This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft File: LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft (raw, json) Hash identifier: lcrKQw6o899SYKfOpaRELHGmo5pNtOu2iWIIAhe8v1c= Subject key identifier: 77:1B:54:9D:48:35:39:99:66:B8:70:22:76:D1:C8:54:E8:A1:F0:1F Authority key identifier: 2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 Certificate issuer: /CN=A9147DCA/serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Certificate serial: 06F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft Manifest number: 06E9 Signing time: Sat 24 Jan 2026 21:19:57 +0000 Manifest this update: Sat 24 Jan 2026 21:19:56 +0000 Manifest next update: Sat 31 Jan 2026 21:19:56 +0000 Files and hashes: 1: LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl (hash: o8LTR3THi8fpRYCTYhi5ut1Y58aP7rRr6Vd1SP0gGqA=) 2: F100A1207F9911EBAFB6C91BC4F9AE02.roa (hash: WC17u871QRbv9L0eEf3wRpZbTARtAM6LAemuxBHqCWE=) 3: 0463FF50526C11EC80A31615C4F9AE02.roa (hash: mMd+OVrFW5GAoQGXV5q8W888lgwtgTWX8rE/7aryuNU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 21:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1783 (0x6f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147DCA, serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Validity Not Before: Jan 24 21:19:56 2026 GMT Not After : Jan 31 21:19:56 2026 GMT Subject: CN=6975377d-5bf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5e:56:81:2b:4f:9f:c5:4f:da:41:e4:bb:16: 9f:91:4b:08:c1:6f:79:cd:45:ea:8f:10:5a:88:6c: f6:d6:22:b7:e6:a7:3d:2b:04:9c:b1:19:02:d7:79: 8d:83:f5:7d:1a:c5:bc:5a:3c:f1:53:7d:34:20:8f: 4f:0d:e5:41:fc:5b:eb:eb:38:46:f8:a3:67:b4:80: c1:e9:aa:76:db:8d:58:d6:c4:9a:8f:cb:37:91:b3: 96:66:08:ed:50:13:16:eb:0f:1f:99:ef:df:a3:6d: 3e:65:39:81:57:7b:c1:97:29:2c:04:5f:69:cb:9f: 34:cf:f4:ef:41:0c:8a:07:1e:28:4b:4a:ba:80:08: 76:05:0a:c1:e5:25:88:11:84:7f:e1:ad:45:da:da: 65:b4:ae:08:15:8f:b2:dd:43:00:73:ce:2c:f9:8a: 1b:8a:ef:17:d8:a1:07:42:b8:ed:ec:fc:85:e5:11: 0d:fd:4c:94:b5:60:5f:d6:73:fb:70:61:74:8b:c7: bd:ae:35:c2:d9:a4:f9:dc:de:e9:4f:9c:f9:72:21: 14:ec:47:a9:54:1f:d8:bd:fd:e6:a4:20:cc:a9:bf: 73:2c:48:67:51:03:36:e8:66:e5:b1:11:9a:24:f4: c2:13:01:84:8f:95:ad:76:49:78:c4:ae:df:c0:55: 31:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:1B:54:9D:48:35:39:99:66:B8:70:22:76:D1:C8:54:E8:A1:F0:1F X509v3 Authority Key Identifier: keyid:2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:70:2f:48:1c:a8:2a:07:25:0b:d0:4a:99:76:df:2b:b7:97: 2b:1d:e3:24:f9:14:11:68:c4:7a:b3:71:3d:37:99:6d:6a:84: 2b:8b:d6:62:7c:44:29:a4:c2:03:70:89:0a:76:c4:c8:eb:c0: 67:c8:4b:ae:14:51:97:40:68:cf:da:fa:62:42:1c:94:2b:34: 89:5d:e8:9e:b6:75:2e:06:af:0a:01:32:cc:60:56:0c:76:c4: 04:ef:1a:5d:de:e0:c0:69:0a:04:6b:97:cb:6d:10:c8:8e:9d: e2:1d:84:25:a8:0d:ab:ca:cb:f9:d2:58:e6:2e:e2:91:d0:9b: a7:c7:3a:ab:dd:ea:c1:1a:c9:f7:7e:e3:dc:6e:35:b5:1c:1d: 74:0b:0b:72:b5:5f:a5:fb:6e:74:50:d2:41:8e:f7:75:6e:42: 38:61:c5:f9:9f:e5:de:64:87:f7:f8:23:c4:f9:77:14:06:68: da:6b:16:8b:d2:72:ca:37:c2:ec:6e:48:e5:0f:2c:2f:97:be: 7e:9a:e5:f5:7f:f8:86:cb:5b:f1:d9:54:dc:e4:4e:2e:37:fa: 52:5a:61:77:23:35:23:0e:5a:42:b4:5a:e2:a3:ab:6f:da:a0: 40:0f:a5:5d:30:5a:26:56:7d:df:c9:c2:0e:b9:28:5c:ff:35: 09:c9:90:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdEQ0ExMTAvBgNVBAUTKDJDM0EyQTgxMjFDQ0Y4QTlCRkM3Q0I2NjkxODU0QUY1 RTREMjE5RjkwHhcNMjYwMTI0MjExOTU2WhcNMjYwMTMxMjExOTU2WjAYMRYwFAYD VQQDDA02OTc1Mzc3ZC01YmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0F5WgStPn8VP2kHkuxafkUsIwW95zUXqjxBaiGz21iK35qc9KwScsRkC13mN g/V9GsW8WjzxU300II9PDeVB/Fvr6zhG+KNntIDB6ap2241Y1sSaj8s3kbOWZgjt UBMW6w8fme/fo20+ZTmBV3vBlyksBF9py580z/TvQQyKBx4oS0q6gAh2BQrB5SWI EYR/4a1F2tpltK4IFY+y3UMAc84s+Yobiu8X2KEHQrjt7PyF5REN/UyUtWBf1nP7 cGF0i8e9rjXC2aT53N7pT5z5ciEU7EepVB/Yvf3mpCDMqb9zLEhnUQM26GblsRGa JPTCEwGEj5Wtdkl4xK7fwFUxPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHcbVJ1I NTmZZrhwInbRyFToofAfMB8GA1UdIwQYMBaAFCw6KoEhzPipv8fLZpGFSvXk0hn5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0RDQS8xQzc1RURBNjdE NkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1LbV94OHRta1lWSzllVFNH ZmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEb3FnU0hNLUttX3g4dG1rWVZLOWVUU0dmay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0RDQS8xQzc1RURBNjdENkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1L bV94OHRta1lWSzllVFNHZmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWcC9IHKgqByUL0EqZdt8rt5crHeMk+RQRaMR6s3E9N5ltaoQri9Zi fEQppMIDcIkKdsTI68BnyEuuFFGXQGjP2vpiQhyUKzSJXeietnUuBq8KATLMYFYM dsQE7xpd3uDAaQoEa5fLbRDIjp3iHYQlqA2rysv50ljmLuKR0Junxzqr3erBGsn3 fuPcbjW1HB10CwtytV+l+250UNJBjvd1bkI4YcX5n+XeZIf3+CPE+XcUBmjaaxaL 0nLKN8LsbkjlDywvl75+muX1f/iGy1vx2VTc5E4uN/pSWmF3IzUjDlpCtFrio6tv 2qBAD6VdMFomVn3fycIOuShc/zUJyZD2 -----END CERTIFICATE-----Generated at Sun Jan 25 04:32:06 2026 by rpki-client