This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.mft File: L1yb73Dl0CO3HEbLZs_iof20g1s.mft (raw, json) Hash identifier: tPAObqt1qr3JQL4D7ZuE3s1iQXGKg/om4MVRXd484cg= Subject key identifier: EB:0B:15:15:57:0B:05:1D:33:0A:42:1A:80:10:38:36:70:C2:E9:E8 Authority key identifier: 2F:5C:9B:EF:70:E5:D0:23:B7:1C:46:CB:66:CF:E2:A1:FD:B4:83:5B Certificate issuer: /CN=A915D55E/serialNumber=2F5C9BEF70E5D023B71C46CB66CFE2A1FDB4835B Certificate serial: 07D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1yb73Dl0CO3HEbLZs_iof20g1s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.mft Manifest number: 07CB Signing time: Mon 22 Dec 2025 20:36:22 +0000 Manifest this update: Mon 22 Dec 2025 20:36:22 +0000 Manifest next update: Mon 29 Dec 2025 20:36:22 +0000 Files and hashes: 1: L1yb73Dl0CO3HEbLZs_iof20g1s.crl (hash: tY0RYEha5Kgz66GzGID3XjKwD4VgsaQ3sAIhccqJASQ=) 2: 2323F9621D5D11EBA3A7E71CC4F9AE02.roa (hash: V6nVYtxgABEEx59pXAhW4JauDnfyhwDJHmUDG1nlXFc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.crl rsync://rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1yb73Dl0CO3HEbLZs_iof20g1s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:36:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2001 (0x7d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D55E, serialNumber=2F5C9BEF70E5D023B71C46CB66CFE2A1FDB4835B Validity Not Before: Dec 22 20:36:22 2025 GMT Not After : Dec 29 20:36:22 2025 GMT Subject: CN=6949abc6-fff9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:6e:90:c7:9d:11:21:09:54:a9:2b:46:cd:ad: f4:29:38:52:9c:5a:5b:cb:f0:6c:e4:16:66:7e:20: 58:f3:ec:8e:ed:61:1b:c2:07:8e:48:5b:ca:24:c0: a8:a3:53:fa:24:8a:0c:ab:0e:50:9a:be:b8:c5:ad: b9:4d:f2:30:ad:31:a5:0c:18:90:07:ec:ec:38:7f: ca:a9:5c:8b:a9:53:54:b4:e6:6a:16:94:2e:1c:9a: 95:28:f0:7f:85:49:cd:82:63:81:21:58:c3:ad:9d: 3a:d9:6b:6b:36:fd:54:ec:06:54:d9:e0:1d:36:85: c4:e5:a0:17:1f:b6:25:39:fa:68:48:86:22:39:60: 9e:1c:46:b3:da:26:31:8f:cc:17:9b:0f:b9:26:62: 7d:ed:6d:94:81:a0:29:e3:76:bd:b5:cd:40:f5:6e: 29:93:1f:a9:77:c4:b2:bb:62:98:84:6a:0e:29:c1: ce:81:22:d4:a7:02:45:f8:99:cd:93:e7:7c:08:3d: 12:78:52:96:0b:a2:f9:5a:66:48:12:95:2b:48:9d: 0b:b5:04:18:1c:af:2d:cc:f6:6b:0a:fa:cc:57:67: 20:cb:eb:db:83:6f:d5:b0:3b:84:7c:f1:5d:c2:7a: 1f:11:12:32:a9:27:9d:e8:1d:aa:42:c1:48:3d:d3: d0:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:0B:15:15:57:0B:05:1D:33:0A:42:1A:80:10:38:36:70:C2:E9:E8 X509v3 Authority Key Identifier: keyid:2F:5C:9B:EF:70:E5:D0:23:B7:1C:46:CB:66:CF:E2:A1:FD:B4:83:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L1yb73Dl0CO3HEbLZs_iof20g1s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D55E/62A5EB6A1D5B11EB83AC871AC4F9AE02/L1yb73Dl0CO3HEbLZs_iof20g1s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:6f:47:ee:7b:80:4f:d8:6a:3a:ac:02:5b:8b:d3:84:8a:22: 1e:f1:58:f7:ef:fc:73:e3:6c:a7:2d:8a:54:d4:68:0e:58:27: 75:4e:79:a9:40:6e:e5:fc:a2:f8:80:c6:8d:3a:1e:51:2b:be: da:36:7e:ad:6c:e0:b5:9b:39:06:bd:52:8b:07:5a:5b:99:b0: 58:c1:90:e4:93:77:52:0c:9b:13:1e:70:37:a3:72:18:b3:0f: f4:7b:29:bc:f1:24:9d:7e:40:18:f8:fd:e2:a9:4d:1a:e0:14: 4c:45:fa:de:cc:e4:32:11:f7:70:f4:5d:b6:69:01:e2:86:75: ed:dc:88:62:d5:98:53:8d:ff:35:2e:91:37:f7:ce:cd:5f:1d: bc:8f:4d:98:b1:bd:d5:30:97:48:7a:fe:e1:cd:8f:34:23:34: 53:5b:05:6a:96:a9:af:d6:2c:63:45:24:3d:95:46:4a:66:34: 18:94:6e:7a:cd:46:9f:ca:9a:93:24:57:01:34:65:79:7a:2a: 11:54:cc:68:30:a9:03:2c:ef:c6:b5:70:a4:fb:02:b5:57:70: 9e:e8:77:29:0a:9e:2a:a5:72:7f:e0:8f:00:c7:96:42:29:c5: 69:3d:18:0a:87:b0:6a:b1:0d:74:51:ee:21:23:0b:d5:42:46: 2f:c5:cb:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ1NUUxMTAvBgNVBAUTKDJGNUM5QkVGNzBFNUQwMjNCNzFDNDZDQjY2Q0ZFMkEx RkRCNDgzNUIwHhcNMjUxMjIyMjAzNjIyWhcNMjUxMjI5MjAzNjIyWjAYMRYwFAYD VQQDDA02OTQ5YWJjNi1mZmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu26Qx50RIQlUqStGza30KThSnFpby/Bs5BZmfiBY8+yO7WEbwgeOSFvKJMCo o1P6JIoMqw5Qmr64xa25TfIwrTGlDBiQB+zsOH/KqVyLqVNUtOZqFpQuHJqVKPB/ hUnNgmOBIVjDrZ062WtrNv1U7AZU2eAdNoXE5aAXH7YlOfpoSIYiOWCeHEaz2iYx j8wXmw+5JmJ97W2UgaAp43a9tc1A9W4pkx+pd8Syu2KYhGoOKcHOgSLUpwJF+JnN k+d8CD0SeFKWC6L5WmZIEpUrSJ0LtQQYHK8tzPZrCvrMV2cgy+vbg2/VsDuEfPFd wnofERIyqSed6B2qQsFIPdPQZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOsLFRVX CwUdMwpCGoAQODZwwunoMB8GA1UdIwQYMBaAFC9cm+9w5dAjtxxGy2bP4qH9tINb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDU1RS82MkE1RUI2QTFE NUIxMUVCODNBQzg3MUFDNEY5QUUwMi9MMXliNzNEbDBDTzNIRWJMWnNfaW9mMjBn MXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wxeWI3M0RsMENPM0hFYkxac19pb2YyMGcxcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDU1RS82MkE1RUI2QTFENUIxMUVCODNBQzg3MUFDNEY5QUUwMi9MMXliNzNEbDBD TzNIRWJMWnNfaW9mMjBnMXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRb0fue4BP2Go6rAJbi9OEiiIe8Vj37/xz42ynLYpU1GgOWCd1Tnmp QG7l/KL4gMaNOh5RK77aNn6tbOC1mzkGvVKLB1pbmbBYwZDkk3dSDJsTHnA3o3IY sw/0eym88SSdfkAY+P3iqU0a4BRMRfrezOQyEfdw9F22aQHihnXt3Ihi1ZhTjf81 LpE3987NXx28j02Ysb3VMJdIev7hzY80IzRTWwVqlqmv1ixjRSQ9lUZKZjQYlG56 zUafypqTJFcBNGV5eioRVMxoMKkDLO/GtXCk+wK1V3Ce6HcpCp4qpXJ/4I8Ax5ZC KcVpPRgKh7BqsQ10Ue4hIwvVQkYvxcu8 -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:19 2025 by rpki-client