This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft File: s-lBocVdFIOrV5HZSYdQ492t7cw.mft (raw, json) Hash identifier: uy3jtAJ7xgPAgb6fV4Nye3n2QzKM+/JpcAh8J/5rxSA= Subject key identifier: 0D:D7:BB:3A:58:42:0F:0B:32:65:62:63:1E:63:B9:57:2C:23:58:E8 Authority key identifier: B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC Certificate issuer: /CN=A913B018/serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC Certificate serial: 0155 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft Manifest number: 0153 Signing time: Wed 03 Dec 2025 02:39:45 +0000 Manifest this update: Wed 03 Dec 2025 02:39:45 +0000 Manifest next update: Wed 10 Dec 2025 02:39:45 +0000 Files and hashes: 1: s-lBocVdFIOrV5HZSYdQ492t7cw.crl (hash: BWsn+S6lzcekleSacihWDQZ25f/ElJIXpRJMdrGQhDg=) 2: 8B097276C5F911EE8D0FDF82C4F9AE02.roa (hash: rdPAEAIE6ELTFaI7KJd4MZCFob5xV/RE3eKxMhnDVS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 02:39:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 341 (0x155) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B018, serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC Validity Not Before: Dec 3 02:39:45 2025 GMT Not After : Dec 10 02:39:45 2025 GMT Subject: CN=692fa2f1-e5b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4b:17:98:7e:e9:3c:40:1f:a5:5d:ea:22:63: f7:0d:db:69:75:b8:af:99:71:36:30:ce:d5:29:f1: e3:26:84:8a:18:fb:12:4d:f7:e7:c9:bd:f4:4a:ce: 34:dc:18:86:ad:e4:e8:29:04:cd:d9:86:b1:fa:df: 72:5a:7d:73:21:f6:c4:ce:26:1f:b5:8a:5c:81:08: 67:66:a7:a4:a4:ac:e2:43:71:a7:37:c0:e6:e5:0e: c1:fc:06:37:01:7e:22:37:0f:31:3e:9f:08:4e:7b: 0d:e4:e9:b5:27:2b:b0:fc:7b:03:d7:72:54:50:10: 9c:00:94:25:e2:3d:6d:09:c4:5b:7a:a4:10:1f:99: 43:82:20:82:58:5a:b9:10:0c:9d:af:72:08:79:81: 01:f3:e3:cf:20:fa:18:c7:89:5a:4b:b7:4a:c3:7d: e5:e4:d6:0b:24:4a:37:0e:26:51:71:87:6c:31:74: 13:7d:4e:eb:31:d5:37:5f:9a:5c:12:0f:cb:0a:6b: a2:ee:99:2c:49:3b:52:19:fd:a9:2c:43:8d:66:25: f0:80:24:1a:51:fe:54:fa:a5:4a:65:76:53:1b:23: e1:36:7e:07:31:45:fd:e2:d9:06:f9:9d:a5:61:f5: 69:dc:cc:ef:b8:e2:c4:a6:c1:67:5d:1c:2c:bd:ce: 0f:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:D7:BB:3A:58:42:0F:0B:32:65:62:63:1E:63:B9:57:2C:23:58:E8 X509v3 Authority Key Identifier: keyid:B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:1d:64:d4:ec:a9:d8:ac:79:13:5a:f2:29:8a:8d:10:66:b1: 86:6f:39:4d:e3:10:63:8b:24:99:fb:99:46:cc:0c:ea:b4:2d: f9:47:02:0c:94:4d:ea:4e:e9:3e:d3:c4:89:05:3e:51:73:1c: f7:6f:03:ed:ed:47:ad:f7:81:c7:81:87:82:a5:43:8f:98:94: 6d:05:3c:56:df:19:85:7f:4d:d8:33:55:1e:1a:a4:b4:4e:26: 12:d1:98:34:13:70:54:76:6f:14:55:04:99:15:e5:3e:8d:65: 77:d3:00:07:96:9f:1d:1e:f0:96:bb:5a:97:9c:76:78:cc:07: 49:b9:45:d0:41:06:ff:9a:b6:a3:86:a1:16:27:06:69:4d:06: ab:f2:95:3a:61:2a:ca:41:e9:48:63:21:d0:d1:d6:d6:89:4c: 42:0e:34:9a:79:09:db:3e:b2:1b:75:d6:41:cd:47:fe:9b:a6: 47:c5:24:59:59:77:73:33:6b:ee:f5:94:be:53:cc:40:a4:0d: d6:e2:08:0c:cc:06:00:68:c0:28:c9:1d:93:e4:b0:8d:82:ce: 67:cd:c1:37:34:30:13:14:aa:f5:4b:f7:dd:68:a9:15:62:9b: c1:1a:d8:fd:b4:fe:b6:7b:45:9f:c6:e7:be:f7:1c:dc:bf:01: 26:86:0a:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IwMTgxMTAvBgNVBAUTKEIzRTk0MUExQzU1RDE0ODNBQjU3OTFEOTQ5ODc1MEUz RERBREVEQ0MwHhcNMjUxMjAzMDIzOTQ1WhcNMjUxMjEwMDIzOTQ1WjAYMRYwFAYD VQQDEw02OTJmYTJmMS1lNWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0sXmH7pPEAfpV3qImP3DdtpdbivmXE2MM7VKfHjJoSKGPsSTffnyb30Ss40 3BiGreToKQTN2Yax+t9yWn1zIfbEziYftYpcgQhnZqekpKziQ3GnN8Dm5Q7B/AY3 AX4iNw8xPp8ITnsN5Om1Jyuw/HsD13JUUBCcAJQl4j1tCcRbeqQQH5lDgiCCWFq5 EAydr3IIeYEB8+PPIPoYx4laS7dKw33l5NYLJEo3DiZRcYdsMXQTfU7rMdU3X5pc Eg/LCmui7pksSTtSGf2pLEONZiXwgCQaUf5U+qVKZXZTGyPhNn4HMUX94tkG+Z2l YfVp3MzvuOLEpsFnXRwsvc4PTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA3XuzpY Qg8LMmViYx5juVcsI1joMB8GA1UdIwQYMBaAFLPpQaHFXRSDq1eR2UmHUOPdre3M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjAxOC8zMDc5RDgxMkM1 RjYxMUVFQkUwQjc5NjBDNEY5QUUwMi9zLWxCb2NWZEZJT3JWNUhaU1lkUTQ5MnQ3 Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3MtbEJvY1ZkRklPclY1SFpTWWRRNDkydDdjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjAxOC8zMDc5RDgxMkM1RjYxMUVFQkUwQjc5NjBDNEY5QUUwMi9zLWxCb2NWZEZJ T3JWNUhaU1lkUTQ5MnQ3Y3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZHWTU7KnYrHkTWvIpio0QZrGGbzlN4xBjiySZ+5lGzAzqtC35RwIM lE3qTuk+08SJBT5Rcxz3bwPt7Uet94HHgYeCpUOPmJRtBTxW3xmFf03YM1UeGqS0 TiYS0Zg0E3BUdm8UVQSZFeU+jWV30wAHlp8dHvCWu1qXnHZ4zAdJuUXQQQb/mraj hqEWJwZpTQar8pU6YSrKQelIYyHQ0dbWiUxCDjSaeQnbPrIbddZBzUf+m6ZHxSRZ WXdzM2vu9ZS+U8xApA3W4ggMzAYAaMAoyR2T5LCNgs5nzcE3NDATFKr1S/fdaKkV YpvBGtj9tP62e0Wfxue+9xzcvwEmhgqb -----END CERTIFICATE-----Generated at Wed Dec 3 16:22:45 2025 by rpki-client