This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft File: LUmzrm2hi2NGSjF3qzIQGULmpRo.mft (raw, json) Hash identifier: tSqnCv7p/rH2TIbnU8zJ/4MNVivI0tpqXzShWaORnkU= Subject key identifier: 10:31:9B:0C:A6:A7:92:58:69:0F:8A:D5:4D:49:E2:EA:B2:EA:3A:4C Authority key identifier: 2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A Certificate issuer: /CN=A911F753/serialNumber=2D49B3AE6DA18B63464A3177AB32101942E6A51A Certificate serial: E1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft Manifest number: D6 Signing time: Wed 07 Jan 2026 05:00:12 +0000 Manifest this update: Wed 07 Jan 2026 05:00:11 +0000 Manifest next update: Wed 14 Jan 2026 05:00:11 +0000 Files and hashes: 1: LUmzrm2hi2NGSjF3qzIQGULmpRo.crl (hash: ZyRE9cSnUmUxvXl4bIggxurItrW2LF9/LhfnDAZL0RA=) 2: 44870D64C9F711F0BE5A166DC4F9AE02.roa (hash: bp0RLIpTitUcQ67OSTbBZOecrYQ1aQaiC31xXwpL9Bc=) 3: 45541EE4C9F711F087D2166DC4F9AE02.roa (hash: ou4XIefPRD+gcNDDXhaZbU7PKX3s57bqkC7i0ZQskmE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 Jan 2026 05:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F753, serialNumber=2D49B3AE6DA18B63464A3177AB32101942E6A51A Validity Not Before: Jan 7 05:00:11 2026 GMT Not After : Jan 14 05:00:11 2026 GMT Subject: CN=695de85c-0157 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:1f:8f:39:2b:25:af:6a:43:ce:88:64:60:38: 7c:c9:5d:51:88:1d:eb:7e:6c:83:a3:82:c7:57:2c: 08:4f:28:14:b1:31:ab:b9:31:22:ef:4d:75:34:02: c5:03:c8:3c:ba:f7:7b:05:92:09:a8:b6:80:37:28: a9:13:6f:5f:dd:54:b9:5c:d1:5e:85:40:70:c6:d1: bd:9a:f0:30:31:cc:a7:72:2c:c8:06:41:4f:2e:d0: 7c:f9:98:d6:ad:22:11:a0:24:59:d9:c4:f5:c8:a5: 53:6d:e2:d0:b3:9c:25:8a:dc:7a:19:3b:3a:72:e2: 3f:21:52:b8:8c:7c:ba:5e:b9:af:03:77:14:b3:7b: ea:ae:6e:6a:64:2e:96:3f:6d:7b:d9:ad:7d:95:b6: 41:72:d2:cb:24:59:17:0a:76:ee:34:ed:9b:5d:97: ff:ae:29:5d:ed:50:11:90:bf:37:a9:69:50:07:bd: df:93:73:54:2e:97:96:d8:2f:2b:15:5d:70:45:a8: c3:b0:a8:26:76:46:3e:f9:e1:d2:3d:bb:03:c7:be: 95:56:01:1f:45:36:df:25:68:64:54:1f:ca:71:55: b4:50:3b:9d:a3:26:68:92:cf:c8:24:1b:37:d5:51: 63:46:ff:fd:60:1c:37:03:7b:77:92:2d:87:dd:fb: 6b:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:31:9B:0C:A6:A7:92:58:69:0F:8A:D5:4D:49:E2:EA:B2:EA:3A:4C X509v3 Authority Key Identifier: keyid:2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:92:fd:8e:60:49:11:85:05:72:8d:c1:9c:e0:75:f8:35:6d: fc:8e:fe:63:37:c6:82:85:b0:46:33:4a:31:d9:9f:84:e5:bf: 0a:92:52:73:2b:73:35:69:45:d8:21:e6:6c:3f:40:33:81:12: bd:c2:c7:49:3d:ce:55:f0:8f:c5:61:5e:e9:2c:d7:71:a6:78: 5c:45:a4:9c:16:1d:64:62:b0:0d:88:fc:ed:36:3e:a3:b2:63: f8:56:ed:a7:b0:df:0b:7a:5d:94:1d:98:48:8b:ea:3f:52:36: f5:b4:2a:dd:84:7e:c8:6e:c8:30:3e:6d:93:c5:c5:42:15:58: 2f:4c:06:17:fc:5a:3e:25:d5:07:2b:91:37:d0:9f:4f:87:16: d6:27:60:dc:c2:1f:79:3e:1d:67:a9:6e:c6:d4:e5:50:15:ea: 90:03:b8:19:25:ea:ec:a7:59:37:11:fa:5c:36:72:5c:7b:61: df:11:d9:33:c4:08:d4:bb:78:c3:28:d5:63:6b:6a:b2:1a:c7: 44:92:e0:b1:92:ec:cf:8c:4e:8b:b0:e3:5c:dc:fc:2b:8a:b9: 5a:4a:11:bf:41:99:76:21:e9:0b:bb:d4:35:6d:b8:6c:52:b8: ec:9f:60:bf:46:d9:53:05:d0:ac:f3:54:c4:ad:e5:03:d0:bc: 5a:e3:e7:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY3NTMxMTAvBgNVBAUTKDJENDlCM0FFNkRBMThCNjM0NjRBMzE3N0FCMzIxMDE5 NDJFNkE1MUEwHhcNMjYwMTA3MDUwMDExWhcNMjYwMTE0MDUwMDExWjAYMRYwFAYD VQQDDA02OTVkZTg1Yy0wMTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArx+POSslr2pDzohkYDh8yV1RiB3rfmyDo4LHVywITygUsTGruTEi7011NALF A8g8uvd7BZIJqLaANyipE29f3VS5XNFehUBwxtG9mvAwMcyncizIBkFPLtB8+ZjW rSIRoCRZ2cT1yKVTbeLQs5wlitx6GTs6cuI/IVK4jHy6XrmvA3cUs3vqrm5qZC6W P2172a19lbZBctLLJFkXCnbuNO2bXZf/rild7VARkL83qWlQB73fk3NULpeW2C8r FV1wRajDsKgmdkY++eHSPbsDx76VVgEfRTbfJWhkVB/KcVW0UDudoyZoks/IJBs3 1VFjRv/9YBw3A3t3ki2H3ftrpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBAxmwym p5JYaQ+K1U1J4uqy6jpMMB8GA1UdIwQYMBaAFC1Js65toYtjRkoxd6syEBlC5qUa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjc1My83ODA5REEwMkJD MEQxMUVGOUI0QUQ2NDlDNEY5QUUwMi9MVW16cm0yaGkyTkdTakYzcXpJUUdVTG1w Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xVbXpybTJoaTJOR1NqRjNxeklRR1VMbXBSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Rjc1My83ODA5REEwMkJDMEQxMUVGOUI0QUQ2NDlDNEY5QUUwMi9MVW16cm0yaGky TkdTakYzcXpJUUdVTG1wUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+kv2OYEkRhQVyjcGc4HX4NW38jv5jN8aChbBGM0ox2Z+E5b8KklJz K3M1aUXYIeZsP0AzgRK9wsdJPc5V8I/FYV7pLNdxpnhcRaScFh1kYrANiPztNj6j smP4Vu2nsN8Lel2UHZhIi+o/Ujb1tCrdhH7IbsgwPm2TxcVCFVgvTAYX/Fo+JdUH K5E30J9PhxbWJ2Dcwh95Ph1nqW7G1OVQFeqQA7gZJersp1k3EfpcNnJce2HfEdkz xAjUu3jDKNVja2qyGsdEkuCxkuzPjE6LsONc3PwrirlaShG/QZl2IekLu9Q1bbhs Urjsn2C/RtlTBdCs81TEreUD0Lxa4+e/ -----END CERTIFICATE-----Generated at Wed Jan 7 22:32:10 2026 by rpki-client