This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft File: lMnUO1O12FDZjg2i1e88ThwxIEU.mft (raw, json) Hash identifier: KjFq3UvsC6OoB5MHsehY6kqeTob6HkCu8tirKRxTkyk= Subject key identifier: 0D:CF:DA:B0:A1:C5:27:6F:F8:99:05:0A:48:B2:37:99:43:0C:D2:85 Authority key identifier: 94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 Certificate issuer: /CN=A9120E21/serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Certificate serial: 1090 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft Manifest number: 108D Signing time: Wed 24 Dec 2025 17:05:51 +0000 Manifest this update: Wed 24 Dec 2025 17:05:51 +0000 Manifest next update: Wed 31 Dec 2025 17:05:51 +0000 Files and hashes: 1: lMnUO1O12FDZjg2i1e88ThwxIEU.crl (hash: l2qYt+icZ4pmfWybl5nt7yS+CgxAmC25BukinD+3gfc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 17:05:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4240 (0x1090) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120E21, serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Validity Not Before: Dec 24 17:05:51 2025 GMT Not After : Dec 31 17:05:51 2025 GMT Subject: CN=694c1d6f-49b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d8:ad:06:d6:97:a9:b7:20:52:72:90:18:3d: 68:66:d7:fd:ff:50:66:da:84:cb:e5:35:d3:25:79: 35:26:f4:b4:29:b4:02:34:c5:24:10:16:33:e5:f1: 22:ef:e7:3a:8b:c7:8a:7d:94:34:0f:16:1a:e5:29: de:1d:ff:50:28:02:09:0a:6a:25:26:56:b6:d8:f9: 2d:c1:0c:df:36:e3:6b:61:64:44:92:35:eb:f0:6f: f0:1f:1a:06:f4:c5:42:02:ec:96:db:c2:b1:a0:21: 64:ad:53:cb:c7:8c:cb:25:55:c6:c3:9f:6c:de:d4: 74:e8:1b:25:04:d4:ff:25:b7:0d:c8:d9:63:85:e7: e1:1a:8f:3b:84:a4:04:66:28:65:55:08:69:65:ff: d5:72:74:4b:1a:e4:d1:c9:b0:70:37:8e:0f:99:dc: 99:b2:92:49:ce:f9:85:43:bb:db:cd:60:91:fd:ad: 60:4c:57:f5:22:15:da:4c:ce:ff:b7:50:b0:48:78: e8:14:69:ad:85:9c:38:8b:4c:e1:02:5c:8a:ad:b6: 5a:11:9a:f2:dd:76:0c:13:9e:a0:17:40:78:7a:ba: d6:67:b5:d2:e7:18:06:5d:ef:40:9a:9e:c8:eb:df: 76:47:d0:90:7e:12:da:79:07:21:b9:42:39:fb:0f: 19:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:CF:DA:B0:A1:C5:27:6F:F8:99:05:0A:48:B2:37:99:43:0C:D2:85 X509v3 Authority Key Identifier: keyid:94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:2d:69:81:ce:a4:93:89:36:f0:ae:25:7a:17:d0:dd:97:21: 26:0c:fb:36:13:fe:3e:12:90:87:77:2c:46:c1:01:a9:60:45: a1:82:fe:4e:8b:49:5b:d8:fc:a9:3a:77:39:42:33:5a:1a:6d: 23:44:d9:f9:b5:c4:a5:24:33:2c:a6:df:0f:89:58:f8:6e:5d: 2d:60:d2:e8:de:b7:83:84:43:67:c3:d8:3e:8d:de:06:49:c2: e8:85:87:4f:11:b6:bb:28:ac:7a:a6:3a:f0:6c:e0:e0:c8:34: ad:e5:00:01:c4:e6:a5:eb:35:a7:01:b5:d0:f3:7e:f3:1e:0d: fb:dc:66:13:a5:92:72:fe:f5:49:42:ad:30:ca:31:0a:a1:af: c8:70:71:8b:aa:ca:bf:95:ed:58:30:f4:92:7d:c5:3b:70:2d: 44:be:fc:94:94:0f:f5:77:0a:6b:af:f0:58:a5:3b:2f:78:e9: 06:bd:1d:ca:72:71:07:db:5b:5d:a1:b6:16:cd:52:9c:de:fb: 2d:b0:21:88:85:76:6a:f9:12:8b:c9:b3:cd:1a:13:99:5e:50: d9:ab:96:94:97:fb:0c:32:6a:56:79:12:2d:6d:f7:56:f1:3b: b2:ae:20:1a:90:83:c8:c0:dc:bc:f0:65:cc:56:ab:7c:04:ce: b1:c9:46:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBFMjExMTAvBgNVBAUTKDk0QzlENDNCNTNCNUQ4NTBEOThFMERBMkQ1RUYzQzRF MUMzMTIwNDUwHhcNMjUxMjI0MTcwNTUxWhcNMjUxMjMxMTcwNTUxWjAYMRYwFAYD VQQDDA02OTRjMWQ2Zi00OWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo9itBtaXqbcgUnKQGD1oZtf9/1Bm2oTL5TXTJXk1JvS0KbQCNMUkEBYz5fEi 7+c6i8eKfZQ0DxYa5SneHf9QKAIJCmolJla22PktwQzfNuNrYWREkjXr8G/wHxoG 9MVCAuyW28KxoCFkrVPLx4zLJVXGw59s3tR06BslBNT/JbcNyNljhefhGo87hKQE ZihlVQhpZf/VcnRLGuTRybBwN44PmdyZspJJzvmFQ7vbzWCR/a1gTFf1IhXaTM7/ t1CwSHjoFGmthZw4i0zhAlyKrbZaEZry3XYME56gF0B4errWZ7XS5xgGXe9Amp7I 6992R9CQfhLaeQchuUI5+w8Z0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA3P2rCh xSdv+JkFCkiyN5lDDNKFMB8GA1UdIwQYMBaAFJTJ1DtTtdhQ2Y4NotXvPE4cMSBF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEUyMS9BNUU5NTBENDQy NzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJGRFpqZzJpMWU4OFRod3hJ RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xNblVPMU8xMkZEWmpnMmkxZTg4VGh3eElFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEUyMS9BNUU5NTBENDQyNzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJG RFpqZzJpMWU4OFRod3hJRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtLWmBzqSTiTbwriV6F9DdlyEmDPs2E/4+EpCHdyxGwQGpYEWhgv5O i0lb2PypOnc5QjNaGm0jRNn5tcSlJDMspt8PiVj4bl0tYNLo3reDhENnw9g+jd4G ScLohYdPEba7KKx6pjrwbODgyDSt5QABxOal6zWnAbXQ837zHg373GYTpZJy/vVJ Qq0wyjEKoa/IcHGLqsq/le1YMPSSfcU7cC1EvvyUlA/1dwprr/BYpTsveOkGvR3K cnEH21tdobYWzVKc3vstsCGIhXZq+RKLybPNGhOZXlDZq5aUl/sMMmpWeRItbfdW 8TuyriAakIPIwNy88GXMVqt8BM6xyUbz -----END CERTIFICATE-----Generated at Wed Dec 24 19:33:12 2025 by rpki-client