This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft File: lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft (raw, json) Hash identifier: GoJEsOOQvfVfK2c+BnDhllNnOnkEoeRo7Ie6VnCdn9c= Subject key identifier: 35:E0:A2:91:24:AC:C3:92:1E:59:EC:0C:35:DA:8A:C3:3C:73:A2:BB Authority key identifier: 95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E Certificate issuer: /CN=A9185D6E/serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Certificate serial: 05FA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft Manifest number: 05E7 Signing time: Fri 26 Dec 2025 22:11:01 +0000 Manifest this update: Fri 26 Dec 2025 22:11:00 +0000 Manifest next update: Fri 02 Jan 2026 22:11:00 +0000 Files and hashes: 1: lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl (hash: /T1hcMwJ42O06fnhzcdEFnPz6NeL/XUEzyC60F2IzzU=) 2: 368F5308A27311EFA8731822C4F9AE02.roa (hash: Hs0kfftH2V+1dVTeEFiwGCNE8QZlZWgBetHvEQLVaTU=) 3: 37F43E66A27311EFA8731822C4F9AE02.roa (hash: vy2TZeybvxjXMBwVfAEFXRXQN3w7mLcQMjLoNDfW68Y=) 4: 229CD24AF9FB11EB8CFF5E7DC4F9AE02.roa (hash: n04Y3sGneIDc0gFY4gtPPq0L4eOtSWnQu7Ei64M+chk=) 5: 53BCB840EA4211EB846B8757C4F9AE02.roa (hash: lxZNfyimV3NQpo4JPb58fRVzNwdRpPB3SMYQ8hq+yFg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 Jan 2026 22:10:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1530 (0x5fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D6E, serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Validity Not Before: Dec 26 22:11:00 2025 GMT Not After : Jan 2 22:11:00 2026 GMT Subject: CN=694f07f4-92b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e6:a8:02:53:49:c3:60:00:58:ca:00:5e:80: 04:eb:10:62:53:32:d4:db:69:6a:ba:a5:5d:3d:28: 40:df:3a:2d:d0:71:70:98:4e:7f:10:9d:3a:69:86: 6b:4e:48:21:77:bc:4d:8a:96:d1:03:3f:29:6c:a2: f3:4d:95:f4:85:01:fc:b0:74:30:d6:45:2c:40:e2: fd:90:19:b8:b4:c5:c1:f9:30:6f:71:fd:e7:3a:84: 42:46:da:4f:08:43:17:d4:a8:00:f6:e8:43:a7:83: 22:ac:33:6a:70:0e:0a:f7:6a:86:6e:76:45:f0:4c: 47:93:d7:c9:82:95:c1:92:18:35:1a:84:2d:02:1e: 9a:4f:3b:7f:6d:1f:f7:06:f7:91:87:8b:75:a3:d0: 60:1a:06:4b:7c:b4:c2:73:74:8c:5f:89:a1:68:fc: 2b:ed:02:d9:7c:7d:b3:c6:f9:86:80:74:df:52:ce: 6c:78:68:bc:01:1e:a3:8b:9a:86:f5:e1:a4:c4:fc: a0:05:a2:c8:1c:4a:a7:b9:6b:9e:da:63:c8:6c:60: 5d:ad:14:f9:44:7f:c3:ad:89:00:3e:29:c0:a4:5b: 27:36:a9:6a:a2:9f:e5:ce:8e:66:d2:b2:76:fd:21: ea:65:f2:18:86:69:f4:20:32:57:38:33:7b:7f:7a: 65:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:E0:A2:91:24:AC:C3:92:1E:59:EC:0C:35:DA:8A:C3:3C:73:A2:BB X509v3 Authority Key Identifier: keyid:95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:4d:ae:c3:36:f3:12:df:53:08:64:20:4e:39:6d:36:cb:72: e4:8d:2d:fa:dd:42:5e:91:17:18:d3:4e:3f:6f:d9:92:24:ac: 8e:86:c3:35:cd:bd:a2:51:63:b1:d7:92:a0:b5:79:60:ed:84: bf:14:a1:08:16:96:88:d4:71:03:45:d0:c2:f2:a5:31:33:8f: 99:ac:84:00:8b:19:aa:33:0a:5a:d8:e0:2c:00:43:42:66:e3: 1f:c8:89:e9:06:b5:b5:f1:47:4d:18:0e:16:b0:44:3c:4d:1a: f1:e3:8f:2e:59:48:f5:27:33:7b:6a:7a:02:8e:fb:27:cd:7d: 58:5d:f2:0f:93:b1:f9:54:e2:9f:c7:fa:76:30:cc:1b:11:7e: 61:b9:a8:0c:8a:43:06:61:fc:e2:c9:46:69:56:99:50:dd:c5: 9d:1a:07:f1:df:8f:86:df:1e:aa:4e:ce:41:18:65:dc:ee:44: 6a:f8:fa:1b:30:53:20:92:61:d5:6b:cb:7f:5b:45:3e:e4:f0: 68:26:b5:1b:71:23:9d:95:b1:0b:97:1e:35:dc:ca:2d:03:4e: a7:ef:86:67:52:ea:fd:05:ac:4f:10:c4:9f:8f:82:12:c9:63: db:f9:23:5c:93:88:23:be:e6:72:2b:2d:92:bd:d3:d7:c0:54: 3f:db:f7:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVENkUxMTAvBgNVBAUTKDk1MjRFQTlCODIzQzIwRkE3ODkyM0JFNjY2N0UxNEY2 QzRDM0I0N0UwHhcNMjUxMjI2MjIxMTAwWhcNMjYwMTAyMjIxMTAwWjAYMRYwFAYD VQQDDA02OTRmMDdmNC05MmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsuaoAlNJw2AAWMoAXoAE6xBiUzLU22lquqVdPShA3zot0HFwmE5/EJ06aYZr Tkghd7xNipbRAz8pbKLzTZX0hQH8sHQw1kUsQOL9kBm4tMXB+TBvcf3nOoRCRtpP CEMX1KgA9uhDp4MirDNqcA4K92qGbnZF8ExHk9fJgpXBkhg1GoQtAh6aTzt/bR/3 BveRh4t1o9BgGgZLfLTCc3SMX4mhaPwr7QLZfH2zxvmGgHTfUs5seGi8AR6ji5qG 9eGkxPygBaLIHEqnuWue2mPIbGBdrRT5RH/DrYkAPinApFsnNqlqop/lzo5m0rJ2 /SHqZfIYhmn0IDJXODN7f3plbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDXgopEk rMOSHlnsDDXaisM8c6K7MB8GA1UdIwQYMBaAFJUk6puCPCD6eJI75mZ+FPbEw7R+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQ2RS80Q0JGRjRBRURG RjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQcDRranZtWm40VTlzVER0 SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xTVHFtNEk4SVBwNGtqdm1abjRVOXNURHRINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUQ2RS80Q0JGRjRBRURGRjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQ cDRranZtWm40VTlzVER0SDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZTa7DNvMS31MIZCBOOW02y3LkjS363UJekRcY004/b9mSJKyOhsM1 zb2iUWOx15KgtXlg7YS/FKEIFpaI1HEDRdDC8qUxM4+ZrIQAixmqMwpa2OAsAENC ZuMfyInpBrW18UdNGA4WsEQ8TRrx448uWUj1JzN7anoCjvsnzX1YXfIPk7H5VOKf x/p2MMwbEX5huagMikMGYfziyUZpVplQ3cWdGgfx34+G3x6qTs5BGGXc7kRq+Pob MFMgkmHVa8t/W0U+5PBoJrUbcSOdlbELlx413MotA06n74ZnUur9BaxPEMSfj4IS yWPb+SNck4gjvuZyKy2SvdPXwFQ/2/eC -----END CERTIFICATE-----Generated at Sat Dec 27 15:40:56 2025 by rpki-client