This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft File: lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft (raw, json) Hash identifier: jxuIw82MJOsdXzxIbj/EKcNKzEy4oXRcGUiVT67eVcs= Subject key identifier: 09:43:A9:5C:D8:0E:14:C9:0A:89:60:27:CA:A2:68:70:C7:E0:EA:26 Authority key identifier: 94:2D:54:1D:FE:79:82:F6:E0:1E:6B:CC:97:6D:C0:CB:84:14:E8:38 Certificate issuer: /CN=A917D7F2/serialNumber=942D541DFE7982F6E01E6BCC976DC0CB8414E838 Certificate serial: 3506 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft Manifest number: 3500 Signing time: Tue 30 Dec 2025 14:36:34 +0000 Manifest this update: Tue 30 Dec 2025 14:36:34 +0000 Manifest next update: Tue 06 Jan 2026 14:36:34 +0000 Files and hashes: 1: lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl (hash: FAq13FwB46kG53BQOPyNCJ/9WPe+w6nRlRIHa4E/Qj4=) 2: 35FC192C272C11ED9E64C718C4F9AE02.roa (hash: u7xmf7mlcB9GCB0bcolcUcNfJD4EHboUgH+LjzJipP0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 Jan 2026 14:36:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13574 (0x3506) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D7F2, serialNumber=942D541DFE7982F6E01E6BCC976DC0CB8414E838 Validity Not Before: Dec 30 14:36:34 2025 GMT Not After : Jan 6 14:36:34 2026 GMT Subject: CN=6953e372-b2d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:2c:34:33:53:5a:c3:f7:4c:bd:05:b8:15:90: 6a:4c:6c:7c:bb:50:11:de:84:cc:c3:34:52:1a:fd: 06:14:23:25:88:e8:96:13:bc:30:da:6f:66:fa:7d: b1:63:56:ff:16:b6:01:af:e1:df:da:02:49:68:3f: 26:1c:7d:76:63:6c:8f:90:90:c1:0f:82:cc:1e:90: de:e9:30:3a:e2:62:6f:cc:f4:8f:e1:e2:a5:07:7d: 32:ef:23:ee:76:44:d8:12:db:f6:5d:65:86:42:e8: 09:d1:c0:50:90:b7:ef:4d:9b:81:08:0a:37:e7:b7: 31:2b:85:ad:0f:64:05:18:82:63:59:9e:2a:6f:79: ee:99:bc:d6:2a:01:a4:a1:99:51:17:43:f8:e8:0a: e6:0d:1b:67:e8:d0:67:6f:7b:34:d8:ee:d4:3e:8a: 5f:45:40:8f:32:38:fe:36:6c:25:62:66:68:78:36: 24:04:ab:ad:ee:b7:5d:d8:e6:c8:3a:6e:f4:30:bc: f0:d4:fb:f3:5f:01:ac:29:3e:79:38:99:96:1e:b2: f8:8f:39:f4:b2:96:70:5d:e3:78:53:cc:9d:d4:11: 1c:e2:e9:ed:a1:74:16:08:d4:b0:c0:f0:d9:0e:17: 06:ca:54:ad:d9:57:fb:c6:f1:36:13:63:43:09:fc: 35:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:43:A9:5C:D8:0E:14:C9:0A:89:60:27:CA:A2:68:70:C7:E0:EA:26 X509v3 Authority Key Identifier: keyid:94:2D:54:1D:FE:79:82:F6:E0:1E:6B:CC:97:6D:C0:CB:84:14:E8:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D7F2/F028903C1D8C11E2B19D5FEA08B02CD2/lC1UHf55gvbgHmvMl23Ay4QU6Dg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:aa:ec:2a:af:b8:b6:56:7f:b0:13:a8:b3:09:7d:29:b6:e3: 07:9f:1c:d3:f1:25:22:70:df:8e:74:ed:68:f1:63:2e:36:16: b9:6f:50:53:d6:4c:d3:cf:20:94:2b:c0:d7:8f:9a:1e:d4:71: 61:50:c3:35:63:0e:9b:ec:41:5b:7d:3a:c1:f5:4b:2b:82:fd: a6:db:13:f9:d0:2d:bc:06:91:e9:83:f1:9a:33:63:68:e5:2f: b4:79:48:38:41:e8:db:6d:0a:1a:34:b6:e8:6b:1e:9c:e1:7b: df:69:6c:de:e8:73:e6:20:0d:bd:07:06:5a:41:39:85:38:b4: be:4a:69:16:61:08:21:34:35:0f:dd:66:cc:cc:47:16:99:73: 30:35:75:c8:8a:e0:2c:3e:27:14:bf:ba:f1:e3:0f:05:1e:60: c2:21:01:a0:54:5f:04:98:de:e9:2a:6d:35:1e:d7:96:c3:c0: a0:e7:fb:dd:37:79:25:cb:a7:63:aa:bf:97:bb:88:e3:d9:05: a1:66:7b:d7:04:d6:66:e4:a1:be:9e:bf:1a:6b:e4:88:44:e0: e0:1b:74:52:db:ea:9a:0b:b2:61:8b:1f:7e:f5:3d:40:a1:cf: d8:c4:0e:ae:b5:4a:01:ec:a3:60:97:7e:f7:81:17:d0:30:a2: 8e:2e:d4:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q3RjIxMTAvBgNVBAUTKDk0MkQ1NDFERkU3OTgyRjZFMDFFNkJDQzk3NkRDMENC ODQxNEU4MzgwHhcNMjUxMjMwMTQzNjM0WhcNMjYwMTA2MTQzNjM0WjAYMRYwFAYD VQQDDA02OTUzZTM3Mi1iMmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAySw0M1Naw/dMvQW4FZBqTGx8u1AR3oTMwzRSGv0GFCMliOiWE7ww2m9m+n2x Y1b/FrYBr+Hf2gJJaD8mHH12Y2yPkJDBD4LMHpDe6TA64mJvzPSP4eKlB30y7yPu dkTYEtv2XWWGQugJ0cBQkLfvTZuBCAo357cxK4WtD2QFGIJjWZ4qb3numbzWKgGk oZlRF0P46ArmDRtn6NBnb3s02O7UPopfRUCPMjj+NmwlYmZoeDYkBKut7rdd2ObI Om70MLzw1PvzXwGsKT55OJmWHrL4jzn0spZwXeN4U8yd1BEc4untoXQWCNSwwPDZ DhcGylSt2Vf7xvE2E2NDCfw1MQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAlDqVzY DhTJColgJ8qiaHDH4OomMB8GA1UdIwQYMBaAFJQtVB3+eYL24B5rzJdtwMuEFOg4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDdGMi9GMDI4OTAzQzFE OEMxMUUyQjE5RDVGRUEwOEIwMkNEMi9sQzFVSGY1NWd2YmdIbXZNbDIzQXk0UVU2 RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDMVVIZjU1Z3ZiZ0htdk1sMjNBeTRRVTZEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDdGMi9GMDI4OTAzQzFEOEMxMUUyQjE5RDVGRUEwOEIwMkNEMi9sQzFVSGY1NWd2 YmdIbXZNbDIzQXk0UVU2RGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqquwqr7i2Vn+wE6izCX0ptuMHnxzT8SUicN+OdO1o8WMuNha5b1BT 1kzTzyCUK8DXj5oe1HFhUMM1Yw6b7EFbfTrB9Usrgv2m2xP50C28BpHpg/GaM2No 5S+0eUg4QejbbQoaNLboax6c4XvfaWze6HPmIA29BwZaQTmFOLS+SmkWYQghNDUP 3WbMzEcWmXMwNXXIiuAsPicUv7rx4w8FHmDCIQGgVF8EmN7pKm01HteWw8Cg5/vd N3kly6djqr+Xu4jj2QWhZnvXBNZm5KG+nr8aa+SIRODgG3RS2+qaC7Jhix9+9T1A oc/YxA6utUoB7KNgl373gRfQMKKOLtQ0 -----END CERTIFICATE-----Generated at Wed Dec 31 01:50:18 2025 by rpki-client