This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.mft File: lnuX2eMRJQ2ClC0n5MX5DZgTgFg.mft (raw, json) Hash identifier: Y/gS0cM4SAfewyRpv040FJAQeINsUi23VkH2SbvFh3E= Subject key identifier: 00:E5:8B:5A:A5:8B:A8:30:9D:8C:02:FF:1A:A1:74:DA:FA:D5:6C:73 Authority key identifier: 96:7B:97:D9:E3:11:25:0D:82:94:2D:27:E4:C5:F9:0D:98:13:80:58 Certificate issuer: /CN=A915FDD9/serialNumber=967B97D9E311250D82942D27E4C5F90D98138058 Certificate serial: ED Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.mft Manifest number: D5 Signing time: Fri 19 Dec 2025 05:16:31 +0000 Manifest this update: Fri 19 Dec 2025 05:16:31 +0000 Manifest next update: Fri 26 Dec 2025 05:16:31 +0000 Files and hashes: 1: lnuX2eMRJQ2ClC0n5MX5DZgTgFg.crl (hash: hDNgBYZRnUB6toAzvzJa71SF9/r9jPNi7p25ytRnmvI=) 2: 45322DB8BF9111F0B4CD4C4FC4F9AE02.roa (hash: ud1mE3zDUyJoUD45JUyLpu4ly9UG6jF4f8pk2Ff/D/Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.crl rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:16:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 237 (0xed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FDD9, serialNumber=967B97D9E311250D82942D27E4C5F90D98138058 Validity Not Before: Dec 19 05:16:31 2025 GMT Not After : Dec 26 05:16:31 2025 GMT Subject: CN=6944dfaf-ebfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:06:9b:5b:ac:83:b7:4f:26:15:17:8e:ee:9d: 15:1b:19:f8:7f:8f:d1:34:d0:34:c7:88:91:9c:b4: 21:df:f8:64:c1:a5:c5:1d:43:76:10:0c:7d:bd:ca: db:5a:f5:b8:6e:0e:9f:4a:4e:00:88:ea:f3:08:f5: aa:ad:3b:23:8c:3c:e0:27:c0:c5:25:ca:1b:fe:0d: 81:4a:85:97:db:68:af:df:1c:4d:7b:9b:4b:52:bb: 59:5f:ce:81:49:e0:ac:ac:13:41:f4:01:23:0b:d7: 93:6c:41:9c:6e:1c:84:05:bf:a9:b1:dd:37:ae:d5: 85:7c:36:ed:55:be:1b:3d:17:fc:3b:0b:a4:81:2a: 10:1a:bc:ee:f5:b9:66:63:3a:45:a9:6f:97:28:9b: 51:5e:0e:38:c5:dc:4b:6e:77:76:ab:69:45:3b:9d: 6a:b2:8f:2f:a9:ce:0d:83:2a:fb:22:c8:92:ce:56: ee:cc:ad:d8:90:c2:73:7f:19:31:82:a5:47:10:23: 4e:6b:a1:2d:0c:7a:ea:8d:69:89:21:e8:e2:d5:90: f7:98:bb:f2:91:13:c4:88:ac:a9:78:7c:e4:4a:e8: cf:51:29:7a:7b:14:ec:78:21:2f:99:71:13:8c:0e: 42:ee:22:a0:1b:7d:b0:00:15:79:a9:98:f1:ec:f6: ea:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:E5:8B:5A:A5:8B:A8:30:9D:8C:02:FF:1A:A1:74:DA:FA:D5:6C:73 X509v3 Authority Key Identifier: keyid:96:7B:97:D9:E3:11:25:0D:82:94:2D:27:E4:C5:F9:0D:98:13:80:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:08:6a:b6:b7:70:c2:3b:57:12:6b:84:6e:5d:ee:6d:5c:43: 54:66:ac:8f:16:11:d5:d6:8c:04:1b:91:aa:47:c5:74:b2:d2: cd:44:44:d5:42:35:81:84:90:92:1c:60:bb:25:7a:9e:b9:2c: 10:d4:c9:f5:53:ef:30:03:b7:1e:2c:a8:b6:cf:b3:e5:e8:ac: 94:23:44:58:91:bf:74:67:f4:a8:e0:5a:4f:71:07:3f:8a:94: 6e:6d:dc:7e:ea:ba:41:4a:75:2c:ad:db:c4:34:d3:08:03:4c: ff:0e:8b:37:88:97:5a:cd:41:39:86:6d:ef:55:db:6a:90:3b: 39:26:ed:ee:53:ed:40:f7:41:13:21:d0:3e:07:1d:ca:02:2b: f3:43:e4:d8:c4:17:dd:da:f1:9e:30:8d:c6:25:78:7a:80:c2: af:61:62:f0:31:a9:2f:0a:38:15:ad:48:e3:d8:86:75:ae:a5: 44:3d:15:c2:a4:0f:f1:b2:dc:e1:be:2b:25:a6:91:30:cb:ba: e4:24:ce:02:2d:7f:81:fe:3d:ba:5f:b9:05:a5:cd:12:ba:43: 45:42:34:b3:61:10:1c:23:27:a1:66:23:60:2c:1e:04:e6:e3: 61:c5:ef:ab:66:b5:b3:67:82:32:0c:98:ac:cf:4d:7d:90:8b: 5a:ea:de:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZERDkxMTAvBgNVBAUTKDk2N0I5N0Q5RTMxMTI1MEQ4Mjk0MkQyN0U0QzVGOTBE OTgxMzgwNTgwHhcNMjUxMjE5MDUxNjMxWhcNMjUxMjI2MDUxNjMxWjAYMRYwFAYD VQQDDA02OTQ0ZGZhZi1lYmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwabW6yDt08mFReO7p0VGxn4f4/RNNA0x4iRnLQh3/hkwaXFHUN2EAx9vcrb WvW4bg6fSk4AiOrzCPWqrTsjjDzgJ8DFJcob/g2BSoWX22iv3xxNe5tLUrtZX86B SeCsrBNB9AEjC9eTbEGcbhyEBb+psd03rtWFfDbtVb4bPRf8OwukgSoQGrzu9blm YzpFqW+XKJtRXg44xdxLbnd2q2lFO51qso8vqc4Ngyr7IsiSzlbuzK3YkMJzfxkx gqVHECNOa6EtDHrqjWmJIeji1ZD3mLvykRPEiKypeHzkSujPUSl6exTseCEvmXET jA5C7iKgG32wABV5qZjx7PbqewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFADli1ql i6gwnYwC/xqhdNr61WxzMB8GA1UdIwQYMBaAFJZ7l9njESUNgpQtJ+TF+Q2YE4BY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkREOS9CNjIyRkE4QUQ2 REUxMUVGQjA0NzRFMUJDNEY5QUUwMi9sbnVYMmVNUkpRMkNsQzBuNU1YNURaZ1Rn RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xudVgyZU1SSlEyQ2xDMG41TVg1RFpnVGdGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkREOS9CNjIyRkE4QUQ2REUxMUVGQjA0NzRFMUJDNEY5QUUwMi9sbnVYMmVNUkpR MkNsQzBuNU1YNURaZ1RnRmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNCGq2t3DCO1cSa4RuXe5tXENUZqyPFhHV1owEG5GqR8V0stLNRETV QjWBhJCSHGC7JXqeuSwQ1Mn1U+8wA7ceLKi2z7Pl6KyUI0RYkb90Z/So4FpPcQc/ ipRubdx+6rpBSnUsrdvENNMIA0z/Dos3iJdazUE5hm3vVdtqkDs5Ju3uU+1A90ET IdA+Bx3KAivzQ+TYxBfd2vGeMI3GJXh6gMKvYWLwMakvCjgVrUjj2IZ1rqVEPRXC pA/xstzhvislppEwy7rkJM4CLX+B/j26X7kFpc0SukNFQjSzYRAcIyehZiNgLB4E 5uNhxe+rZrWzZ4IyDJisz019kIta6t63 -----END CERTIFICATE-----Generated at Sat Dec 20 00:55:15 2025 by rpki-client