This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft File: lCJM-heqoN5UOrYQifwdOdGZDj4.mft (raw, json) Hash identifier: xDYNP7n9w8E6R2w3pDZbV42D5i6XVCq36I6tKyV5+TA= Subject key identifier: 4C:DC:B0:EE:0D:53:E5:7A:3C:B6:C3:E7:1A:91:96:29:D1:ED:C0:02 Authority key identifier: 94:22:4C:FA:17:AA:A0:DE:54:3A:B6:10:89:FC:1D:39:D1:99:0E:3E Certificate issuer: /CN=A918B936/serialNumber=94224CFA17AAA0DE543AB61089FC1D39D1990E3E Certificate serial: 2167 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft Manifest number: 2167 Signing time: Thu 04 Dec 2025 15:42:41 +0000 Manifest this update: Thu 04 Dec 2025 15:42:40 +0000 Manifest next update: Thu 11 Dec 2025 15:42:40 +0000 Files and hashes: 1: lCJM-heqoN5UOrYQifwdOdGZDj4.crl (hash: omi6S6nfNsjjhtrKtXvDbqwfA8z7A3yNLwhODkF6q+c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.crl rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 15:42:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8551 (0x2167) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B936, serialNumber=94224CFA17AAA0DE543AB61089FC1D39D1990E3E Validity Not Before: Dec 4 15:42:40 2025 GMT Not After : Dec 11 15:42:40 2025 GMT Subject: CN=6931abf0-b432 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f1:1d:cc:c8:f4:eb:9c:d5:9f:bd:83:06:a0: b8:37:a6:67:96:9f:34:db:85:f6:f7:c3:71:28:6e: ba:cf:6a:ec:60:e5:28:6c:19:a8:84:dd:8a:50:8c: c6:7e:22:10:d9:bc:ba:07:c8:7f:ef:74:96:51:77: f5:63:54:65:e6:7e:96:9f:6a:c8:fa:f7:67:4a:f4: a3:4f:bd:1a:1d:78:28:99:39:01:02:7d:96:23:ef: 80:a2:42:7d:60:a0:64:cd:b8:19:91:d6:1e:07:51: 42:1d:d3:c8:6d:6f:5d:9a:d9:a7:ed:c6:d7:07:58: 82:57:ae:f0:f8:71:fb:23:51:4d:f0:34:9e:2f:88: 33:47:23:dd:70:11:6b:f0:1e:3b:8f:53:b2:68:90: 2e:7d:be:0b:bc:cf:f9:e2:e2:f5:f5:31:b3:e0:f4: c3:c3:eb:3f:17:8b:61:fd:07:49:a1:ef:ae:3d:10: 47:58:fc:df:0f:b0:dc:8d:38:f5:de:b6:bf:f6:32: a2:ad:9a:f1:e6:ef:28:c9:d8:a3:1e:95:bc:5a:03: 8c:be:d7:2e:21:75:11:03:33:06:b2:e8:8b:5f:2a: f5:8f:0a:96:2a:12:d6:80:e4:c7:47:7f:3a:33:ad: d6:98:00:0d:8e:68:8a:c8:12:df:60:58:7a:0a:ff: 21:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:DC:B0:EE:0D:53:E5:7A:3C:B6:C3:E7:1A:91:96:29:D1:ED:C0:02 X509v3 Authority Key Identifier: keyid:94:22:4C:FA:17:AA:A0:DE:54:3A:B6:10:89:FC:1D:39:D1:99:0E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:26:49:8d:0f:64:bf:bd:04:9e:07:79:a0:f8:4c:f1:b1:d3: 85:96:b0:34:74:92:d7:54:9e:39:63:40:8e:26:e0:c9:bf:96: ec:fd:d3:67:7f:6a:b0:c1:44:3b:69:47:28:67:4c:fb:69:58: 8b:4b:c5:75:f1:5d:05:e7:28:ca:ad:de:41:14:83:8f:78:22: b6:f6:b0:c7:04:e6:65:62:3f:15:d0:b7:07:4a:1d:23:1a:52: 55:d9:84:5b:54:83:39:d3:e0:94:63:d9:10:2d:0d:c8:c2:12: cc:a3:f2:be:4c:a0:67:32:b6:3e:1f:a6:61:9f:61:0d:5e:5c: 84:8a:1b:09:e2:6c:b0:de:a7:14:df:ee:f1:11:d1:2c:14:79: 29:e7:43:f9:9b:e5:bd:5f:93:ff:99:62:ec:47:0b:2b:b0:a4: 5a:94:44:29:c5:1d:93:f7:f8:54:8a:d0:59:29:0e:d7:ed:e5: f7:85:6e:39:12:2e:0f:07:76:2c:1b:2e:f5:4c:42:48:21:fd: 1d:76:5b:7a:c3:4c:e0:e9:2f:02:29:dd:75:a5:43:c8:6f:fd: 8f:29:55:a1:c1:84:a0:1d:56:1b:fb:e0:80:f4:67:a8:83:df: 42:21:01:fd:7c:95:93:78:e1:bf:46:b9:a1:c0:52:dd:63:56: b6:43:04:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI5MzYxMTAvBgNVBAUTKDk0MjI0Q0ZBMTdBQUEwREU1NDNBQjYxMDg5RkMxRDM5 RDE5OTBFM0UwHhcNMjUxMjA0MTU0MjQwWhcNMjUxMjExMTU0MjQwWjAYMRYwFAYD VQQDEw02OTMxYWJmMC1iNDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfEdzMj065zVn72DBqC4N6Znlp8024X298NxKG66z2rsYOUobBmohN2KUIzG fiIQ2by6B8h/73SWUXf1Y1Rl5n6Wn2rI+vdnSvSjT70aHXgomTkBAn2WI++AokJ9 YKBkzbgZkdYeB1FCHdPIbW9dmtmn7cbXB1iCV67w+HH7I1FN8DSeL4gzRyPdcBFr 8B47j1OyaJAufb4LvM/54uL19TGz4PTDw+s/F4th/QdJoe+uPRBHWPzfD7DcjTj1 3ra/9jKirZrx5u8oydijHpW8WgOMvtcuIXURAzMGsuiLXyr1jwqWKhLWgOTHR386 M63WmAANjmiKyBLfYFh6Cv8h4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEzcsO4N U+V6PLbD5xqRlinR7cACMB8GA1UdIwQYMBaAFJQiTPoXqqDeVDq2EIn8HTnRmQ4+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjkzNi80RUQyMkZEMkYw Q0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9sQ0pNLWhlcW9ONVVPcllRaWZ3ZE9kR1pE ajQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDSk0taGVxb041VU9yWVFpZndkT2RHWkRqNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjkzNi80RUQyMkZEMkYwQ0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9sQ0pNLWhlcW9O NVVPcllRaWZ3ZE9kR1pEajQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmJkmND2S/vQSeB3mg+EzxsdOFlrA0dJLXVJ45Y0COJuDJv5bs/dNn f2qwwUQ7aUcoZ0z7aViLS8V18V0F5yjKrd5BFIOPeCK29rDHBOZlYj8V0LcHSh0j GlJV2YRbVIM50+CUY9kQLQ3IwhLMo/K+TKBnMrY+H6Zhn2ENXlyEihsJ4myw3qcU 3+7xEdEsFHkp50P5m+W9X5P/mWLsRwsrsKRalEQpxR2T9/hUitBZKQ7X7eX3hW45 Ei4PB3YsGy71TEJIIf0ddlt6w0zg6S8CKd11pUPIb/2PKVWhwYSgHVYb++CA9Geo g99CIQH9fJWTeOG/RrmhwFLdY1a2QwR7 -----END CERTIFICATE-----Generated at Sat Dec 6 12:06:46 2025 by rpki-client