This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft File: LOCE4B2sa01jSTjXbOraWWNVvVM.mft (raw, json) Hash identifier: oNVebG4CSj0UNNF6b99MUdXmzx1wyQZW8WQFG1zPRP4= Subject key identifier: F3:2C:EE:9D:DE:9D:34:17:43:43:2A:82:71:E3:82:C2:CD:8E:C3:AC Authority key identifier: 2C:E0:84:E0:1D:AC:6B:4D:63:49:38:D7:6C:EA:DA:59:63:55:BD:53 Certificate issuer: /CN=A915EA8F/serialNumber=2CE084E01DAC6B4D634938D76CEADA596355BD53 Certificate serial: 02AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft Manifest number: 02A6 Signing time: Tue 23 Dec 2025 00:28:53 +0000 Manifest this update: Tue 23 Dec 2025 00:28:53 +0000 Manifest next update: Tue 30 Dec 2025 00:28:53 +0000 Files and hashes: 1: LOCE4B2sa01jSTjXbOraWWNVvVM.crl (hash: E3+OTZJ87WcvWn1+44WELmscIqfKBT9XaEVdktLBGVs=) 2: 028640A8242B11ED9547B486C4F9AE02.roa (hash: dsbPmjXp/oYWvfHXOZsMcI3WqL8KWucAeTqSoUbpKas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.crl rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:28:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 682 (0x2aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EA8F, serialNumber=2CE084E01DAC6B4D634938D76CEADA596355BD53 Validity Not Before: Dec 23 00:28:53 2025 GMT Not After : Dec 30 00:28:53 2025 GMT Subject: CN=6949e245-ec6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a9:5f:31:fc:a4:6b:e6:99:5c:6c:61:2b:8c: 22:87:8e:ff:b0:f7:67:de:c1:75:55:e5:ac:fb:fc: 17:f5:79:d6:f4:0e:5c:a4:fd:d6:62:b9:50:b1:30: 1f:5d:0c:21:47:ab:16:8b:79:21:6c:d2:76:c2:d7: ad:2c:4f:f0:5b:02:a0:c0:19:21:47:63:0d:20:1b: ba:94:b3:37:0f:6b:0d:04:00:60:45:19:ef:92:1d: f3:6d:25:60:a4:b8:98:23:ce:6f:40:e6:cc:c8:c3: a4:30:80:47:d4:78:a2:b7:76:43:82:b8:14:36:61: 42:a2:c5:f5:5f:da:08:ca:de:9a:f6:3d:d5:e1:c1: 3a:19:1e:e3:0d:39:df:3d:d3:83:7f:de:14:5c:a3: 20:bd:f9:c4:f7:0d:99:a2:40:01:c4:70:83:82:72: f6:84:1c:84:7f:22:75:f4:ef:bc:94:48:cb:a3:97: 24:16:a8:85:3c:16:aa:bc:3f:ee:b8:21:0d:d0:03: d5:73:f3:eb:45:99:ac:c2:62:81:c6:c4:77:cc:ba: 9b:df:af:21:4c:54:ff:a8:f7:2c:ec:f8:d1:7b:8c: 50:80:3b:ed:5c:9a:0f:de:f4:dd:ed:94:5b:7e:a6: 97:37:69:32:34:47:47:d2:89:3a:c8:47:4d:21:44: 65:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:2C:EE:9D:DE:9D:34:17:43:43:2A:82:71:E3:82:C2:CD:8E:C3:AC X509v3 Authority Key Identifier: keyid:2C:E0:84:E0:1D:AC:6B:4D:63:49:38:D7:6C:EA:DA:59:63:55:BD:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:12:d4:91:69:6c:32:b1:bf:7e:35:20:e5:ce:20:a2:77:79: c1:a7:27:13:77:9e:fb:be:16:57:bf:49:20:03:ca:51:89:53: b4:26:da:18:79:a1:fa:e0:17:88:b1:a4:97:cb:f1:72:42:6f: 6b:9a:31:30:3f:c8:22:7a:2f:bc:c1:e1:e6:7d:a4:7a:61:49: 79:5d:2c:a7:e3:c5:12:91:95:ce:ee:53:2b:a1:a0:5f:bb:34: 80:eb:d8:69:97:9a:48:46:43:a3:c8:cc:06:5b:c3:09:fe:41: 2f:2e:a7:64:39:aa:6b:23:46:ba:ae:bc:85:87:1f:2e:7a:9f: 92:ce:84:29:a5:18:89:07:83:6a:74:10:88:f1:79:18:f4:e7: 46:4d:4b:8f:09:34:6d:e6:df:47:87:76:e4:77:6e:34:65:b5: 84:9b:72:8f:32:dc:b0:eb:b6:50:0d:1b:c0:84:7e:97:0e:10: 64:72:6e:dc:6f:7d:f8:c5:69:44:b3:dc:44:2c:74:03:06:95: ab:80:1f:70:69:a1:b7:a9:04:c2:82:06:ea:94:5d:d3:e3:47: f6:f4:24:ac:8c:7b:51:58:60:aa:93:d4:23:c0:3f:e8:94:1a: cc:f6:dc:a5:ad:31:b4:92:d2:d9:a8:8b:ed:5a:03:af:f1:a0: ec:a5:fe:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVBOEYxMTAvBgNVBAUTKDJDRTA4NEUwMURBQzZCNEQ2MzQ5MzhENzZDRUFEQTU5 NjM1NUJENTMwHhcNMjUxMjIzMDAyODUzWhcNMjUxMjMwMDAyODUzWjAYMRYwFAYD VQQDDA02OTQ5ZTI0NS1lYzZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAualfMfyka+aZXGxhK4wih47/sPdn3sF1VeWs+/wX9XnW9A5cpP3WYrlQsTAf XQwhR6sWi3khbNJ2wtetLE/wWwKgwBkhR2MNIBu6lLM3D2sNBABgRRnvkh3zbSVg pLiYI85vQObMyMOkMIBH1Hiit3ZDgrgUNmFCosX1X9oIyt6a9j3V4cE6GR7jDTnf PdODf94UXKMgvfnE9w2ZokABxHCDgnL2hByEfyJ19O+8lEjLo5ckFqiFPBaqvD/u uCEN0APVc/PrRZmswmKBxsR3zLqb368hTFT/qPcs7PjRe4xQgDvtXJoP3vTd7ZRb fqaXN2kyNEdH0ok6yEdNIURlZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPMs7p3e nTQXQ0MqgnHjgsLNjsOsMB8GA1UdIwQYMBaAFCzghOAdrGtNY0k412zq2lljVb1T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUE4Ri9FM0EzNUJCNDI0 MjgxMUVEOEZEMjRDODZDNEY5QUUwMi9MT0NFNEIyc2EwMWpTVGpYYk9yYVdXTlZ2 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xPQ0U0QjJzYTAxalNUalhiT3JhV1dOVnZWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RUE4Ri9FM0EzNUJCNDI0MjgxMUVEOEZEMjRDODZDNEY5QUUwMi9MT0NFNEIyc2Ew MWpTVGpYYk9yYVdXTlZ2Vk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNEtSRaWwysb9+NSDlziCid3nBpycTd577vhZXv0kgA8pRiVO0JtoY eaH64BeIsaSXy/FyQm9rmjEwP8giei+8weHmfaR6YUl5XSyn48USkZXO7lMroaBf uzSA69hpl5pIRkOjyMwGW8MJ/kEvLqdkOaprI0a6rryFhx8uep+SzoQppRiJB4Nq dBCI8XkY9OdGTUuPCTRt5t9Hh3bkd240ZbWEm3KPMtyw67ZQDRvAhH6XDhBkcm7c b334xWlEs9xELHQDBpWrgB9waaG3qQTCggbqlF3T40f29CSsjHtRWGCqk9QjwD/o lBrM9tylrTG0ktLZqIvtWgOv8aDspf4h -----END CERTIFICATE-----Generated at Wed Dec 24 15:42:13 2025 by rpki-client