This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft File: lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft (raw, json) Hash identifier: 26qmBgsfd8JsWE9UzVgma0/9U6LMis2CoOGL7y0swdM= Subject key identifier: 8A:43:EE:8F:4D:F2:B2:73:36:F0:02:EB:9D:58:5D:53:29:A5:51:C4 Authority key identifier: 95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E Certificate issuer: /CN=A9185D6E/serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Certificate serial: 05F6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft Manifest number: 05E3 Signing time: Thu 18 Dec 2025 22:22:03 +0000 Manifest this update: Thu 18 Dec 2025 22:22:03 +0000 Manifest next update: Thu 25 Dec 2025 22:22:03 +0000 Files and hashes: 1: lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl (hash: n7KVj2uHn9fD8ty7R9upcvJC0njfglPRSJcCAd1XwlM=) 2: 53BCB840EA4211EB846B8757C4F9AE02.roa (hash: lxZNfyimV3NQpo4JPb58fRVzNwdRpPB3SMYQ8hq+yFg=) 3: 229CD24AF9FB11EB8CFF5E7DC4F9AE02.roa (hash: n04Y3sGneIDc0gFY4gtPPq0L4eOtSWnQu7Ei64M+chk=) 4: 37F43E66A27311EFA8731822C4F9AE02.roa (hash: vy2TZeybvxjXMBwVfAEFXRXQN3w7mLcQMjLoNDfW68Y=) 5: 368F5308A27311EFA8731822C4F9AE02.roa (hash: Hs0kfftH2V+1dVTeEFiwGCNE8QZlZWgBetHvEQLVaTU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:22:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1526 (0x5f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D6E, serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Validity Not Before: Dec 18 22:22:03 2025 GMT Not After : Dec 25 22:22:03 2025 GMT Subject: CN=69447e8b-6117 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:28:4b:f1:8e:18:12:d1:f1:a2:48:02:d6:4d: 3b:66:b6:17:4a:8b:57:fd:cf:a3:5f:9a:db:1f:bd: ff:f4:fa:ae:b0:19:a2:e6:c0:1e:2b:f9:f1:c4:19: 90:f7:2e:c9:7c:5a:ec:05:a5:de:20:a5:bf:3e:87: fa:18:80:0c:29:72:6b:3a:3b:aa:81:ad:9d:d3:47: 7a:a2:e3:7d:ab:05:65:1e:4e:f6:56:bd:2b:e0:02: f2:44:f1:17:90:f8:4a:0d:14:c1:cc:ad:91:38:8d: f9:f1:16:90:f3:a2:ee:3d:9e:b6:bb:8f:e9:04:50: f3:9a:69:e9:d0:f2:50:0d:84:f7:ad:e9:aa:12:08: 33:00:aa:e5:e3:a8:e5:ee:4c:7e:f0:95:d0:5a:f7: ef:0f:68:4d:ff:c9:cb:47:36:90:db:e1:98:ce:19: c6:05:37:cc:7b:9d:85:8a:51:c2:e9:c6:88:62:64: ef:4d:61:ff:c8:70:b8:a1:1d:19:b5:b2:b6:d4:de: 7e:b8:e5:5a:37:fb:ce:bd:ea:f1:f9:81:b0:ee:f0: 4d:0e:1d:0e:08:6a:c3:f2:65:28:70:f0:16:30:eb: 4d:6c:d4:e9:09:2c:1e:1d:60:da:2c:e1:45:d5:fe: f3:2c:ea:0a:a3:03:63:00:10:e0:96:5d:c7:10:16: 21:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:43:EE:8F:4D:F2:B2:73:36:F0:02:EB:9D:58:5D:53:29:A5:51:C4 X509v3 Authority Key Identifier: keyid:95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:c0:2b:e2:4d:9d:a2:f7:18:96:03:28:fa:7b:d6:07:eb:c8: bd:a4:89:da:9f:ff:0f:25:84:80:b8:73:c2:23:9c:05:65:cf: f3:15:af:2f:a9:64:56:5e:d4:e1:f1:fe:7d:70:68:f5:33:e1: 3f:8d:69:6d:97:84:6b:68:2f:d5:d0:96:5d:a4:51:51:ac:e6: 73:54:dc:8a:5f:23:6b:b3:01:8d:3c:08:5d:93:67:23:d1:0b: e4:fe:a6:26:6a:13:09:ee:f6:fb:63:f3:99:39:1e:de:a8:a8: 39:10:2f:0b:57:18:44:de:92:1b:a4:22:93:c2:6b:34:d5:e9: ef:c0:90:60:1c:60:24:ab:c1:80:55:8d:cf:b8:d4:08:32:51: d1:e1:7f:4d:67:23:04:d4:c9:20:9e:89:e5:74:b3:83:14:72: ca:15:fc:97:70:ac:e4:bc:6c:14:58:90:5d:57:a3:e0:d3:7d: d1:89:ad:6b:63:e0:24:c7:3b:6b:14:f5:8f:e8:cf:45:f3:37: 79:94:82:06:86:30:43:8d:38:27:44:dc:fa:76:43:5f:95:b5: f7:d9:ee:5e:fc:99:91:d6:cb:a9:a5:d7:2f:f6:9a:d0:a4:b6: c0:e2:ff:c1:ff:78:7c:4f:33:cb:82:8f:8f:0d:e7:75:8e:ea: f5:25:05:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVENkUxMTAvBgNVBAUTKDk1MjRFQTlCODIzQzIwRkE3ODkyM0JFNjY2N0UxNEY2 QzRDM0I0N0UwHhcNMjUxMjE4MjIyMjAzWhcNMjUxMjI1MjIyMjAzWjAYMRYwFAYD VQQDDA02OTQ0N2U4Yi02MTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuihL8Y4YEtHxokgC1k07ZrYXSotX/c+jX5rbH73/9PqusBmi5sAeK/nxxBmQ 9y7JfFrsBaXeIKW/Pof6GIAMKXJrOjuqga2d00d6ouN9qwVlHk72Vr0r4ALyRPEX kPhKDRTBzK2ROI358RaQ86LuPZ62u4/pBFDzmmnp0PJQDYT3remqEggzAKrl46jl 7kx+8JXQWvfvD2hN/8nLRzaQ2+GYzhnGBTfMe52FilHC6caIYmTvTWH/yHC4oR0Z tbK21N5+uOVaN/vOverx+YGw7vBNDh0OCGrD8mUocPAWMOtNbNTpCSweHWDaLOFF 1f7zLOoKowNjABDgll3HEBYhfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIpD7o9N 8rJzNvAC651YXVMppVHEMB8GA1UdIwQYMBaAFJUk6puCPCD6eJI75mZ+FPbEw7R+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQ2RS80Q0JGRjRBRURG RjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQcDRranZtWm40VTlzVER0 SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xTVHFtNEk4SVBwNGtqdm1abjRVOXNURHRINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUQ2RS80Q0JGRjRBRURGRjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQ cDRranZtWm40VTlzVER0SDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwwCviTZ2i9xiWAyj6e9YH68i9pInan/8PJYSAuHPCI5wFZc/zFa8v qWRWXtTh8f59cGj1M+E/jWltl4RraC/V0JZdpFFRrOZzVNyKXyNrswGNPAhdk2cj 0Qvk/qYmahMJ7vb7Y/OZOR7eqKg5EC8LVxhE3pIbpCKTwms01envwJBgHGAkq8GA VY3PuNQIMlHR4X9NZyME1MkgnonldLODFHLKFfyXcKzkvGwUWJBdV6Pg033Ria1r Y+AkxztrFPWP6M9F8zd5lIIGhjBDjTgnRNz6dkNflbX32e5e/JmR1suppdcv9prQ pLbA4v/B/3h8TzPLgo+PDed1jur1JQVm -----END CERTIFICATE-----Generated at Sat Dec 20 00:55:07 2025 by rpki-client