This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft File: lMnUO1O12FDZjg2i1e88ThwxIEU.mft (raw, json) Hash identifier: QijJcYZXecd3teg6rkVxC06N+I3vSkI1BDQrwgECsro= Subject key identifier: 49:E6:68:46:80:0C:FD:60:F5:AA:FB:03:BC:65:E9:80:CD:02:AB:33 Authority key identifier: 94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 Certificate issuer: /CN=A9120E21/serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Certificate serial: 108D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft Manifest number: 108A Signing time: Thu 18 Dec 2025 17:11:51 +0000 Manifest this update: Thu 18 Dec 2025 17:11:51 +0000 Manifest next update: Thu 25 Dec 2025 17:11:51 +0000 Files and hashes: 1: lMnUO1O12FDZjg2i1e88ThwxIEU.crl (hash: J8x4F9uWxbteZPJsDPoxuAdfbZkEFqAa5792UQutb8A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:11:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4237 (0x108d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120E21, serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Validity Not Before: Dec 18 17:11:51 2025 GMT Not After : Dec 25 17:11:51 2025 GMT Subject: CN=694435d7-50f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:8c:8c:ee:69:f3:96:27:98:e6:c1:5d:0e:e5: de:fb:ee:b5:b5:6b:24:5c:ce:cc:6f:9c:80:e5:52: dd:7f:c4:d4:ef:b0:ab:63:ac:48:d6:5a:f5:a2:bd: 46:f7:2c:be:ff:a1:16:8d:90:be:e9:11:b8:70:7a: df:72:6d:81:24:3a:48:02:db:18:d8:ac:a6:f0:e9: 48:2d:22:06:a1:e8:c6:1b:ff:80:d3:5d:26:56:66: c1:2b:24:15:16:07:aa:4b:f7:56:1a:86:b9:42:1e: 94:e1:10:26:1c:53:8e:dc:94:53:19:d9:3c:97:f4: 40:13:d6:2a:d9:99:b9:0f:2a:ba:0d:6b:11:9d:33: 05:e2:2a:23:3b:2e:5b:27:0a:bd:39:90:5b:97:0e: 53:cd:37:98:e1:68:de:bb:40:dc:e0:c7:49:a4:89: d6:df:cc:26:a9:68:ab:a2:82:95:0e:36:19:c1:ce: b0:5d:d7:35:a4:4a:2a:bd:58:ea:a7:0e:07:06:29: 80:9d:c5:58:c9:fa:50:d1:bb:0d:9c:6e:8b:1f:94: 43:c3:b9:a5:2e:63:47:6a:b0:6f:4b:a0:38:07:eb: a3:6b:7f:4a:03:a3:77:e9:aa:e2:0a:3f:2e:09:ff: 97:79:33:ae:a1:45:39:c9:33:0c:62:c4:f0:66:52: 1b:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:E6:68:46:80:0C:FD:60:F5:AA:FB:03:BC:65:E9:80:CD:02:AB:33 X509v3 Authority Key Identifier: keyid:94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:e5:65:df:cc:a9:80:53:f3:53:9e:c5:e2:8c:b2:15:58:9f: c2:a1:8e:84:0f:5e:4e:3c:42:46:57:45:24:3b:cf:a2:dd:c0: 1b:79:f1:d3:d5:54:89:46:9d:e9:75:4d:06:55:a5:ef:a6:4c: 95:24:30:28:55:cb:ba:91:4f:52:1e:11:4b:55:98:a8:10:0a: 52:89:2c:58:dc:80:92:76:53:c9:0d:69:3d:c8:b8:65:60:ff: 9f:14:cd:66:55:d6:50:65:f2:f1:09:09:37:42:dc:68:6b:98: fc:0d:7c:d9:c7:7a:7b:4e:c5:81:f5:4f:7b:47:28:64:90:9e: f9:70:75:18:e1:b4:e9:2e:ef:0f:7b:07:fd:23:4f:ed:22:7d: 46:64:bc:84:24:37:3c:ec:c4:db:c3:d6:7e:87:ed:c1:65:d0: a4:7d:e4:1e:95:31:78:91:97:ca:19:77:ce:c5:b1:f1:e1:48: 3c:51:b9:50:fc:9d:a2:a7:96:4b:55:86:71:20:24:1e:a2:92: 58:d3:34:98:2e:51:b5:7c:0b:34:85:df:bd:41:b7:ee:e2:72: bb:68:01:94:4f:f3:24:65:8b:87:b3:6c:46:eb:28:7d:00:5e: 9d:b3:ff:c0:5f:dd:1f:dd:d4:e9:6f:f6:26:72:9c:ab:29:f3: 73:dc:49:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBFMjExMTAvBgNVBAUTKDk0QzlENDNCNTNCNUQ4NTBEOThFMERBMkQ1RUYzQzRF MUMzMTIwNDUwHhcNMjUxMjE4MTcxMTUxWhcNMjUxMjI1MTcxMTUxWjAYMRYwFAYD VQQDDA02OTQ0MzVkNy01MGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnYyM7mnzlieY5sFdDuXe++61tWskXM7Mb5yA5VLdf8TU77CrY6xI1lr1or1G 9yy+/6EWjZC+6RG4cHrfcm2BJDpIAtsY2Kym8OlILSIGoejGG/+A010mVmbBKyQV FgeqS/dWGoa5Qh6U4RAmHFOO3JRTGdk8l/RAE9Yq2Zm5Dyq6DWsRnTMF4iojOy5b Jwq9OZBblw5TzTeY4Wjeu0Dc4MdJpInW38wmqWirooKVDjYZwc6wXdc1pEoqvVjq pw4HBimAncVYyfpQ0bsNnG6LH5RDw7mlLmNHarBvS6A4B+uja39KA6N36ariCj8u Cf+XeTOuoUU5yTMMYsTwZlIb2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEnmaEaA DP1g9ar7A7xl6YDNAqszMB8GA1UdIwQYMBaAFJTJ1DtTtdhQ2Y4NotXvPE4cMSBF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEUyMS9BNUU5NTBENDQy NzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJGRFpqZzJpMWU4OFRod3hJ RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xNblVPMU8xMkZEWmpnMmkxZTg4VGh3eElFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEUyMS9BNUU5NTBENDQyNzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJG RFpqZzJpMWU4OFRod3hJRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAK5WXfzKmAU/NTnsXijLIVWJ/CoY6ED15OPEJGV0UkO8+i3cAbefHT 1VSJRp3pdU0GVaXvpkyVJDAoVcu6kU9SHhFLVZioEApSiSxY3ICSdlPJDWk9yLhl YP+fFM1mVdZQZfLxCQk3Qtxoa5j8DXzZx3p7TsWB9U97RyhkkJ75cHUY4bTpLu8P ewf9I0/tIn1GZLyEJDc87MTbw9Z+h+3BZdCkfeQelTF4kZfKGXfOxbHx4Ug8UblQ /J2ip5ZLVYZxICQeopJY0zSYLlG1fAs0hd+9Qbfu4nK7aAGUT/MkZYuHs2xG6yh9 AF6ds//AX90f3dTpb/YmcpyrKfNz3EnD -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:38 2025 by rpki-client