This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft File: LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft (raw, json) Hash identifier: OnsY6kShc7UxDfBWN2p3+ltm2YskDawmVfcAY733jNw= Subject key identifier: 39:1D:D3:85:A5:D4:62:AB:92:1D:0A:04:E4:04:6D:BB:64:C5:29:3E Authority key identifier: 2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 Certificate issuer: /CN=A9147DCA/serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Certificate serial: 06F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft Manifest number: 06E2 Signing time: Sat 10 Jan 2026 21:21:16 +0000 Manifest this update: Sat 10 Jan 2026 21:21:16 +0000 Manifest next update: Sat 17 Jan 2026 21:21:16 +0000 Files and hashes: 1: LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl (hash: bTz4OcAvmSO/vD0Cccqnf9NOuTTK2vLfNZwJX6ddHcA=) 2: F100A1207F9911EBAFB6C91BC4F9AE02.roa (hash: WC17u871QRbv9L0eEf3wRpZbTARtAM6LAemuxBHqCWE=) 3: 0463FF50526C11EC80A31615C4F9AE02.roa (hash: mMd+OVrFW5GAoQGXV5q8W888lgwtgTWX8rE/7aryuNU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 Jan 2026 21:21:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1776 (0x6f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147DCA, serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Validity Not Before: Jan 10 21:21:16 2026 GMT Not After : Jan 17 21:21:16 2026 GMT Subject: CN=6962c2cc-14c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:60:2e:ea:2c:62:95:6b:42:53:6d:0f:0f:e5: 1e:3a:65:a2:60:67:88:c0:d2:dc:19:79:a4:50:de: 2d:2a:16:08:29:c0:80:de:02:52:35:42:87:0a:ed: 72:a8:5f:14:a8:f3:d6:ce:ea:3b:58:b1:fc:4e:8e: 7c:d4:e6:a9:b3:46:85:dc:50:1d:55:75:17:6c:75: d4:cf:c6:3d:0a:61:5b:84:40:d8:8d:31:c2:2b:7c: dc:cb:f7:6c:58:f9:7a:f8:d8:38:48:98:42:b3:ae: 00:9d:83:dc:c2:8f:19:d7:37:69:79:6a:83:a9:0b: ad:5b:17:4a:47:b1:05:51:a2:b6:be:71:0b:b0:a8: ab:e9:16:dd:e0:ce:d5:61:e9:0b:c7:43:33:61:c0: 5f:4c:69:e3:59:bb:9e:ed:c3:51:17:86:15:93:32: 82:3c:48:87:63:dc:d2:a1:c9:e1:65:fe:6b:d9:ca: 81:2b:7c:7e:b5:f5:2e:ea:4b:cb:13:fa:b6:6f:a6: 00:0a:7c:cb:c9:13:b0:1b:05:dd:b8:29:6e:d2:4e: 00:db:6e:28:fc:e2:90:6b:fa:78:41:45:68:16:56: f5:03:ed:3f:2f:ac:d2:8b:a4:f0:e9:c2:45:a8:8a: 87:54:02:c1:e9:4b:9e:69:c0:10:9c:7f:30:81:ca: 07:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:1D:D3:85:A5:D4:62:AB:92:1D:0A:04:E4:04:6D:BB:64:C5:29:3E X509v3 Authority Key Identifier: keyid:2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:44:a0:58:5f:4d:09:df:26:c2:8b:0d:51:a7:eb:16:57:20: 6d:37:51:e0:ea:ac:78:59:50:03:c5:3f:11:c2:a8:5c:74:51: ea:3c:b9:0f:47:87:c0:a7:6e:9e:23:0b:81:c6:7a:c6:6c:c0: 51:55:35:50:f9:6c:33:ce:9b:0d:02:03:87:db:8d:5b:8d:43: 5d:1d:f2:ee:97:45:6b:1c:66:a5:cc:4c:0d:8b:76:20:fe:2e: cb:1c:99:88:57:e1:61:bc:c7:4c:6a:6a:e8:48:08:ce:3c:28: 29:a8:9b:f4:b3:eb:7b:1c:02:4d:9a:b7:56:e1:fa:42:44:6b: 33:72:17:6c:c4:bc:b4:1b:08:f5:a8:9b:36:89:0a:f2:73:69: 6e:89:42:b9:7b:03:d1:3d:df:d5:20:82:d7:25:fb:78:97:49: d7:1d:7c:d8:9e:5a:bb:8e:64:34:66:53:04:c0:fb:6a:02:30: 07:89:f4:e0:1b:52:3a:be:93:ea:88:29:4c:5a:3d:f5:58:55: 4e:00:40:da:ff:e7:83:55:6e:03:f5:a5:5c:84:76:5a:f2:96: ab:00:c8:d3:e6:1f:c3:a8:44:5e:f8:b3:f5:3b:d0:95:b8:34: db:13:59:fc:e6:44:ce:e3:b3:12:f4:ce:50:64:b1:a4:f5:e5: ca:3e:ed:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdEQ0ExMTAvBgNVBAUTKDJDM0EyQTgxMjFDQ0Y4QTlCRkM3Q0I2NjkxODU0QUY1 RTREMjE5RjkwHhcNMjYwMTEwMjEyMTE2WhcNMjYwMTE3MjEyMTE2WjAYMRYwFAYD VQQDDA02OTYyYzJjYy0xNGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWAu6ixilWtCU20PD+UeOmWiYGeIwNLcGXmkUN4tKhYIKcCA3gJSNUKHCu1y qF8UqPPWzuo7WLH8To581Oaps0aF3FAdVXUXbHXUz8Y9CmFbhEDYjTHCK3zcy/ds WPl6+Ng4SJhCs64AnYPcwo8Z1zdpeWqDqQutWxdKR7EFUaK2vnELsKir6Rbd4M7V YekLx0MzYcBfTGnjWbue7cNRF4YVkzKCPEiHY9zSocnhZf5r2cqBK3x+tfUu6kvL E/q2b6YACnzLyROwGwXduClu0k4A224o/OKQa/p4QUVoFlb1A+0/L6zSi6Tw6cJF qIqHVALB6UueacAQnH8wgcoHXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDkd04Wl 1GKrkh0KBOQEbbtkxSk+MB8GA1UdIwQYMBaAFCw6KoEhzPipv8fLZpGFSvXk0hn5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0RDQS8xQzc1RURBNjdE NkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1LbV94OHRta1lWSzllVFNH ZmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEb3FnU0hNLUttX3g4dG1rWVZLOWVUU0dmay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0RDQS8xQzc1RURBNjdENkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1L bV94OHRta1lWSzllVFNHZmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8RKBYX00J3ybCiw1Rp+sWVyBtN1Hg6qx4WVADxT8RwqhcdFHqPLkP R4fAp26eIwuBxnrGbMBRVTVQ+WwzzpsNAgOH241bjUNdHfLul0VrHGalzEwNi3Yg /i7LHJmIV+FhvMdMamroSAjOPCgpqJv0s+t7HAJNmrdW4fpCRGszchdsxLy0Gwj1 qJs2iQryc2luiUK5ewPRPd/VIILXJft4l0nXHXzYnlq7jmQ0ZlMEwPtqAjAHifTg G1I6vpPqiClMWj31WFVOAEDa/+eDVW4D9aVchHZa8parAMjT5h/DqERe+LP1O9CV uDTbE1n85kTO47MS9M5QZLGk9eXKPu3u -----END CERTIFICATE-----Generated at Sun Jan 11 15:14:27 2026 by rpki-client