This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft File: lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft (raw, json) Hash identifier: ldPtLvig25ykUIvMg03Du1gD5dbutpJkQn6ngej6ptA= Subject key identifier: 53:DA:95:06:B4:C6:D6:AC:34:58:29:3B:90:1D:FF:EE:5C:AC:16:DC Authority key identifier: 96:4D:08:72:7D:AE:DA:C7:40:37:AB:9C:43:A5:08:BA:DB:CF:DA:FD Certificate issuer: /CN=A914E0FE/serialNumber=964D08727DAEDAC74037AB9C43A508BADBCFDAFD Certificate serial: D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft Manifest number: CD Signing time: Fri 19 Dec 2025 04:56:35 +0000 Manifest this update: Fri 19 Dec 2025 04:56:35 +0000 Manifest next update: Fri 26 Dec 2025 04:56:35 +0000 Files and hashes: 1: lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl (hash: ehHB8Aa9xc4XQCRyu7sQYDLkOdH1gkFvEjZDfADhKc8=) 2: 9C9FACF6502411F093EA9419C4F9AE02.roa (hash: dfWTxzpp9zXo46ZkeMa+zA4D9hQsUMAYfKkDEAfqr00=) 3: C5D7AFBA502411F0881DEB19C4F9AE02.roa (hash: enHP38spS/cKfOn42zv8/O5zNl/TksEZwto02A0n87g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:56:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 212 (0xd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E0FE, serialNumber=964D08727DAEDAC74037AB9C43A508BADBCFDAFD Validity Not Before: Dec 19 04:56:35 2025 GMT Not After : Dec 26 04:56:35 2025 GMT Subject: CN=6944db03-92c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:55:97:51:67:73:77:18:b9:16:51:0d:c1:f6: 00:7b:91:e5:d3:c2:7c:3d:95:53:98:e6:b1:86:1c: f9:2f:de:47:03:57:81:63:44:c2:cc:a8:8b:fa:a8: 18:92:4d:6d:fa:e8:9a:bf:0d:b8:00:6b:38:92:ba: 9b:3b:f1:ca:eb:57:73:64:1b:8c:2f:e2:0a:74:46: e6:02:5a:57:02:48:85:a3:a2:d3:64:35:dc:bd:f6: 76:4f:74:2f:3c:a0:dc:eb:c6:fa:24:e7:df:a8:8f: 33:49:79:97:7e:5a:4e:44:bd:36:4c:11:a9:b3:21: 74:8a:9a:42:b2:72:a3:a0:da:27:b6:86:8c:9f:c4: 56:3a:ab:93:0b:c6:67:f2:e0:36:75:ff:ad:10:77: 86:ae:1a:e3:40:78:c1:99:1c:d5:8f:4c:ff:d6:20: 1f:c7:d9:a8:72:ee:6f:97:e0:4e:2e:a3:53:77:79: fa:e7:7b:a5:4f:2b:f4:64:fd:66:93:15:30:1b:8d: 96:57:3f:26:f8:6a:10:aa:12:8d:68:10:d2:8a:c8: 2b:40:ba:0a:f9:90:6a:60:8d:26:27:3f:1d:5a:6b: 7f:2e:41:9b:e0:12:36:96:8b:2c:2c:03:2c:0f:25: 79:ee:7e:d4:c6:24:de:9e:04:60:e4:56:be:8c:70: 3b:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:DA:95:06:B4:C6:D6:AC:34:58:29:3B:90:1D:FF:EE:5C:AC:16:DC X509v3 Authority Key Identifier: keyid:96:4D:08:72:7D:AE:DA:C7:40:37:AB:9C:43:A5:08:BA:DB:CF:DA:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:de:46:94:3b:c5:c4:f4:85:9c:3d:c8:60:7d:58:4d:b5:85: 7d:bd:66:45:48:60:d7:32:b9:41:9b:f7:1c:38:d0:ea:f9:85: b6:ba:67:ed:7c:60:84:7e:9f:97:85:4d:5a:2c:e2:e6:62:05: 03:4e:8a:5b:bd:b2:c4:05:73:d8:2c:e4:d5:e7:49:cd:0e:42: e8:c6:15:21:44:cf:5e:32:01:bb:f8:ce:15:ba:e5:14:8b:d9: 25:c6:83:37:e7:ac:f9:ef:32:f1:b7:5e:23:25:43:4b:79:e3: 9e:af:1c:56:04:5a:60:49:2a:f9:9e:7f:ec:d9:db:aa:15:a3: 41:76:73:18:67:20:4e:b1:cf:b3:f6:62:1f:9e:60:66:a7:18: 8b:85:cd:2f:84:e2:00:a7:1a:13:7f:23:ae:3b:85:e1:55:bf: 49:ab:c9:e8:19:12:34:3d:2d:9d:9f:71:e0:5c:1c:e6:64:3f: ae:d1:86:cd:44:1e:4d:7b:20:59:95:f7:9c:12:ee:b3:c0:43: fd:3f:79:64:f5:a5:1f:d1:f0:3c:e6:d5:38:7a:1f:c2:c3:e7: 98:be:d4:95:2f:08:57:4c:2a:93:79:76:e3:dd:f2:38:87:7a: 03:8b:07:46:31:86:b2:f8:c6:e3:a1:f5:bb:84:aa:65:12:1e: e3:a7:0f:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwRkUxMTAvBgNVBAUTKDk2NEQwODcyN0RBRURBQzc0MDM3QUI5QzQzQTUwOEJB REJDRkRBRkQwHhcNMjUxMjE5MDQ1NjM1WhcNMjUxMjI2MDQ1NjM1WjAYMRYwFAYD VQQDDA02OTQ0ZGIwMy05MmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtFWXUWdzdxi5FlENwfYAe5Hl08J8PZVTmOaxhhz5L95HA1eBY0TCzKiL+qgY kk1t+uiavw24AGs4krqbO/HK61dzZBuML+IKdEbmAlpXAkiFo6LTZDXcvfZ2T3Qv PKDc68b6JOffqI8zSXmXflpORL02TBGpsyF0ippCsnKjoNontoaMn8RWOquTC8Zn 8uA2df+tEHeGrhrjQHjBmRzVj0z/1iAfx9mocu5vl+BOLqNTd3n653ulTyv0ZP1m kxUwG42WVz8m+GoQqhKNaBDSisgrQLoK+ZBqYI0mJz8dWmt/LkGb4BI2lossLAMs DyV57n7UxiTengRg5Fa+jHA79QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFPalQa0 xtasNFgpO5Ad/+5crBbcMB8GA1UdIwQYMBaAFJZNCHJ9rtrHQDernEOlCLrbz9r9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTBGRS8yRjJCNkZFMkFC Q0ExMUVGQTk5NEQxMjlDNEY5QUUwMi9sazBJY24ydTJzZEFONnVjUTZVSXV0dlAy djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xrMEljbjJ1MnNkQU42dWNRNlVJdXR2UDJ2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTBGRS8yRjJCNkZFMkFCQ0ExMUVGQTk5NEQxMjlDNEY5QUUwMi9sazBJY24ydTJz ZEFONnVjUTZVSXV0dlAydjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCj3kaUO8XE9IWcPchgfVhNtYV9vWZFSGDXMrlBm/ccONDq+YW2umft fGCEfp+XhU1aLOLmYgUDTopbvbLEBXPYLOTV50nNDkLoxhUhRM9eMgG7+M4VuuUU i9klxoM356z57zLxt14jJUNLeeOerxxWBFpgSSr5nn/s2duqFaNBdnMYZyBOsc+z 9mIfnmBmpxiLhc0vhOIApxoTfyOuO4XhVb9Jq8noGRI0PS2dn3HgXBzmZD+u0YbN RB5NeyBZlfecEu6zwEP9P3lk9aUf0fA85tU4eh/Cw+eYvtSVLwhXTCqTeXbj3fI4 h3oDiwdGMYay+MbjofW7hKplEh7jpw8/ -----END CERTIFICATE-----Generated at Sat Dec 20 00:54:58 2025 by rpki-client