This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.mft File: lRKEJmSsUb9nhVvG5PRr41UaTaM.mft (raw, json) Hash identifier: PuImrbEqVIGqHOxCSMlvnX93KqTVAtYUbqK3LSgFMm0= Subject key identifier: 65:3E:BB:2B:0D:01:1D:14:C2:E5:05:F7:A6:D0:E6:9F:58:13:CE:F8 Authority key identifier: 95:12:84:26:64:AC:51:BF:67:85:5B:C6:E4:F4:6B:E3:55:1A:4D:A3 Certificate issuer: /CN=A916B7B2/serialNumber=9512842664AC51BF67855BC6E4F46BE3551A4DA3 Certificate serial: 0322 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKEJmSsUb9nhVvG5PRr41UaTaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.mft Manifest number: 0319 Signing time: Tue 23 Dec 2025 00:08:12 +0000 Manifest this update: Tue 23 Dec 2025 00:08:11 +0000 Manifest next update: Tue 30 Dec 2025 00:08:11 +0000 Files and hashes: 1: lRKEJmSsUb9nhVvG5PRr41UaTaM.crl (hash: uUcTbZSOJgo+1KmiAyw0PK7Te9L1O9MnbwtA+aIxa3k=) 2: 2A4EA10EFB7F11EC8FB58E4AC4F9AE02.roa (hash: Gkpwn3+qaXPLAggtUnFxSv/8MK3BM4swBT14YB5sClw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.crl rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKEJmSsUb9nhVvG5PRr41UaTaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:08:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 802 (0x322) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B7B2, serialNumber=9512842664AC51BF67855BC6E4F46BE3551A4DA3 Validity Not Before: Dec 23 00:08:11 2025 GMT Not After : Dec 30 00:08:11 2025 GMT Subject: CN=6949dd6c-d44d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b6:93:a7:76:4c:b5:41:0b:db:cb:80:81:0a: 0c:59:3c:bc:a1:1f:22:5c:15:d5:57:43:8f:b6:2e: 62:c6:af:91:a3:73:75:6c:19:36:f6:47:75:5b:a6: 8c:bd:11:64:48:84:cb:f2:2d:09:9d:11:c1:70:f5: 00:66:67:c1:b7:1d:29:d2:55:d7:e5:43:04:10:25: 6f:66:2e:f8:6a:10:e6:0f:61:e5:53:f1:3b:c6:3d: 22:a0:20:14:d4:a7:77:7b:eb:d6:4e:02:eb:d2:78: cc:df:bc:c6:57:5e:b7:ec:18:8d:10:f9:28:7e:01: 57:6b:5b:94:5c:af:95:ea:47:6b:19:af:bf:80:32: 05:cb:88:5a:24:1f:8f:ee:35:55:78:96:38:6d:21: 51:7f:85:39:b6:6b:c2:2b:cd:02:7d:8a:59:c3:8e: 88:78:b1:45:c7:cb:28:92:aa:64:fe:d8:43:c7:dd: 3f:53:81:86:10:d9:a0:76:48:bf:fd:0b:19:33:9d: 8e:5c:93:9e:d9:eb:ac:51:f4:d9:28:b1:23:03:f8: c9:2d:a2:24:e6:25:99:e6:ce:7d:9c:46:4f:2f:b6: 0b:f0:c6:81:00:a7:07:48:79:28:0c:dd:4c:52:c4: ea:e0:b7:e4:3f:69:09:54:c3:18:36:9d:bb:42:85: 59:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:3E:BB:2B:0D:01:1D:14:C2:E5:05:F7:A6:D0:E6:9F:58:13:CE:F8 X509v3 Authority Key Identifier: keyid:95:12:84:26:64:AC:51:BF:67:85:5B:C6:E4:F4:6B:E3:55:1A:4D:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKEJmSsUb9nhVvG5PRr41UaTaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:87:e5:44:f5:c9:c5:5e:26:4e:60:ba:5e:4e:68:95:de:65: 10:51:64:2b:ff:e1:55:49:22:1d:b8:0b:5d:eb:94:d5:fe:65: 27:21:fd:98:1b:bd:93:ec:61:26:eb:fa:1e:72:8a:83:87:d5: 21:3e:6f:f0:d3:06:9d:65:40:e0:e3:95:b4:63:63:84:7e:80: 83:56:73:a2:f6:67:1d:59:63:a1:f1:18:b9:8e:ee:ee:4b:01: 70:f1:a1:48:16:6a:89:2f:68:52:9a:f5:b8:ae:3d:e8:a7:8b: 07:28:67:8f:8b:15:68:50:5a:b6:f8:de:09:61:af:15:b3:29: 14:f7:c2:5d:6e:83:57:9f:a6:94:f9:6d:10:26:8c:61:4b:dc: 5a:a9:04:c6:13:74:58:d2:8a:49:27:b6:f3:62:2c:30:85:98: c8:94:dc:14:18:d6:e8:26:93:dd:eb:c0:53:30:78:c9:bc:a3: 65:45:a3:ec:9f:83:32:56:f6:00:bb:5d:b9:63:e1:e6:7a:8d: 7d:90:3b:c2:47:4c:68:a2:f8:3a:68:d7:c8:78:97:60:7e:c8: b2:db:40:e7:c0:f0:b0:55:7b:e1:57:01:b6:74:04:a0:ab:1f: 3b:74:5f:85:21:e0:a5:06:f1:23:55:5b:9c:cf:81:e7:a5:e9: 4b:32:85:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAyIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI3QjIxMTAvBgNVBAUTKDk1MTI4NDI2NjRBQzUxQkY2Nzg1NUJDNkU0RjQ2QkUz NTUxQTREQTMwHhcNMjUxMjIzMDAwODExWhcNMjUxMjMwMDAwODExWjAYMRYwFAYD VQQDDA02OTQ5ZGQ2Yy1kNDRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvLaTp3ZMtUEL28uAgQoMWTy8oR8iXBXVV0OPti5ixq+Ro3N1bBk29kd1W6aM vRFkSITL8i0JnRHBcPUAZmfBtx0p0lXX5UMEECVvZi74ahDmD2HlU/E7xj0ioCAU 1Kd3e+vWTgLr0njM37zGV1637BiNEPkofgFXa1uUXK+V6kdrGa+/gDIFy4haJB+P 7jVVeJY4bSFRf4U5tmvCK80CfYpZw46IeLFFx8sokqpk/thDx90/U4GGENmgdki/ /QsZM52OXJOe2eusUfTZKLEjA/jJLaIk5iWZ5s59nEZPL7YL8MaBAKcHSHkoDN1M UsTq4LfkP2kJVMMYNp27QoVZKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGU+uysN AR0UwuUF96bQ5p9YE874MB8GA1UdIwQYMBaAFJUShCZkrFG/Z4VbxuT0a+NVGk2j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjdCMi8wRTYzMjE5NEZC N0IxMUVDQTg3QTg3MkVDNEY5QUUwMi9sUktFSm1Tc1ViOW5oVnZHNVBScjQxVWFU YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xSS0VKbVNzVWI5bmhWdkc1UFJyNDFVYVRhTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjdCMi8wRTYzMjE5NEZCN0IxMUVDQTg3QTg3MkVDNEY5QUUwMi9sUktFSm1Tc1Vi OW5oVnZHNVBScjQxVWFUYU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPh+VE9cnFXiZOYLpeTmiV3mUQUWQr/+FVSSIduAtd65TV/mUnIf2Y G72T7GEm6/oecoqDh9UhPm/w0wadZUDg45W0Y2OEfoCDVnOi9mcdWWOh8Ri5ju7u SwFw8aFIFmqJL2hSmvW4rj3op4sHKGePixVoUFq2+N4JYa8VsykU98JdboNXn6aU +W0QJoxhS9xaqQTGE3RY0opJJ7bzYiwwhZjIlNwUGNboJpPd68BTMHjJvKNlRaPs n4MyVvYAu125Y+Hmeo19kDvCR0xoovg6aNfIeJdgfsiy20DnwPCwVXvhVwG2dASg qx87dF+FIeClBvEjVVucz4HnpelLMoUW -----END CERTIFICATE-----Generated at Tue Dec 23 14:36:24 2025 by rpki-client