This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft File: lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft (raw, json) Hash identifier: uVVUkx0Eitwrh6cBL0+hyDBXBWJWsxoZZ9Zi/YHLjTI= Subject key identifier: D3:A7:D7:5F:4E:C6:9F:44:BA:58:09:D3:12:9B:0A:B3:4F:CD:C3:F1 Authority key identifier: 94:2D:54:1D:FE:79:82:F6:E0:1E:6B:CC:97:6D:C0:CB:84:14:E8:38 Certificate issuer: /CN=A917D7F2/serialNumber=942D541DFE7982F6E01E6BCC976DC0CB8414E838 Certificate serial: 3501 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft Manifest number: 34FB Signing time: Sat 20 Dec 2025 14:35:28 +0000 Manifest this update: Sat 20 Dec 2025 14:35:27 +0000 Manifest next update: Sat 27 Dec 2025 14:35:27 +0000 Files and hashes: 1: lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl (hash: uWg6VSH+oreHaZxK8pbjI2yAFwSZdG7faJtUG82bOS0=) 2: 35FC192C272C11ED9E64C718C4F9AE02.roa (hash: u7xmf7mlcB9GCB0bcolcUcNfJD4EHboUgH+LjzJipP0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:35:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13569 (0x3501) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D7F2, serialNumber=942D541DFE7982F6E01E6BCC976DC0CB8414E838 Validity Not Before: Dec 20 14:35:27 2025 GMT Not After : Dec 27 14:35:27 2025 GMT Subject: CN=6946b42f-6fdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:b1:ff:34:8d:1e:aa:2b:a7:a9:be:eb:a7:fd: 3a:7e:7d:b1:e6:bb:9f:b0:21:92:85:a8:a8:b0:d2: 45:82:1b:87:0a:46:25:fa:12:2d:d5:fd:32:91:f0: c5:ed:4e:26:88:e2:55:2f:72:f5:95:3a:6a:7a:f3: 69:ef:f4:e3:8c:72:6c:72:34:3a:c8:ee:43:cf:a4: 92:a0:63:7d:5a:86:c1:85:91:8b:34:f7:af:27:74: 07:c9:0d:c2:07:39:21:a4:8d:ce:8a:22:4f:b2:6a: 07:c5:9c:c5:5a:84:a9:8f:a6:9d:b5:2d:9c:ef:b4: 9e:21:4b:c6:fd:9e:ed:ee:9e:35:98:28:c4:96:aa: 39:98:4e:99:e2:e8:2e:85:58:58:c5:67:f1:f5:78: 25:02:f7:73:f5:cc:1f:19:34:28:2e:4f:78:b2:0d: eb:89:43:41:d6:bc:2f:46:54:f5:bc:fd:e2:63:fe: 25:7c:f5:b4:9d:90:14:06:81:5e:e3:7c:7d:69:1e: ea:4f:1a:ce:df:53:c9:cf:15:83:3b:c9:d7:80:68: 04:01:81:d3:77:8c:55:b3:5d:59:68:85:4b:47:ca: 05:a8:52:08:3e:13:ac:91:48:aa:d1:e4:6b:01:b9: e0:2b:d8:d3:c6:5a:73:24:0a:82:42:68:4c:2c:48: af:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:A7:D7:5F:4E:C6:9F:44:BA:58:09:D3:12:9B:0A:B3:4F:CD:C3:F1 X509v3 Authority Key Identifier: keyid:94:2D:54:1D:FE:79:82:F6:E0:1E:6B:CC:97:6D:C0:CB:84:14:E8:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:c4:57:29:ab:bd:42:0a:05:a2:7c:5a:fd:e1:8c:bf:ee:7b: bf:94:f9:23:ec:cd:69:15:62:2f:d0:ac:e5:a1:82:5f:f3:4e: 72:b0:7b:ea:a2:c6:8c:51:7a:13:16:45:93:17:51:ce:91:54: f0:ce:f6:ed:5f:bb:4f:6f:4b:d4:9f:89:ca:91:34:c4:42:40: 8e:65:4b:39:ce:ca:58:7c:3a:f1:d7:85:bd:d0:b3:6d:68:d3: b4:63:53:7f:f9:01:41:69:c7:23:44:e2:af:6b:f6:8a:07:90: b0:86:cc:89:87:94:62:d7:f1:a4:b7:1e:77:48:bf:e8:9b:98: e8:28:5b:83:84:86:04:33:e9:39:99:29:f4:63:04:2a:f6:96: 0b:3f:0a:78:d2:b1:1c:d6:5a:55:79:51:5d:63:70:a7:25:46: 1a:46:cc:a5:04:2f:5b:26:d2:ae:5c:64:bc:80:a8:50:f4:1d: df:9d:31:bb:c4:3c:33:5f:7d:a9:ca:57:fb:8c:da:ef:aa:e8: a5:c5:dc:e0:cb:43:bc:f0:29:14:e9:90:fd:0f:b1:0d:b2:1d: 5a:a9:f3:c0:63:0b:76:69:53:1f:97:22:4d:bd:e1:86:a1:89: a8:7a:91:26:1e:31:58:1c:78:6b:93:d3:1a:25:a7:42:18:92: 96:9d:2a:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q3RjIxMTAvBgNVBAUTKDk0MkQ1NDFERkU3OTgyRjZFMDFFNkJDQzk3NkRDMENC ODQxNEU4MzgwHhcNMjUxMjIwMTQzNTI3WhcNMjUxMjI3MTQzNTI3WjAYMRYwFAYD VQQDDA02OTQ2YjQyZi02ZmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl7H/NI0eqiunqb7rp/06fn2x5rufsCGShaiosNJFghuHCkYl+hIt1f0ykfDF 7U4miOJVL3L1lTpqevNp7/TjjHJscjQ6yO5Dz6SSoGN9WobBhZGLNPevJ3QHyQ3C BzkhpI3OiiJPsmoHxZzFWoSpj6adtS2c77SeIUvG/Z7t7p41mCjElqo5mE6Z4ugu hVhYxWfx9XglAvdz9cwfGTQoLk94sg3riUNB1rwvRlT1vP3iY/4lfPW0nZAUBoFe 43x9aR7qTxrO31PJzxWDO8nXgGgEAYHTd4xVs11ZaIVLR8oFqFIIPhOskUiq0eRr AbngK9jTxlpzJAqCQmhMLEivnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNOn119O xp9EulgJ0xKbCrNPzcPxMB8GA1UdIwQYMBaAFJQtVB3+eYL24B5rzJdtwMuEFOg4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDdGMi9GMDI4OTAzQzFE OEMxMUUyQjE5RDVGRUEwOEIwMkNEMi9sQzFVSGY1NWd2YmdIbXZNbDIzQXk0UVU2 RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDMVVIZjU1Z3ZiZ0htdk1sMjNBeTRRVTZEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDdGMi9GMDI4OTAzQzFEOEMxMUUyQjE5RDVGRUEwOEIwMkNEMi9sQzFVSGY1NWd2 YmdIbXZNbDIzQXk0UVU2RGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuxFcpq71CCgWifFr94Yy/7nu/lPkj7M1pFWIv0KzloYJf805ysHvq osaMUXoTFkWTF1HOkVTwzvbtX7tPb0vUn4nKkTTEQkCOZUs5zspYfDrx14W90LNt aNO0Y1N/+QFBaccjROKva/aKB5CwhsyJh5Ri1/Gktx53SL/om5joKFuDhIYEM+k5 mSn0YwQq9pYLPwp40rEc1lpVeVFdY3CnJUYaRsylBC9bJtKuXGS8gKhQ9B3fnTG7 xDwzX32pylf7jNrvquilxdzgy0O88CkU6ZD9D7ENsh1aqfPAYwt2aVMflyJNveGG oYmoepEmHjFYHHhrk9MaJadCGJKWnSrp -----END CERTIFICATE-----Generated at Sun Dec 21 21:16:55 2025 by rpki-client