This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft File: lDrZvGF3q4wvjoExwUpUZexClU8.mft (raw, json) Hash identifier: 9sOMjaGRqfEMD6I0YDQid4oEDyND47Kdybq4/n+Rfr0= Subject key identifier: C4:90:B9:14:51:35:C9:ED:BB:4E:EC:8A:20:69:A7:09:03:81:F7:C1 Authority key identifier: 94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F Certificate issuer: /CN=A9158568/serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F Certificate serial: 019C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft Manifest number: 0198 Signing time: Sat 20 Dec 2025 18:15:14 +0000 Manifest this update: Sat 20 Dec 2025 18:15:14 +0000 Manifest next update: Sat 27 Dec 2025 18:15:14 +0000 Files and hashes: 1: lDrZvGF3q4wvjoExwUpUZexClU8.crl (hash: 3k+AHjzp2LtuGyQiQqrGHXBad0eSQlhQ4KInbmXhxUA=) 2: 203DB338782111EEAFDDBD86C4F9AE02.roa (hash: wX9s/s7jxKKJJyFHtP8kJqChB04GKqVy3xgEjOBVe9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.crl rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:15:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 412 (0x19c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F Validity Not Before: Dec 20 18:15:14 2025 GMT Not After : Dec 27 18:15:14 2025 GMT Subject: CN=6946e7b2-e61b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:60:dd:58:8e:1e:08:ae:57:90:1c:a0:e2:34: 86:a5:3d:ef:02:a0:33:15:97:b3:ec:e4:0a:42:f0: 6b:33:fc:d7:10:b1:d0:1a:d7:9d:c5:af:82:ce:2d: 1d:0b:03:81:cf:e9:10:0f:12:fe:66:ce:1c:6b:32: 82:f3:40:1b:e7:c8:43:3b:24:84:c5:52:78:ec:82: 4b:df:b8:50:85:ee:21:ad:14:a8:1f:09:ee:a9:c1: e1:35:8a:21:c2:3b:d7:87:9b:2f:ff:35:bc:f6:25: 34:f5:04:0c:cd:de:b9:36:95:e8:19:f7:bc:f0:09: 65:19:09:63:f0:d8:07:e0:5a:dd:2c:5b:8b:45:dc: dd:59:83:32:06:0f:c4:a0:37:e9:ad:3d:8e:0b:61: d4:58:bb:e4:d4:35:5f:07:22:c8:d7:52:8a:bd:06: 78:d3:61:41:8e:6d:46:7a:67:ed:ae:8f:46:77:20: 1f:85:cc:81:65:17:38:56:6e:47:36:17:78:5a:2c: 26:d9:6d:6f:9f:4d:7c:2a:d4:c6:97:42:0c:6f:76: 07:8a:6c:27:71:56:37:f2:ed:77:a4:92:b5:81:b8: e7:34:25:e7:19:7b:24:71:52:30:b7:2f:dd:68:82: 82:c9:07:d6:35:ac:a0:b6:05:5d:55:dc:ad:aa:b5: 7e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:90:B9:14:51:35:C9:ED:BB:4E:EC:8A:20:69:A7:09:03:81:F7:C1 X509v3 Authority Key Identifier: keyid:94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:d9:fa:69:f6:f2:6a:f5:36:95:42:ee:ad:7d:f6:72:d4:f2: ac:78:31:47:0d:9c:d2:fb:e1:9d:7d:16:a5:23:dc:27:79:cb: 8c:77:d7:b4:51:1a:55:a6:53:33:4f:49:3b:66:07:4d:af:32: f5:98:e1:9d:c1:ea:b0:dd:8b:0a:a3:2e:5c:d7:25:fd:95:da: 72:ab:f8:42:47:6a:00:92:d2:0d:e3:b3:e3:db:20:0e:68:7a: a7:f8:28:5e:94:38:fc:26:40:38:7b:ba:33:9b:f5:80:19:e5: 60:f2:fd:01:78:7a:92:19:c8:15:5c:44:00:ab:51:c2:21:6c: b0:33:57:a4:0f:33:be:71:00:3b:d3:6d:dc:cf:cd:09:1a:6e: ca:77:0a:88:ca:61:a0:7e:8c:ef:6c:ab:e3:ca:01:fa:cd:91: 70:51:02:db:f4:86:4e:43:72:df:a1:77:ac:40:71:df:08:90: 21:34:3d:c8:b5:0c:22:72:0a:3a:af:52:d1:7c:69:fb:d8:43: 2d:f7:0f:fe:30:1b:90:8d:fe:32:ef:d2:c6:5e:85:00:f7:db: 49:fc:9b:ec:71:f7:23:8a:5d:da:78:f8:d3:e5:58:64:ef:b0: 0c:7b:b0:1c:7d:31:a2:9e:72:57:04:e4:ab:b1:15:24:9b:ca: 14:9d:0f:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKDk0M0FEOUJDNjE3N0FCOEMyRjhFODEzMUMxNEE1NDY1 RUM0Mjk1NEYwHhcNMjUxMjIwMTgxNTE0WhcNMjUxMjI3MTgxNTE0WjAYMRYwFAYD VQQDDA02OTQ2ZTdiMi1lNjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm2DdWI4eCK5XkByg4jSGpT3vAqAzFZez7OQKQvBrM/zXELHQGtedxa+Czi0d CwOBz+kQDxL+Zs4cazKC80Ab58hDOySExVJ47IJL37hQhe4hrRSoHwnuqcHhNYoh wjvXh5sv/zW89iU09QQMzd65NpXoGfe88AllGQlj8NgH4FrdLFuLRdzdWYMyBg/E oDfprT2OC2HUWLvk1DVfByLI11KKvQZ402FBjm1Gemftro9GdyAfhcyBZRc4Vm5H Nhd4Wiwm2W1vn018KtTGl0IMb3YHimwncVY38u13pJK1gbjnNCXnGXskcVIwty/d aIKCyQfWNaygtgVdVdytqrV+kwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMSQuRRR Ncntu07siiBppwkDgffBMB8GA1UdIwQYMBaAFJQ62bxhd6uML46BMcFKVGXsQpVP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC8zNjE4QUI2RTcy QTMxMUVFOTQ1NTcyMTFDNEY5QUUwMi9sRHJadkdGM3E0d3Zqb0V4d1VwVVpleENs VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xEclp2R0YzcTR3dmpvRXh3VXBVWmV4Q2xVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC8zNjE4QUI2RTcyQTMxMUVFOTQ1NTcyMTFDNEY5QUUwMi9sRHJadkdGM3E0 d3Zqb0V4d1VwVVpleENsVTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAM2fpp9vJq9TaVQu6tffZy1PKseDFHDZzS++GdfRalI9wnecuMd9e0 URpVplMzT0k7ZgdNrzL1mOGdweqw3YsKoy5c1yX9ldpyq/hCR2oAktIN47Pj2yAO aHqn+ChelDj8JkA4e7ozm/WAGeVg8v0BeHqSGcgVXEQAq1HCIWywM1ekDzO+cQA7 023cz80JGm7KdwqIymGgfozvbKvjygH6zZFwUQLb9IZOQ3LfoXesQHHfCJAhND3I tQwicgo6r1LRfGn72EMt9w/+MBuQjf4y79LGXoUA99tJ/Jvscfcjil3aePjT5Vhk 77AMe7AcfTGinnJXBOSrsRUkm8oUnQ/L -----END CERTIFICATE-----Generated at Sun Dec 21 13:05:57 2025 by rpki-client