This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft File: lSpNx8TWEJWYvu5awKIG0nuFxWo.mft (raw, json) Hash identifier: sWnW5z/QqFuUJzafoVnUf8IK8Wn4yfXEiQb43q2bEDw= Subject key identifier: 57:45:42:0F:23:24:2F:B8:9E:2E:79:D7:7C:C2:47:08:35:D6:91:A0 Authority key identifier: 95:2A:4D:C7:C4:D6:10:95:98:BE:EE:5A:C0:A2:06:D2:7B:85:C5:6A Certificate issuer: /CN=A912D71D/serialNumber=952A4DC7C4D6109598BEEE5AC0A206D27B85C56A Certificate serial: 67 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSpNx8TWEJWYvu5awKIG0nuFxWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft Manifest number: 65 Signing time: Wed 03 Dec 2025 05:15:29 +0000 Manifest this update: Wed 03 Dec 2025 05:15:28 +0000 Manifest next update: Wed 10 Dec 2025 05:15:28 +0000 Files and hashes: 1: lSpNx8TWEJWYvu5awKIG0nuFxWo.crl (hash: QY0jHre2m5qPrfnfRyMoKWKgIiYQvSSSGrDCR6J/24U=) 2: 4002AE6236CF11F0AA705D26C4F9AE02.roa (hash: BjUqiPeyqOJL7zi1VC/yuEDToWrbr9Hg82ANTKNIKSc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.crl rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSpNx8TWEJWYvu5awKIG0nuFxWo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 05:15:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D71D, serialNumber=952A4DC7C4D6109598BEEE5AC0A206D27B85C56A Validity Not Before: Dec 3 05:15:28 2025 GMT Not After : Dec 10 05:15:28 2025 GMT Subject: CN=692fc770-e629 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:8f:b3:3a:77:85:a4:e7:13:51:be:e8:f2:bb: 9e:03:96:c5:2b:59:84:49:7f:af:43:a9:dd:0f:64: 6e:dc:48:e0:31:d6:d8:19:de:0d:34:47:fe:29:0b: 39:e4:fd:43:f8:d2:4a:cc:26:27:0e:8b:02:62:fd: f4:25:f4:1c:53:27:8d:67:86:7a:49:0c:32:09:7a: 8d:6f:b8:e5:02:fb:b1:24:a3:7e:02:07:55:59:a8: 0a:dd:29:a5:ae:a4:0f:72:50:a3:56:9c:d9:61:17: cb:b8:13:bb:5a:1c:61:55:21:83:a0:0c:98:05:6a: a6:26:a9:64:e8:93:a9:40:71:a8:3e:39:eb:f1:cd: b5:61:3c:7c:ff:df:73:63:bd:bc:05:80:f0:47:53: 5c:68:5b:d3:58:78:ff:40:3e:4f:36:03:35:93:fe: 16:d9:6d:ba:42:9d:4d:22:c6:bf:6d:01:16:c2:8d: 07:08:d4:97:38:da:e4:ac:b1:93:66:35:59:1d:02: 7b:1d:3e:e5:01:c8:7b:46:ab:ec:6a:f9:b2:5e:b1: 4e:49:27:e0:c2:16:99:a6:b8:85:17:30:7d:5c:23: a8:8d:06:36:92:75:8b:b2:6f:e8:1d:45:a2:a5:4a: 66:1a:8d:fe:db:2a:49:3a:a1:8f:d2:a9:98:af:b7: 27:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:45:42:0F:23:24:2F:B8:9E:2E:79:D7:7C:C2:47:08:35:D6:91:A0 X509v3 Authority Key Identifier: keyid:95:2A:4D:C7:C4:D6:10:95:98:BE:EE:5A:C0:A2:06:D2:7B:85:C5:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSpNx8TWEJWYvu5awKIG0nuFxWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D71D/1E0F992E36CE11F0A2A69C1FC4F9AE02/lSpNx8TWEJWYvu5awKIG0nuFxWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:23:e6:99:2a:e7:8d:b5:c4:58:e9:52:c3:98:f4:43:f5:22: 1b:0c:ea:8f:de:77:7b:b0:45:7e:ad:38:57:54:d7:44:96:1d: 27:b5:83:57:c1:94:9f:ac:28:8e:c9:cf:3f:a6:93:a0:81:8d: 1a:d3:11:de:3f:d4:d2:e6:95:68:b0:86:58:d3:87:ef:a4:69: 16:b5:2a:e3:a5:20:c4:7b:65:e3:85:7f:0f:2a:8c:54:e5:4a: e5:ef:fd:77:7a:f4:a3:28:90:8d:42:e4:ce:11:5a:c0:9c:a8: c5:d9:f0:23:0c:51:8a:3c:fa:c2:29:fb:c8:c8:c3:e4:90:14: d5:24:94:4e:18:36:90:52:d6:16:b6:d1:d3:70:76:80:6b:bb: 47:5a:18:98:17:de:4d:93:18:5f:9c:54:bb:02:29:54:0c:97: 50:b9:e3:1e:3f:12:28:f5:d2:0e:b2:1a:ea:21:ee:0c:1d:37: b2:f2:3f:8f:b4:21:7c:fd:50:f8:60:2d:b2:37:e0:4e:d3:38: 88:33:52:ad:b3:d9:88:17:cd:d5:e8:00:7c:01:0e:65:5c:26: d0:d9:2a:ba:5f:24:93:f1:76:f0:4b:bb:2f:3c:14:20:3c:28: 6f:eb:7e:d6:1c:a8:29:87:96:d0:f8:15:de:de:a8:38:29:6e: 8a:25:24:72 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RDcxRDExMC8GA1UEBRMoOTUyQTREQzdDNEQ2MTA5NTk4QkVFRTVBQzBBMjA2RDI3 Qjg1QzU2QTAeFw0yNTEyMDMwNTE1MjhaFw0yNTEyMTAwNTE1MjhaMBgxFjAUBgNV BAMTDTY5MmZjNzcwLWU2MjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDmj7M6d4Wk5xNRvujyu54DlsUrWYRJf69Dqd0PZG7cSOAx1tgZ3g00R/4pCznk /UP40krMJicOiwJi/fQl9BxTJ41nhnpJDDIJeo1vuOUC+7Eko34CB1VZqArdKaWu pA9yUKNWnNlhF8u4E7taHGFVIYOgDJgFaqYmqWTok6lAcag+OevxzbVhPHz/33Nj vbwFgPBHU1xoW9NYeP9APk82AzWT/hbZbbpCnU0ixr9tARbCjQcI1Jc42uSssZNm NVkdAnsdPuUByHtGq+xq+bJesU5JJ+DCFpmmuIUXMH1cI6iNBjaSdYuyb+gdRaKl SmYajf7bKkk6oY/SqZivtycXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUV0VCDyMk L7ieLnnXfMJHCDXWkaAwHwYDVR0jBBgwFoAUlSpNx8TWEJWYvu5awKIG0nuFxWow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJENzFELzFFMEY5OTJFMzZD RTExRjBBMkE2OUMxRkM0RjlBRTAyL2xTcE54OFRXRUpXWXZ1NWF3S0lHMG51RnhX by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbFNwTng4VFdFSldZdnU1YXdLSUcwbnVGeFdvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJE NzFELzFFMEY5OTJFMzZDRTExRjBBMkE2OUMxRkM0RjlBRTAyL2xTcE54OFRXRUpX WXZ1NWF3S0lHMG51RnhXby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADwj5pkq5421xFjpUsOY9EP1IhsM6o/ed3uwRX6tOFdU10SWHSe1g1fB lJ+sKI7Jzz+mk6CBjRrTEd4/1NLmlWiwhljTh++kaRa1KuOlIMR7ZeOFfw8qjFTl SuXv/Xd69KMokI1C5M4RWsCcqMXZ8CMMUYo8+sIp+8jIw+SQFNUklE4YNpBS1ha2 0dNwdoBru0daGJgX3k2TGF+cVLsCKVQMl1C54x4/Eij10g6yGuoh7gwdN7LyP4+0 IXz9UPhgLbI34E7TOIgzUq2z2YgXzdXoAHwBDmVcJtDZKrpfJJPxdvBLuy88FCA8 KG/rftYcqCmHltD4Fd7eqDgpboolJHI= -----END CERTIFICATE-----Generated at Wed Dec 3 14:14:34 2025 by rpki-client