This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft File: LUmzrm2hi2NGSjF3qzIQGULmpRo.mft (raw, json) Hash identifier: 4+6mMvSMrU3BGjJ8SUy5DucsYO95+hXrOPVZr0CCF1w= Subject key identifier: 95:8E:82:EC:8E:1F:EF:9F:D5:4E:4A:34:37:91:1A:43:FC:B6:F4:2B Authority key identifier: 2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A Certificate issuer: /CN=A911F753/serialNumber=2D49B3AE6DA18B63464A3177AB32101942E6A51A Certificate serial: E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft Manifest number: D8 Signing time: Sun 11 Jan 2026 05:01:54 +0000 Manifest this update: Sun 11 Jan 2026 05:01:53 +0000 Manifest next update: Sun 18 Jan 2026 05:01:53 +0000 Files and hashes: 1: LUmzrm2hi2NGSjF3qzIQGULmpRo.crl (hash: 6sPw1/VlRgFvRPgt6VQXJcw03XYea/s3lpWdy8B76kc=) 2: 44870D64C9F711F0BE5A166DC4F9AE02.roa (hash: bp0RLIpTitUcQ67OSTbBZOecrYQ1aQaiC31xXwpL9Bc=) 3: 45541EE4C9F711F087D2166DC4F9AE02.roa (hash: ou4XIefPRD+gcNDDXhaZbU7PKX3s57bqkC7i0ZQskmE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 Jan 2026 05:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F753, serialNumber=2D49B3AE6DA18B63464A3177AB32101942E6A51A Validity Not Before: Jan 11 05:01:53 2026 GMT Not After : Jan 18 05:01:53 2026 GMT Subject: CN=69632ec1-8b3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ea:f2:cd:a2:84:95:79:7e:c0:da:2c:2c:cb: 14:ec:0a:27:67:c0:4e:c3:d5:fa:de:5b:53:68:a9: 7d:ef:8b:f9:0a:14:b7:d2:95:d1:97:9b:9a:28:c7: 0b:c5:98:c3:ac:d0:75:15:d5:7e:ec:69:78:b0:61: 7d:22:eb:64:14:68:18:9c:b1:ec:64:91:ea:59:94: 09:0d:7f:7f:a4:1f:31:80:f3:21:bd:15:cc:62:f2: 37:95:15:24:db:fd:7e:e1:7d:34:9b:6d:c1:d4:73: 33:e5:6b:95:6f:1c:fa:7f:a8:c3:cd:f6:06:8c:3f: 94:48:4a:66:ec:ec:e5:38:5f:f7:f7:bc:45:a1:ae: 66:6f:e5:b6:5b:42:3f:7b:6f:2f:68:5b:3e:f9:b1: ea:dd:12:af:91:82:dd:a6:0f:16:ba:42:ec:3f:06: 9a:a5:e4:29:1f:13:f8:73:e6:73:59:cc:e0:49:54: 8c:2d:09:21:1c:bf:86:2f:54:65:62:e0:8b:03:a5: 55:a6:fe:a9:47:00:77:64:c6:25:c0:0d:73:8d:78: 12:4b:2a:9b:bb:e8:c0:f7:15:5a:ef:3e:79:06:f4: c5:65:78:17:56:9d:50:c2:13:85:47:1b:e2:09:db: ce:86:37:90:6d:bc:19:78:19:7d:89:e6:3e:35:fd: b5:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:8E:82:EC:8E:1F:EF:9F:D5:4E:4A:34:37:91:1A:43:FC:B6:F4:2B X509v3 Authority Key Identifier: keyid:2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:e7:68:38:b8:a5:b5:e5:7b:68:05:60:0a:a5:9f:f2:0f:c6: 06:01:52:8d:cb:c6:c3:07:94:b6:2a:c8:88:3e:ee:3b:2a:64: 34:e0:dc:ec:a8:c5:62:6d:51:b5:85:3f:1f:cd:b8:52:ca:49: af:cb:f1:0e:e2:7a:93:12:97:f0:6b:42:7e:45:9d:bc:02:c8: 74:48:3f:0b:49:85:25:f8:cf:a8:02:b5:cf:e6:35:21:63:25: c2:37:c0:bd:a8:3b:d1:d4:db:4e:0c:c1:f1:8a:c5:0e:13:ca: 3f:12:e7:2b:f2:47:77:1e:f1:58:07:0c:6a:40:68:28:4b:39: b1:9a:36:dc:97:3d:83:9c:4a:81:82:10:d3:7d:45:8d:9c:af: 15:00:cf:fa:06:bb:40:48:7b:35:1c:46:4d:51:fb:98:94:56: 47:48:a7:f9:c3:d9:f6:52:ab:a1:00:03:f4:07:a8:fa:a0:66: 82:aa:91:60:92:5e:2a:ee:09:fb:bc:88:ba:e3:54:0b:8e:37: 07:14:87:ea:38:df:c4:ef:09:20:12:78:1a:61:e1:69:8f:fa: a1:52:d7:00:31:8b:de:6b:28:d3:c5:30:11:f6:f4:25:91:d0: ad:0d:e6:cd:5d:d5:86:f1:21:98:f7:7e:9a:0e:62:35:5e:34: eb:cf:f3:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY3NTMxMTAvBgNVBAUTKDJENDlCM0FFNkRBMThCNjM0NjRBMzE3N0FCMzIxMDE5 NDJFNkE1MUEwHhcNMjYwMTExMDUwMTUzWhcNMjYwMTE4MDUwMTUzWjAYMRYwFAYD VQQDDA02OTYzMmVjMS04YjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy+ryzaKElXl+wNosLMsU7AonZ8BOw9X63ltTaKl974v5ChS30pXRl5uaKMcL xZjDrNB1FdV+7Gl4sGF9IutkFGgYnLHsZJHqWZQJDX9/pB8xgPMhvRXMYvI3lRUk 2/1+4X00m23B1HMz5WuVbxz6f6jDzfYGjD+USEpm7OzlOF/397xFoa5mb+W2W0I/ e28vaFs++bHq3RKvkYLdpg8WukLsPwaapeQpHxP4c+ZzWczgSVSMLQkhHL+GL1Rl YuCLA6VVpv6pRwB3ZMYlwA1zjXgSSyqbu+jA9xVa7z55BvTFZXgXVp1QwhOFRxvi CdvOhjeQbbwZeBl9ieY+Nf21tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJWOguyO H++f1U5KNDeRGkP8tvQrMB8GA1UdIwQYMBaAFC1Js65toYtjRkoxd6syEBlC5qUa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjc1My83ODA5REEwMkJD MEQxMUVGOUI0QUQ2NDlDNEY5QUUwMi9MVW16cm0yaGkyTkdTakYzcXpJUUdVTG1w Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xVbXpybTJoaTJOR1NqRjNxeklRR1VMbXBSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Rjc1My83ODA5REEwMkJDMEQxMUVGOUI0QUQ2NDlDNEY5QUUwMi9MVW16cm0yaGky TkdTakYzcXpJUUdVTG1wUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDC52g4uKW15XtoBWAKpZ/yD8YGAVKNy8bDB5S2KsiIPu47KmQ04Nzs qMVibVG1hT8fzbhSykmvy/EO4nqTEpfwa0J+RZ28Ash0SD8LSYUl+M+oArXP5jUh YyXCN8C9qDvR1NtODMHxisUOE8o/Eucr8kd3HvFYBwxqQGgoSzmxmjbclz2DnEqB ghDTfUWNnK8VAM/6BrtASHs1HEZNUfuYlFZHSKf5w9n2UquhAAP0B6j6oGaCqpFg kl4q7gn7vIi641QLjjcHFIfqON/E7wkgEngaYeFpj/qhUtcAMYveayjTxTAR9vQl kdCtDebNXdWG8SGY936aDmI1XjTrz/O4 -----END CERTIFICATE-----Generated at Mon Jan 12 07:35:02 2026 by rpki-client