This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft File: lufMd6OOPhgL91JrodlTIYBONeY.mft (raw, json) Hash identifier: mgTqw860fU4nqn1fLEFF1k1RkiiU3lb3C8quRJZ8/rc= Subject key identifier: BE:5D:60:95:F1:DA:4E:08:4D:13:40:CB:59:90:1B:B2:7A:22:A3:45 Authority key identifier: 96:E7:CC:77:A3:8E:3E:18:0B:F7:52:6B:A1:D9:53:21:80:4E:35:E6 Certificate issuer: /CN=A916C4FA/serialNumber=96E7CC77A38E3E180BF7526BA1D95321804E35E6 Certificate serial: 0214 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft Manifest number: 05C0 Signing time: Sat 06 Dec 2025 23:19:43 +0000 Manifest this update: Sat 06 Dec 2025 23:19:42 +0000 Manifest next update: Sat 13 Dec 2025 23:19:42 +0000 Files and hashes: 1: lufMd6OOPhgL91JrodlTIYBONeY.crl (hash: piJ21XXWsjAe5A5NaqEaLx+XMIP+kaWMFMCNzi+moHQ=) 2: C310EE5AACD311ED84BAA06EC4F9AE02.roa (hash: puxNQ3IQMgK+455LW/i47TSp2iaIUiKVoUSQH0z/5bw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.crl rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 23:19:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 532 (0x214) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C4FA, serialNumber=96E7CC77A38E3E180BF7526BA1D95321804E35E6 Validity Not Before: Dec 6 23:19:42 2025 GMT Not After : Dec 13 23:19:42 2025 GMT Subject: CN=6934ba0f-0fc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ac:f0:3b:0a:ea:df:1b:3f:af:c7:55:46:ee: b5:5a:13:08:1a:40:ba:03:65:47:aa:ca:90:71:fe: b8:2c:ec:41:99:58:9d:53:6e:2f:e5:d0:09:2d:c3: c1:37:af:82:19:87:d7:97:a1:c7:ff:ec:f6:d9:d9: 12:fd:90:c8:34:c2:d1:cd:3f:e3:f5:79:42:5f:4b: 5e:ca:0b:70:d6:d9:ab:8e:65:de:b6:a0:2a:b4:75: 6f:a3:c6:a6:2e:72:1f:c7:48:87:00:13:bd:dc:55: f0:ce:ec:f6:87:48:1d:98:a7:16:9f:97:da:25:a5: 05:0f:a5:0b:65:95:c7:13:ed:1a:b4:17:40:4b:c1: 0c:c7:53:72:7d:f7:a7:df:bf:eb:50:66:29:49:ba: 9f:ef:74:3e:76:0f:d0:3f:d7:27:0e:5e:55:40:50: df:3f:a5:98:cd:a7:38:38:54:9b:2a:73:1f:63:c3: c2:29:45:da:98:b4:c2:d2:07:41:e8:75:d5:78:92: 34:86:ba:81:ea:59:87:88:fc:6a:bc:4a:bf:2e:ce: 15:b1:88:87:5b:9a:f2:19:96:0f:65:fc:32:74:ae: 0f:84:fc:f6:26:dd:82:5d:76:d0:25:19:ac:9d:2f: 18:8b:88:ad:0b:90:9e:08:4e:79:1c:42:e7:a8:63: 65:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:5D:60:95:F1:DA:4E:08:4D:13:40:CB:59:90:1B:B2:7A:22:A3:45 X509v3 Authority Key Identifier: keyid:96:E7:CC:77:A3:8E:3E:18:0B:F7:52:6B:A1:D9:53:21:80:4E:35:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:be:2f:51:1b:18:68:87:73:58:e5:cd:60:d9:e5:10:9b:7e: 97:c8:93:d0:29:75:03:54:e3:cc:15:27:13:7c:12:8d:c7:5a: 5e:84:10:17:8c:d1:02:0a:60:31:a8:f3:55:53:ab:35:b1:9a: 52:78:9f:f0:4d:5a:63:45:43:d8:83:0d:ec:23:c1:20:15:df: e3:71:c9:05:9d:12:51:0a:63:6a:92:d8:ea:d2:9c:0b:91:fe: 24:2b:55:fd:9f:05:77:81:88:a3:df:81:19:f0:1d:a1:d1:d4: b0:c8:6e:d8:1b:d4:4f:aa:7d:8c:ca:8d:37:c3:d9:dd:c9:99: 67:9c:86:24:1a:88:4b:01:71:94:f6:53:95:cb:db:78:61:89: 44:9a:25:ee:8e:93:be:2b:07:f9:89:92:67:15:49:90:ea:49: ad:25:6f:d1:ad:e1:02:b7:aa:aa:dd:5a:88:5e:eb:a5:60:a3: 18:9f:64:2d:f5:57:c1:6a:13:54:21:01:16:9d:24:03:8e:e4: ba:72:92:a1:e0:4e:51:8b:08:a8:7b:b9:36:58:cc:27:ff:96: b8:d2:a2:ae:2e:28:bf:8f:38:7c:10:59:83:d3:7d:49:cb:ae: 8a:39:d7:47:5a:67:29:ef:76:73:80:23:55:66:a7:87:a8:76: d9:84:d7:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM0RkExMTAvBgNVBAUTKDk2RTdDQzc3QTM4RTNFMTgwQkY3NTI2QkExRDk1MzIx ODA0RTM1RTYwHhcNMjUxMjA2MjMxOTQyWhcNMjUxMjEzMjMxOTQyWjAYMRYwFAYD VQQDEw02OTM0YmEwZi0wZmM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuazwOwrq3xs/r8dVRu61WhMIGkC6A2VHqsqQcf64LOxBmVidU24v5dAJLcPB N6+CGYfXl6HH/+z22dkS/ZDINMLRzT/j9XlCX0teygtw1tmrjmXetqAqtHVvo8am LnIfx0iHABO93FXwzuz2h0gdmKcWn5faJaUFD6ULZZXHE+0atBdAS8EMx1Nyffen 37/rUGYpSbqf73Q+dg/QP9cnDl5VQFDfP6WYzac4OFSbKnMfY8PCKUXamLTC0gdB 6HXVeJI0hrqB6lmHiPxqvEq/Ls4VsYiHW5ryGZYPZfwydK4PhPz2Jt2CXXbQJRms nS8Yi4itC5CeCE55HELnqGNlEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL5dYJXx 2k4ITRNAy1mQG7J6IqNFMB8GA1UdIwQYMBaAFJbnzHejjj4YC/dSa6HZUyGATjXm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzRGQS9CODlCQ0JGNEJB NkExMUVDODJBQzA3ODdDNEY5QUUwMi9sdWZNZDZPT1BoZ0w5MUpyb2RsVElZQk9O ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x1Zk1kNk9PUGhnTDkxSnJvZGxUSVlCT05lWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzRGQS9CODlCQ0JGNEJBNkExMUVDODJBQzA3ODdDNEY5QUUwMi9sdWZNZDZPT1Bo Z0w5MUpyb2RsVElZQk9OZVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/vi9RGxhoh3NY5c1g2eUQm36XyJPQKXUDVOPMFScTfBKNx1pehBAX jNECCmAxqPNVU6s1sZpSeJ/wTVpjRUPYgw3sI8EgFd/jcckFnRJRCmNqktjq0pwL kf4kK1X9nwV3gYij34EZ8B2h0dSwyG7YG9RPqn2Myo03w9ndyZlnnIYkGohLAXGU 9lOVy9t4YYlEmiXujpO+Kwf5iZJnFUmQ6kmtJW/RreECt6qq3VqIXuulYKMYn2Qt 9VfBahNUIQEWnSQDjuS6cpKh4E5Riwioe7k2WMwn/5a40qKuLii/jzh8EFmD031J y66KOddHWmcp73ZzgCNVZqeHqHbZhNes -----END CERTIFICATE-----Generated at Sun Dec 7 03:47:57 2025 by rpki-client