This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft File: lDrZvGF3q4wvjoExwUpUZexClU8.mft (raw, json) Hash identifier: cJ4WQtzqo6Mzb9j2YSeG8H/sjWRxm1Hfg+zYLJCS7ZI= Subject key identifier: 84:7D:D7:AD:B2:E8:FA:11:9F:45:C3:20:96:A2:47:9F:CC:66:2C:85 Authority key identifier: 94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F Certificate issuer: /CN=A9158568/serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F Certificate serial: 0197 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft Manifest number: 0193 Signing time: Wed 10 Dec 2025 17:54:06 +0000 Manifest this update: Wed 10 Dec 2025 17:54:06 +0000 Manifest next update: Wed 17 Dec 2025 17:54:06 +0000 Files and hashes: 1: lDrZvGF3q4wvjoExwUpUZexClU8.crl (hash: EZUfkOUdTgap8WrdLXsLcbgiNkUfKmaHYKLpLKYpar4=) 2: 203DB338782111EEAFDDBD86C4F9AE02.roa (hash: wX9s/s7jxKKJJyFHtP8kJqChB04GKqVy3xgEjOBVe9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.crl rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 17:54:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 407 (0x197) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F Validity Not Before: Dec 10 17:54:06 2025 GMT Not After : Dec 17 17:54:06 2025 GMT Subject: CN=6939b3be-e7d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:e1:f2:d8:53:b3:69:ae:03:01:05:37:a4:4f: 4e:41:4d:4f:b6:49:6e:34:63:a7:43:ed:13:8c:f9: ff:44:44:af:77:cd:95:17:c5:65:12:46:13:c8:af: ca:9a:54:17:d1:b6:91:04:97:a2:21:da:81:59:8b: aa:9b:a6:a5:89:57:e9:19:16:06:24:db:83:21:96: d9:0f:df:50:c0:1a:0d:90:fb:47:c8:3e:e4:3a:1b: 37:9a:2c:3b:f8:4a:7d:ca:46:1b:02:47:85:42:e2: a4:a4:14:d5:53:94:66:8a:5e:fe:3f:be:94:5a:fe: 94:04:15:05:3d:6d:1a:10:f6:95:db:20:05:e5:9d: 52:4f:cd:f6:46:f8:f9:f7:79:5e:86:09:63:eb:27: bb:fe:45:bd:b5:7f:58:d9:13:8e:86:b0:cc:bf:99: ed:41:34:ff:d0:87:4c:34:26:f0:6c:31:ff:c6:e6: b1:75:29:87:ae:e0:52:5a:0d:3d:50:58:47:b0:20: cb:1c:5b:98:09:5f:12:ad:89:8d:fb:01:51:30:0a: da:73:89:27:35:23:13:89:76:ce:81:38:41:7c:67: 93:4c:fa:45:f6:fc:3b:ce:d2:97:16:34:6a:f3:df: d9:d2:88:81:e3:d1:f7:e2:49:a3:b1:c9:8c:20:2c: e8:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:7D:D7:AD:B2:E8:FA:11:9F:45:C3:20:96:A2:47:9F:CC:66:2C:85 X509v3 Authority Key Identifier: keyid:94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:fc:1a:b4:5d:1b:b6:31:5f:fa:f9:1c:26:8f:4e:ad:c7:f6: cb:6d:d5:8b:ef:e1:30:ee:cf:96:5e:8d:b9:40:d7:d9:79:ae: c4:7c:0d:12:82:c9:72:44:d0:49:85:d9:d9:0a:89:b7:44:81: 01:5d:84:ad:37:23:8f:98:75:90:3a:35:fd:e2:5d:a4:3d:d1: 28:19:37:81:d6:48:90:7e:a4:8a:4f:22:29:04:a5:ef:03:33: c5:43:75:66:23:1a:a0:5b:57:c6:df:e1:6e:30:b3:25:8c:49: ca:13:18:ec:0f:78:3c:76:9d:7c:d2:4a:0d:33:1d:ee:5f:16: 36:7a:23:b9:50:3c:71:59:26:89:9e:f2:81:a5:a7:78:7a:5a: 96:f5:28:df:3d:46:20:ac:2c:ee:de:fb:a3:47:9f:44:89:8d: 6b:ac:d5:c5:82:e8:f2:7d:04:e6:28:e7:19:d6:92:3f:73:4a: 6d:f7:3d:4e:2b:09:2f:02:02:1f:78:9e:a0:8b:9c:e6:8c:5a: 9a:1d:b2:a9:a5:4e:0b:0b:bf:b8:4a:f0:41:b7:b0:c9:0d:41: 70:52:43:9a:72:13:4a:f5:7e:5f:fb:1c:dc:70:44:27:04:b6: 21:33:e2:6d:e7:91:ed:21:e0:65:36:45:b8:8c:1b:5a:78:6e: 98:ec:82:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKDk0M0FEOUJDNjE3N0FCOEMyRjhFODEzMUMxNEE1NDY1 RUM0Mjk1NEYwHhcNMjUxMjEwMTc1NDA2WhcNMjUxMjE3MTc1NDA2WjAYMRYwFAYD VQQDEw02OTM5YjNiZS1lN2QwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmOHy2FOzaa4DAQU3pE9OQU1PtkluNGOnQ+0TjPn/RESvd82VF8VlEkYTyK/K mlQX0baRBJeiIdqBWYuqm6aliVfpGRYGJNuDIZbZD99QwBoNkPtHyD7kOhs3miw7 +Ep9ykYbAkeFQuKkpBTVU5Rmil7+P76UWv6UBBUFPW0aEPaV2yAF5Z1ST832Rvj5 93lehglj6ye7/kW9tX9Y2ROOhrDMv5ntQTT/0IdMNCbwbDH/xuaxdSmHruBSWg09 UFhHsCDLHFuYCV8SrYmN+wFRMArac4knNSMTiXbOgThBfGeTTPpF9vw7ztKXFjRq 89/Z0oiB49H34kmjscmMICzokQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIR9162y 6PoRn0XDIJaiR5/MZiyFMB8GA1UdIwQYMBaAFJQ62bxhd6uML46BMcFKVGXsQpVP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC8zNjE4QUI2RTcy QTMxMUVFOTQ1NTcyMTFDNEY5QUUwMi9sRHJadkdGM3E0d3Zqb0V4d1VwVVpleENs VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xEclp2R0YzcTR3dmpvRXh3VXBVWmV4Q2xVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC8zNjE4QUI2RTcyQTMxMUVFOTQ1NTcyMTFDNEY5QUUwMi9sRHJadkdGM3E0 d3Zqb0V4d1VwVVpleENsVTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAC/Bq0XRu2MV/6+Rwmj06tx/bLbdWL7+Ew7s+WXo25QNfZea7EfA0S gslyRNBJhdnZCom3RIEBXYStNyOPmHWQOjX94l2kPdEoGTeB1kiQfqSKTyIpBKXv AzPFQ3VmIxqgW1fG3+FuMLMljEnKExjsD3g8dp180koNMx3uXxY2eiO5UDxxWSaJ nvKBpad4elqW9SjfPUYgrCzu3vujR59EiY1rrNXFgujyfQTmKOcZ1pI/c0pt9z1O KwkvAgIfeJ6gi5zmjFqaHbKppU4LC7+4SvBBt7DJDUFwUkOachNK9X5f+xzccEQn BLYhM+Jt55HtIeBlNkW4jBtaeG6Y7IJd -----END CERTIFICATE-----Generated at Thu Dec 11 22:49:14 2025 by rpki-client