This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft File: lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft (raw, json) Hash identifier: NebPDIldjT1pHEpFl3kLIxPq9pLaeEbSFiKahTTsGHk= Subject key identifier: AC:93:8B:77:EC:F6:EA:77:69:C5:82:07:09:67:B0:EB:F0:CE:42:01 Authority key identifier: 95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E Certificate issuer: /CN=A9185D6E/serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Certificate serial: 05EF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft Manifest number: 05DC Signing time: Thu 04 Dec 2025 21:44:10 +0000 Manifest this update: Thu 04 Dec 2025 21:44:09 +0000 Manifest next update: Thu 11 Dec 2025 21:44:09 +0000 Files and hashes: 1: lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl (hash: SQ8Ld+JADVOUcjAeyErRG5Hk0sLpmiVfFzmWcYy/sfU=) 2: 229CD24AF9FB11EB8CFF5E7DC4F9AE02.roa (hash: n04Y3sGneIDc0gFY4gtPPq0L4eOtSWnQu7Ei64M+chk=) 3: 37F43E66A27311EFA8731822C4F9AE02.roa (hash: vy2TZeybvxjXMBwVfAEFXRXQN3w7mLcQMjLoNDfW68Y=) 4: 53BCB840EA4211EB846B8757C4F9AE02.roa (hash: lxZNfyimV3NQpo4JPb58fRVzNwdRpPB3SMYQ8hq+yFg=) 5: 368F5308A27311EFA8731822C4F9AE02.roa (hash: Hs0kfftH2V+1dVTeEFiwGCNE8QZlZWgBetHvEQLVaTU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 21:44:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1519 (0x5ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D6E, serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Validity Not Before: Dec 4 21:44:09 2025 GMT Not After : Dec 11 21:44:09 2025 GMT Subject: CN=693200a9-0ca6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:64:d6:48:18:98:d9:05:a3:43:ae:08:9a:62: a8:9d:27:eb:39:da:25:df:be:ea:1f:a3:ae:9d:26: 7e:0d:bb:f3:05:37:81:1a:1f:dc:23:fd:20:c1:4c: 06:c7:d0:65:ae:25:ae:80:76:77:79:d0:49:97:bf: c8:e1:32:6b:b1:e1:51:ea:90:89:35:46:77:b8:cc: a2:06:9a:a7:5e:b7:37:a5:99:89:93:7e:9c:62:9e: 73:e3:99:d6:b2:54:58:0e:ae:ee:90:ca:b2:20:12: 41:06:d3:c3:06:50:9e:3b:51:25:15:20:c3:85:a6: e6:79:32:61:8a:cb:63:31:2c:a1:05:57:59:55:82: cc:eb:08:12:fa:24:1f:62:34:2d:e3:b6:bf:a5:69: 22:a8:9f:5b:50:35:73:d3:9d:41:f2:bf:ee:51:95: 90:18:02:33:db:a1:48:a7:53:06:2d:6a:35:2d:4a: dc:fc:fd:47:a8:bc:a4:47:21:e7:58:31:df:66:0e: d1:28:e6:54:e8:a9:d0:79:08:7f:29:e0:8a:f8:55: 7d:1b:d5:cd:be:bf:6a:ba:37:ac:4d:6c:57:3b:52: 3c:ce:59:9c:d0:72:bd:d4:d7:c0:26:14:fe:17:4e: b6:46:d1:02:4f:4d:dd:77:6e:d7:d0:3e:02:48:76: 83:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:93:8B:77:EC:F6:EA:77:69:C5:82:07:09:67:B0:EB:F0:CE:42:01 X509v3 Authority Key Identifier: keyid:95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:12:63:4b:ad:9e:de:5e:0d:f2:15:ae:48:d7:1d:4e:87:b6: 0e:89:1d:76:20:53:71:43:1f:90:2f:64:ec:14:78:4e:1f:50: d6:ad:b9:51:6c:71:d3:9d:91:0a:f0:ba:34:2b:e9:58:fd:cc: dc:44:e6:15:65:98:38:07:e3:a6:a4:c8:42:96:f3:1a:fa:d7: 68:44:a2:20:7e:9f:25:de:0e:7e:91:8b:23:35:77:f6:a2:75: 2b:e5:9a:d9:a0:3e:c3:c3:07:1d:13:f0:03:a7:fb:56:d1:fd: 74:e5:a2:b7:a6:67:07:c1:21:f4:e8:a9:1d:00:d1:f4:75:b3: 39:e5:b9:d6:13:e1:dc:6f:d9:9c:43:c7:e6:fc:e6:5c:44:46: a8:9e:23:a3:81:9c:0d:eb:1b:61:b9:8f:a2:88:a1:08:ef:d8: 1b:2d:ba:13:da:7e:7b:e3:74:81:43:d4:77:e6:1a:0c:02:bf: 0d:06:dd:6e:dc:fc:d3:40:08:97:d7:bb:ce:0e:f4:a3:91:ee: b6:92:2f:5e:a7:67:82:8a:69:9b:31:4c:12:30:7c:df:96:a1: f3:bf:ef:71:15:7a:c0:5e:44:42:2a:d0:d5:de:5b:5b:59:f4: 84:5f:bb:0d:2e:22:e9:49:57:00:31:43:de:32:42:a4:ab:04: 07:d6:1b:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVENkUxMTAvBgNVBAUTKDk1MjRFQTlCODIzQzIwRkE3ODkyM0JFNjY2N0UxNEY2 QzRDM0I0N0UwHhcNMjUxMjA0MjE0NDA5WhcNMjUxMjExMjE0NDA5WjAYMRYwFAYD VQQDEw02OTMyMDBhOS0wY2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoWTWSBiY2QWjQ64ImmKonSfrOdol377qH6OunSZ+DbvzBTeBGh/cI/0gwUwG x9BlriWugHZ3edBJl7/I4TJrseFR6pCJNUZ3uMyiBpqnXrc3pZmJk36cYp5z45nW slRYDq7ukMqyIBJBBtPDBlCeO1ElFSDDhabmeTJhistjMSyhBVdZVYLM6wgS+iQf YjQt47a/pWkiqJ9bUDVz051B8r/uUZWQGAIz26FIp1MGLWo1LUrc/P1HqLykRyHn WDHfZg7RKOZU6KnQeQh/KeCK+FV9G9XNvr9qujesTWxXO1I8zlmc0HK91NfAJhT+ F062RtECT03dd27X0D4CSHaDZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKyTi3fs 9up3acWCBwlnsOvwzkIBMB8GA1UdIwQYMBaAFJUk6puCPCD6eJI75mZ+FPbEw7R+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQ2RS80Q0JGRjRBRURG RjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQcDRranZtWm40VTlzVER0 SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xTVHFtNEk4SVBwNGtqdm1abjRVOXNURHRINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUQ2RS80Q0JGRjRBRURGRjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQ cDRranZtWm40VTlzVER0SDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgEmNLrZ7eXg3yFa5I1x1Oh7YOiR12IFNxQx+QL2TsFHhOH1DWrblR bHHTnZEK8Lo0K+lY/czcROYVZZg4B+OmpMhClvMa+tdoRKIgfp8l3g5+kYsjNXf2 onUr5ZrZoD7DwwcdE/ADp/tW0f105aK3pmcHwSH06KkdANH0dbM55bnWE+Hcb9mc Q8fm/OZcREaoniOjgZwN6xthuY+iiKEI79gbLboT2n5743SBQ9R35hoMAr8NBt1u 3PzTQAiX17vODvSjke62ki9ep2eCimmbMUwSMHzflqHzv+9xFXrAXkRCKtDV3ltb WfSEX7sNLiLpSVcAMUPeMkKkqwQH1ht3 -----END CERTIFICATE-----Generated at Sat Dec 6 13:50:51 2025 by rpki-client