This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft File: loNUUNMhwefEjKDF3NK6bB0tSPE.mft (raw, json) Hash identifier: sfIWCPcN0KsrcMVBnGlD+RsV2k+8VCyGU4eHRIyPOMQ= Subject key identifier: D7:74:49:2D:4E:2C:71:AA:4C:B4:6A:6A:95:5C:BD:3E:8E:84:81:AD Authority key identifier: 96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1 Certificate issuer: /CN=A912DF25/serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1 Certificate serial: 0107 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft Manifest number: 0100 Signing time: Tue 23 Dec 2025 04:04:27 +0000 Manifest this update: Tue 23 Dec 2025 04:04:27 +0000 Manifest next update: Tue 30 Dec 2025 04:04:27 +0000 Files and hashes: 1: loNUUNMhwefEjKDF3NK6bB0tSPE.crl (hash: bxeW6dGUo6zqnJS/1wTf2q2mzJrjfTptNFcz+gk1ULo=) 2: 047C04705AC911EF9DF4275AC4F9AE02.roa (hash: gFJfC0bItrBd113l2fr+RXunsEK2SI34GEF/xaXg74s=) 3: 050079585AC911EF9DF4275AC4F9AE02.roa (hash: r3ab2hXEUx4DTxPcSBrvJTxlFoImKdTbWENPYxt4ZVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:04:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DF25, serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1 Validity Not Before: Dec 23 04:04:27 2025 GMT Not After : Dec 30 04:04:27 2025 GMT Subject: CN=694a14cb-4cd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7f:c1:5c:43:d3:60:e0:cd:eb:cc:a4:55:b4: b2:6d:39:2b:7d:3f:ab:86:40:c7:db:d2:48:0b:ac: 90:e0:e6:d1:a6:3d:0a:fa:c4:ae:5d:c2:0a:1a:49: d4:48:d5:a9:51:2e:cc:2a:07:1e:2f:4a:8c:49:1a: 88:95:55:f4:12:4f:9f:11:a5:0b:a8:3e:71:11:eb: be:ce:9c:2d:3c:90:e7:eb:0d:cb:5a:bf:a7:4f:a9: 9d:93:5d:41:b2:4f:0d:8e:4e:55:37:a8:97:42:29: 64:31:66:00:8f:9d:f1:2c:ac:e2:5f:d5:61:80:18: e8:70:3c:3a:78:b4:c8:d9:f6:1e:e2:cc:d5:ed:6d: bf:5b:63:7e:f8:bd:04:cf:4c:aa:c0:64:af:11:b7: 9c:0b:a3:cb:2c:ce:5b:d7:c4:cf:11:03:59:45:54: 66:7c:11:6d:f1:8b:44:f3:7c:3d:74:f9:ca:7b:d3: 3c:ca:e2:27:d9:49:92:a6:97:fe:8d:03:6c:37:51: 8f:cc:71:5c:7d:61:7c:e5:c6:ec:d0:0e:dd:cf:76: 3d:65:ae:4d:0d:ee:4f:13:86:cf:b0:50:6a:bd:a8: 5e:b8:23:62:8a:59:1e:a9:d7:f6:05:ad:2c:db:40: ab:09:bd:a9:84:e1:c3:70:f8:c6:a8:ce:10:b9:c6: 5a:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:74:49:2D:4E:2C:71:AA:4C:B4:6A:6A:95:5C:BD:3E:8E:84:81:AD X509v3 Authority Key Identifier: keyid:96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:ba:91:3c:3f:61:f7:06:e9:5e:a1:9c:18:2b:3d:90:a3:1c: 5f:b7:be:65:b5:75:17:67:34:71:be:48:aa:f5:ed:4f:b6:23: 99:42:9b:ff:80:a4:f5:a6:5a:df:ab:eb:53:e3:45:44:0d:a7: 36:43:fd:bc:e4:ee:e3:a8:e7:aa:02:61:62:51:6c:98:03:3d: 5b:5e:1e:85:23:ca:03:32:16:e3:9b:8a:c6:74:33:3c:55:72: 30:ae:2f:65:eb:df:aa:9d:9e:62:c2:e4:ca:56:cc:be:fe:71: f7:08:e8:00:03:83:9e:2a:88:14:3c:22:5a:09:d8:d9:99:c7: 65:1a:4d:06:89:07:6d:d4:c7:e8:df:6b:12:c3:fb:13:27:1e: 25:1f:16:12:f8:d2:87:b2:56:eb:8d:fd:d8:ad:16:09:ec:da: 4c:b7:0c:7a:8f:cd:da:49:1f:d1:9a:19:1d:a5:eb:22:57:c9: 9e:42:1a:a1:65:f2:2b:fc:c7:20:e8:fc:39:99:8b:6d:e9:1a: 0c:64:f4:3b:f1:41:6e:f8:7a:04:89:d2:32:4b:4d:a9:ef:da: e2:84:e5:17:01:91:84:10:fd:f3:43:5b:81:f0:2d:f9:dd:b4: 26:5e:6a:29:a5:cc:e6:95:69:7c:f3:39:b7:7d:5f:7a:f1:11: a8:db:c4:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGMjUxMTAvBgNVBAUTKDk2ODM1NDUwRDMyMUMxRTdDNDhDQTBDNURDRDJCQTZD MUQyRDQ4RjEwHhcNMjUxMjIzMDQwNDI3WhcNMjUxMjMwMDQwNDI3WjAYMRYwFAYD VQQDDA02OTRhMTRjYi00Y2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtn/BXEPTYODN68ykVbSybTkrfT+rhkDH29JIC6yQ4ObRpj0K+sSuXcIKGknU SNWpUS7MKgceL0qMSRqIlVX0Ek+fEaULqD5xEeu+zpwtPJDn6w3LWr+nT6mdk11B sk8Njk5VN6iXQilkMWYAj53xLKziX9VhgBjocDw6eLTI2fYe4szV7W2/W2N++L0E z0yqwGSvEbecC6PLLM5b18TPEQNZRVRmfBFt8YtE83w9dPnKe9M8yuIn2UmSppf+ jQNsN1GPzHFcfWF85cbs0A7dz3Y9Za5NDe5PE4bPsFBqvaheuCNiilkeqdf2Ba0s 20CrCb2phOHDcPjGqM4QucZajwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNd0SS1O LHGqTLRqapVcvT6OhIGtMB8GA1UdIwQYMBaAFJaDVFDTIcHnxIygxdzSumwdLUjx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREYyNS83RjdCMURBQzVB QzcxMUVGOTlFQUZDNDNDNEY5QUUwMi9sb05VVU5NaHdlZkVqS0RGM05LNmJCMHRT UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xvTlVVTk1od2VmRWpLREYzTks2YkIwdFNQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REYyNS83RjdCMURBQzVBQzcxMUVGOTlFQUZDNDNDNEY5QUUwMi9sb05VVU5NaHdl ZkVqS0RGM05LNmJCMHRTUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBupE8P2H3BuleoZwYKz2Qoxxft75ltXUXZzRxvkiq9e1PtiOZQpv/ gKT1plrfq+tT40VEDac2Q/285O7jqOeqAmFiUWyYAz1bXh6FI8oDMhbjm4rGdDM8 VXIwri9l69+qnZ5iwuTKVsy+/nH3COgAA4OeKogUPCJaCdjZmcdlGk0GiQdt1Mfo 32sSw/sTJx4lHxYS+NKHslbrjf3YrRYJ7NpMtwx6j83aSR/RmhkdpesiV8meQhqh ZfIr/Mcg6Pw5mYtt6RoMZPQ78UFu+HoEidIyS02p79rihOUXAZGEEP3zQ1uB8C35 3bQmXmoppczmlWl88zm3fV968RGo28Qw -----END CERTIFICATE-----Generated at Wed Dec 24 14:13:55 2025 by rpki-client