This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.mft File: lI_4don6lJEW9ffIAOsdcB5l43s.mft (raw, json) Hash identifier: dpnvpSj1XgbQhNhJg430L/tu1gRoyjvaWb1SM94gTOI= Subject key identifier: F0:11:2A:6D:11:F9:B7:07:FF:8E:50:ED:D1:EF:04:50:B7:BE:9D:87 Authority key identifier: 94:8F:F8:76:89:FA:94:91:16:F5:F7:C8:00:EB:1D:70:1E:65:E3:7B Certificate issuer: /CN=A9148EFA/serialNumber=948FF87689FA949116F5F7C800EB1D701E65E37B Certificate serial: 0BD9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lI_4don6lJEW9ffIAOsdcB5l43s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.mft Manifest number: 0BD1 Signing time: Sat 20 Dec 2025 18:28:43 +0000 Manifest this update: Sat 20 Dec 2025 18:28:43 +0000 Manifest next update: Sat 27 Dec 2025 18:28:43 +0000 Files and hashes: 1: lI_4don6lJEW9ffIAOsdcB5l43s.crl (hash: uSwX2NFFlglDZVU2QpOU5B/2BC33POsgN6uGX3KEgUs=) 2: 160F265C827311EDA56A8F30C4F9AE02.roa (hash: DFFj/9slvAH+PEbWNXT9e7xoWXrU79TcIDoX6Iil9eI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.crl rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lI_4don6lJEW9ffIAOsdcB5l43s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:28:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3033 (0xbd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148EFA, serialNumber=948FF87689FA949116F5F7C800EB1D701E65E37B Validity Not Before: Dec 20 18:28:43 2025 GMT Not After : Dec 27 18:28:43 2025 GMT Subject: CN=6946eadb-14ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:c5:40:3b:c1:ad:44:98:2e:55:51:1c:e4:e9: 99:ba:b2:77:26:a0:1a:2e:18:c9:0b:10:a0:6e:2b: 76:f1:ba:ea:22:f1:05:87:bd:96:3d:98:06:3c:3c: 6a:14:50:f4:38:a7:96:13:82:3d:44:8c:06:ac:6c: 6f:96:0c:25:3b:c7:4b:10:87:b5:dc:d5:20:45:2d: d3:e4:bc:27:27:c4:e5:fc:49:b5:5c:a6:2c:e3:ff: d2:ca:42:b1:84:38:cd:79:3d:8e:78:7c:5b:d6:46: ba:d3:ba:a0:17:2e:fc:6b:a0:57:46:79:2e:56:01: ba:4d:c9:13:f7:93:50:c8:f3:03:c7:18:e8:ab:74: 31:eb:6c:9b:19:61:73:75:e0:53:c3:69:ac:df:76: 4b:c4:7c:4b:2a:03:f3:12:0e:09:13:bd:cd:be:3f: 58:75:88:05:d9:81:a7:71:33:d7:db:09:70:25:38: 44:c7:88:bd:9d:c8:dc:e5:39:e2:31:9d:bc:99:09: fd:6a:94:6d:c0:0b:87:86:04:a2:69:fb:3b:80:21: 74:78:8d:e0:64:60:be:8b:37:96:2e:4e:ed:a6:f7: 47:39:3d:17:26:09:f1:08:c9:e3:4d:00:6d:4e:bc: 67:f5:aa:4a:39:0d:9b:f8:1a:11:d7:6b:19:d4:50: 38:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:11:2A:6D:11:F9:B7:07:FF:8E:50:ED:D1:EF:04:50:B7:BE:9D:87 X509v3 Authority Key Identifier: keyid:94:8F:F8:76:89:FA:94:91:16:F5:F7:C8:00:EB:1D:70:1E:65:E3:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lI_4don6lJEW9ffIAOsdcB5l43s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:49:34:95:a3:0d:50:08:57:75:81:1d:66:52:58:27:40:07: 4b:24:43:8d:9e:0a:f7:c4:ff:12:51:ba:f9:38:a5:db:24:05: 06:3a:cf:00:32:23:82:ff:bb:a9:5f:40:9d:51:1e:d1:4a:6d: de:4c:26:14:af:4f:43:5e:c6:e7:ae:39:4a:bd:83:f7:77:b2: 6b:df:f6:89:49:a3:67:f1:d2:84:ce:43:8b:30:3d:b5:bf:c9: 7b:44:e4:13:90:34:68:93:e3:d2:e9:59:84:ce:b0:7c:75:b4: 83:35:80:4c:25:8a:46:7d:8a:89:03:63:7a:2b:d8:67:4d:42: dc:56:09:ab:ed:e7:da:a3:9f:fe:17:ad:66:a9:bd:cb:44:a9: e9:44:62:b0:7c:27:bd:a9:c9:79:4d:92:f9:b9:2d:f9:ad:c0: f3:f8:b9:25:4c:88:6d:1d:9c:4b:17:ef:d4:59:2b:02:74:1f: b6:71:cc:7b:90:22:57:c1:ef:40:66:30:c0:02:aa:34:06:be: 64:00:f5:af:19:6a:7e:33:98:55:d7:da:15:ab:be:01:8a:70: a7:4e:2d:73:63:36:8f:32:5e:07:ea:ca:58:b3:5d:25:7b:7e: bf:ed:4f:d8:c2:a7:22:b1:14:4f:6e:4f:8a:e5:46:81:4d:5b: c0:ff:0e:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhFRkExMTAvBgNVBAUTKDk0OEZGODc2ODlGQTk0OTExNkY1RjdDODAwRUIxRDcw MUU2NUUzN0IwHhcNMjUxMjIwMTgyODQzWhcNMjUxMjI3MTgyODQzWjAYMRYwFAYD VQQDDA02OTQ2ZWFkYi0xNGNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA78VAO8GtRJguVVEc5OmZurJ3JqAaLhjJCxCgbit28brqIvEFh72WPZgGPDxq FFD0OKeWE4I9RIwGrGxvlgwlO8dLEIe13NUgRS3T5LwnJ8Tl/Em1XKYs4//SykKx hDjNeT2OeHxb1ka607qgFy78a6BXRnkuVgG6TckT95NQyPMDxxjoq3Qx62ybGWFz deBTw2ms33ZLxHxLKgPzEg4JE73Nvj9YdYgF2YGncTPX2wlwJThEx4i9ncjc5Tni MZ28mQn9apRtwAuHhgSiafs7gCF0eI3gZGC+izeWLk7tpvdHOT0XJgnxCMnjTQBt Trxn9apKOQ2b+BoR12sZ1FA4RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPARKm0R +bcH/45Q7dHvBFC3vp2HMB8GA1UdIwQYMBaAFJSP+HaJ+pSRFvX3yADrHXAeZeN7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEVGQS9FMEM5NTFDRTMw NjkxMUVBQkYwRDk0MkVDNEY5QUUwMi9sSV80ZG9uNmxKRVc5ZmZJQU9zZGNCNWw0 M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xJXzRkb242bEpFVzlmZklBT3NkY0I1bDQzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEVGQS9FMEM5NTFDRTMwNjkxMUVBQkYwRDk0MkVDNEY5QUUwMi9sSV80ZG9uNmxK RVc5ZmZJQU9zZGNCNWw0M3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBSTSVow1QCFd1gR1mUlgnQAdLJEONngr3xP8SUbr5OKXbJAUGOs8A MiOC/7upX0CdUR7RSm3eTCYUr09DXsbnrjlKvYP3d7Jr3/aJSaNn8dKEzkOLMD21 v8l7ROQTkDRok+PS6VmEzrB8dbSDNYBMJYpGfYqJA2N6K9hnTULcVgmr7efao5/+ F61mqb3LRKnpRGKwfCe9qcl5TZL5uS35rcDz+LklTIhtHZxLF+/UWSsCdB+2ccx7 kCJXwe9AZjDAAqo0Br5kAPWvGWp+M5hV19oVq74BinCnTi1zYzaPMl4H6spYs10l e36/7U/YwqcisRRPbk+K5UaBTVvA/w46 -----END CERTIFICATE-----Generated at Mon Dec 22 07:06:21 2025 by rpki-client