This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft File: lC8l1zULID6onvLRzBULBbF7K4c.mft (raw, json) Hash identifier: czU3bJKfUiuwrF5F0jqYSBc0hdE3zEKU8JM5V6dPVRg= Subject key identifier: D6:AB:FD:EC:F8:DC:3D:DF:97:38:A6:CA:A1:37:6F:5A:6A:CD:8D:AC Authority key identifier: 94:2F:25:D7:35:0B:20:3E:A8:9E:F2:D1:CC:15:0B:05:B1:7B:2B:87 Certificate issuer: /CN=A912FB1D/serialNumber=942F25D7350B203EA89EF2D1CC150B05B17B2B87 Certificate serial: 3516 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft Manifest number: 3500 Signing time: Sat 20 Dec 2025 15:12:18 +0000 Manifest this update: Sat 20 Dec 2025 15:12:18 +0000 Manifest next update: Sat 27 Dec 2025 15:12:18 +0000 Files and hashes: 1: lC8l1zULID6onvLRzBULBbF7K4c.crl (hash: JNl19TbzSr8zRF7Jh+0440/Xok4SMpwDTRr84PouqBI=) 2: C098D762675111E9A0C4BB36C4F9AE02.roa (hash: Q+UMsPeyfxUm55P4fMvGVYmfZGcp4BR3EDI4z+jAzdY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.crl rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 15:12:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13590 (0x3516) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FB1D, serialNumber=942F25D7350B203EA89EF2D1CC150B05B17B2B87 Validity Not Before: Dec 20 15:12:18 2025 GMT Not After : Dec 27 15:12:18 2025 GMT Subject: CN=6946bcd2-a99c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:16:af:da:1f:30:43:96:3d:75:82:09:15:cf: e4:ef:ad:62:49:ef:4e:d6:88:1f:a6:ce:59:90:9b: 8a:64:14:b7:c2:99:cf:a0:0c:e9:c0:85:29:a7:e6: 0f:04:ce:5e:4f:1f:a6:09:46:72:81:d8:02:e9:b1: 94:07:d5:df:5b:5c:77:bb:79:62:9c:bb:a9:39:4d: 80:0d:b6:c3:b3:76:f1:ff:69:a1:eb:82:a0:8d:3b: 81:b7:6b:c9:72:7f:03:79:17:3c:43:42:48:1f:d2: d5:30:ac:45:a0:b5:2e:37:c4:eb:32:a8:de:34:31: 67:ff:da:23:c7:c0:02:1c:b9:ca:03:25:83:07:ce: ae:8f:41:f6:b1:c7:75:63:3e:d4:c0:02:82:b8:64: ac:5a:e8:d2:5e:56:d4:67:6a:4f:74:85:83:19:48: 01:7a:fa:33:b7:08:8b:9a:70:30:57:9c:82:4e:f0: 02:17:ab:fb:d7:4a:68:87:ff:bf:a7:de:ef:a8:89: 80:bc:91:25:ef:34:48:cd:2e:1b:d1:96:77:c2:f9: 68:35:c6:ca:62:b4:e2:6c:be:c6:d5:3d:ee:52:50: 55:55:bb:7c:79:17:e4:91:f6:85:f4:ee:ef:61:c4: c8:43:3b:92:c3:46:64:4b:fe:7f:7b:15:24:25:50: 7a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:AB:FD:EC:F8:DC:3D:DF:97:38:A6:CA:A1:37:6F:5A:6A:CD:8D:AC X509v3 Authority Key Identifier: keyid:94:2F:25:D7:35:0B:20:3E:A8:9E:F2:D1:CC:15:0B:05:B1:7B:2B:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC8l1zULID6onvLRzBULBbF7K4c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FB1D/C684CA9C1DAB11E2A21E35AA08B02CD2/lC8l1zULID6onvLRzBULBbF7K4c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:6f:41:08:7b:ff:f3:79:8d:7a:ec:8d:a5:56:d9:d1:f3:93: 4e:00:1b:de:80:28:d8:b1:9e:19:08:4b:b9:95:33:96:a3:71: ae:f4:2f:44:3e:1d:43:a0:37:03:24:b9:52:ea:49:0b:f8:7a: 2d:b6:ef:13:46:b9:c3:b8:fd:5e:4b:4d:14:7b:ee:47:48:da: 2f:0a:93:3b:fb:d5:03:f6:b3:f5:17:de:de:e0:26:3f:de:09: 6d:b8:cb:bc:f1:a5:c6:00:db:1f:28:e4:48:81:cf:3e:f6:93: 3d:cb:04:60:41:8a:1a:46:cc:a2:66:8c:f9:d7:95:91:b5:dd: ef:20:69:8a:fa:71:01:c5:97:ea:cb:ed:96:77:1e:82:18:65: f0:33:93:20:93:bd:82:b9:74:2f:72:9c:33:c2:95:92:b8:23: fb:9f:07:a8:47:1b:e4:07:8e:16:13:32:c1:70:33:b0:ef:88: de:c0:6c:24:a8:32:a0:70:4a:9a:00:90:80:26:8a:1e:83:14: 53:1e:cd:3b:8c:51:f7:04:fa:2b:43:a6:4b:28:e8:83:15:87: bf:12:51:74:40:a0:a1:c7:1a:d4:ee:74:9a:26:22:2b:f6:83: 7b:ba:3b:66:b5:1e:f7:76:8a:28:4d:fd:28:14:58:9e:6f:d2: 04:2b:f7:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZCMUQxMTAvBgNVBAUTKDk0MkYyNUQ3MzUwQjIwM0VBODlFRjJEMUNDMTUwQjA1 QjE3QjJCODcwHhcNMjUxMjIwMTUxMjE4WhcNMjUxMjI3MTUxMjE4WjAYMRYwFAYD VQQDDA02OTQ2YmNkMi1hOTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnxav2h8wQ5Y9dYIJFc/k761iSe9O1ogfps5ZkJuKZBS3wpnPoAzpwIUpp+YP BM5eTx+mCUZygdgC6bGUB9XfW1x3u3linLupOU2ADbbDs3bx/2mh64KgjTuBt2vJ cn8DeRc8Q0JIH9LVMKxFoLUuN8TrMqjeNDFn/9ojx8ACHLnKAyWDB86uj0H2scd1 Yz7UwAKCuGSsWujSXlbUZ2pPdIWDGUgBevoztwiLmnAwV5yCTvACF6v710poh/+/ p97vqImAvJEl7zRIzS4b0ZZ3wvloNcbKYrTibL7G1T3uUlBVVbt8eRfkkfaF9O7v YcTIQzuSw0ZkS/5/exUkJVB6HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNar/ez4 3D3flzimyqE3b1pqzY2sMB8GA1UdIwQYMBaAFJQvJdc1CyA+qJ7y0cwVCwWxeyuH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkIxRC9DNjg0Q0E5QzFE QUIxMUUyQTIxRTM1QUEwOEIwMkNEMi9sQzhsMXpVTElENm9udkxSekJVTEJiRjdL NGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDOGwxelVMSUQ2b252TFJ6QlVMQmJGN0s0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkIxRC9DNjg0Q0E5QzFEQUIxMUUyQTIxRTM1QUEwOEIwMkNEMi9sQzhsMXpVTElE Nm9udkxSekJVTEJiRjdLNGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcb0EIe//zeY167I2lVtnR85NOABvegCjYsZ4ZCEu5lTOWo3Gu9C9E Ph1DoDcDJLlS6kkL+Hottu8TRrnDuP1eS00Ue+5HSNovCpM7+9UD9rP1F97e4CY/ 3gltuMu88aXGANsfKORIgc8+9pM9ywRgQYoaRsyiZoz515WRtd3vIGmK+nEBxZfq y+2Wdx6CGGXwM5Mgk72CuXQvcpwzwpWSuCP7nweoRxvkB44WEzLBcDOw74jewGwk qDKgcEqaAJCAJooegxRTHs07jFH3BPorQ6ZLKOiDFYe/ElF0QKChxxrU7nSaJiIr 9oN7ujtmtR73doooTf0oFFieb9IEK/c8 -----END CERTIFICATE-----Generated at Sun Dec 21 02:28:27 2025 by rpki-client