This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft File: lMnUO1O12FDZjg2i1e88ThwxIEU.mft (raw, json) Hash identifier: MoarZK5F46AmzZVXyP3pP0RxFhUwUA8BIUsYca/You4= Subject key identifier: B9:F2:E8:D3:32:9D:FC:38:E1:D8:D5:B2:70:0C:DF:CB:4C:5C:42:2B Authority key identifier: 94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 Certificate issuer: /CN=A9120E21/serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Certificate serial: 1086 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft Manifest number: 1083 Signing time: Thu 04 Dec 2025 16:57:38 +0000 Manifest this update: Thu 04 Dec 2025 16:57:37 +0000 Manifest next update: Thu 11 Dec 2025 16:57:37 +0000 Files and hashes: 1: lMnUO1O12FDZjg2i1e88ThwxIEU.crl (hash: zrcYgK1VEFMsMMUNHohJpPOH4FRCVWLX1MybIgCpwJU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 16:57:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4230 (0x1086) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120E21, serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Validity Not Before: Dec 4 16:57:37 2025 GMT Not After : Dec 11 16:57:37 2025 GMT Subject: CN=6931bd82-11b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:51:ed:20:41:8f:70:67:fb:7a:87:c1:94:79: cd:ab:6d:36:a0:0d:6a:c1:a7:75:91:75:4a:6b:68: 5e:08:8b:0c:6c:6d:25:35:ab:e1:2a:5e:d5:95:72: e6:69:8c:ff:18:e7:09:e5:24:52:7f:29:1d:58:b2: 20:56:02:c7:0a:2c:53:50:0f:94:e1:ea:cd:79:db: 06:5c:43:48:8b:31:c0:ce:a2:96:4c:07:ff:13:c3: 5e:45:8b:ee:dc:5e:6d:71:72:14:b9:73:d5:00:00: 2f:13:c3:f2:b2:ba:0c:ec:73:cd:4f:0f:19:dc:7f: 84:61:b6:89:20:80:0b:fd:43:0e:73:7b:00:55:07: 31:78:04:c7:b6:74:b9:5d:c7:bb:08:98:3b:70:16: 2f:33:28:65:7e:98:9b:25:04:64:90:6e:03:ca:50: a0:2e:d3:f4:42:bb:e9:69:b5:32:f6:7b:5f:9e:09: ea:8f:9b:1c:09:4a:34:fc:34:10:c9:7c:85:e5:98: 71:38:eb:b0:81:a7:fd:17:9f:75:74:aa:7e:fe:34: c7:9d:55:e2:e2:99:e8:7a:61:70:95:7e:d6:f9:4f: 4e:03:42:9d:ea:cd:a0:d3:c9:c6:c7:93:ff:e2:07: 4a:ec:39:11:5f:bf:ce:c4:77:71:c3:e6:d9:15:41: 9b:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:F2:E8:D3:32:9D:FC:38:E1:D8:D5:B2:70:0C:DF:CB:4C:5C:42:2B X509v3 Authority Key Identifier: keyid:94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:c5:d0:1d:96:50:d4:08:35:bf:0e:0c:e3:0d:78:1f:fb:25: 49:b6:e0:c0:e8:a9:54:b6:ce:cd:f2:96:04:a7:0a:f1:31:b2: c6:d5:52:3e:c4:28:10:5a:1b:cc:73:bd:d6:92:40:3f:62:7d: 76:8c:59:27:9f:66:f7:37:27:c3:6b:e0:48:88:19:1f:d9:03: 11:e3:0d:32:38:42:a4:8d:0f:e9:c0:1d:04:3b:5c:d6:2a:0e: 83:7e:90:cd:06:56:8b:d7:3d:77:1e:83:35:1f:2e:b8:71:43: fb:9c:ee:75:95:d6:fb:96:46:5e:db:cf:d7:9f:b1:5a:d3:26: 1a:a4:f8:6e:a7:ff:60:45:08:ca:ad:9b:9c:e8:c8:c1:a1:36: bd:b6:a4:b0:7f:ad:56:4c:b1:be:fc:54:91:5d:9a:7f:af:71: 41:2f:8c:2c:55:e9:07:5b:c3:af:c0:11:16:56:37:8d:19:c6: 58:56:4c:26:84:d3:7f:81:71:98:09:16:22:61:b1:df:17:09: 27:52:35:d6:88:0e:08:ee:a1:75:8f:95:69:60:0b:47:ac:bb: cc:0c:f8:80:9d:0d:90:11:0b:26:90:89:12:d0:e9:ea:c8:bd: e4:7e:97:75:66:f6:d7:23:d3:8b:ee:35:6b:86:cb:cf:4a:96: 5f:fe:37:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBFMjExMTAvBgNVBAUTKDk0QzlENDNCNTNCNUQ4NTBEOThFMERBMkQ1RUYzQzRF MUMzMTIwNDUwHhcNMjUxMjA0MTY1NzM3WhcNMjUxMjExMTY1NzM3WjAYMRYwFAYD VQQDEw02OTMxYmQ4Mi0xMWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1HtIEGPcGf7eofBlHnNq202oA1qwad1kXVKa2heCIsMbG0lNavhKl7VlXLm aYz/GOcJ5SRSfykdWLIgVgLHCixTUA+U4erNedsGXENIizHAzqKWTAf/E8NeRYvu 3F5tcXIUuXPVAAAvE8PysroM7HPNTw8Z3H+EYbaJIIAL/UMOc3sAVQcxeATHtnS5 Xce7CJg7cBYvMyhlfpibJQRkkG4DylCgLtP0QrvpabUy9ntfngnqj5scCUo0/DQQ yXyF5ZhxOOuwgaf9F591dKp+/jTHnVXi4pnoemFwlX7W+U9OA0Kd6s2g08nGx5P/ 4gdK7DkRX7/OxHdxw+bZFUGbMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLny6NMy nfw44djVsnAM38tMXEIrMB8GA1UdIwQYMBaAFJTJ1DtTtdhQ2Y4NotXvPE4cMSBF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEUyMS9BNUU5NTBENDQy NzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJGRFpqZzJpMWU4OFRod3hJ RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xNblVPMU8xMkZEWmpnMmkxZTg4VGh3eElFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEUyMS9BNUU5NTBENDQyNzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJG RFpqZzJpMWU4OFRod3hJRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnxdAdllDUCDW/DgzjDXgf+yVJtuDA6KlUts7N8pYEpwrxMbLG1VI+ xCgQWhvMc73WkkA/Yn12jFknn2b3NyfDa+BIiBkf2QMR4w0yOEKkjQ/pwB0EO1zW Kg6DfpDNBlaL1z13HoM1Hy64cUP7nO51ldb7lkZe28/Xn7Fa0yYapPhup/9gRQjK rZuc6MjBoTa9tqSwf61WTLG+/FSRXZp/r3FBL4wsVekHW8OvwBEWVjeNGcZYVkwm hNN/gXGYCRYiYbHfFwknUjXWiA4I7qF1j5VpYAtHrLvMDPiAnQ2QEQsmkIkS0Onq yL3kfpd1ZvbXI9OL7jVrhsvPSpZf/jdt -----END CERTIFICATE-----Generated at Sat Dec 6 18:33:34 2025 by rpki-client