This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft File: Lfmh43Whe46lYCe0WovWb5Z0fYY.mft (raw, json) Hash identifier: wzNCgHlzzn7otI1mTqYh23thSFAvHxq40yc3U4/ldIY= Subject key identifier: 12:EC:D6:80:C3:50:35:29:56:8E:87:19:62:84:28:F7:63:88:01:22 Authority key identifier: 2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86 Certificate issuer: /CN=A9185B6D/serialNumber=2DF9A1E375A17B8EA56027B45A8BD66F96747D86 Certificate serial: 0172 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft Manifest number: 015F Signing time: Tue 23 Dec 2025 03:19:32 +0000 Manifest this update: Tue 23 Dec 2025 03:19:32 +0000 Manifest next update: Tue 30 Dec 2025 03:19:32 +0000 Files and hashes: 1: Lfmh43Whe46lYCe0WovWb5Z0fYY.crl (hash: c+SJUF2iE1wttXNbN4QX9eJumxdlNgtfASdYPgebx5s=) 2: BA6555344DEE11F0B209371DC4F9AE02.roa (hash: CQr2hobxwoFHY9a4Ev/A2yb3z142YhpnnpTJ8f2F528=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:19:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 370 (0x172) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B6D, serialNumber=2DF9A1E375A17B8EA56027B45A8BD66F96747D86 Validity Not Before: Dec 23 03:19:32 2025 GMT Not After : Dec 30 03:19:32 2025 GMT Subject: CN=694a0a44-accf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:bd:b6:d8:4c:7a:a7:6b:2b:a9:99:b5:f5:d4: cb:85:ea:21:95:92:2e:ce:ac:c7:00:fa:eb:a3:e4: f1:18:b8:41:49:f2:28:05:58:ed:c0:1b:f2:37:a6: 6e:4b:86:36:9b:e8:0b:ed:d7:69:a4:4d:d8:df:f9: 0d:fe:c6:14:09:be:bd:56:b4:ae:90:51:d8:38:48: 8e:d9:f2:72:b8:34:c7:46:a7:3b:ea:63:61:30:a0: cb:ab:6b:87:a6:1b:07:af:ec:f2:7a:e8:be:79:95: cf:3a:39:e9:20:2f:07:52:14:4b:0d:c0:42:de:7c: 5c:b9:e3:59:f7:a8:77:c7:90:1a:1e:fe:18:de:8a: da:6c:3d:59:1f:73:65:c4:c1:23:70:cd:80:96:3d: 39:57:72:54:9b:b9:8c:c2:0a:1f:1b:ee:ba:84:98: 73:e8:63:6f:08:6b:d1:fa:bb:68:e7:d0:8c:39:d9: 7d:97:34:e3:a8:be:fc:a4:3d:eb:1c:34:57:f5:5e: bc:d3:b5:29:ec:f3:ba:0a:0a:f4:41:85:1e:c2:6c: ad:a3:9c:9c:6d:d5:f2:df:46:9b:fe:f6:70:3a:e7: a5:ae:f0:94:4e:38:76:94:d8:c0:4a:40:97:4e:fc: 95:39:07:db:97:5d:a0:17:3f:b7:61:7c:ce:61:a1: e1:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:EC:D6:80:C3:50:35:29:56:8E:87:19:62:84:28:F7:63:88:01:22 X509v3 Authority Key Identifier: keyid:2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:4b:6e:58:f9:95:46:8d:e0:1b:68:25:33:f1:09:34:b7:ca: 0a:21:5f:62:da:1d:aa:71:9f:6d:03:4c:ed:84:e8:80:7e:2e: 50:0e:82:09:52:82:65:30:5d:46:e1:2f:73:ce:47:0a:e8:24: f6:3e:bc:3e:25:fc:cd:b0:6d:35:37:9c:77:ed:b7:af:c8:14: 2c:8b:cf:71:e8:c8:09:4e:1c:9c:6f:04:4a:67:3b:a1:1c:d9: b6:d3:ec:b2:bc:f7:45:1d:2e:9e:8e:c7:09:07:ef:cc:1e:6a: cd:0d:8e:90:0f:cf:1c:50:a3:84:5b:21:34:1c:6a:8c:40:5a: 93:b7:5b:6a:63:38:5b:da:83:e6:e1:0f:b8:fb:8f:a9:87:c7: 4c:7e:47:d0:41:d9:e5:4d:62:6a:20:f7:46:d7:61:d8:e8:96: c5:f3:13:9a:6b:c7:5c:d2:1e:5a:8b:96:b1:98:2a:50:6b:24: 4a:5e:56:92:dc:02:96:6b:ce:00:82:f4:9b:9c:1b:11:01:d1: ee:42:2c:ac:8d:45:fd:2a:1b:4a:1e:22:e4:d4:91:df:88:78: fa:19:b2:44:ca:c5:05:09:d7:f8:fe:5d:96:e7:7a:b8:16:ae: dc:ba:5d:df:50:27:96:c0:33:5a:7f:1f:75:b1:48:ba:a3:81: 78:60:c5:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNkQxMTAvBgNVBAUTKDJERjlBMUUzNzVBMTdCOEVBNTYwMjdCNDVBOEJENjZG OTY3NDdEODYwHhcNMjUxMjIzMDMxOTMyWhcNMjUxMjMwMDMxOTMyWjAYMRYwFAYD VQQDDA02OTRhMGE0NC1hY2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzb222Ex6p2srqZm19dTLheohlZIuzqzHAPrro+TxGLhBSfIoBVjtwBvyN6Zu S4Y2m+gL7ddppE3Y3/kN/sYUCb69VrSukFHYOEiO2fJyuDTHRqc76mNhMKDLq2uH phsHr+zyeui+eZXPOjnpIC8HUhRLDcBC3nxcueNZ96h3x5AaHv4Y3orabD1ZH3Nl xMEjcM2Alj05V3JUm7mMwgofG+66hJhz6GNvCGvR+rto59CMOdl9lzTjqL78pD3r HDRX9V6807Up7PO6Cgr0QYUewmyto5ycbdXy30ab/vZwOuelrvCUTjh2lNjASkCX TvyVOQfbl12gFz+3YXzOYaHhpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBLs1oDD UDUpVo6HGWKEKPdjiAEiMB8GA1UdIwQYMBaAFC35oeN1oXuOpWAntFqL1m+WdH2G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI2RC8xODFCODIyMEU3 OEUxMUVFOTgzMUVCN0VDNEY5QUUwMi9MZm1oNDNXaGU0NmxZQ2UwV292V2I1WjBm WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xmbWg0M1doZTQ2bFlDZTBXb3ZXYjVaMGZZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUI2RC8xODFCODIyMEU3OEUxMUVFOTgzMUVCN0VDNEY5QUUwMi9MZm1oNDNXaGU0 NmxZQ2UwV292V2I1WjBmWVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVS25Y+ZVGjeAbaCUz8Qk0t8oKIV9i2h2qcZ9tA0zthOiAfi5QDoIJ UoJlMF1G4S9zzkcK6CT2Prw+JfzNsG01N5x37bevyBQsi89x6MgJThycbwRKZzuh HNm20+yyvPdFHS6ejscJB+/MHmrNDY6QD88cUKOEWyE0HGqMQFqTt1tqYzhb2oPm 4Q+4+4+ph8dMfkfQQdnlTWJqIPdG12HY6JbF8xOaa8dc0h5ai5axmCpQayRKXlaS 3AKWa84AgvSbnBsRAdHuQiysjUX9KhtKHiLk1JHfiHj6GbJEysUFCdf4/l2W53q4 Fq7cul3fUCeWwDNafx91sUi6o4F4YMXl -----END CERTIFICATE-----Generated at Wed Dec 24 22:57:03 2025 by rpki-client