:14:1d:99:0e:3a:de:32:03:ab:ac:f3:b3:62:54:5a: 27:56:d8:5e:03:20:78:e9:ec:1a:e4:f9:1b:1b:fe:fa:16:b3: 0a:f9:10:0a:38:fc:8f:84:69:68:e3:61:0a:02:3e:39:7f:61: 04:24:e3:32:27:d8:72:8e:8c:b1:5e:9c:9e:d4:9a:bb:2c:4a: ca:93:e2:fc:d4:07:65:88:17:20:67:0b:73:65:bb:74:bd:55: 2b:82:1f:3b:28:32:a3:34:8c:b3:01:ed:b1:c6:57:82:dc:85: a3:c0:c9:e6:61:2d:fe:26:d1:c1:8f:b7:21:8c:e4:1f:8c:0a: 99:3a:38:a3:d8:f1:b3:22:69:f4:7e:ed:7a:65:78:29:16:a9: 84:dc:fb:a2:69:27:bd:65:e9:d9:da:45:4a:c1:f2:bb:40:ad: ec:3c:b1:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY3NTMxMTAvBgNVBAUTKDJENDlCM0FFNkRBMThCNjM0NjRBMzE3N0FCMzIxMDE5 NDJFNkE1MUEwHhcNMjUxMjAzMDQyNDEwWhcNMjUxMjEwMDQyNDEwWjAYMRYwFAYD VQQDEw02OTJmYmI2YS02ZjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWBR3eHfhrV9ZuExdrb1QOdKKS0VaM/CwGNE5wNHknQLRXGAWCwQt6UpygWo H2RIFInsnpRVwoYSzmAgNeKazKOGmVOL9ekZlAfpDgYKoL7pNDsemUJ1FWmSdYzr sKs1JozDFrh6jIKJR3ksC8rNE5SVdpz5zAL5/gY/bZtHYo5JyifwyGwzBzFfJpMN x3ogxuiaWs/aJzk89L7fkBeaZtLYiBgVgwiOBUU99UxhR4wRwjg4zljfsqUf35fI 6QeE3N7zNxvQl39oU22QKLH6Y1w9LYBAjsiHVYt64cgDs2iorWdwYZ1EkHwVidr0 DDBUKb6CpLOL0cbugUI3ehECfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFTOo/NX BdQwUUY56a/+mr8LUb1fMB8GA1UdIwQYMBaAFC1Js65toYtjRkoxd6syEBlC5qUa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjc1My83ODA5REEwMkJD MEQxMUVGOUI0QUQ2NDlDNEY5QUUwMi9MVW16cm0yaGkyTkdTakYzcXpJUUdVTG1w Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xVbXpybTJoaTJOR1NqRjNxeklRR1VMbXBSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Rjc1My83ODA5REEwMkJDMEQxMUVGOUI0QUQ2NDlDNEY5QUUwMi9MVW16cm0yaGky TkdTakYzcXpJUUdVTG1wUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkGYPb8EW17MnRCg5RNp9lLKRKG1ePQlcOpqXWbn5uaxYE0bHsFhSh FqsuqdqpYTX/Xq/k4pEeTjP+6BwvZ9vjB/X26mmifKDaOzIcigYSC5alZbUcsRQS qcW4V9AUHZkOOt4yA6us87NiVFonVtheAyB46ewa5PkbG/76FrMK+RAKOPyPhGlo 42EKAj45f2EEJOMyJ9hyjoyxXpye1Jq7LErKk+L81AdliBcgZwtzZbt0vVUrgh87 KDKjNIyzAe2xxleC3IWjwMnmYS3+JtHBj7chjOQfjAqZOjij2PGzImn0fu16ZXgp FqmE3PuiaSe9ZenZ2kVKwfK7QK3sPLGp -----END CERTIFICATE-----Generated at Wed Dec 3 13:58:17 2025 by rpki-client