This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft File: lC8l1zULID6onvLRzBULBbF7K4c.mft (raw, json) Hash identifier: uzg1Kssi6Hp+oRL5nHpLZT21T4tWolKhKrmqYdKhif4= Subject key identifier: EB:B2:72:E1:1F:61:0D:1F:22:2E:DE:EF:3A:C9:EB:57:8E:21:86:E6 Authority key identifier: 94:2F:25:D7:35:0B:20:3E:A8:9E:F2:D1:CC:15:0B:05:B1:7B:2B:87 Certificate issuer: /CN=A912FB1D/serialNumber=942F25D7350B203EA89EF2D1CC150B05B17B2B87 Certificate serial: 351A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft Manifest number: 3504 Signing time: Sun 28 Dec 2025 15:11:49 +0000 Manifest this update: Sun 28 Dec 2025 15:11:49 +0000 Manifest next update: Sun 04 Jan 2026 15:11:49 +0000 Files and hashes: 1: lC8l1zULID6onvLRzBULBbF7K4c.crl (hash: 9jW5Xz7UsUnIHNyNjwNslp7bSweqdsBK1KvI6Ip0XOQ=) 2: C098D762675111E9A0C4BB36C4F9AE02.roa (hash: Q+UMsPeyfxUm55P4fMvGVYmfZGcp4BR3EDI4z+jAzdY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.crl rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 15:11:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13594 (0x351a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FB1D, serialNumber=942F25D7350B203EA89EF2D1CC150B05B17B2B87 Validity Not Before: Dec 28 15:11:49 2025 GMT Not After : Jan 4 15:11:49 2026 GMT Subject: CN=695148b5-5942 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:01:01:03:d4:77:1e:84:df:92:2a:14:1e:0d: ca:c5:01:d9:33:e8:76:4b:92:03:09:f3:0f:a7:91: d7:00:c7:05:d5:df:93:e5:69:aa:8e:b0:a5:40:98: 54:70:96:c4:34:6a:00:dd:41:19:40:af:87:a4:26: 15:de:d4:77:d5:92:76:10:f3:fa:61:fb:0b:6c:d9: d0:b2:d3:80:f1:71:14:87:5d:e0:60:34:42:00:23: c2:e8:dd:d1:2e:05:bc:9c:90:73:35:29:c1:7a:51: b6:76:9f:b2:fc:9d:70:7e:e1:62:6f:79:71:db:d9: f0:35:80:99:22:dd:d9:8f:07:07:d4:52:d3:c0:4b: 5f:5a:1c:42:75:f8:fe:58:a2:45:a5:59:7c:c8:f4: 15:f6:f3:00:56:ec:b2:a4:8a:69:bf:19:a5:40:43: 4c:1d:01:01:18:ec:ef:87:ab:1d:95:b3:72:00:c2: 7f:3d:3c:98:fc:31:43:23:84:fb:a3:e7:59:8f:d6: be:c2:a4:92:f1:2b:83:e3:53:71:80:fd:fc:c9:fe: b3:ef:ed:06:f3:8a:35:f5:a7:58:9b:26:a8:3c:ad: 99:aa:98:75:81:c0:f2:6c:05:d1:90:39:8a:5f:c6: 11:76:75:e3:91:d7:0a:9d:ca:66:85:16:1a:d8:53: 48:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:B2:72:E1:1F:61:0D:1F:22:2E:DE:EF:3A:C9:EB:57:8E:21:86:E6 X509v3 Authority Key Identifier: keyid:94:2F:25:D7:35:0B:20:3E:A8:9E:F2:D1:CC:15:0B:05:B1:7B:2B:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:62:da:37:96:94:6a:63:19:1c:8f:82:ac:8f:2e:d0:c2:4d: 94:62:fb:8a:8c:05:93:6e:87:aa:90:3d:d4:c5:8d:93:24:1a: fa:c7:f8:37:46:49:f5:e4:bf:d8:ad:2d:9d:2b:15:6b:cb:4c: 53:34:ba:37:ee:25:38:80:3c:9c:02:e1:cb:8a:6d:33:1d:42: 38:4b:2c:c9:99:23:93:c5:22:59:df:47:2c:aa:24:f1:34:e4: 02:b8:44:9d:f7:da:73:69:2c:ac:9c:57:34:e3:b8:49:2f:55: af:d6:87:ff:12:74:1e:5d:5a:22:83:a1:a9:37:f3:fe:bf:fc: 08:a9:1f:a0:92:69:0e:82:07:18:a1:77:ea:e6:24:ff:7b:18: 8d:a3:f2:ba:23:d9:6d:e4:fb:b4:3e:d3:e8:0a:d1:05:f6:6f: 10:66:c2:a0:a4:0b:49:46:00:94:39:ee:b1:90:01:c0:b1:a7: 20:e2:db:58:60:56:79:93:71:60:5c:18:67:42:26:f9:68:bf: 7b:ec:3b:8d:7b:5b:67:95:2b:7f:1e:f1:23:c9:0e:a4:aa:e9: 7d:fe:ab:5d:2d:65:6f:b5:82:ff:3a:02:ea:30:15:48:05:bd: 5b:3a:49:cd:85:4a:9d:4c:38:7d:15:27:ae:ee:18:6c:25:c6: a5:a7:b1:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZCMUQxMTAvBgNVBAUTKDk0MkYyNUQ3MzUwQjIwM0VBODlFRjJEMUNDMTUwQjA1 QjE3QjJCODcwHhcNMjUxMjI4MTUxMTQ5WhcNMjYwMTA0MTUxMTQ5WjAYMRYwFAYD VQQDDA02OTUxNDhiNS01OTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAogEBA9R3HoTfkioUHg3KxQHZM+h2S5IDCfMPp5HXAMcF1d+T5WmqjrClQJhU cJbENGoA3UEZQK+HpCYV3tR31ZJ2EPP6YfsLbNnQstOA8XEUh13gYDRCACPC6N3R LgW8nJBzNSnBelG2dp+y/J1wfuFib3lx29nwNYCZIt3ZjwcH1FLTwEtfWhxCdfj+ WKJFpVl8yPQV9vMAVuyypIppvxmlQENMHQEBGOzvh6sdlbNyAMJ/PTyY/DFDI4T7 o+dZj9a+wqSS8SuD41NxgP38yf6z7+0G84o19adYmyaoPK2Zqph1gcDybAXRkDmK X8YRdnXjkdcKncpmhRYa2FNIUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOuycuEf YQ0fIi7e7zrJ61eOIYbmMB8GA1UdIwQYMBaAFJQvJdc1CyA+qJ7y0cwVCwWxeyuH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkIxRC9DNjg0Q0E5QzFE QUIxMUUyQTIxRTM1QUEwOEIwMkNEMi9sQzhsMXpVTElENm9udkxSekJVTEJiRjdL NGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDOGwxelVMSUQ2b252TFJ6QlVMQmJGN0s0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkIxRC9DNjg0Q0E5QzFEQUIxMUUyQTIxRTM1QUEwOEIwMkNEMi9sQzhsMXpVTElE Nm9udkxSekJVTEJiRjdLNGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFYto3lpRqYxkcj4Ksjy7Qwk2UYvuKjAWTboeqkD3UxY2TJBr6x/g3 Rkn15L/YrS2dKxVry0xTNLo37iU4gDycAuHLim0zHUI4SyzJmSOTxSJZ30csqiTx NOQCuESd99pzaSysnFc047hJL1Wv1of/EnQeXVoig6GpN/P+v/wIqR+gkmkOggcY oXfq5iT/exiNo/K6I9lt5Pu0PtPoCtEF9m8QZsKgpAtJRgCUOe6xkAHAsacg4ttY YFZ5k3FgXBhnQib5aL977DuNe1tnlSt/HvEjyQ6kqul9/qtdLWVvtYL/OgLqMBVI Bb1bOknNhUqdTDh9FSeu7hhsJcalp7HZ -----END CERTIFICATE-----Generated at Mon Dec 29 05:22:28 2025 by rpki-client