This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft File: L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft (raw, json) Hash identifier: wtY4EkHKJSAX2CP5oLTisVNsHqkrMS9JCmyndYVt/Fc= Subject key identifier: A1:09:89:D3:25:44:C2:B0:3E:A2:09:80:03:6C:6E:46:32:4C:9B:90 Authority key identifier: 2F:C4:60:19:EE:52:D1:E9:1B:B1:D1:D8:E1:7E:99:8A:71:5B:72:44 Certificate issuer: /CN=A9152D1E/serialNumber=2FC46019EE52D1E91BB1D1D8E17E998A715B7244 Certificate serial: 044D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8RgGe5S0ekbsdHY4X6ZinFbckQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft Manifest number: 044B Signing time: Thu 18 Dec 2025 23:33:05 +0000 Manifest this update: Thu 18 Dec 2025 23:33:05 +0000 Manifest next update: Thu 25 Dec 2025 23:33:05 +0000 Files and hashes: 1: L8RgGe5S0ekbsdHY4X6ZinFbckQ.crl (hash: DqBQZjizdpiDvyuVKHWSxEAPw9CkoBHhjYMBxHUnYUQ=) 2: 74D78D2AB28F11EFB915BB1BC4F9AE02.roa (hash: RBXkfOsNfCkPwqzSfm7Z1YZlXHjwWFawgr5+RKn+Spg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.crl rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8RgGe5S0ekbsdHY4X6ZinFbckQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:33:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1101 (0x44d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152D1E, serialNumber=2FC46019EE52D1E91BB1D1D8E17E998A715B7244 Validity Not Before: Dec 18 23:33:05 2025 GMT Not After : Dec 25 23:33:05 2025 GMT Subject: CN=69448f31-042b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ff:44:ab:b2:44:6e:5e:98:16:a7:e6:8c:d6: e8:cc:93:d8:6a:ae:57:98:54:7d:a1:7b:d7:de:66: 68:88:83:28:ed:cc:91:a6:36:51:73:84:e3:73:b1: 95:c4:0d:18:ef:63:8e:35:09:94:96:cf:63:31:93: 75:e9:b3:d2:1d:aa:1a:21:b0:66:b7:53:01:13:46: 63:91:ca:8d:a9:fb:68:e3:0c:ba:af:b6:4d:fa:dd: 81:ac:75:ee:19:7e:b9:42:ea:f4:71:0e:00:b0:34: 27:e6:44:d0:0a:82:d1:dd:1e:f7:68:92:b6:cf:f2: bd:c2:bd:f7:bd:bb:12:8f:62:9f:cf:3e:9e:53:b1: d0:7a:d0:e7:bb:fb:cf:b2:f3:13:17:7e:2c:5f:37: ee:38:7f:f9:23:26:5e:cc:85:a1:af:f8:50:d2:e8: 8d:41:48:70:29:87:25:ce:61:b3:95:c3:d8:82:85: b9:12:49:6f:21:29:9f:d9:c5:51:7a:f0:1b:86:8d: 10:35:ba:9d:a8:92:55:7d:e8:dd:9c:51:3d:6f:79: 7f:32:56:ec:3c:81:4a:85:ba:b4:07:68:92:bc:ee: ad:af:e5:4b:9f:e5:16:bd:98:26:b0:96:9d:9f:81: 1e:8b:51:f4:55:26:b5:69:f1:71:69:fc:34:09:5e: 47:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:09:89:D3:25:44:C2:B0:3E:A2:09:80:03:6C:6E:46:32:4C:9B:90 X509v3 Authority Key Identifier: keyid:2F:C4:60:19:EE:52:D1:E9:1B:B1:D1:D8:E1:7E:99:8A:71:5B:72:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8RgGe5S0ekbsdHY4X6ZinFbckQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152D1E/C7C0C1DA7D6011ECAD965030C4F9AE02/L8RgGe5S0ekbsdHY4X6ZinFbckQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:f0:24:94:59:36:af:48:e9:39:57:ae:db:56:a2:78:32:4c: 38:ff:40:90:43:0d:b9:8e:fd:64:9e:61:85:34:d9:8b:7d:96: 68:6c:cb:90:dc:63:21:6c:bc:05:1f:aa:b8:96:73:b8:10:dd: 38:89:32:dc:1d:ee:42:b4:1e:a7:c1:51:ee:ed:b0:f8:4b:ed: 1e:e0:5f:2a:14:60:6c:0f:67:fa:e7:27:02:b8:35:83:b9:9a: dc:24:2c:44:6d:c9:3e:41:67:28:85:ad:8d:74:22:70:7c:1d: 13:01:22:a9:94:65:05:5f:08:ce:30:a5:8a:f7:1b:34:7a:c2: c7:6c:50:80:5b:da:6f:eb:80:c5:cc:53:be:78:3a:a3:8a:e7: b2:8c:ac:34:00:ff:85:52:73:c0:69:d4:86:54:7f:7e:79:72: cf:15:31:87:59:66:f1:ac:2a:c4:b7:b4:bd:9c:4b:37:ac:e4: eb:12:c3:6f:35:d1:96:74:75:27:e7:fa:c8:05:0a:5c:d2:af: 18:1c:d2:ff:ba:88:f0:84:f4:95:bf:e3:48:ed:a3:c3:5f:e5: f7:9f:53:65:8f:59:32:ae:a1:01:45:6f:3c:7e:80:d9:c7:4d: 99:bc:8a:4d:2e:23:87:d7:5a:3f:f1:e1:1c:39:e3:f6:30:e3: f6:f4:b9:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBE0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJEMUUxMTAvBgNVBAUTKDJGQzQ2MDE5RUU1MkQxRTkxQkIxRDFEOEUxN0U5OThB NzE1QjcyNDQwHhcNMjUxMjE4MjMzMzA1WhcNMjUxMjI1MjMzMzA1WjAYMRYwFAYD VQQDDA02OTQ0OGYzMS0wNDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApP9Eq7JEbl6YFqfmjNbozJPYaq5XmFR9oXvX3mZoiIMo7cyRpjZRc4Tjc7GV xA0Y72OONQmUls9jMZN16bPSHaoaIbBmt1MBE0ZjkcqNqfto4wy6r7ZN+t2BrHXu GX65Qur0cQ4AsDQn5kTQCoLR3R73aJK2z/K9wr33vbsSj2Kfzz6eU7HQetDnu/vP svMTF34sXzfuOH/5IyZezIWhr/hQ0uiNQUhwKYclzmGzlcPYgoW5EklvISmf2cVR evAbho0QNbqdqJJVfejdnFE9b3l/MlbsPIFKhbq0B2iSvO6tr+VLn+UWvZgmsJad n4Eei1H0VSa1afFxafw0CV5HZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKEJidMl RMKwPqIJgANsbkYyTJuQMB8GA1UdIwQYMBaAFC/EYBnuUtHpG7HR2OF+mYpxW3JE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkQxRS9DN0MwQzFEQTdE NjAxMUVDQUQ5NjUwMzBDNEY5QUUwMi9MOFJnR2U1UzBla2JzZEhZNFg2WmluRmJj a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w4UmdHZTVTMGVrYnNkSFk0WDZaaW5GYmNrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkQxRS9DN0MwQzFEQTdENjAxMUVDQUQ5NjUwMzBDNEY5QUUwMi9MOFJnR2U1UzBl a2JzZEhZNFg2WmluRmJja1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBi8CSUWTavSOk5V67bVqJ4Mkw4/0CQQw25jv1knmGFNNmLfZZobMuQ 3GMhbLwFH6q4lnO4EN04iTLcHe5CtB6nwVHu7bD4S+0e4F8qFGBsD2f65ycCuDWD uZrcJCxEbck+QWcoha2NdCJwfB0TASKplGUFXwjOMKWK9xs0esLHbFCAW9pv64DF zFO+eDqjiueyjKw0AP+FUnPAadSGVH9+eXLPFTGHWWbxrCrEt7S9nEs3rOTrEsNv NdGWdHUn5/rIBQpc0q8YHNL/uojwhPSVv+NI7aPDX+X3n1Nlj1kyrqEBRW88foDZ x02ZvIpNLiOH11o/8eEcOeP2MOP29Lml -----END CERTIFICATE-----Generated at Fri Dec 19 23:55:54 2025 by rpki-client