This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft File: lC8l1zULID6onvLRzBULBbF7K4c.mft (raw, json) Hash identifier: +zrGecDIxyQdOQd2OG+HHJgM7eBh7kshCdYzzJYHHm4= Subject key identifier: 61:5D:B6:3B:9F:F1:5A:73:22:AF:2A:69:9D:47:2A:E5:5D:12:27:D6 Authority key identifier: 94:2F:25:D7:35:0B:20:3E:A8:9E:F2:D1:CC:15:0B:05:B1:7B:2B:87 Certificate issuer: /CN=A912FB1D/serialNumber=942F25D7350B203EA89EF2D1CC150B05B17B2B87 Certificate serial: 3517 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft Manifest number: 3501 Signing time: Mon 22 Dec 2025 15:11:21 +0000 Manifest this update: Mon 22 Dec 2025 15:11:20 +0000 Manifest next update: Mon 29 Dec 2025 15:11:20 +0000 Files and hashes: 1: lC8l1zULID6onvLRzBULBbF7K4c.crl (hash: 9XXxHYufLIAdZ3mpWbtOQCL9NpOyDcjJ9ZL7U06PgQA=) 2: C098D762675111E9A0C4BB36C4F9AE02.roa (hash: Q+UMsPeyfxUm55P4fMvGVYmfZGcp4BR3EDI4z+jAzdY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.crl rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 15:11:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13591 (0x3517) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FB1D, serialNumber=942F25D7350B203EA89EF2D1CC150B05B17B2B87 Validity Not Before: Dec 22 15:11:20 2025 GMT Not After : Dec 29 15:11:20 2025 GMT Subject: CN=69495f99-0122 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:9e:e3:51:03:6a:4c:a2:f5:f7:67:ba:1e:65: 9d:cf:6a:9e:85:19:a5:6d:14:bb:4f:e4:02:f7:93: a1:6d:0c:dc:37:bf:a2:3d:92:3f:a3:d8:07:ad:a3: fc:94:cd:04:06:2c:82:ee:9e:e7:8f:9b:cc:f3:7b: a4:6d:b7:c4:4f:59:c3:23:1b:5d:05:c4:9b:69:fc: f6:c5:1b:f0:ba:6d:0a:5b:0c:ab:43:1b:18:33:ea: 56:69:84:03:27:70:8b:27:4f:57:ea:dc:78:67:6b: 0a:f7:95:d9:83:55:14:6d:74:6f:88:64:ec:ad:0c: 27:62:5a:b6:2b:1c:5e:21:d8:cf:a7:29:0d:99:87: 56:ad:97:aa:96:d4:60:77:0a:0e:d3:c4:78:9f:be: 60:50:67:d8:2e:35:e0:12:a8:32:0d:ff:9a:07:dc: eb:09:e7:8d:11:6a:38:3f:7c:b4:3e:53:ca:a3:69: 82:29:aa:ee:cc:47:37:64:a3:81:51:ba:e5:00:7b: 13:b8:b5:4e:31:02:96:17:6d:a9:97:a3:b3:ae:b6: 1b:da:8c:fb:24:4f:b1:2c:f8:ec:41:bc:68:13:b0: d1:7a:f2:1a:60:d7:99:e4:3d:4c:05:87:79:fd:fb: d5:df:09:fe:b5:dd:4a:f9:e6:2e:89:9e:e4:4b:33: c1:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:5D:B6:3B:9F:F1:5A:73:22:AF:2A:69:9D:47:2A:E5:5D:12:27:D6 X509v3 Authority Key Identifier: keyid:94:2F:25:D7:35:0B:20:3E:A8:9E:F2:D1:CC:15:0B:05:B1:7B:2B:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:12:b0:b9:fa:9b:36:45:a2:ad:86:0c:ec:69:05:1f:ed:1a: bd:6f:d9:47:bc:37:24:18:5b:26:f0:9a:cd:f9:fe:db:c9:8a: c8:af:fb:99:e0:2e:3c:d8:9b:ee:03:7a:8a:15:07:f8:d0:60: d3:8b:25:d7:d2:9e:fe:e8:66:33:c8:e4:06:0d:fd:9b:e1:a8: 4a:7d:b2:f4:7d:ef:33:6f:c1:98:2a:d0:45:86:d5:94:de:db: 39:a0:c1:a2:9f:a3:84:0f:47:fd:98:79:a0:71:9e:d8:1d:e6: 62:b3:a8:9c:f1:60:ff:d6:68:4d:51:e4:ae:27:88:c1:0b:12: d3:ab:06:66:a2:8c:c7:1f:7c:bb:3d:bf:3b:f2:6e:54:18:c1: 30:e4:cb:c0:de:f1:95:ef:a7:04:bc:ce:b5:c4:71:02:7c:47: 10:ea:e6:dc:31:a6:e3:41:46:08:75:c8:55:d5:9a:90:9a:52: 1d:4b:67:ea:dd:e5:87:7d:ee:a3:e9:03:ce:17:af:ce:39:2b: 41:7b:a1:9b:72:13:2a:2a:5d:7c:16:24:0e:44:b8:f7:aa:08: 99:49:37:d9:71:8f:2d:bc:ad:ee:b8:dc:43:a3:1d:90:70:4d: 3c:49:90:d3:53:a7:19:db:70:cd:57:73:2d:3c:4b:35:10:9d: ae:28:f0:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZCMUQxMTAvBgNVBAUTKDk0MkYyNUQ3MzUwQjIwM0VBODlFRjJEMUNDMTUwQjA1 QjE3QjJCODcwHhcNMjUxMjIyMTUxMTIwWhcNMjUxMjI5MTUxMTIwWjAYMRYwFAYD VQQDDA02OTQ5NWY5OS0wMTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9Z7jUQNqTKL192e6HmWdz2qehRmlbRS7T+QC95OhbQzcN7+iPZI/o9gHraP8 lM0EBiyC7p7nj5vM83ukbbfET1nDIxtdBcSbafz2xRvwum0KWwyrQxsYM+pWaYQD J3CLJ09X6tx4Z2sK95XZg1UUbXRviGTsrQwnYlq2KxxeIdjPpykNmYdWrZeqltRg dwoO08R4n75gUGfYLjXgEqgyDf+aB9zrCeeNEWo4P3y0PlPKo2mCKaruzEc3ZKOB UbrlAHsTuLVOMQKWF22pl6OzrrYb2oz7JE+xLPjsQbxoE7DRevIaYNeZ5D1MBYd5 /fvV3wn+td1K+eYuiZ7kSzPBOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGFdtjuf 8VpzIq8qaZ1HKuVdEifWMB8GA1UdIwQYMBaAFJQvJdc1CyA+qJ7y0cwVCwWxeyuH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkIxRC9DNjg0Q0E5QzFE QUIxMUUyQTIxRTM1QUEwOEIwMkNEMi9sQzhsMXpVTElENm9udkxSekJVTEJiRjdL NGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDOGwxelVMSUQ2b252TFJ6QlVMQmJGN0s0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkIxRC9DNjg0Q0E5QzFEQUIxMUUyQTIxRTM1QUEwOEIwMkNEMi9sQzhsMXpVTElE Nm9udkxSekJVTEJiRjdLNGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNErC5+ps2RaKthgzsaQUf7Rq9b9lHvDckGFsm8JrN+f7byYrIr/uZ 4C482JvuA3qKFQf40GDTiyXX0p7+6GYzyOQGDf2b4ahKfbL0fe8zb8GYKtBFhtWU 3ts5oMGin6OED0f9mHmgcZ7YHeZis6ic8WD/1mhNUeSuJ4jBCxLTqwZmoozHH3y7 Pb878m5UGMEw5MvA3vGV76cEvM61xHECfEcQ6ubcMabjQUYIdchV1ZqQmlIdS2fq 3eWHfe6j6QPOF6/OOStBe6GbchMqKl18FiQORLj3qgiZSTfZcY8tvK3uuNxDox2Q cE08SZDTU6cZ23DNV3MtPEs1EJ2uKPCB -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:29 2025 by rpki-client