This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft File: s-lBocVdFIOrV5HZSYdQ492t7cw.mft (raw, json) Hash identifier: ZEf990FmssYKEXN5PjuRZUy4EvIvnuUaiiWQot9HuH4= Subject key identifier: 8C:BF:77:5B:84:89:14:AD:1E:76:61:B1:C3:5D:F8:B2:E1:72:01:9B Authority key identifier: B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC Certificate issuer: /CN=A913B018/serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC Certificate serial: 0156 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft Manifest number: 0154 Signing time: Fri 05 Dec 2025 02:18:26 +0000 Manifest this update: Fri 05 Dec 2025 02:18:26 +0000 Manifest next update: Fri 12 Dec 2025 02:18:26 +0000 Files and hashes: 1: s-lBocVdFIOrV5HZSYdQ492t7cw.crl (hash: 2PsTPhfzuoLE0EgD6mjlOGvhBQtazwSlo75J/bQ3Sy8=) 2: 8B097276C5F911EE8D0FDF82C4F9AE02.roa (hash: rdPAEAIE6ELTFaI7KJd4MZCFob5xV/RE3eKxMhnDVS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:18:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B018, serialNumber=B3E941A1C55D1483AB5791D9498750E3DDADEDCC Validity Not Before: Dec 5 02:18:26 2025 GMT Not After : Dec 12 02:18:26 2025 GMT Subject: CN=693240f2-66cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:80:7c:1c:72:45:ef:bb:f8:c8:01:e6:7f:2c: ee:96:da:89:a5:82:32:49:b9:14:98:5a:66:f8:fb: 49:4c:93:ea:38:17:64:5d:b2:c5:6c:94:5a:fc:b1: 47:7b:f4:5b:ed:4d:24:d4:8d:5b:39:78:c6:60:5d: 15:46:9f:15:3a:d3:93:3b:96:fb:2d:a4:c2:d8:dd: d6:87:ed:79:fc:2a:6c:f5:1e:24:19:41:9c:60:8d: 14:26:b4:05:d2:64:c6:84:50:fe:39:fc:5c:0a:d8: 8e:da:b9:6d:5b:74:2f:13:58:b4:9d:87:3d:f3:70: 7f:33:54:0f:22:9e:0a:d2:55:0e:09:93:76:ef:f6: cf:56:e1:9c:0a:31:92:1b:e4:97:00:46:1c:d9:50: 99:63:9b:37:31:92:f5:e7:48:da:a6:d6:cb:e0:ac: 0c:97:62:e4:d6:9e:86:e1:b0:2d:e4:97:da:20:01: 01:83:ea:a1:c7:71:c6:90:e5:98:bd:02:a9:13:00: 36:0a:f7:4f:83:ee:b1:5b:cc:b7:15:8c:26:ff:a5: 92:d2:a7:19:db:eb:c2:e4:3f:47:c7:81:ec:dc:67: c9:22:cb:de:11:b0:d9:f7:7d:89:a1:5d:db:f5:2c: a5:6f:89:a8:3b:8a:7e:03:a3:5f:02:a4:a2:b9:e9: f9:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:BF:77:5B:84:89:14:AD:1E:76:61:B1:C3:5D:F8:B2:E1:72:01:9B X509v3 Authority Key Identifier: keyid:B3:E9:41:A1:C5:5D:14:83:AB:57:91:D9:49:87:50:E3:DD:AD:ED:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s-lBocVdFIOrV5HZSYdQ492t7cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B018/3079D812C5F611EEBE0B7960C4F9AE02/s-lBocVdFIOrV5HZSYdQ492t7cw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:68:f0:19:a4:7c:31:71:1f:c0:e9:1e:ce:58:a2:17:49:0f: 7e:3a:87:d5:43:e5:06:a7:ff:da:61:a8:ad:6a:07:15:38:11: 88:b6:0c:02:90:88:ea:7d:15:67:54:a5:38:c9:b1:d7:ca:5e: e2:49:68:a3:a3:47:9e:8e:94:ee:1b:bf:2f:97:be:54:10:20: 58:07:00:09:ee:10:df:d3:0b:2b:5e:79:dd:46:f6:46:88:f6: 08:1e:60:e9:f0:ae:b9:32:c7:ae:29:54:8b:fb:f4:fc:c7:28: f7:78:f0:a1:35:b6:3b:04:84:2c:46:81:84:8b:91:00:a4:63: c6:1b:7e:69:38:e8:e4:96:1c:92:f0:69:73:11:80:73:05:1d: dd:d7:61:3d:6b:69:f2:17:ae:f3:63:86:9a:88:6c:17:16:0a: 46:99:7d:f2:18:7c:d6:f0:29:3f:1e:38:9d:98:94:b6:16:c0: e4:58:b5:d9:d3:85:8d:b2:1b:89:50:7a:86:33:30:10:98:e2: 71:43:a2:56:1d:bd:c0:ea:e4:86:98:67:de:58:92:bc:d6:de: 3d:47:8c:86:2f:47:56:1b:bf:e3:71:37:ef:c0:e3:25:d1:55: af:b8:f3:37:5d:08:b3:d0:d8:0f:49:d9:3d:3d:db:1d:05:55: 54:57:72:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IwMTgxMTAvBgNVBAUTKEIzRTk0MUExQzU1RDE0ODNBQjU3OTFEOTQ5ODc1MEUz RERBREVEQ0MwHhcNMjUxMjA1MDIxODI2WhcNMjUxMjEyMDIxODI2WjAYMRYwFAYD VQQDEw02OTMyNDBmMi02NmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApIB8HHJF77v4yAHmfyzultqJpYIySbkUmFpm+PtJTJPqOBdkXbLFbJRa/LFH e/Rb7U0k1I1bOXjGYF0VRp8VOtOTO5b7LaTC2N3Wh+15/Cps9R4kGUGcYI0UJrQF 0mTGhFD+OfxcCtiO2rltW3QvE1i0nYc983B/M1QPIp4K0lUOCZN27/bPVuGcCjGS G+SXAEYc2VCZY5s3MZL150japtbL4KwMl2Lk1p6G4bAt5JfaIAEBg+qhx3HGkOWY vQKpEwA2CvdPg+6xW8y3FYwm/6WS0qcZ2+vC5D9Hx4Hs3GfJIsveEbDZ932JoV3b 9Sylb4moO4p+A6NfAqSiuen5rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIy/d1uE iRStHnZhscNd+LLhcgGbMB8GA1UdIwQYMBaAFLPpQaHFXRSDq1eR2UmHUOPdre3M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjAxOC8zMDc5RDgxMkM1 RjYxMUVFQkUwQjc5NjBDNEY5QUUwMi9zLWxCb2NWZEZJT3JWNUhaU1lkUTQ5MnQ3 Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3MtbEJvY1ZkRklPclY1SFpTWWRRNDkydDdjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjAxOC8zMDc5RDgxMkM1RjYxMUVFQkUwQjc5NjBDNEY5QUUwMi9zLWxCb2NWZEZJ T3JWNUhaU1lkUTQ5MnQ3Y3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARaPAZpHwxcR/A6R7OWKIXSQ9+OofVQ+UGp//aYaitagcVOBGItgwC kIjqfRVnVKU4ybHXyl7iSWijo0eejpTuG78vl75UECBYBwAJ7hDf0wsrXnndRvZG iPYIHmDp8K65MseuKVSL+/T8xyj3ePChNbY7BIQsRoGEi5EApGPGG35pOOjklhyS 8GlzEYBzBR3d12E9a2nyF67zY4aaiGwXFgpGmX3yGHzW8Ck/HjidmJS2FsDkWLXZ 04WNshuJUHqGMzAQmOJxQ6JWHb3A6uSGmGfeWJK81t49R4yGL0dWG7/jcTfvwOMl 0VWvuPM3XQiz0NgPSdk9PdsdBVVUV3Kt -----END CERTIFICATE-----Generated at Sun Dec 7 00:05:06 2025 by rpki-client