This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft File: lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft (raw, json) Hash identifier: 6i9A+z9epkO1PZdHaHKFwRqoR9VNdGa7TGCjgLzzs8w= Subject key identifier: 6C:69:B8:BB:2C:03:9F:AF:4E:1F:AB:54:37:8B:1C:37:6C:90:63:F6 Authority key identifier: 94:2D:54:1D:FE:79:82:F6:E0:1E:6B:CC:97:6D:C0:CB:84:14:E8:38 Certificate issuer: /CN=A917D7F2/serialNumber=942D541DFE7982F6E01E6BCC976DC0CB8414E838 Certificate serial: 3500 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft Manifest number: 34FA Signing time: Thu 18 Dec 2025 14:35:34 +0000 Manifest this update: Thu 18 Dec 2025 14:35:34 +0000 Manifest next update: Thu 25 Dec 2025 14:35:34 +0000 Files and hashes: 1: lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl (hash: msf2ttC/PKRdEPnxZWghUg9KpyhXBeyyJoJ48QQVtoQ=) 2: 35FC192C272C11ED9E64C718C4F9AE02.roa (hash: u7xmf7mlcB9GCB0bcolcUcNfJD4EHboUgH+LjzJipP0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 14:35:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13568 (0x3500) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D7F2, serialNumber=942D541DFE7982F6E01E6BCC976DC0CB8414E838 Validity Not Before: Dec 18 14:35:34 2025 GMT Not After : Dec 25 14:35:34 2025 GMT Subject: CN=69441136-f200 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8f:30:ae:32:73:25:eb:8d:74:1b:21:03:7d: 1a:be:e6:56:e7:d7:fb:0e:3b:2d:66:5f:1a:f9:02: a4:17:19:86:0c:b9:01:e9:c6:15:cb:72:82:19:02: c4:6c:d9:a3:ea:d1:b7:32:ef:55:93:61:5b:19:45: 45:ef:93:11:c2:68:35:aa:f3:9f:d8:f7:b1:8e:3b: 20:62:51:04:06:d5:e7:3c:3f:20:57:47:e0:dc:08: b1:1a:78:a6:0c:b8:9e:c6:70:99:c7:53:5e:01:7c: 45:f5:47:e0:28:26:92:de:3a:56:77:fd:a4:e7:0a: 17:a1:ed:12:33:d7:53:62:88:a1:f7:90:ad:f6:ba: 73:89:53:c5:1c:28:b4:1c:12:fa:50:51:16:a0:57: 29:d1:e4:ce:71:06:a2:a7:f5:9e:74:14:71:42:1a: 4e:4f:4a:af:68:82:d0:1d:f4:26:db:c6:c7:da:59: 31:69:fc:57:fc:82:ec:63:9d:74:a5:4e:33:d5:26: e4:51:e2:ca:6a:af:c8:26:2d:8a:0f:cd:63:75:97: ef:7f:21:4b:11:3c:4a:bc:bf:09:4d:1a:8b:75:02: 5a:9f:25:12:58:57:0c:1d:3e:5e:6b:ce:14:89:2c: d9:34:05:b8:64:ff:db:66:42:8f:ab:9b:6c:54:de: 2d:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:69:B8:BB:2C:03:9F:AF:4E:1F:AB:54:37:8B:1C:37:6C:90:63:F6 X509v3 Authority Key Identifier: keyid:94:2D:54:1D:FE:79:82:F6:E0:1E:6B:CC:97:6D:C0:CB:84:14:E8:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:48:5d:1b:ca:2b:ac:d1:ea:16:c1:39:3e:61:f0:00:89:fb: c0:f0:c3:8b:3f:01:63:72:86:21:ed:10:3b:29:88:a6:e4:b1: 71:8a:05:0a:2a:c6:6b:55:44:f7:6f:7f:68:db:ff:19:ac:9c: 63:c0:60:fc:87:e5:ed:5e:7a:38:23:60:e8:82:31:1f:85:ef: 05:d3:f5:b7:fe:61:f3:17:66:8f:0b:68:1d:ec:00:36:17:1a: bf:d7:aa:13:75:f3:df:c3:70:46:32:fd:73:1a:ac:1a:7b:ee: 33:2a:1e:a9:1e:b0:50:3a:73:d8:59:9e:4d:ab:43:fb:94:39: e2:93:65:10:56:34:59:a8:8a:f6:61:ae:6a:e3:8a:d0:10:91: 43:59:c2:cd:90:17:fd:25:90:d3:9c:06:e2:63:6c:0d:7f:96: e2:ca:6d:50:a0:b2:46:d1:42:82:ca:c3:1b:b3:8e:e2:a6:95: eb:5b:34:cc:23:7e:d5:02:e4:26:8c:3b:cd:4c:44:18:2a:32: cc:a6:96:31:2c:b0:0d:16:6e:9a:08:78:dc:0f:66:fb:6a:39: a0:aa:74:7d:9d:76:e0:d6:1b:31:ed:a3:ea:78:f9:2e:86:ff: 1a:24:b5:f1:c6:79:bb:6c:21:52:98:e7:50:b3:88:79:9d:fa: 22:25:21:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q3RjIxMTAvBgNVBAUTKDk0MkQ1NDFERkU3OTgyRjZFMDFFNkJDQzk3NkRDMENC ODQxNEU4MzgwHhcNMjUxMjE4MTQzNTM0WhcNMjUxMjI1MTQzNTM0WjAYMRYwFAYD VQQDDA02OTQ0MTEzNi1mMjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwY8wrjJzJeuNdBshA30avuZW59f7DjstZl8a+QKkFxmGDLkB6cYVy3KCGQLE bNmj6tG3Mu9Vk2FbGUVF75MRwmg1qvOf2PexjjsgYlEEBtXnPD8gV0fg3AixGnim DLiexnCZx1NeAXxF9UfgKCaS3jpWd/2k5woXoe0SM9dTYoih95Ct9rpziVPFHCi0 HBL6UFEWoFcp0eTOcQaip/WedBRxQhpOT0qvaILQHfQm28bH2lkxafxX/ILsY510 pU4z1SbkUeLKaq/IJi2KD81jdZfvfyFLETxKvL8JTRqLdQJanyUSWFcMHT5ea84U iSzZNAW4ZP/bZkKPq5tsVN4t5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGxpuLss A5+vTh+rVDeLHDdskGP2MB8GA1UdIwQYMBaAFJQtVB3+eYL24B5rzJdtwMuEFOg4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDdGMi9GMDI4OTAzQzFE OEMxMUUyQjE5RDVGRUEwOEIwMkNEMi9sQzFVSGY1NWd2YmdIbXZNbDIzQXk0UVU2 RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDMVVIZjU1Z3ZiZ0htdk1sMjNBeTRRVTZEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDdGMi9GMDI4OTAzQzFEOEMxMUUyQjE5RDVGRUEwOEIwMkNEMi9sQzFVSGY1NWd2 YmdIbXZNbDIzQXk0UVU2RGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnSF0byius0eoWwTk+YfAAifvA8MOLPwFjcoYh7RA7KYim5LFxigUK KsZrVUT3b39o2/8ZrJxjwGD8h+XtXno4I2DogjEfhe8F0/W3/mHzF2aPC2gd7AA2 Fxq/16oTdfPfw3BGMv1zGqwae+4zKh6pHrBQOnPYWZ5Nq0P7lDnik2UQVjRZqIr2 Ya5q44rQEJFDWcLNkBf9JZDTnAbiY2wNf5biym1QoLJG0UKCysMbs47ippXrWzTM I37VAuQmjDvNTEQYKjLMppYxLLANFm6aCHjcD2b7ajmgqnR9nXbg1hsx7aPqePku hv8aJLXxxnm7bCFSmOdQs4h5nfoiJSGC -----END CERTIFICATE-----Generated at Fri Dec 19 23:57:55 2025 by rpki-client