This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft File: lCJM-heqoN5UOrYQifwdOdGZDj4.mft (raw, json) Hash identifier: sfiYLIXCKkEYJBRByz2mwpXfyZtjVopgyWOArbMi4fk= Subject key identifier: 4E:1D:85:5E:69:76:4F:23:59:A0:2D:78:0A:45:B8:62:E2:42:C4:7B Authority key identifier: 94:22:4C:FA:17:AA:A0:DE:54:3A:B6:10:89:FC:1D:39:D1:99:0E:3E Certificate issuer: /CN=A918B936/serialNumber=94224CFA17AAA0DE543AB61089FC1D39D1990E3E Certificate serial: 2171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft Manifest number: 2171 Signing time: Wed 24 Dec 2025 15:45:52 +0000 Manifest this update: Wed 24 Dec 2025 15:45:52 +0000 Manifest next update: Wed 31 Dec 2025 15:45:52 +0000 Files and hashes: 1: lCJM-heqoN5UOrYQifwdOdGZDj4.crl (hash: rWlN6+P2UoDLXhyAaWyoBWfvXnLhCYEZHd+H9Id6dtA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.crl rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 15:45:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8561 (0x2171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B936, serialNumber=94224CFA17AAA0DE543AB61089FC1D39D1990E3E Validity Not Before: Dec 24 15:45:52 2025 GMT Not After : Dec 31 15:45:52 2025 GMT Subject: CN=694c0ab0-cc86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:98:33:ba:82:d1:c9:49:e8:5a:3a:14:cb:25: 0d:d0:83:1c:e6:a8:d1:2f:1d:fc:0a:10:46:b9:71: 9c:44:64:94:1c:13:b6:89:44:71:c2:df:b7:b3:0c: 4d:ee:64:46:29:51:a9:b8:3a:27:e2:ce:28:10:11: 41:fd:2f:4c:67:18:c7:bb:9d:26:75:ec:a0:93:66: 5a:87:bf:0b:eb:ec:29:03:8e:de:03:b8:18:c0:5d: b3:fa:2c:12:2b:c3:9c:68:11:dd:e9:f7:3c:92:5b: ec:4e:de:5d:3f:bc:c3:38:fd:55:cd:c2:53:28:49: 17:c4:b3:f2:d8:f2:84:e5:23:27:ab:a3:7a:fd:bf: 96:57:5b:0c:28:a3:0a:ff:91:ff:d5:28:cf:9f:2f: b5:80:ec:f4:68:da:0a:ba:5f:60:2e:10:d5:24:f3: cb:69:f9:63:dc:96:15:ef:a5:05:2c:44:4c:a4:d7: 37:e4:8e:03:83:3c:71:e9:92:b4:6b:96:4b:c6:29: bc:86:e8:8a:80:1d:eb:e2:31:cf:24:8c:a6:f3:a7: 11:b5:91:6c:8a:48:06:00:1e:87:88:6a:51:43:44: 49:48:2f:8e:a1:7b:aa:15:9a:2a:bd:ec:dc:b7:a3: c7:b1:4e:53:e0:00:05:a7:4e:e0:ed:7a:2b:d8:50: 55:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:1D:85:5E:69:76:4F:23:59:A0:2D:78:0A:45:B8:62:E2:42:C4:7B X509v3 Authority Key Identifier: keyid:94:22:4C:FA:17:AA:A0:DE:54:3A:B6:10:89:FC:1D:39:D1:99:0E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:e5:c4:3c:cf:2f:cc:2e:3d:ef:2b:9b:f0:e2:c7:03:75:f1: d9:1a:c8:3e:3b:6d:2d:ca:a3:71:03:cd:74:ab:ec:f5:2c:5f: 9a:98:22:7a:2b:3a:7a:57:ce:25:6a:75:53:90:87:af:80:8c: d3:ec:8f:de:2a:a3:cb:2f:c5:c0:92:77:dc:c4:3c:79:44:ad: 1b:cb:66:54:df:d1:f4:25:8f:15:85:22:c5:5f:d4:b1:80:50: a5:22:b7:c9:3a:65:2a:ee:cf:84:39:23:b2:71:09:13:57:b6: 78:c4:af:51:8c:d0:b6:de:e9:7f:e6:d5:29:4b:00:02:f2:05: 61:3e:79:c7:b3:a5:e3:5c:66:b6:c0:25:3a:17:c1:f3:bd:37: eb:f9:75:7a:e6:d2:ab:a9:d4:18:a8:c7:f3:f4:c7:2e:3e:d8: 68:08:98:86:3a:b9:c0:c0:18:5b:a0:80:f4:78:14:09:7b:a7: 94:91:2b:0a:5e:66:d3:8a:be:71:76:22:17:e5:01:d0:98:69: f7:5b:6d:95:07:71:f9:8c:b5:03:d5:6d:97:11:60:41:21:df: d3:94:a2:f0:41:8f:42:42:83:f9:8b:4b:dd:9b:09:be:26:6b: 53:ab:92:a9:d7:3a:e8:aa:06:7c:59:5c:20:c5:aa:a2:a5:0b: c2:e4:5c:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI5MzYxMTAvBgNVBAUTKDk0MjI0Q0ZBMTdBQUEwREU1NDNBQjYxMDg5RkMxRDM5 RDE5OTBFM0UwHhcNMjUxMjI0MTU0NTUyWhcNMjUxMjMxMTU0NTUyWjAYMRYwFAYD VQQDDA02OTRjMGFiMC1jYzg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvpgzuoLRyUnoWjoUyyUN0IMc5qjRLx38ChBGuXGcRGSUHBO2iURxwt+3swxN 7mRGKVGpuDon4s4oEBFB/S9MZxjHu50mdeygk2Zah78L6+wpA47eA7gYwF2z+iwS K8OcaBHd6fc8klvsTt5dP7zDOP1VzcJTKEkXxLPy2PKE5SMnq6N6/b+WV1sMKKMK /5H/1SjPny+1gOz0aNoKul9gLhDVJPPLaflj3JYV76UFLERMpNc35I4Dgzxx6ZK0 a5ZLxim8huiKgB3r4jHPJIym86cRtZFsikgGAB6HiGpRQ0RJSC+OoXuqFZoqvezc t6PHsU5T4AAFp07g7Xor2FBVtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE4dhV5p dk8jWaAteApFuGLiQsR7MB8GA1UdIwQYMBaAFJQiTPoXqqDeVDq2EIn8HTnRmQ4+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjkzNi80RUQyMkZEMkYw Q0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9sQ0pNLWhlcW9ONVVPcllRaWZ3ZE9kR1pE ajQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDSk0taGVxb041VU9yWVFpZndkT2RHWkRqNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjkzNi80RUQyMkZEMkYwQ0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9sQ0pNLWhlcW9O NVVPcllRaWZ3ZE9kR1pEajQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAT5cQ8zy/MLj3vK5vw4scDdfHZGsg+O20tyqNxA810q+z1LF+amCJ6 Kzp6V84lanVTkIevgIzT7I/eKqPLL8XAknfcxDx5RK0by2ZU39H0JY8VhSLFX9Sx gFClIrfJOmUq7s+EOSOycQkTV7Z4xK9RjNC23ul/5tUpSwAC8gVhPnnHs6XjXGa2 wCU6F8HzvTfr+XV65tKrqdQYqMfz9McuPthoCJiGOrnAwBhboID0eBQJe6eUkSsK XmbTir5xdiIX5QHQmGn3W22VB3H5jLUD1W2XEWBBId/TlKLwQY9CQoP5i0vdmwm+ JmtTq5Kp1zroqgZ8WVwgxaqipQvC5FwE -----END CERTIFICATE-----Generated at Wed Dec 24 21:21:23 2025 by rpki-client