This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft File: LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft (raw, json) Hash identifier: hQSU+ewff33SBCFy1MyF/LlvBp8EVXQH1ICUNufcYLI= Subject key identifier: 8A:A2:93:08:37:5E:86:5C:E5:D5:08:15:C0:5E:4A:37:28:EC:35:BA Authority key identifier: 2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 Certificate issuer: /CN=A9147DCA/serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Certificate serial: 06E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft Manifest number: 06D8 Signing time: Mon 22 Dec 2025 21:18:43 +0000 Manifest this update: Mon 22 Dec 2025 21:18:42 +0000 Manifest next update: Mon 29 Dec 2025 21:18:42 +0000 Files and hashes: 1: LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl (hash: O62Kt4fl6XmTAeDX6EWH2CQSGe9wbCNRQZtP97V6ySg=) 2: 0463FF50526C11EC80A31615C4F9AE02.roa (hash: mMd+OVrFW5GAoQGXV5q8W888lgwtgTWX8rE/7aryuNU=) 3: F100A1207F9911EBAFB6C91BC4F9AE02.roa (hash: WC17u871QRbv9L0eEf3wRpZbTARtAM6LAemuxBHqCWE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:18:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1766 (0x6e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147DCA, serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Validity Not Before: Dec 22 21:18:42 2025 GMT Not After : Dec 29 21:18:42 2025 GMT Subject: CN=6949b5b3-618a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:86:19:35:b2:dc:23:21:c0:84:48:25:aa:8d: a3:d6:da:a4:6b:75:ae:7b:f0:ad:27:76:33:68:a8: a1:50:bb:7d:26:53:ec:ea:2b:6b:14:99:ef:f8:84: 17:3d:45:83:ba:a9:5a:0a:0e:44:18:75:43:8a:d2: ad:5a:12:e3:7b:aa:6f:f8:1e:2b:6f:05:56:c0:af: d7:51:c8:60:b6:c5:76:b9:e7:9e:57:2d:2c:53:13: 6d:73:ce:e2:8f:56:83:ff:79:e8:cb:3d:7c:0d:13: f8:c7:a1:38:bd:55:3b:85:e8:e0:f1:6b:f3:e7:fd: 77:72:5d:8b:af:4a:55:1e:df:88:d7:74:26:a1:f7: 75:78:71:13:9a:dc:fa:08:af:39:98:41:bf:50:36: d7:02:06:26:e4:d2:db:a2:f1:a9:19:38:44:11:72: 77:81:b6:cb:5c:41:29:ff:ca:ba:70:5f:4c:ac:43: 1d:99:8a:b8:1a:8d:a2:31:d1:b9:7b:3a:15:94:4a: 89:19:4e:59:df:fd:a2:0d:02:3d:14:ae:25:c6:c1: 5b:23:58:1e:d1:4b:31:61:03:0a:93:38:ae:99:5a: 32:0a:ce:1a:62:d6:e7:b2:71:97:0d:63:d6:f3:cc: df:ba:d7:50:03:0f:bf:c4:6a:93:82:f2:d8:4b:1a: 82:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:A2:93:08:37:5E:86:5C:E5:D5:08:15:C0:5E:4A:37:28:EC:35:BA X509v3 Authority Key Identifier: keyid:2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:15:99:4a:1b:49:9c:b6:d3:f8:f2:97:36:1e:ab:e7:b1:f6: df:ab:ab:0c:4f:24:63:09:7f:56:d3:fa:5b:71:6b:6d:a4:68: 01:87:0d:70:9f:31:ee:83:c4:e5:ca:b0:ba:0b:a8:3b:dd:37: 14:3a:1a:41:00:cd:dc:c0:e1:52:f9:82:cf:ed:52:76:de:04: e6:9e:df:61:56:35:44:78:f1:20:b8:c2:9c:a3:82:c0:e5:2b: bc:44:89:b4:7f:f7:da:9f:2d:82:83:24:79:c0:d4:b1:a6:c2: 4f:e0:a8:96:b9:0f:0d:ae:41:0c:26:8c:02:4b:70:27:1b:10: b7:c9:13:c0:e9:c3:b5:ea:3f:9b:8e:fc:00:a3:77:ad:0a:61: ef:b3:d0:5f:11:a0:c6:74:f5:0f:a7:bc:9f:0b:33:33:a6:d8: 1f:f1:ac:f9:8d:82:ef:0f:6a:a6:a2:c4:4f:ac:a1:51:8f:fb: 32:16:40:ea:3d:a9:79:1c:67:56:73:ff:fd:64:8c:47:71:70: 87:e3:c0:a1:af:a3:7e:a6:f5:3e:ab:95:3a:f8:a6:40:fa:e9: 71:e9:23:af:7a:84:82:f5:60:b8:a7:e1:c7:16:a1:72:1d:c6: 22:77:21:2c:21:7b:f6:35:24:89:f0:26:46:af:c6:0a:6f:f0: c0:29:a2:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdEQ0ExMTAvBgNVBAUTKDJDM0EyQTgxMjFDQ0Y4QTlCRkM3Q0I2NjkxODU0QUY1 RTREMjE5RjkwHhcNMjUxMjIyMjExODQyWhcNMjUxMjI5MjExODQyWjAYMRYwFAYD VQQDDA02OTQ5YjViMy02MThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyoYZNbLcIyHAhEglqo2j1tqka3Wue/CtJ3YzaKihULt9JlPs6itrFJnv+IQX PUWDuqlaCg5EGHVDitKtWhLje6pv+B4rbwVWwK/XUchgtsV2ueeeVy0sUxNtc87i j1aD/3noyz18DRP4x6E4vVU7hejg8Wvz5/13cl2Lr0pVHt+I13Qmofd1eHETmtz6 CK85mEG/UDbXAgYm5NLbovGpGThEEXJ3gbbLXEEp/8q6cF9MrEMdmYq4Go2iMdG5 ezoVlEqJGU5Z3/2iDQI9FK4lxsFbI1ge0UsxYQMKkziumVoyCs4aYtbnsnGXDWPW 88zfutdQAw+/xGqTgvLYSxqCbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIqikwg3 XoZc5dUIFcBeSjco7DW6MB8GA1UdIwQYMBaAFCw6KoEhzPipv8fLZpGFSvXk0hn5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0RDQS8xQzc1RURBNjdE NkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1LbV94OHRta1lWSzllVFNH ZmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEb3FnU0hNLUttX3g4dG1rWVZLOWVUU0dmay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0RDQS8xQzc1RURBNjdENkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1L bV94OHRta1lWSzllVFNHZmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7FZlKG0mcttP48pc2Hqvnsfbfq6sMTyRjCX9W0/pbcWttpGgBhw1w nzHug8TlyrC6C6g73TcUOhpBAM3cwOFS+YLP7VJ23gTmnt9hVjVEePEguMKco4LA 5Su8RIm0f/fany2CgyR5wNSxpsJP4KiWuQ8NrkEMJowCS3AnGxC3yRPA6cO16j+b jvwAo3etCmHvs9BfEaDGdPUPp7yfCzMzptgf8az5jYLvD2qmosRPrKFRj/syFkDq Pal5HGdWc//9ZIxHcXCH48Chr6N+pvU+q5U6+KZA+ulx6SOveoSC9WC4p+HHFqFy HcYidyEsIXv2NSSJ8CZGr8YKb/DAKaJt -----END CERTIFICATE-----Generated at Tue Dec 23 12:58:00 2025 by rpki-client