This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft File: lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft (raw, json) Hash identifier: wxoTEenq4uquKdA3RiUJMVR+nwohCLt/vLIszg+5isM= Subject key identifier: 35:5E:94:E8:4F:1C:F8:D0:5A:D5:D2:5B:76:05:98:2C:F9:F5:84:80 Authority key identifier: 96:4D:08:72:7D:AE:DA:C7:40:37:AB:9C:43:A5:08:BA:DB:CF:DA:FD Certificate issuer: /CN=A914E0FE/serialNumber=964D08727DAEDAC74037AB9C43A508BADBCFDAFD Certificate serial: D8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft Manifest number: D1 Signing time: Sat 27 Dec 2025 04:42:48 +0000 Manifest this update: Sat 27 Dec 2025 04:42:47 +0000 Manifest next update: Sat 03 Jan 2026 04:42:47 +0000 Files and hashes: 1: lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl (hash: gvOHv+tou46083mP67EOMY34HhJDCvVMGeUz476fOMk=) 2: C5D7AFBA502411F0881DEB19C4F9AE02.roa (hash: enHP38spS/cKfOn42zv8/O5zNl/TksEZwto02A0n87g=) 3: 9C9FACF6502411F093EA9419C4F9AE02.roa (hash: dfWTxzpp9zXo46ZkeMa+zA4D9hQsUMAYfKkDEAfqr00=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 Jan 2026 04:42:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E0FE, serialNumber=964D08727DAEDAC74037AB9C43A508BADBCFDAFD Validity Not Before: Dec 27 04:42:47 2025 GMT Not After : Jan 3 04:42:47 2026 GMT Subject: CN=694f63c8-eb33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c6:a9:23:cb:a6:dd:86:87:02:15:57:d7:a9: 20:9d:c4:25:1c:bb:4c:7a:99:fb:9c:ef:15:96:f8: d0:06:81:94:3e:74:20:0c:5e:d2:ab:00:b7:62:ce: 9e:ed:34:c6:6c:08:d2:1b:8e:49:7c:a5:60:28:44: 92:68:f4:e0:33:95:c5:c4:b7:9a:87:b9:66:30:4c: f8:0f:23:dd:e7:79:f1:8b:a8:48:38:06:7f:3b:45: 0f:86:48:aa:95:84:af:d8:92:2a:16:c0:91:d9:d2: 5d:b4:3c:01:4b:f4:78:0c:a2:75:b6:3b:27:ee:51: b2:e2:86:19:c5:e7:b2:13:14:20:c8:ab:ab:44:e9: c8:e4:67:86:8f:19:1f:d2:ad:4c:df:21:e2:38:be: ab:65:ab:e6:43:85:e2:51:ee:ca:29:21:56:d7:51: 36:9c:5d:9b:dd:fb:64:71:0e:a3:76:6e:0a:0f:49: 01:65:8f:93:e9:b2:4a:56:82:41:92:26:c8:02:6b: ba:d3:cc:19:0f:a5:97:1b:04:4c:85:e8:cb:05:de: b8:f6:a1:5f:4b:6f:8f:9c:55:8d:d4:05:53:44:2f: c2:41:27:af:2f:eb:ef:9f:22:16:91:75:ce:2d:1b: 23:de:04:a5:5c:4f:0a:8a:1e:2f:f4:b5:e2:13:fd: 19:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:5E:94:E8:4F:1C:F8:D0:5A:D5:D2:5B:76:05:98:2C:F9:F5:84:80 X509v3 Authority Key Identifier: keyid:96:4D:08:72:7D:AE:DA:C7:40:37:AB:9C:43:A5:08:BA:DB:CF:DA:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:49:69:3f:a3:d6:1d:8f:ba:f3:bd:c3:86:7c:02:9a:15:fc: 6e:6d:c4:d0:55:42:6b:1c:13:9f:4f:5c:de:b8:01:d7:18:98: 8e:d8:41:a9:1b:43:7e:d3:58:c9:e4:f9:25:a5:57:5b:5a:3b: 0a:57:97:70:12:50:4a:0e:7b:73:46:78:7d:68:04:da:d4:22: 58:b6:f4:8e:86:18:3a:ea:18:44:2f:32:c9:ed:c2:4b:e4:2e: 53:5a:1c:a4:8e:10:11:52:57:b3:79:f2:df:1d:22:0d:3e:6a: 0e:f6:fb:05:33:e0:e7:97:e9:cf:12:eb:ce:7e:d4:1c:d3:f5: b4:b5:38:42:98:49:74:1f:77:e2:a6:76:34:20:0b:35:a4:bb: 7e:24:2c:a4:87:23:c0:a9:50:8f:6e:c6:ed:f4:22:9e:d4:58: d2:8e:95:47:1e:3b:19:a1:b6:c9:80:cc:1c:25:76:b5:6a:e5: d9:8f:52:bf:12:92:10:e9:81:59:46:bf:49:ac:3d:81:4e:5a: 6d:f7:52:88:d3:ac:88:93:60:1d:cf:6e:d1:2f:59:68:fd:5a: 7c:ae:d6:c1:28:f8:f9:c2:d1:51:fa:a1:3b:fe:22:5e:3b:4e: 14:a2:98:57:00:d4:42:70:93:fe:5b:e2:52:4b:53:35:26:70: 6d:8c:99:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwRkUxMTAvBgNVBAUTKDk2NEQwODcyN0RBRURBQzc0MDM3QUI5QzQzQTUwOEJB REJDRkRBRkQwHhcNMjUxMjI3MDQ0MjQ3WhcNMjYwMTAzMDQ0MjQ3WjAYMRYwFAYD VQQDDA02OTRmNjNjOC1lYjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8apI8um3YaHAhVX16kgncQlHLtMepn7nO8VlvjQBoGUPnQgDF7SqwC3Ys6e 7TTGbAjSG45JfKVgKESSaPTgM5XFxLeah7lmMEz4DyPd53nxi6hIOAZ/O0UPhkiq lYSv2JIqFsCR2dJdtDwBS/R4DKJ1tjsn7lGy4oYZxeeyExQgyKurROnI5GeGjxkf 0q1M3yHiOL6rZavmQ4XiUe7KKSFW11E2nF2b3ftkcQ6jdm4KD0kBZY+T6bJKVoJB kibIAmu608wZD6WXGwRMhejLBd649qFfS2+PnFWN1AVTRC/CQSevL+vvnyIWkXXO LRsj3gSlXE8Kih4v9LXiE/0ZVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDVelOhP HPjQWtXSW3YFmCz59YSAMB8GA1UdIwQYMBaAFJZNCHJ9rtrHQDernEOlCLrbz9r9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTBGRS8yRjJCNkZFMkFC Q0ExMUVGQTk5NEQxMjlDNEY5QUUwMi9sazBJY24ydTJzZEFONnVjUTZVSXV0dlAy djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xrMEljbjJ1MnNkQU42dWNRNlVJdXR2UDJ2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTBGRS8yRjJCNkZFMkFCQ0ExMUVGQTk5NEQxMjlDNEY5QUUwMi9sazBJY24ydTJz ZEFONnVjUTZVSXV0dlAydjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsSWk/o9Ydj7rzvcOGfAKaFfxubcTQVUJrHBOfT1zeuAHXGJiO2EGp G0N+01jJ5PklpVdbWjsKV5dwElBKDntzRnh9aATa1CJYtvSOhhg66hhELzLJ7cJL 5C5TWhykjhARUlezefLfHSINPmoO9vsFM+Dnl+nPEuvOftQc0/W0tThCmEl0H3fi pnY0IAs1pLt+JCykhyPAqVCPbsbt9CKe1FjSjpVHHjsZobbJgMwcJXa1auXZj1K/ EpIQ6YFZRr9JrD2BTlpt91KI06yIk2Adz27RL1lo/Vp8rtbBKPj5wtFR+qE7/iJe O04UophXANRCcJP+W+JSS1M1JnBtjJl2 -----END CERTIFICATE-----Generated at Mon Dec 29 00:46:19 2025 by rpki-client