This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912B635/5D077D4A91D211EB8B511053C4F9AE02/LNlBunzrUf5uFl4_yYBm1amZ5P4.mft File: LNlBunzrUf5uFl4_yYBm1amZ5P4.mft (raw, json) Hash identifier: NWQgus+bvESo8DuLO1dfKIWvrsJIjQG+Oxd0ffMn2oc= Subject key identifier: E7:64:AD:19:73:AA:D4:78:6A:50:CF:4F:38:48:A1:EE:E1:D6:55:A1 Authority key identifier: 2C:D9:41:BA:7C:EB:51:FE:6E:16:5E:3F:C9:80:66:D5:A9:99:E4:FE Certificate issuer: /CN=A912B635/serialNumber=2CD941BA7CEB51FE6E165E3FC98066D5A999E4FE Certificate serial: 06A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LNlBunzrUf5uFl4_yYBm1amZ5P4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B635/5D077D4A91D211EB8B511053C4F9AE02/LNlBunzrUf5uFl4_yYBm1amZ5P4.mft Manifest number: 06A2 Signing time: Mon 22 Dec 2025 21:34:15 +0000 Manifest this update: Mon 22 Dec 2025 21:34:15 +0000 Manifest next update: Mon 29 Dec 2025 21:34:15 +0000 Files and hashes: 1: LNlBunzrUf5uFl4_yYBm1amZ5P4.crl (hash: WqkwuwTL+mAQqEalu8p8j0fpVlGkJ0qjf1Z69X3hFFU=) 2: D44C47FE91D311EBBE8C7D54C4F9AE02.roa (hash: av33nLUX0GDrb2SC++ABulsmTvMJTYGoXhRNYXEv87I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B635/5D077D4A91D211EB8B511053C4F9AE02/LNlBunzrUf5uFl4_yYBm1amZ5P4.crl rsync://rpki.apnic.net/member_repository/A912B635/5D077D4A91D211EB8B511053C4F9AE02/LNlBunzrUf5uFl4_yYBm1amZ5P4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LNlBunzrUf5uFl4_yYBm1amZ5P4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:34:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1704 (0x6a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B635, serialNumber=2CD941BA7CEB51FE6E165E3FC98066D5A999E4FE Validity Not Before: Dec 22 21:34:15 2025 GMT Not After : Dec 29 21:34:15 2025 GMT Subject: CN=6949b957-fe82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:52:a7:ad:c6:6c:99:0c:1a:61:b9:39:05:e9: 82:b1:fe:7e:11:82:9b:6b:55:1d:d2:d9:b0:52:cd: d5:ff:21:67:0d:02:50:c2:61:7d:ac:a9:97:eb:02: 2e:fc:38:b2:1c:2b:28:fd:a7:b5:ac:b8:71:74:e0: e4:73:50:3d:cf:7c:0e:3a:da:b9:98:1e:4d:52:3a: ea:74:ca:36:64:ec:81:40:51:d0:9a:4d:60:15:c1: ec:cc:f4:6f:6d:b0:81:d4:5d:e8:2f:2f:d3:5e:70: 10:57:0f:f9:90:18:7f:eb:f7:39:8e:3d:ff:25:48: a7:4a:00:ad:0e:09:48:31:13:92:41:e0:55:07:92: 85:ac:9a:72:cf:ae:c6:c1:40:43:08:2a:ff:95:f1: 30:ef:57:27:ef:50:82:9f:7f:45:ba:3a:c5:97:01: ea:ce:25:72:41:ba:6b:36:be:a1:ef:35:89:31:80: c1:87:00:f7:60:2b:7a:60:6e:aa:46:f9:57:d1:c9: 8e:db:15:71:56:2a:f0:ff:05:2a:33:68:f5:a1:9e: e4:66:c1:37:38:22:0e:7a:a4:d6:5a:38:7c:4a:6c: 33:cf:b4:94:f2:10:8a:03:69:e9:f6:6f:0b:09:17: b1:f1:a9:b4:f8:16:9f:ac:ba:0d:31:3b:93:ff:39: 6f:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:64:AD:19:73:AA:D4:78:6A:50:CF:4F:38:48:A1:EE:E1:D6:55:A1 X509v3 Authority Key Identifier: keyid:2C:D9:41:BA:7C:EB:51:FE:6E:16:5E:3F:C9:80:66:D5:A9:99:E4:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B635/5D077D4A91D211EB8B511053C4F9AE02/LNlBunzrUf5uFl4_yYBm1amZ5P4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LNlBunzrUf5uFl4_yYBm1amZ5P4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B635/5D077D4A91D211EB8B511053C4F9AE02/LNlBunzrUf5uFl4_yYBm1amZ5P4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:dd:50:30:ce:55:98:90:7a:5e:a8:4b:f6:b3:06:7f:ce:a2: f9:b4:2b:6b:8c:79:69:33:68:91:fe:bf:7f:60:0d:3c:18:62: e2:23:22:2e:02:09:98:7d:4d:68:75:f7:95:a0:d6:60:7f:66: 4f:4a:66:3f:45:4a:1e:64:6a:50:c5:04:46:d8:2d:a9:49:77: bb:f7:69:56:fe:67:a5:dd:08:ac:ab:3e:bb:01:05:6f:5a:ec: df:6f:1b:2e:12:0d:4e:c4:06:50:e3:a3:61:e0:87:d4:29:77: 19:67:d8:a3:df:5d:8a:06:c4:20:bc:c0:5b:5d:fa:73:c6:41: 1f:f5:73:64:4c:bd:ac:1e:18:1e:25:53:7f:c5:f7:0a:67:ca: fb:24:13:96:55:91:0c:aa:33:1a:7c:81:30:fa:dd:d0:42:dc: 69:c0:fe:83:92:a7:dd:f3:41:8e:41:f4:b4:79:f1:f6:48:5a: 6e:7d:67:8c:5c:49:42:8b:f7:46:e6:07:16:9b:48:ce:c3:43: 34:99:b4:bf:f5:ce:db:d7:5a:d3:32:cc:81:b2:ad:df:be:e8: 34:8f:f6:3c:93:ca:6c:21:52:ce:16:d0:08:e2:1f:46:3d:99: 6f:9e:59:19:50:66:ef:28:9e:fd:09:a4:ac:bf:c4:98:37:7e: 0b:ec:75:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI2MzUxMTAvBgNVBAUTKDJDRDk0MUJBN0NFQjUxRkU2RTE2NUUzRkM5ODA2NkQ1 QTk5OUU0RkUwHhcNMjUxMjIyMjEzNDE1WhcNMjUxMjI5MjEzNDE1WjAYMRYwFAYD VQQDDA02OTQ5Yjk1Ny1mZTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA51KnrcZsmQwaYbk5BemCsf5+EYKba1Ud0tmwUs3V/yFnDQJQwmF9rKmX6wIu /DiyHCso/ae1rLhxdODkc1A9z3wOOtq5mB5NUjrqdMo2ZOyBQFHQmk1gFcHszPRv bbCB1F3oLy/TXnAQVw/5kBh/6/c5jj3/JUinSgCtDglIMROSQeBVB5KFrJpyz67G wUBDCCr/lfEw71cn71CCn39FujrFlwHqziVyQbprNr6h7zWJMYDBhwD3YCt6YG6q RvlX0cmO2xVxVirw/wUqM2j1oZ7kZsE3OCIOeqTWWjh8Smwzz7SU8hCKA2np9m8L CRex8am0+BafrLoNMTuT/zlvgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOdkrRlz qtR4alDPTzhIoe7h1lWhMB8GA1UdIwQYMBaAFCzZQbp861H+bhZeP8mAZtWpmeT+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjYzNS81RDA3N0Q0QTkx RDIxMUVCOEI1MTEwNTNDNEY5QUUwMi9MTmxCdW56clVmNXVGbDRfeVlCbTFhbVo1 UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xObEJ1bnpyVWY1dUZsNF95WUJtMWFtWjVQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjYzNS81RDA3N0Q0QTkxRDIxMUVCOEI1MTEwNTNDNEY5QUUwMi9MTmxCdW56clVm NXVGbDRfeVlCbTFhbVo1UDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCl3VAwzlWYkHpeqEv2swZ/zqL5tCtrjHlpM2iR/r9/YA08GGLiIyIu AgmYfU1odfeVoNZgf2ZPSmY/RUoeZGpQxQRG2C2pSXe792lW/mel3Qisqz67AQVv WuzfbxsuEg1OxAZQ46Nh4IfUKXcZZ9ij312KBsQgvMBbXfpzxkEf9XNkTL2sHhge JVN/xfcKZ8r7JBOWVZEMqjMafIEw+t3QQtxpwP6Dkqfd80GOQfS0efH2SFpufWeM XElCi/dG5gcWm0jOw0M0mbS/9c7b11rTMsyBsq3fvug0j/Y8k8psIVLOFtAI4h9G PZlvnlkZUGbvKJ79CaSsv8SYN34L7HVN -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:51 2025 by rpki-client