This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft File: lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft (raw, json) Hash identifier: mWEfBuPxPgblZZ0GSWGnoGiqCJskQqnRvVlxU4k3w5M= Subject key identifier: 34:BE:89:1A:09:F0:D1:0F:79:4E:0F:D1:3D:57:4B:F1:74:7E:A8:1D Authority key identifier: 94:43:7E:DD:CC:8D:06:98:9E:09:50:05:43:C9:1B:DF:0D:3F:48:E5 Certificate issuer: /CN=A917DD85/serialNumber=94437EDDCC8D06989E09500543C91BDF0D3F48E5 Certificate serial: 01BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft Manifest number: 01B5 Signing time: Sun 21 Dec 2025 02:25:13 +0000 Manifest this update: Sun 21 Dec 2025 02:25:13 +0000 Manifest next update: Sun 28 Dec 2025 02:25:13 +0000 Files and hashes: 1: lEN-3cyNBpieCVAFQ8kb3w0_SOU.crl (hash: YWqfBiVHGk5bQ84ngUs8u6dWif+Lrs6RpPgAZs73bM0=) 2: 2B1FE092CFEE11F082935D16C4F9AE02.roa (hash: sEgmp2IWSRikNLP+LIqA6zVpui1lVKU13kPuTPci6uI=) 3: 0A90C738CFEE11F09D36C783C4F9AE02.roa (hash: ZblMFf9O0YNvkXXCXIU9yPZ+T5g15Kc4bEkyX6PFx5M=) 4: A155911C4BCA11EEBC8C8B82C4F9AE02.roa (hash: LiaqpSK92cBpFsHl2uGwMK05eZl8TgnXPG5GLO/r81A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.crl rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 02:25:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 447 (0x1bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DD85, serialNumber=94437EDDCC8D06989E09500543C91BDF0D3F48E5 Validity Not Before: Dec 21 02:25:13 2025 GMT Not After : Dec 28 02:25:13 2025 GMT Subject: CN=69475a89-7c0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:43:a1:4a:67:6e:79:51:87:2e:f3:40:83:f8: 2f:95:39:1c:be:33:28:dd:3e:b8:23:4c:0d:49:61: 9c:df:25:ff:df:76:0e:95:9d:c1:72:2d:4f:f9:44: 90:37:ea:0e:98:5a:61:b0:0c:48:07:5d:2f:56:7b: 25:b2:e3:4e:56:f5:41:1c:e4:a9:e2:ef:4d:25:6c: 5e:1c:56:54:f1:82:dd:3b:f9:05:ac:4b:ee:36:b6: a9:4e:07:58:68:77:15:f2:9f:55:16:ee:f7:61:3a: f7:06:9e:7f:37:06:55:fb:64:86:6c:4d:a4:5c:df: bd:d3:18:3c:a9:0d:d0:d9:09:9e:2d:ad:be:19:6d: 96:f0:b7:98:37:f9:82:72:e1:11:72:49:d5:48:46: 58:96:b3:b7:ce:a1:74:a3:e5:0b:17:1a:4c:8e:9e: e1:8d:5e:19:e4:09:8c:2a:45:ac:bd:6d:21:27:4c: 70:5b:b2:57:08:8e:1e:04:00:2a:b6:a9:16:37:38: 85:16:c0:51:16:d2:c1:ff:74:0f:37:d8:4b:1f:3e: e6:d4:98:7f:e0:a2:52:4c:16:e6:2b:9e:00:a9:ba: 57:62:7a:92:ed:a8:de:46:a1:0b:bf:2b:6e:2e:f8: 06:3b:8d:db:b0:c7:9a:56:fe:b5:18:95:96:c5:c1: ba:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:BE:89:1A:09:F0:D1:0F:79:4E:0F:D1:3D:57:4B:F1:74:7E:A8:1D X509v3 Authority Key Identifier: keyid:94:43:7E:DD:CC:8D:06:98:9E:09:50:05:43:C9:1B:DF:0D:3F:48:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:14:5b:0e:1f:87:f8:17:48:af:e4:64:dc:92:f4:05:7d:e4: 64:54:e7:02:3c:5e:44:17:f9:a9:12:ba:18:2c:5f:f2:31:5e: c3:f4:ef:37:4b:8f:9f:90:a8:84:0b:31:d0:16:e9:cd:a0:3a: 3b:29:9b:66:91:f3:7f:bc:62:c4:b4:ed:2b:d8:7e:a5:b8:6f: e9:e0:4c:d8:6d:13:bb:20:1c:63:25:90:8a:27:eb:c8:bf:d5: 77:47:01:82:b9:87:9c:11:40:70:8d:b4:e1:29:65:ce:4d:49: f8:85:a5:e0:85:27:ab:99:2b:5f:f4:de:5d:4c:02:c8:60:bd: 14:ae:4c:70:20:17:2a:36:aa:34:b4:01:c6:28:19:ce:c6:3a: ba:3c:85:89:5a:ea:e8:51:eb:fe:0a:96:0d:ca:6f:28:aa:16: 85:f3:46:0a:40:92:0d:ba:9a:4b:7b:2d:ef:34:65:78:63:04: f5:e6:09:ff:93:89:af:2b:c1:62:82:e7:ba:e0:02:2b:8e:51: 98:9d:c7:4a:42:40:09:47:7e:39:3d:58:40:e2:19:a1:d9:8a: f6:86:07:26:61:ac:90:91:62:b9:d3:de:7f:53:11:3f:06:3a: 49:e0:1d:21:09:6c:62:50:ad:a1:a0:d6:7d:5b:2a:0e:8f:78: 62:db:6b:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0REODUxMTAvBgNVBAUTKDk0NDM3RUREQ0M4RDA2OTg5RTA5NTAwNTQzQzkxQkRG MEQzRjQ4RTUwHhcNMjUxMjIxMDIyNTEzWhcNMjUxMjI4MDIyNTEzWjAYMRYwFAYD VQQDDA02OTQ3NWE4OS03YzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlEOhSmdueVGHLvNAg/gvlTkcvjMo3T64I0wNSWGc3yX/33YOlZ3Bci1P+USQ N+oOmFphsAxIB10vVnslsuNOVvVBHOSp4u9NJWxeHFZU8YLdO/kFrEvuNrapTgdY aHcV8p9VFu73YTr3Bp5/NwZV+2SGbE2kXN+90xg8qQ3Q2QmeLa2+GW2W8LeYN/mC cuERcknVSEZYlrO3zqF0o+ULFxpMjp7hjV4Z5AmMKkWsvW0hJ0xwW7JXCI4eBAAq tqkWNziFFsBRFtLB/3QPN9hLHz7m1Jh/4KJSTBbmK54AqbpXYnqS7ajeRqELvytu LvgGO43bsMeaVv61GJWWxcG6tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDS+iRoJ 8NEPeU4P0T1XS/F0fqgdMB8GA1UdIwQYMBaAFJRDft3MjQaYnglQBUPJG98NP0jl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REQ4NS84NDZGNEE2ODRC QzMxMUVFOEM2NTczMTlDNEY5QUUwMi9sRU4tM2N5TkJwaWVDVkFGUThrYjN3MF9T T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xFTi0zY3lOQnBpZUNWQUZROGtiM3cwX1NPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REQ4NS84NDZGNEE2ODRCQzMxMUVFOEM2NTczMTlDNEY5QUUwMi9sRU4tM2N5TkJw aWVDVkFGUThrYjN3MF9TT1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHFFsOH4f4F0iv5GTckvQFfeRkVOcCPF5EF/mpEroYLF/yMV7D9O83 S4+fkKiECzHQFunNoDo7KZtmkfN/vGLEtO0r2H6luG/p4EzYbRO7IBxjJZCKJ+vI v9V3RwGCuYecEUBwjbThKWXOTUn4haXghSermStf9N5dTALIYL0UrkxwIBcqNqo0 tAHGKBnOxjq6PIWJWuroUev+CpYNym8oqhaF80YKQJINuppLey3vNGV4YwT15gn/ k4mvK8Figue64AIrjlGYncdKQkAJR345PVhA4hmh2Yr2hgcmYayQkWK5095/UxE/ BjpJ4B0hCWxiUK2hoNZ9WyoOj3hi22vc -----END CERTIFICATE-----Generated at Sun Dec 21 20:36:20 2025 by rpki-client