This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft File: lufMd6OOPhgL91JrodlTIYBONeY.mft (raw, json) Hash identifier: rg7Izeld1YVyJsA2EyGAd5cHDFfYYqB0vOlglPYFkIQ= Subject key identifier: A2:63:B8:40:4A:16:76:B0:10:FB:0D:70:E4:AE:D7:9D:E6:BA:8D:31 Authority key identifier: 96:E7:CC:77:A3:8E:3E:18:0B:F7:52:6B:A1:D9:53:21:80:4E:35:E6 Certificate issuer: /CN=A916C4FA/serialNumber=96E7CC77A38E3E180BF7526BA1D95321804E35E6 Certificate serial: 0212 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft Manifest number: 05BC Signing time: Tue 02 Dec 2025 23:25:41 +0000 Manifest this update: Tue 02 Dec 2025 23:25:41 +0000 Manifest next update: Tue 09 Dec 2025 23:25:41 +0000 Files and hashes: 1: lufMd6OOPhgL91JrodlTIYBONeY.crl (hash: iA2pWeolZyVOTnjVbyxP2To/dQwtrmSD/gEIvnKqa6o=) 2: C310EE5AACD311ED84BAA06EC4F9AE02.roa (hash: puxNQ3IQMgK+455LW/i47TSp2iaIUiKVoUSQH0z/5bw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.crl rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 23:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 530 (0x212) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C4FA, serialNumber=96E7CC77A38E3E180BF7526BA1D95321804E35E6 Validity Not Before: Dec 2 23:25:41 2025 GMT Not After : Dec 9 23:25:41 2025 GMT Subject: CN=692f7575-8fec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:36:a5:93:f4:ce:e0:f0:22:a4:29:aa:14:a1: 97:39:ab:41:e4:02:1b:77:1f:20:9a:c8:9b:f3:fd: 35:ee:24:2b:f8:1e:d1:ed:13:0d:84:8a:19:48:a1: 6e:1c:68:2e:68:ea:55:54:b0:e0:21:aa:43:af:f2: 41:22:5b:f6:50:3b:c7:a5:e4:ed:2e:12:01:d2:fc: 1f:de:86:36:4d:5f:e0:36:2e:00:8a:4b:d9:20:a6: 8c:bd:1e:54:7d:31:db:91:c3:1f:69:e6:c1:97:3f: 31:77:b1:43:5f:5a:b0:18:b1:eb:8f:cd:12:2d:90: 41:a5:b0:b4:33:fe:c7:d6:02:38:0a:d2:57:e6:cc: 25:c0:67:0e:13:9f:2f:cc:fa:cc:92:5f:44:b3:64: e3:8b:e2:fd:10:38:a9:34:f5:12:8d:de:bf:e5:2a: 04:0e:f1:ae:a1:f1:43:b3:32:d5:8e:14:f4:dc:c1: 4f:e1:df:27:a2:cb:cc:11:d6:21:e8:59:5d:71:62: b6:34:85:a3:9b:8c:1f:48:18:4b:c6:f3:c5:d1:4e: 41:52:08:0f:4a:b0:c7:23:99:6f:39:ab:64:1b:58: 4b:aa:18:c8:ae:52:5f:5a:12:e5:c9:c7:b4:bc:63: e5:fc:51:4c:68:3e:ac:e0:25:4c:48:2c:41:4f:a9: 7f:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:63:B8:40:4A:16:76:B0:10:FB:0D:70:E4:AE:D7:9D:E6:BA:8D:31 X509v3 Authority Key Identifier: keyid:96:E7:CC:77:A3:8E:3E:18:0B:F7:52:6B:A1:D9:53:21:80:4E:35:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:5a:83:fa:80:6e:80:1f:bf:65:53:8e:8d:9e:e6:0b:da:05: f3:a2:7a:71:3c:47:16:1b:89:c2:82:83:d3:c8:d1:40:00:01: fe:d1:55:5b:57:65:b5:e3:41:03:35:bb:09:c5:6b:4d:9f:73: 92:3e:75:e6:61:a8:c8:c6:07:6b:7f:7c:ae:91:76:74:8c:f7: 3d:6f:64:68:c4:2c:2d:80:e4:62:96:df:62:89:26:72:63:40: 6f:94:27:7c:7f:5d:61:fc:fc:28:7b:2e:4d:4b:76:c4:32:b2: e8:98:a7:a8:16:c6:c4:92:68:9a:12:a7:a7:4d:ba:41:ba:dd: 90:8e:1f:86:dd:c6:a7:bf:b6:09:3f:e5:ec:22:05:ea:b7:63: 78:68:d7:6d:c0:2f:6e:a1:47:15:1e:e8:9d:95:b0:23:e0:59: f2:99:79:5a:67:46:00:67:0c:13:13:a4:32:8e:38:bb:9c:41: b8:0e:9f:a1:b6:70:f2:b8:c0:6c:ff:3c:b4:0d:0b:9a:6e:52: 90:73:df:8a:de:12:72:e6:a5:ca:cb:f4:a4:53:f4:5c:6d:18: 33:8c:3b:d3:4f:71:28:d8:8b:d7:36:45:2c:2f:1f:f2:9f:f9: 32:c1:46:38:11:dc:a1:56:e7:f0:8b:f7:be:d4:f3:2c:d4:98: 73:45:8c:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM0RkExMTAvBgNVBAUTKDk2RTdDQzc3QTM4RTNFMTgwQkY3NTI2QkExRDk1MzIx ODA0RTM1RTYwHhcNMjUxMjAyMjMyNTQxWhcNMjUxMjA5MjMyNTQxWjAYMRYwFAYD VQQDEw02OTJmNzU3NS04ZmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Dalk/TO4PAipCmqFKGXOatB5AIbdx8gmsib8/017iQr+B7R7RMNhIoZSKFu HGguaOpVVLDgIapDr/JBIlv2UDvHpeTtLhIB0vwf3oY2TV/gNi4AikvZIKaMvR5U fTHbkcMfaebBlz8xd7FDX1qwGLHrj80SLZBBpbC0M/7H1gI4CtJX5swlwGcOE58v zPrMkl9Es2Tji+L9EDipNPUSjd6/5SoEDvGuofFDszLVjhT03MFP4d8nosvMEdYh 6FldcWK2NIWjm4wfSBhLxvPF0U5BUggPSrDHI5lvOatkG1hLqhjIrlJfWhLlyce0 vGPl/FFMaD6s4CVMSCxBT6l/RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKJjuEBK FnawEPsNcOSu153muo0xMB8GA1UdIwQYMBaAFJbnzHejjj4YC/dSa6HZUyGATjXm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzRGQS9CODlCQ0JGNEJB NkExMUVDODJBQzA3ODdDNEY5QUUwMi9sdWZNZDZPT1BoZ0w5MUpyb2RsVElZQk9O ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x1Zk1kNk9PUGhnTDkxSnJvZGxUSVlCT05lWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzRGQS9CODlCQ0JGNEJBNkExMUVDODJBQzA3ODdDNEY5QUUwMi9sdWZNZDZPT1Bo Z0w5MUpyb2RsVElZQk9OZVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoWoP6gG6AH79lU46NnuYL2gXzonpxPEcWG4nCgoPTyNFAAAH+0VVb V2W140EDNbsJxWtNn3OSPnXmYajIxgdrf3yukXZ0jPc9b2RoxCwtgORilt9iiSZy Y0BvlCd8f11h/Pwoey5NS3bEMrLomKeoFsbEkmiaEqenTbpBut2Qjh+G3canv7YJ P+XsIgXqt2N4aNdtwC9uoUcVHuidlbAj4FnymXlaZ0YAZwwTE6Qyjji7nEG4Dp+h tnDyuMBs/zy0DQuablKQc9+K3hJy5qXKy/SkU/RcbRgzjDvTT3Eo2IvXNkUsLx/y n/kywUY4EdyhVufwi/e+1PMs1JhzRYxP -----END CERTIFICATE-----Generated at Wed Dec 3 13:18:31 2025 by rpki-client