This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft File: LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft (raw, json) Hash identifier: 47ITRwjWNTnDEUoQFeX1KPcLYNvNU/SLlCtXP2uY/bI= Subject key identifier: 9A:9E:1F:6A:C2:D1:60:33:C8:D6:45:C1:1C:AA:51:B7:1F:89:EE:60 Authority key identifier: 2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 Certificate issuer: /CN=A9147DCA/serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Certificate serial: 06E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft Manifest number: 06D6 Signing time: Thu 18 Dec 2025 21:28:55 +0000 Manifest this update: Thu 18 Dec 2025 21:28:55 +0000 Manifest next update: Thu 25 Dec 2025 21:28:55 +0000 Files and hashes: 1: LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl (hash: +CG/618kCgWRL3LAwtaHzONLAp5LxiQk57PSY6ToTLo=) 2: 0463FF50526C11EC80A31615C4F9AE02.roa (hash: mMd+OVrFW5GAoQGXV5q8W888lgwtgTWX8rE/7aryuNU=) 3: F100A1207F9911EBAFB6C91BC4F9AE02.roa (hash: WC17u871QRbv9L0eEf3wRpZbTARtAM6LAemuxBHqCWE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 21:28:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1764 (0x6e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147DCA, serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Validity Not Before: Dec 18 21:28:55 2025 GMT Not After : Dec 25 21:28:55 2025 GMT Subject: CN=69447217-7f78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:08:71:66:71:ca:dc:11:ef:50:45:86:9f:14: b3:c5:c7:dc:31:4c:a1:0f:21:8c:26:1e:76:a7:ff: 9c:fd:73:1b:1b:67:7f:c5:01:ed:b2:06:d5:e9:c7: 67:74:00:48:31:29:44:aa:b2:f0:88:36:9b:c9:71: 0f:25:62:8a:89:04:2d:80:49:ac:cf:1c:ba:c1:d1: 6a:d1:f0:a9:c2:a8:78:13:00:fa:50:8f:a5:74:3a: 64:9b:c9:02:7f:c3:81:26:b1:51:85:7e:74:2f:1b: 7d:f4:19:f6:79:ee:ab:6b:e7:6f:58:27:a4:e3:5f: 6f:ca:93:2b:67:0e:1e:52:8c:d9:0a:d1:5f:04:15: 65:14:6e:37:e2:8c:96:15:04:49:18:39:e8:d3:fc: c0:e0:b0:c2:bc:66:a5:9e:3d:d3:37:91:7a:7f:3b: 32:6c:c1:86:35:ad:c2:1b:fe:b9:1c:64:ec:bb:7a: 89:fe:f5:c4:a9:e5:3f:47:9b:47:e2:90:27:3d:a9: c9:01:ce:60:db:56:0c:8c:c3:c3:00:97:c4:6a:28: f3:66:f3:68:05:52:28:8a:b2:2c:6a:7a:ac:a1:7f: 37:d3:45:26:cc:f5:61:08:ca:1b:4a:4f:10:ef:03: be:86:58:a4:d7:bc:09:a9:c7:19:dc:ad:fb:82:3f: 52:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:9E:1F:6A:C2:D1:60:33:C8:D6:45:C1:1C:AA:51:B7:1F:89:EE:60 X509v3 Authority Key Identifier: keyid:2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:34:3a:76:4d:c2:9f:ed:c4:1d:51:a7:83:5c:07:74:45:2e: 3a:69:61:0c:52:b5:f2:2e:10:83:39:db:f0:02:1a:4e:02:36: 17:57:ba:33:b4:f4:9f:9c:85:41:90:0c:7d:ea:34:2b:5e:06: 72:f3:00:b0:e5:bc:92:83:6c:77:a4:14:39:bd:72:c3:ee:06: aa:26:6a:9c:d0:a9:03:27:30:70:a1:f2:db:10:24:1d:df:1f: c8:6e:e7:a1:f5:1a:1f:e0:ba:5a:33:79:b6:ac:6e:d3:d5:60: a2:fd:74:82:96:57:5f:d7:46:91:47:74:78:8c:2f:6d:a3:7a: 93:59:97:ba:9d:4b:d6:e9:f5:df:18:4c:3a:38:63:9b:d4:4d: bc:58:e0:3f:a7:b1:6d:a5:ca:6b:2b:b1:ce:1f:14:5e:bb:d8: e7:df:5e:68:2d:fb:4c:a7:24:d4:9e:d5:b3:87:96:8f:19:3f: 1a:4c:00:4d:bf:1f:06:ae:b0:e6:46:ba:c9:f9:4f:66:82:fe: 48:e2:f5:09:df:66:e1:0a:c4:90:61:d7:85:f2:c9:fd:35:bb: 3e:7f:6c:23:7a:35:07:c4:9a:35:0d:7f:d6:bb:73:04:dc:8e: f1:44:01:87:b3:27:89:3c:a6:d0:85:78:af:b9:48:d3:a6:05: fd:d1:96:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdEQ0ExMTAvBgNVBAUTKDJDM0EyQTgxMjFDQ0Y4QTlCRkM3Q0I2NjkxODU0QUY1 RTREMjE5RjkwHhcNMjUxMjE4MjEyODU1WhcNMjUxMjI1MjEyODU1WjAYMRYwFAYD VQQDDA02OTQ0NzIxNy03Zjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApghxZnHK3BHvUEWGnxSzxcfcMUyhDyGMJh52p/+c/XMbG2d/xQHtsgbV6cdn dABIMSlEqrLwiDabyXEPJWKKiQQtgEmszxy6wdFq0fCpwqh4EwD6UI+ldDpkm8kC f8OBJrFRhX50Lxt99Bn2ee6ra+dvWCek419vypMrZw4eUozZCtFfBBVlFG434oyW FQRJGDno0/zA4LDCvGalnj3TN5F6fzsybMGGNa3CG/65HGTsu3qJ/vXEqeU/R5tH 4pAnPanJAc5g21YMjMPDAJfEaijzZvNoBVIoirIsanqsoX8300UmzPVhCMobSk8Q 7wO+hlik17wJqccZ3K37gj9SgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJqeH2rC 0WAzyNZFwRyqUbcfie5gMB8GA1UdIwQYMBaAFCw6KoEhzPipv8fLZpGFSvXk0hn5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0RDQS8xQzc1RURBNjdE NkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1LbV94OHRta1lWSzllVFNH ZmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEb3FnU0hNLUttX3g4dG1rWVZLOWVUU0dmay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0RDQS8xQzc1RURBNjdENkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1L bV94OHRta1lWSzllVFNHZmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABNDp2TcKf7cQdUaeDXAd0RS46aWEMUrXyLhCDOdvwAhpOAjYXV7oz tPSfnIVBkAx96jQrXgZy8wCw5bySg2x3pBQ5vXLD7gaqJmqc0KkDJzBwofLbECQd 3x/Ibueh9Rof4LpaM3m2rG7T1WCi/XSClldf10aRR3R4jC9to3qTWZe6nUvW6fXf GEw6OGOb1E28WOA/p7FtpcprK7HOHxReu9jn315oLftMpyTUntWzh5aPGT8aTABN vx8GrrDmRrrJ+U9mgv5I4vUJ32bhCsSQYdeF8sn9Nbs+f2wjejUHxJo1DX/Wu3ME 3I7xRAGHsyeJPKbQhXivuUjTpgX90ZYw -----END CERTIFICATE-----Generated at Fri Dec 19 19:05:42 2025 by rpki-client