This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft File: Lfmh43Whe46lYCe0WovWb5Z0fYY.mft (raw, json) Hash identifier: VQBiCEgCZf6JyJVa1VSjX0RaWmiCWSMG9vu2nNe7bQ8= Subject key identifier: DC:D5:73:D0:B4:03:48:67:06:A9:A1:54:EB:F4:B4:CE:13:8E:B0:D4 Authority key identifier: 2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86 Certificate issuer: /CN=A9185B6D/serialNumber=2DF9A1E375A17B8EA56027B45A8BD66F96747D86 Certificate serial: 0169 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft Manifest number: 0156 Signing time: Fri 05 Dec 2025 02:31:50 +0000 Manifest this update: Fri 05 Dec 2025 02:31:48 +0000 Manifest next update: Fri 12 Dec 2025 02:31:48 +0000 Files and hashes: 1: Lfmh43Whe46lYCe0WovWb5Z0fYY.crl (hash: PJIxxvRaUKpNjUOUJlk28ss7wKYUCyGjOBa6cSsLwdg=) 2: BA6555344DEE11F0B209371DC4F9AE02.roa (hash: CQr2hobxwoFHY9a4Ev/A2yb3z142YhpnnpTJ8f2F528=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 361 (0x169) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B6D, serialNumber=2DF9A1E375A17B8EA56027B45A8BD66F96747D86 Validity Not Before: Dec 5 02:31:48 2025 GMT Not After : Dec 12 02:31:48 2025 GMT Subject: CN=69324415-9c51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:0a:ab:5b:31:a1:ba:36:d2:39:a4:cb:09:98: fa:2f:68:b0:f6:5f:92:30:47:a2:13:4e:d2:ad:08: 2d:be:d6:dc:6e:74:be:04:4f:69:90:14:bf:a7:47: d8:71:ca:13:af:f1:67:13:71:a9:f7:cf:53:b0:81: f5:0e:68:95:08:5b:87:6a:16:45:7c:0e:ff:6d:a8: bf:ac:71:99:c4:c9:b1:6c:76:39:b0:94:5d:1c:8d: bd:48:9e:a9:fe:f3:c4:8d:d7:62:f8:9b:e1:79:95: b0:ee:35:4a:aa:e8:d6:85:d1:55:a7:01:db:13:64: 24:31:5a:96:4e:c1:dc:19:48:be:a8:27:1a:92:09: 7e:da:1c:47:0e:64:be:9e:32:3e:98:a1:f2:1b:50: c4:4d:b6:29:72:59:e2:ec:76:56:45:b8:b5:4e:b2: 49:b5:24:9f:e3:d7:38:de:96:f9:89:56:d1:9d:ca: c5:4b:e8:79:e9:c1:57:98:da:67:78:52:7b:77:5c: bb:f6:76:a7:e3:d3:13:63:cf:db:4f:75:40:59:a5: 0c:09:aa:91:29:20:48:b5:8d:86:98:cc:13:87:c8: 06:8f:19:7c:de:d2:20:43:28:30:39:c4:c7:d3:1f: 6d:fc:4b:1a:49:57:05:43:86:d6:ea:62:cf:0d:22: bf:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:D5:73:D0:B4:03:48:67:06:A9:A1:54:EB:F4:B4:CE:13:8E:B0:D4 X509v3 Authority Key Identifier: keyid:2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:50:73:12:fb:43:d9:dd:f1:ec:74:25:37:8e:f6:4b:50:4f: 83:e7:f7:ef:c8:e3:fe:52:ab:0a:ef:92:15:c5:79:6f:a6:25: c2:90:89:54:81:d8:93:1f:09:f6:12:93:f2:a5:e5:a2:35:a7: b7:29:11:95:89:44:ff:d1:98:6f:39:77:af:2d:12:4b:04:99: 0b:89:9d:e8:ca:e8:b6:ca:11:8e:94:dd:81:89:f9:88:26:0c: 0a:7b:cd:01:b7:78:49:28:cb:2d:c6:c0:93:1b:8a:cc:30:9a: 80:f2:18:db:2c:d3:3b:f7:ac:e9:23:c9:f8:b8:d4:58:ca:cc: d4:86:58:99:48:d9:9b:cd:c4:be:fe:4d:f7:d5:58:c9:c6:0a: 94:03:38:0f:45:82:09:07:46:9e:7f:4b:d5:f5:c1:17:5b:1a: e3:6d:1e:bd:f2:13:ca:3a:ac:92:0e:4b:b9:3e:bd:7b:e9:e9: 44:ad:cb:63:9c:98:0b:57:fc:46:05:a4:03:83:db:06:85:b7: 96:8c:27:d5:aa:db:04:5b:27:ff:a2:de:0c:67:dc:b3:39:ef: 07:a8:d5:78:f7:80:4b:7e:d0:09:35:99:23:7c:ab:20:07:72: 94:42:64:3c:2d:58:fe:88:46:6a:1c:07:e6:00:f3:e7:61:91: b4:fc:07:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNkQxMTAvBgNVBAUTKDJERjlBMUUzNzVBMTdCOEVBNTYwMjdCNDVBOEJENjZG OTY3NDdEODYwHhcNMjUxMjA1MDIzMTQ4WhcNMjUxMjEyMDIzMTQ4WjAYMRYwFAYD VQQDEw02OTMyNDQxNS05YzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzAqrWzGhujbSOaTLCZj6L2iw9l+SMEeiE07SrQgtvtbcbnS+BE9pkBS/p0fY ccoTr/FnE3Gp989TsIH1DmiVCFuHahZFfA7/bai/rHGZxMmxbHY5sJRdHI29SJ6p /vPEjddi+JvheZWw7jVKqujWhdFVpwHbE2QkMVqWTsHcGUi+qCcakgl+2hxHDmS+ njI+mKHyG1DETbYpclni7HZWRbi1TrJJtSSf49c43pb5iVbRncrFS+h56cFXmNpn eFJ7d1y79nan49MTY8/bT3VAWaUMCaqRKSBItY2GmMwTh8gGjxl83tIgQygwOcTH 0x9t/EsaSVcFQ4bW6mLPDSK/KQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNzVc9C0 A0hnBqmhVOv0tM4TjrDUMB8GA1UdIwQYMBaAFC35oeN1oXuOpWAntFqL1m+WdH2G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI2RC8xODFCODIyMEU3 OEUxMUVFOTgzMUVCN0VDNEY5QUUwMi9MZm1oNDNXaGU0NmxZQ2UwV292V2I1WjBm WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xmbWg0M1doZTQ2bFlDZTBXb3ZXYjVaMGZZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUI2RC8xODFCODIyMEU3OEUxMUVFOTgzMUVCN0VDNEY5QUUwMi9MZm1oNDNXaGU0 NmxZQ2UwV292V2I1WjBmWVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaUHMS+0PZ3fHsdCU3jvZLUE+D5/fvyOP+UqsK75IVxXlvpiXCkIlU gdiTHwn2EpPypeWiNae3KRGViUT/0ZhvOXevLRJLBJkLiZ3oyui2yhGOlN2BifmI JgwKe80Bt3hJKMstxsCTG4rMMJqA8hjbLNM796zpI8n4uNRYyszUhliZSNmbzcS+ /k331VjJxgqUAzgPRYIJB0aef0vV9cEXWxrjbR698hPKOqySDku5Pr176elErctj nJgLV/xGBaQDg9sGhbeWjCfVqtsEWyf/ot4MZ9yzOe8HqNV494BLftAJNZkjfKsg B3KUQmQ8LVj+iEZqHAfmAPPnYZG0/AdX -----END CERTIFICATE-----Generated at Sat Dec 6 22:20:56 2025 by rpki-client