This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9110F1F/6C0FEF5A1EB911ED9FC68760C4F9AE02/lS9xLfEYQSCKO0qHRiDFn-7XcLA.mft File: lS9xLfEYQSCKO0qHRiDFn-7XcLA.mft (raw, json) Hash identifier: c+74NR7GRiTj+CFzrwtQOdsWJ52RVOmuooUR0DXaFJA= Subject key identifier: 48:41:D0:D3:06:E3:82:26:D5:51:CF:0A:41:EC:FD:A5:ED:0F:38:61 Authority key identifier: 95:2F:71:2D:F1:18:41:20:8A:3B:4A:87:46:20:C5:9F:EE:D7:70:B0 Certificate issuer: /CN=A9110F1F/serialNumber=952F712DF11841208A3B4A874620C59FEED770B0 Certificate serial: 02AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lS9xLfEYQSCKO0qHRiDFn-7XcLA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110F1F/6C0FEF5A1EB911ED9FC68760C4F9AE02/lS9xLfEYQSCKO0qHRiDFn-7XcLA.mft Manifest number: 02AB Signing time: Thu 04 Dec 2025 23:50:57 +0000 Manifest this update: Thu 04 Dec 2025 23:50:56 +0000 Manifest next update: Thu 11 Dec 2025 23:50:56 +0000 Files and hashes: 1: lS9xLfEYQSCKO0qHRiDFn-7XcLA.crl (hash: 0+oGNmzvAft0lOotQPCRXPUWV3ByDkNFhmo228wPEs0=) 2: AF6A12881EBB11EDB35A2561C4F9AE02.roa (hash: 27aLcYczZ5MYFXDnhdewNPk3kbRzrioX5es/1Wn4iNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110F1F/6C0FEF5A1EB911ED9FC68760C4F9AE02/lS9xLfEYQSCKO0qHRiDFn-7XcLA.crl rsync://rpki.apnic.net/member_repository/A9110F1F/6C0FEF5A1EB911ED9FC68760C4F9AE02/lS9xLfEYQSCKO0qHRiDFn-7XcLA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lS9xLfEYQSCKO0qHRiDFn-7XcLA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:50:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 687 (0x2af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110F1F, serialNumber=952F712DF11841208A3B4A874620C59FEED770B0 Validity Not Before: Dec 4 23:50:56 2025 GMT Not After : Dec 11 23:50:56 2025 GMT Subject: CN=69321e60-d59d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:1e:c5:27:d1:96:16:1a:22:fa:9e:3b:39:3e: e5:e5:97:b1:84:44:73:df:cb:19:16:ff:85:55:00: 80:a4:e7:26:09:4d:02:70:fe:58:74:9e:cf:b9:5b: 3d:8d:1c:33:2d:a9:f1:bc:de:05:11:ee:49:2c:57: cb:33:39:da:07:13:6b:6a:d3:8c:f7:5d:a1:5c:ef: 5f:9b:5b:9a:47:f8:b0:68:99:84:5b:f9:bf:e4:51: 2a:34:d5:f4:70:a5:e3:89:1f:8a:8d:e2:01:54:7f: dc:46:49:18:e2:2e:f4:d0:bd:60:1f:f1:b6:3f:83: 48:dc:8f:df:b5:5e:d5:3c:1e:73:ac:e5:db:74:ba: 6c:24:ce:8e:25:93:a4:34:f8:20:6b:f0:6b:36:f1: cc:46:f4:19:46:73:54:a1:a9:85:ca:e3:e6:71:86: 79:e5:ea:97:19:bd:f0:88:f6:8d:a0:fa:47:d8:c1: 65:95:9b:a5:fb:e8:c2:67:ff:20:70:23:59:50:a8: ee:f4:72:74:e9:48:dd:da:db:b9:71:a3:93:be:d4: 62:61:2e:5f:f8:dd:a3:89:71:88:5c:c5:e2:d2:4d: a2:9b:d1:00:fb:4d:f1:e8:c1:6c:6a:53:87:0f:3a: 3a:28:2f:1d:18:db:e3:32:ec:c4:d8:c0:a1:56:ba: 67:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:41:D0:D3:06:E3:82:26:D5:51:CF:0A:41:EC:FD:A5:ED:0F:38:61 X509v3 Authority Key Identifier: keyid:95:2F:71:2D:F1:18:41:20:8A:3B:4A:87:46:20:C5:9F:EE:D7:70:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110F1F/6C0FEF5A1EB911ED9FC68760C4F9AE02/lS9xLfEYQSCKO0qHRiDFn-7XcLA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lS9xLfEYQSCKO0qHRiDFn-7XcLA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110F1F/6C0FEF5A1EB911ED9FC68760C4F9AE02/lS9xLfEYQSCKO0qHRiDFn-7XcLA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:89:6b:2d:df:df:e3:91:45:f6:cf:4a:cb:58:d7:d2:c0:3d: 03:ab:6b:04:b1:84:25:9a:11:d7:ec:76:40:4d:c4:f4:38:cc: aa:7c:52:d7:bf:04:95:b4:78:d2:c1:3c:ee:1c:92:8e:5c:4a: 41:0a:dd:31:b7:7f:66:eb:25:a1:21:7a:41:f9:0b:aa:e6:79: b5:aa:3a:0a:08:46:bf:00:fe:f8:d2:0d:98:e4:2e:07:69:71: 11:c6:5a:1b:df:d6:f1:43:15:82:84:21:2d:14:f9:ea:ed:97: d7:00:82:36:f2:a0:84:f1:2c:3f:59:3c:6d:83:3d:84:f3:8d: 36:78:20:88:22:9e:6e:85:f6:ec:a5:9e:7a:06:29:47:dc:a7: 6f:f8:c6:f4:74:27:79:0c:3f:66:58:e2:cc:80:3d:f2:5d:44: cb:2e:87:29:cb:72:46:53:c8:a4:1a:df:2f:72:67:65:50:5e: 1b:de:bf:3d:77:dd:45:8e:a4:ee:90:4d:c8:9a:03:37:fa:d9: 32:46:ae:9f:34:82:8c:a8:39:b4:c6:cb:b8:90:5e:fa:15:7c: 57:96:70:88:6e:d8:2f:1c:94:8a:02:4d:66:e4:8c:e5:c6:8d: ad:59:b4:c6:21:04:3c:0f:28:ac:92:7c:b6:cb:67:98:81:bd: 8b:39:bb:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBGMUYxMTAvBgNVBAUTKDk1MkY3MTJERjExODQxMjA4QTNCNEE4NzQ2MjBDNTlG RUVENzcwQjAwHhcNMjUxMjA0MjM1MDU2WhcNMjUxMjExMjM1MDU2WjAYMRYwFAYD VQQDEw02OTMyMWU2MC1kNTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoB7FJ9GWFhoi+p47OT7l5ZexhERz38sZFv+FVQCApOcmCU0CcP5YdJ7PuVs9 jRwzLanxvN4FEe5JLFfLMznaBxNratOM912hXO9fm1uaR/iwaJmEW/m/5FEqNNX0 cKXjiR+KjeIBVH/cRkkY4i700L1gH/G2P4NI3I/ftV7VPB5zrOXbdLpsJM6OJZOk NPgga/BrNvHMRvQZRnNUoamFyuPmcYZ55eqXGb3wiPaNoPpH2MFllZul++jCZ/8g cCNZUKju9HJ06Ujd2tu5caOTvtRiYS5f+N2jiXGIXMXi0k2im9EA+03x6MFsalOH Dzo6KC8dGNvjMuzE2MChVrpnPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEhB0NMG 44Im1VHPCkHs/aXtDzhhMB8GA1UdIwQYMBaAFJUvcS3xGEEgijtKh0YgxZ/u13Cw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEYxRi82QzBGRUY1QTFF QjkxMUVEOUZDNjg3NjBDNEY5QUUwMi9sUzl4TGZFWVFTQ0tPMHFIUmlERm4tN1hj TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xTOXhMZkVZUVNDS08wcUhSaURGbi03WGNMQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MEYxRi82QzBGRUY1QTFFQjkxMUVEOUZDNjg3NjBDNEY5QUUwMi9sUzl4TGZFWVFT Q0tPMHFIUmlERm4tN1hjTEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyiWst39/jkUX2z0rLWNfSwD0Dq2sEsYQlmhHX7HZATcT0OMyqfFLX vwSVtHjSwTzuHJKOXEpBCt0xt39m6yWhIXpB+Quq5nm1qjoKCEa/AP740g2Y5C4H aXERxlob39bxQxWChCEtFPnq7ZfXAII28qCE8Sw/WTxtgz2E8402eCCIIp5uhfbs pZ56BilH3Kdv+Mb0dCd5DD9mWOLMgD3yXUTLLocpy3JGU8ikGt8vcmdlUF4b3r89 d91FjqTukE3ImgM3+tkyRq6fNIKMqDm0xsu4kF76FXxXlnCIbtgvHJSKAk1m5Izl xo2tWbTGIQQ8Dyiskny2y2eYgb2LObvL -----END CERTIFICATE-----Generated at Sat Dec 6 15:55:59 2025 by rpki-client