This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.mft File: lMPujMByTro8sQMk-e24G6yFAyA.mft (raw, json) Hash identifier: sY+onDnULYMNG+8UXgyYelIXL8nZNhGWmKIfAdRb2ns= Subject key identifier: D8:64:53:88:6B:1F:28:06:10:77:BF:BE:5B:7F:E9:F0:8F:BE:99:D3 Authority key identifier: 94:C3:EE:8C:C0:72:4E:BA:3C:B1:03:24:F9:ED:B8:1B:AC:85:03:20 Certificate issuer: /CN=A9197DD5/serialNumber=94C3EE8CC0724EBA3CB10324F9EDB81BAC850320 Certificate serial: 018D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMPujMByTro8sQMk-e24G6yFAyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.mft Manifest number: 018A Signing time: Tue 23 Dec 2025 02:32:48 +0000 Manifest this update: Tue 23 Dec 2025 02:32:48 +0000 Manifest next update: Tue 30 Dec 2025 02:32:48 +0000 Files and hashes: 1: lMPujMByTro8sQMk-e24G6yFAyA.crl (hash: 5IbwRP9tB9zkaPo8ofEm2VT1hYv0zURHh1xBlR1y5GE=) 2: 5E3ADA8C81CF11EE9AB1F360C4F9AE02.roa (hash: e7kJQJGd8ulGzCM84rmdu0H+EUZqUKICTbwDwRB9ofY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.crl rsync://rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMPujMByTro8sQMk-e24G6yFAyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:32:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 397 (0x18d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197DD5, serialNumber=94C3EE8CC0724EBA3CB10324F9EDB81BAC850320 Validity Not Before: Dec 23 02:32:48 2025 GMT Not After : Dec 30 02:32:48 2025 GMT Subject: CN=6949ff50-7a6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:59:48:18:0e:18:9d:ea:b2:4f:fc:1c:03:55: c3:2f:cb:70:82:db:3b:ca:58:79:5a:80:6e:9b:cc: d9:36:c1:b3:18:19:fc:a1:a2:4f:0f:df:51:f7:43: 71:9b:a7:c0:b2:10:b1:60:56:a7:56:44:8c:57:b5: e6:5b:0a:4c:2a:b1:b2:39:bb:db:58:c5:4a:ea:2e: 00:71:d7:d8:ba:8e:7b:fa:9d:37:84:a4:c3:d6:f1: 60:7a:56:95:16:0f:38:e8:3d:1c:16:c9:3e:9b:96: 37:19:d4:b4:51:6c:9e:24:01:4c:03:25:cc:8f:d8: 1c:8d:ca:37:43:33:4b:3e:76:59:18:f4:1d:62:53: 70:5b:74:5e:04:b5:91:5e:1e:89:1c:42:07:af:07: f9:df:15:6f:18:4c:d4:87:61:e1:1f:ce:ef:ee:24: 15:63:5a:fe:e1:74:d0:26:6e:dd:76:ad:10:8e:a6: db:35:81:a4:16:08:9e:48:6f:d6:bb:5b:cd:c1:a7: 80:7f:7f:05:58:fa:b4:bb:f4:38:85:7a:9d:33:3f: f7:58:33:15:81:02:bd:e0:86:12:4c:3c:50:b9:21: f3:ff:96:ef:5e:63:2e:0d:8a:22:ad:89:68:be:cb: 83:a3:5c:11:e8:a0:61:d1:9e:b0:c0:22:93:49:18: 91:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:64:53:88:6B:1F:28:06:10:77:BF:BE:5B:7F:E9:F0:8F:BE:99:D3 X509v3 Authority Key Identifier: keyid:94:C3:EE:8C:C0:72:4E:BA:3C:B1:03:24:F9:ED:B8:1B:AC:85:03:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMPujMByTro8sQMk-e24G6yFAyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:1a:b3:97:c6:b7:a6:8c:28:de:df:94:e1:59:66:e7:96:5a: f4:98:3d:5d:1c:f6:7f:cc:27:f7:7a:c8:18:c4:1b:be:0f:94: 99:9c:1f:89:2b:03:3f:a4:b0:c1:8a:4e:89:b2:c4:13:8e:b2: 89:a4:2f:d3:44:0b:a6:d7:dd:bd:6f:f7:4f:6c:7b:d4:8c:fa: 3b:21:a7:3b:d9:93:50:a6:f3:82:fe:1b:14:5c:9a:25:b4:eb: d2:23:b2:3d:9f:64:61:77:80:7c:41:eb:e3:73:7b:5e:21:ba: 28:2d:d7:91:eb:1b:b0:f3:b8:c7:af:d4:bc:36:3b:44:09:a4: 22:e8:e9:3b:9b:00:0e:dc:19:06:d2:8f:bd:0d:6f:f5:03:22: 76:44:ac:2a:37:64:ac:9e:a3:4f:fe:9c:34:80:d9:aa:02:e6: 10:e3:e1:aa:9b:ca:70:b7:0d:06:2c:47:a1:74:20:73:c6:5d: 1a:c0:27:9c:d0:0a:0e:69:ff:ff:8c:60:01:a0:e7:6f:6d:0f: 09:1d:49:bb:b5:9b:d9:b3:7f:5b:48:9f:38:b3:e1:5a:21:ec: 15:46:25:7c:ac:df:53:2e:5b:d7:7d:a1:16:dd:70:92:1d:5c: 38:0d:c1:fc:12:39:ab:79:d4:a7:63:bf:b1:77:ca:4b:d1:7b: 44:ba:86:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdERDUxMTAvBgNVBAUTKDk0QzNFRThDQzA3MjRFQkEzQ0IxMDMyNEY5RURCODFC QUM4NTAzMjAwHhcNMjUxMjIzMDIzMjQ4WhcNMjUxMjMwMDIzMjQ4WjAYMRYwFAYD VQQDDA02OTQ5ZmY1MC03YTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiFlIGA4YneqyT/wcA1XDL8twgts7ylh5WoBum8zZNsGzGBn8oaJPD99R90Nx m6fAshCxYFanVkSMV7XmWwpMKrGyObvbWMVK6i4AcdfYuo57+p03hKTD1vFgelaV Fg846D0cFsk+m5Y3GdS0UWyeJAFMAyXMj9gcjco3QzNLPnZZGPQdYlNwW3ReBLWR Xh6JHEIHrwf53xVvGEzUh2HhH87v7iQVY1r+4XTQJm7ddq0QjqbbNYGkFgieSG/W u1vNwaeAf38FWPq0u/Q4hXqdMz/3WDMVgQK94IYSTDxQuSHz/5bvXmMuDYoirYlo vsuDo1wR6KBh0Z6wwCKTSRiR1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNhkU4hr HygGEHe/vlt/6fCPvpnTMB8GA1UdIwQYMBaAFJTD7ozAck66PLEDJPntuBushQMg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0RENS8xNkQ0QjBEQzgx Q0YxMUVFQkMxNTJGNjBDNEY5QUUwMi9sTVB1ak1CeVRybzhzUU1rLWUyNEc2eUZB eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xNUHVqTUJ5VHJvOHNRTWstZTI0RzZ5RkF5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0RENS8xNkQ0QjBEQzgxQ0YxMUVFQkMxNTJGNjBDNEY5QUUwMi9sTVB1ak1CeVRy bzhzUU1rLWUyNEc2eUZBeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxGrOXxremjCje35ThWWbnllr0mD1dHPZ/zCf3esgYxBu+D5SZnB+J KwM/pLDBik6JssQTjrKJpC/TRAum1929b/dPbHvUjPo7Iac72ZNQpvOC/hsUXJol tOvSI7I9n2Rhd4B8Qevjc3teIbooLdeR6xuw87jHr9S8NjtECaQi6Ok7mwAO3BkG 0o+9DW/1AyJ2RKwqN2SsnqNP/pw0gNmqAuYQ4+Gqm8pwtw0GLEehdCBzxl0awCec 0AoOaf//jGABoOdvbQ8JHUm7tZvZs39bSJ84s+FaIewVRiV8rN9TLlvXfaEW3XCS HVw4DcH8EjmredSnY7+xd8pL0XtEuoZB -----END CERTIFICATE-----Generated at Wed Dec 24 14:07:42 2025 by rpki-client