This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.mft File: limscQ0-IdWZGSjVmk22VBGpa_8.mft (raw, json) Hash identifier: VUmEREoCtjJeY9EQUR2IouE+kfiSCaWwsR3YjeF6uT0= Subject key identifier: 63:14:1B:BE:3F:7D:F0:47:E2:C3:58:E1:ED:BD:D5:33:83:A2:F4:A9 Authority key identifier: 96:29:AC:71:0D:3E:21:D5:99:19:28:D5:9A:4D:B6:54:11:A9:6B:FF Certificate issuer: /CN=A91EE6E8/serialNumber=9629AC710D3E21D5991928D59A4DB65411A96BFF Certificate serial: 0CA0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/limscQ0-IdWZGSjVmk22VBGpa_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.mft Manifest number: 0C97 Signing time: Mon 22 Dec 2025 18:00:11 +0000 Manifest this update: Mon 22 Dec 2025 18:00:11 +0000 Manifest next update: Mon 29 Dec 2025 18:00:11 +0000 Files and hashes: 1: limscQ0-IdWZGSjVmk22VBGpa_8.crl (hash: 2Rce1K3xYl2vRVlaCuUHqCnDo8rFVNnv6DBNRD9VFUo=) 2: 9CDAADC2091E11EAB375615BC4F9AE02.roa (hash: cTVFkw9EC/7+0AhzRm+1VoJiYeWjlXwK0sbhIidN0dw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.crl rsync://rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/limscQ0-IdWZGSjVmk22VBGpa_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3232 (0xca0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE6E8, serialNumber=9629AC710D3E21D5991928D59A4DB65411A96BFF Validity Not Before: Dec 22 18:00:11 2025 GMT Not After : Dec 29 18:00:11 2025 GMT Subject: CN=6949872b-0688 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a8:3e:1e:af:fe:11:69:80:6a:2b:cd:09:5e: 38:32:5e:97:34:b4:db:c6:d6:33:8c:a0:b8:40:a9: 35:50:43:4b:ed:75:b6:63:56:91:bc:43:ba:c1:c0: 8a:81:c9:69:39:50:5e:63:5f:69:00:99:64:86:39: 7a:8c:cd:5d:cf:a8:e3:14:62:19:78:c4:e7:d0:c2: 3b:a2:79:30:13:98:ba:c6:c4:a0:7d:7a:48:53:29: db:16:85:cf:dc:9b:9b:ae:42:d5:45:f4:55:f1:c5: 40:dd:7d:81:9f:3e:ad:df:42:be:c3:bf:63:04:86: a2:81:db:f8:5d:30:0a:58:ad:7b:c0:fa:3f:ea:ce: c4:5d:0e:6c:2b:cf:17:f6:51:5e:2b:c0:17:a8:b7: bf:db:ba:d3:10:07:64:67:76:50:f1:cb:fc:d6:a2: 70:f1:64:ad:71:e8:09:b1:c5:c5:a7:a3:52:d6:ff: 68:41:37:3d:0e:06:ac:cf:7c:23:fc:41:e0:06:03: 37:d2:f3:2f:94:1c:53:2a:fa:0e:a7:cc:ef:4f:46: 8c:d8:af:4d:28:49:5a:62:c4:c3:d1:60:5f:e8:d7: 1f:36:e3:18:ba:9a:32:b4:73:aa:96:b2:65:85:83: a9:46:15:4f:60:88:72:1f:92:49:41:30:65:f1:90: b3:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:14:1B:BE:3F:7D:F0:47:E2:C3:58:E1:ED:BD:D5:33:83:A2:F4:A9 X509v3 Authority Key Identifier: keyid:96:29:AC:71:0D:3E:21:D5:99:19:28:D5:9A:4D:B6:54:11:A9:6B:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/limscQ0-IdWZGSjVmk22VBGpa_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d3:00:36:a9:f6:c6:ec:a3:1e:34:9a:61:92:ed:7d:8d:62:2c: 9a:30:00:ab:b8:1e:50:83:65:16:5f:17:54:d3:d1:6f:3a:f6: 26:fb:11:04:5e:44:0c:b1:0b:4a:1e:43:87:50:d4:44:a7:fb: 51:4c:9e:dd:76:23:a4:f2:17:90:19:cb:fa:16:94:72:8a:bc: 27:2d:6b:7d:a1:fb:70:d0:72:27:d3:3b:aa:94:72:15:20:7f: 38:60:fb:0f:20:0c:69:5b:d8:e9:4d:67:b3:3d:c9:f7:de:1b: 24:0b:cc:d4:96:ae:19:31:44:ec:0f:84:63:da:90:bc:27:46: cf:61:bf:e1:a2:33:74:ee:0d:7b:d5:df:56:d0:e8:87:10:9e: e0:d5:73:cc:a0:35:1d:0b:56:11:7b:1b:f0:03:d5:fd:e7:40: d2:30:2f:9f:cf:ee:a9:69:ed:04:b7:53:41:f2:3e:ec:dd:d2: 22:29:5b:f9:44:c6:8f:bb:cf:2f:8a:10:db:63:01:5d:83:24: 16:cb:af:c8:40:72:ca:31:62:cb:de:01:58:43:3c:b0:0d:b0: 49:bb:31:1b:6f:6c:f0:0a:e7:42:24:a5:91:16:30:d6:97:0c: 4d:9c:af:1c:dc:17:18:f6:72:82:1a:6a:e2:fe:37:57:7b:28: fe:90:4b:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU2RTgxMTAvBgNVBAUTKDk2MjlBQzcxMEQzRTIxRDU5OTE5MjhENTlBNERCNjU0 MTFBOTZCRkYwHhcNMjUxMjIyMTgwMDExWhcNMjUxMjI5MTgwMDExWjAYMRYwFAYD VQQDDA02OTQ5ODcyYi0wNjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs6g+Hq/+EWmAaivNCV44Ml6XNLTbxtYzjKC4QKk1UENL7XW2Y1aRvEO6wcCK gclpOVBeY19pAJlkhjl6jM1dz6jjFGIZeMTn0MI7onkwE5i6xsSgfXpIUynbFoXP 3JubrkLVRfRV8cVA3X2Bnz6t30K+w79jBIaigdv4XTAKWK17wPo/6s7EXQ5sK88X 9lFeK8AXqLe/27rTEAdkZ3ZQ8cv81qJw8WStcegJscXFp6NS1v9oQTc9Dgasz3wj /EHgBgM30vMvlBxTKvoOp8zvT0aM2K9NKElaYsTD0WBf6NcfNuMYupoytHOqlrJl hYOpRhVPYIhyH5JJQTBl8ZCzfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGMUG74/ ffBH4sNY4e291TODovSpMB8GA1UdIwQYMBaAFJYprHENPiHVmRko1ZpNtlQRqWv/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTZFOC83QkNBRkYwMjA5 MUQxMUVBOTNCRDlFNTZDNEY5QUUwMi9saW1zY1EwLUlkV1pHU2pWbWsyMlZCR3Bh XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xpbXNjUTAtSWRXWkdTalZtazIyVkJHcGFfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTZFOC83QkNBRkYwMjA5MUQxMUVBOTNCRDlFNTZDNEY5QUUwMi9saW1zY1EwLUlk V1pHU2pWbWsyMlZCR3BhXzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDTADap9sbsox40mmGS7X2NYiyaMACruB5Qg2UWXxdU09FvOvYm+xEE XkQMsQtKHkOHUNREp/tRTJ7ddiOk8heQGcv6FpRyirwnLWt9oftw0HIn0zuqlHIV IH84YPsPIAxpW9jpTWezPcn33hskC8zUlq4ZMUTsD4Rj2pC8J0bPYb/hojN07g17 1d9W0OiHEJ7g1XPMoDUdC1YRexvwA9X950DSMC+fz+6pae0Et1NB8j7s3dIiKVv5 RMaPu88vihDbYwFdgyQWy6/IQHLKMWLL3gFYQzywDbBJuzEbb2zwCudCJKWRFjDW lwxNnK8c3BcY9nKCGmri/jdXeyj+kEsO -----END CERTIFICATE-----Generated at Wed Dec 24 17:40:08 2025 by rpki-client