This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft File: lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft (raw, json) Hash identifier: Zae6eRcy3skfpviiOSfrcnCJBNGrMjAEsYMzoj7UYlU= Subject key identifier: AE:7A:72:2B:2F:2C:F9:FB:5B:BC:0D:1B:38:8C:30:A3:34:B2:27:FD Authority key identifier: 94:2D:54:1D:FE:79:82:F6:E0:1E:6B:CC:97:6D:C0:CB:84:14:E8:38 Certificate issuer: /CN=A917D7F2/serialNumber=942D541DFE7982F6E01E6BCC976DC0CB8414E838 Certificate serial: 3504 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft Manifest number: 34FE Signing time: Fri 26 Dec 2025 14:34:58 +0000 Manifest this update: Fri 26 Dec 2025 14:34:57 +0000 Manifest next update: Fri 02 Jan 2026 14:34:57 +0000 Files and hashes: 1: lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl (hash: d2pa/gw1RcEgnuN3uVcpw8NWnP9b2AzAt6x6p8alP1Q=) 2: 35FC192C272C11ED9E64C718C4F9AE02.roa (hash: u7xmf7mlcB9GCB0bcolcUcNfJD4EHboUgH+LjzJipP0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 Jan 2026 14:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13572 (0x3504) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D7F2, serialNumber=942D541DFE7982F6E01E6BCC976DC0CB8414E838 Validity Not Before: Dec 26 14:34:57 2025 GMT Not After : Jan 2 14:34:57 2026 GMT Subject: CN=694e9d12-7966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:19:1e:d2:2a:0c:50:85:ef:f0:6a:a3:bb:49: 7f:16:c1:a0:9c:9a:fb:45:a2:1f:18:bc:b2:96:6a: a8:82:f4:15:2d:b1:32:c4:e3:a2:e2:d6:b6:0f:b2: fc:c8:ab:2b:1f:cc:c6:f1:34:2e:91:37:06:68:2d: c5:bb:dd:a6:fa:32:a9:d0:59:5d:0c:90:10:d9:e5: a5:e8:9d:d0:83:88:42:3c:63:4f:e9:68:ec:74:e8: ab:5f:42:be:8c:c3:dc:70:41:a8:59:97:d8:28:70: 71:4b:54:18:a0:a3:15:5b:03:22:f7:5b:88:7a:13: 7b:80:57:30:2b:d5:58:e9:ce:a0:a2:ad:a7:e2:cc: bb:f5:a1:db:b1:df:47:76:a6:0f:de:e8:ae:1f:82: b8:99:89:dc:bb:45:23:a4:d1:1f:88:1d:cf:8c:d1: f3:2f:35:b9:9b:1e:80:2e:79:0a:3e:4c:a4:1c:a0: 52:42:8e:19:6e:eb:24:3a:16:c8:54:8a:a8:ee:19: 0c:8d:78:75:24:5e:c0:e8:bd:7f:6d:b5:71:25:52: a7:95:b4:50:85:d9:b4:93:6d:f7:49:6a:57:50:eb: dd:c5:ab:ba:01:7a:67:bb:9c:7a:1a:39:1d:f8:c5: 65:a7:61:88:82:33:61:72:aa:8c:3c:86:c7:17:4b: ec:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:7A:72:2B:2F:2C:F9:FB:5B:BC:0D:1B:38:8C:30:A3:34:B2:27:FD X509v3 Authority Key Identifier: keyid:94:2D:54:1D:FE:79:82:F6:E0:1E:6B:CC:97:6D:C0:CB:84:14:E8:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:cf:5d:3c:cd:7e:cd:55:ec:71:07:82:17:76:8c:35:4b:d6: a6:fb:13:f6:cb:db:a8:92:e2:c8:38:7d:d2:00:9e:f3:dd:51: 0f:14:34:2f:43:11:eb:2e:98:53:96:95:de:1d:50:01:30:8f: 8a:c3:00:92:de:14:9e:9b:54:7d:a1:84:92:9e:78:0c:69:f5: a6:e8:61:73:b3:9b:47:43:58:dc:b5:ed:9f:43:dd:73:ac:21: 64:e7:c2:fd:2c:38:fe:e5:47:95:ac:7f:01:84:83:a2:ff:15: dc:b8:cb:04:2a:d4:41:fb:85:a8:7a:31:47:6e:1e:22:45:20: c9:62:9e:fc:6f:12:92:cb:d7:0f:7b:a8:bc:e5:39:43:3a:c3: a4:f5:23:d8:92:a2:88:cc:84:aa:2a:a1:22:14:ae:34:50:ce: 37:90:59:e3:0c:a3:a1:ce:71:26:90:ec:f4:88:27:46:9c:e6: 37:83:3e:2b:68:80:f8:16:b6:63:72:e7:56:95:11:28:cb:70: 11:f1:69:d8:cc:b6:78:9b:54:16:28:28:ef:7c:ec:e0:0c:03: 62:2e:1e:c7:88:31:b2:81:85:c1:96:2c:1d:8e:73:15:2b:df: eb:b2:78:96:30:ee:57:b3:5c:1c:cd:07:88:0f:07:80:2d:69: 52:fd:5a:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q3RjIxMTAvBgNVBAUTKDk0MkQ1NDFERkU3OTgyRjZFMDFFNkJDQzk3NkRDMENC ODQxNEU4MzgwHhcNMjUxMjI2MTQzNDU3WhcNMjYwMTAyMTQzNDU3WjAYMRYwFAYD VQQDDA02OTRlOWQxMi03OTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Rke0ioMUIXv8Gqju0l/FsGgnJr7RaIfGLyylmqogvQVLbEyxOOi4ta2D7L8 yKsrH8zG8TQukTcGaC3Fu92m+jKp0FldDJAQ2eWl6J3Qg4hCPGNP6WjsdOirX0K+ jMPccEGoWZfYKHBxS1QYoKMVWwMi91uIehN7gFcwK9VY6c6goq2n4sy79aHbsd9H dqYP3uiuH4K4mYncu0UjpNEfiB3PjNHzLzW5mx6ALnkKPkykHKBSQo4ZbuskOhbI VIqo7hkMjXh1JF7A6L1/bbVxJVKnlbRQhdm0k233SWpXUOvdxau6AXpnu5x6Gjkd +MVlp2GIgjNhcqqMPIbHF0vsBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK56cisv LPn7W7wNGziMMKM0sif9MB8GA1UdIwQYMBaAFJQtVB3+eYL24B5rzJdtwMuEFOg4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDdGMi9GMDI4OTAzQzFE OEMxMUUyQjE5RDVGRUEwOEIwMkNEMi9sQzFVSGY1NWd2YmdIbXZNbDIzQXk0UVU2 RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDMVVIZjU1Z3ZiZ0htdk1sMjNBeTRRVTZEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDdGMi9GMDI4OTAzQzFEOEMxMUUyQjE5RDVGRUEwOEIwMkNEMi9sQzFVSGY1NWd2 YmdIbXZNbDIzQXk0UVU2RGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTz108zX7NVexxB4IXdow1S9am+xP2y9uokuLIOH3SAJ7z3VEPFDQv QxHrLphTlpXeHVABMI+KwwCS3hSem1R9oYSSnngMafWm6GFzs5tHQ1jcte2fQ91z rCFk58L9LDj+5UeVrH8BhIOi/xXcuMsEKtRB+4WoejFHbh4iRSDJYp78bxKSy9cP e6i85TlDOsOk9SPYkqKIzISqKqEiFK40UM43kFnjDKOhznEmkOz0iCdGnOY3gz4r aID4FrZjcudWlREoy3AR8WnYzLZ4m1QWKCjvfOzgDANiLh7HiDGygYXBliwdjnMV K9/rsniWMO5Xs1wczQeIDweALWlS/Vr4 -----END CERTIFICATE-----Generated at Sat Dec 27 22:34:25 2025 by rpki-client