This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft File: LUmzrm2hi2NGSjF3qzIQGULmpRo.mft (raw, json) Hash identifier: Tt0JZbjyP1EWUEbbWTKInFh/yDbtxVXKguGrWMevIOc= Subject key identifier: 06:3F:E5:61:0E:5C:B6:3D:06:CF:AA:F9:5D:17:6B:78:E3:7B:DF:9B Authority key identifier: 2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A Certificate issuer: /CN=A911F753/serialNumber=2D49B3AE6DA18B63464A3177AB32101942E6A51A Certificate serial: E6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft Manifest number: DB Signing time: Sat 17 Jan 2026 04:55:30 +0000 Manifest this update: Sat 17 Jan 2026 04:55:29 +0000 Manifest next update: Sat 24 Jan 2026 04:55:29 +0000 Files and hashes: 1: LUmzrm2hi2NGSjF3qzIQGULmpRo.crl (hash: ZPUtvCDyBmGCHeW5I5APKEEW6wRE3bf/iKnACQ1AIf0=) 2: 44870D64C9F711F0BE5A166DC4F9AE02.roa (hash: bp0RLIpTitUcQ67OSTbBZOecrYQ1aQaiC31xXwpL9Bc=) 3: 45541EE4C9F711F087D2166DC4F9AE02.roa (hash: ou4XIefPRD+gcNDDXhaZbU7PKX3s57bqkC7i0ZQskmE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 04:55:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F753, serialNumber=2D49B3AE6DA18B63464A3177AB32101942E6A51A Validity Not Before: Jan 17 04:55:29 2026 GMT Not After : Jan 24 04:55:29 2026 GMT Subject: CN=696b1641-9369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:be:1b:ce:8f:c8:24:4c:1d:dc:df:55:25:7c: 9a:9a:cd:07:43:5f:a6:82:4b:8b:10:0f:af:80:ca: 8e:90:63:50:62:c4:23:cc:a3:f4:75:73:49:93:56: cb:1b:3c:9c:a5:d3:dd:ce:b3:c3:e3:55:aa:e3:7d: 9f:5f:66:09:72:d7:96:c4:47:5e:15:7d:a4:84:5a: 82:2b:28:6f:16:94:75:db:02:73:47:0d:c2:21:e2: 82:b2:7c:9d:db:c5:91:5f:d6:d5:83:5b:17:83:3e: f9:0f:5c:ee:1f:94:c6:cf:88:bc:c3:af:78:bc:07: 34:8f:f9:31:b2:7a:1a:92:59:82:89:fa:44:dc:bb: 10:b8:78:b8:64:49:dd:57:a9:78:69:82:20:6e:b2: ac:17:90:08:3c:d2:c8:00:20:57:7c:87:e0:f5:12: 19:3d:3e:10:eb:61:26:27:40:f3:71:cd:63:81:e1: 45:5b:7f:86:a5:44:0a:9b:3b:c2:b4:55:a2:a8:1d: 6a:ee:6c:96:64:3d:3c:8c:10:3b:20:c2:63:ef:89: 89:87:f9:3d:41:c1:7a:97:05:3b:0a:fc:f9:36:aa: 39:2a:4b:59:7a:6d:6a:42:03:ad:98:32:8a:09:ef: 0f:63:93:56:07:ca:92:f9:7c:10:2b:09:0b:31:9c: 79:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:3F:E5:61:0E:5C:B6:3D:06:CF:AA:F9:5D:17:6B:78:E3:7B:DF:9B X509v3 Authority Key Identifier: keyid:2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:39:67:5a:dd:69:0e:a4:6a:eb:aa:f1:7e:4e:26:0f:59:65: 77:6c:27:0b:e3:1f:8c:a9:2f:db:14:44:a4:5f:3f:9d:96:b8: 4b:3a:6b:a5:f6:cc:4a:00:ae:75:e8:6d:8d:e2:44:0c:e8:96: 6c:dd:78:f8:72:5f:8a:a2:50:6f:96:f9:35:cc:22:5d:21:55: b4:82:be:0a:ce:b7:dd:10:5d:fb:aa:b3:45:d5:8b:6a:11:e3: 71:e8:57:c7:b3:3b:b5:b5:df:78:17:d2:c2:85:e8:5b:cd:32: 72:de:96:73:b5:96:d6:ba:a9:50:60:ee:63:b8:a1:13:83:7b: 5b:6e:4a:58:4e:ce:9c:fe:74:78:16:78:2b:b4:1d:54:39:3f: 97:b9:d9:48:67:66:9e:05:c5:b7:70:b6:e5:a3:7a:41:55:cd: 43:63:96:fb:51:2f:6c:b5:64:62:98:4d:b7:0a:01:c8:51:67: 2d:55:11:e0:d7:57:81:b5:08:75:b9:15:a6:86:6d:4e:99:30: 24:1a:3d:9c:23:f3:df:42:b4:6b:b5:59:60:67:db:c7:74:24: 92:71:75:c6:15:78:6f:95:59:c0:e9:27:55:a8:5c:75:e5:2b: 7d:a9:b3:bb:a6:f0:07:ab:88:0b:4f:21:b2:db:a9:6d:af:28: bf:cc:1b:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY3NTMxMTAvBgNVBAUTKDJENDlCM0FFNkRBMThCNjM0NjRBMzE3N0FCMzIxMDE5 NDJFNkE1MUEwHhcNMjYwMTE3MDQ1NTI5WhcNMjYwMTI0MDQ1NTI5WjAYMRYwFAYD VQQDDA02OTZiMTY0MS05MzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnL4bzo/IJEwd3N9VJXyams0HQ1+mgkuLEA+vgMqOkGNQYsQjzKP0dXNJk1bL GzycpdPdzrPD41Wq432fX2YJcteWxEdeFX2khFqCKyhvFpR12wJzRw3CIeKCsnyd 28WRX9bVg1sXgz75D1zuH5TGz4i8w694vAc0j/kxsnoaklmCifpE3LsQuHi4ZEnd V6l4aYIgbrKsF5AIPNLIACBXfIfg9RIZPT4Q62EmJ0Dzcc1jgeFFW3+GpUQKmzvC tFWiqB1q7myWZD08jBA7IMJj74mJh/k9QcF6lwU7Cvz5Nqo5KktZem1qQgOtmDKK Ce8PY5NWB8qS+XwQKwkLMZx5+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAY/5WEO XLY9Bs+q+V0Xa3jje9+bMB8GA1UdIwQYMBaAFC1Js65toYtjRkoxd6syEBlC5qUa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjc1My83ODA5REEwMkJD MEQxMUVGOUI0QUQ2NDlDNEY5QUUwMi9MVW16cm0yaGkyTkdTakYzcXpJUUdVTG1w Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xVbXpybTJoaTJOR1NqRjNxeklRR1VMbXBSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Rjc1My83ODA5REEwMkJDMEQxMUVGOUI0QUQ2NDlDNEY5QUUwMi9MVW16cm0yaGky TkdTakYzcXpJUUdVTG1wUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYOWda3WkOpGrrqvF+TiYPWWV3bCcL4x+MqS/bFESkXz+dlrhLOmul 9sxKAK516G2N4kQM6JZs3Xj4cl+KolBvlvk1zCJdIVW0gr4KzrfdEF37qrNF1Ytq EeNx6FfHszu1td94F9LChehbzTJy3pZztZbWuqlQYO5juKETg3tbbkpYTs6c/nR4 FngrtB1UOT+XudlIZ2aeBcW3cLblo3pBVc1DY5b7US9stWRimE23CgHIUWctVRHg 11eBtQh1uRWmhm1OmTAkGj2cI/PfQrRrtVlgZ9vHdCSScXXGFXhvlVnA6SdVqFx1 5St9qbO7pvAHq4gLTyGy26ltryi/zBtM -----END CERTIFICATE-----Generated at Sun Jan 18 03:15:24 2026 by rpki-client