This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft File: lDuBQuFVPslGJaRyTlaYKhVY_pw.mft (raw, json) Hash identifier: ZyI/9QeQuFas0RcMlzQ5r1LVxswdVZ3IEJzuI5dfIFQ= Subject key identifier: E4:A0:68:8E:FB:48:86:69:B6:60:AB:D6:7A:A5:0B:37:8B:AA:AF:6C Authority key identifier: 94:3B:81:42:E1:55:3E:C9:46:25:A4:72:4E:56:98:2A:15:58:FE:9C Certificate issuer: /CN=A91582D9/serialNumber=943B8142E1553EC94625A4724E56982A1558FE9C Certificate serial: 17FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lDuBQuFVPslGJaRyTlaYKhVY_pw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft Manifest number: 2067 Signing time: Wed 24 Dec 2025 16:20:11 +0000 Manifest this update: Wed 24 Dec 2025 16:20:10 +0000 Manifest next update: Wed 31 Dec 2025 16:20:10 +0000 Files and hashes: 1: lDuBQuFVPslGJaRyTlaYKhVY_pw.crl (hash: gVBKc2U5XePiTGGDPuJuyEKhyQwmx2pXI/m04ScqgsA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.crl rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lDuBQuFVPslGJaRyTlaYKhVY_pw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 16:20:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6142 (0x17fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91582D9, serialNumber=943B8142E1553EC94625A4724E56982A1558FE9C Validity Not Before: Dec 24 16:20:10 2025 GMT Not After : Dec 31 16:20:10 2025 GMT Subject: CN=694c12bb-ea31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:5f:d4:cf:d8:36:a1:8a:ad:1e:5c:7a:23:71: a8:43:b6:74:bc:ce:20:52:be:bf:06:6d:f4:f6:92: b7:bf:0d:d5:5f:f6:29:82:b3:a7:9a:22:02:03:c7: 64:c3:e6:8a:7f:31:41:84:e3:db:bf:d7:c2:62:30: 37:a2:dc:ba:2b:34:35:d0:f7:cd:f2:86:1d:1d:42: e6:61:19:3e:26:c4:0a:89:7b:cf:0c:6c:00:74:e8: 87:99:92:36:1c:44:0b:30:c9:90:d3:b5:b4:b6:b5: 22:26:aa:13:e3:9e:93:bb:bb:a0:c8:c4:59:90:3e: 94:86:c8:46:50:04:16:af:34:8c:25:bd:2b:5a:24: 33:3b:ca:62:6d:b2:62:c5:5b:bb:f4:cb:ac:f2:3b: 04:be:ca:6d:22:d6:57:94:02:25:23:64:3b:5b:5d: f5:6c:6d:85:f0:0d:ab:b4:32:b5:c5:66:b9:eb:d2: dd:cc:c4:2b:f4:eb:b1:2b:2e:bf:54:3b:c8:a8:c8: cb:94:0c:25:c4:ab:18:fe:3b:02:24:dd:4b:45:ea: 8e:c4:d3:4a:1b:46:04:43:19:9f:52:63:65:e2:17: dc:a4:31:12:2d:5b:12:47:69:91:aa:25:c9:ed:5e: 5c:01:6c:c9:99:20:e6:84:28:f7:75:5b:83:68:cb: 28:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:A0:68:8E:FB:48:86:69:B6:60:AB:D6:7A:A5:0B:37:8B:AA:AF:6C X509v3 Authority Key Identifier: keyid:94:3B:81:42:E1:55:3E:C9:46:25:A4:72:4E:56:98:2A:15:58:FE:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lDuBQuFVPslGJaRyTlaYKhVY_pw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:00:bc:4b:3e:de:8e:c5:f0:f6:e6:10:3e:7e:64:85:b5:ae: a9:a2:53:fb:7b:d9:08:26:20:26:5e:c0:58:ac:31:18:b5:52: d9:da:f5:34:e2:74:a3:5f:0b:37:8e:1e:dc:f7:b5:35:93:51: 86:bd:ac:45:f9:c2:52:67:f3:15:cc:7d:6e:d6:ac:61:65:8e: 4b:78:ab:2d:2f:a5:fd:63:03:2e:3b:27:66:16:98:ed:56:9d: 1e:db:82:bf:7b:b7:c0:e6:23:bc:68:fb:c4:10:f6:32:d1:de: e1:a2:7b:d1:1c:94:43:38:13:6b:e6:31:0e:fa:7c:08:3b:0d: 39:d7:e6:a2:31:d7:92:f4:63:77:57:45:5e:cd:ce:1f:10:3c: d6:01:06:a1:a8:33:a7:04:3b:56:3b:93:9f:1e:82:a2:99:ae: 6b:22:d4:1c:84:55:03:c3:c4:38:5e:f4:24:9c:f9:91:d5:5d: 28:59:03:ce:46:c0:74:8d:cd:12:de:f0:f5:9c:26:68:57:af: f7:fa:32:1c:e9:ee:b2:f7:1c:65:c4:0d:b0:52:3b:24:10:46: b7:46:bd:42:c2:05:cf:c2:58:dd:f0:18:a3:8d:ac:22:21:9f: 1a:17:98:be:bb:40:56:33:5d:4d:f5:b5:a1:c7:8e:fd:a6:bf: cc:4c:9e:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF/4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgyRDkxMTAvBgNVBAUTKDk0M0I4MTQyRTE1NTNFQzk0NjI1QTQ3MjRFNTY5ODJB MTU1OEZFOUMwHhcNMjUxMjI0MTYyMDEwWhcNMjUxMjMxMTYyMDEwWjAYMRYwFAYD VQQDDA02OTRjMTJiYi1lYTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz1/Uz9g2oYqtHlx6I3GoQ7Z0vM4gUr6/Bm309pK3vw3VX/YpgrOnmiICA8dk w+aKfzFBhOPbv9fCYjA3oty6KzQ10PfN8oYdHULmYRk+JsQKiXvPDGwAdOiHmZI2 HEQLMMmQ07W0trUiJqoT456Tu7ugyMRZkD6UhshGUAQWrzSMJb0rWiQzO8pibbJi xVu79Mus8jsEvsptItZXlAIlI2Q7W131bG2F8A2rtDK1xWa569LdzMQr9OuxKy6/ VDvIqMjLlAwlxKsY/jsCJN1LReqOxNNKG0YEQxmfUmNl4hfcpDESLVsSR2mRqiXJ 7V5cAWzJmSDmhCj3dVuDaMsoVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOSgaI77 SIZptmCr1nqlCzeLqq9sMB8GA1UdIwQYMBaAFJQ7gULhVT7JRiWkck5WmCoVWP6c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODJEOS8wRURBNkQ1RUNE REExMUU3QkRFQThDMkJDNEY5QUUwMi9sRHVCUXVGVlBzbEdKYVJ5VGxhWUtoVllf cHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xEdUJRdUZWUHNsR0phUnlUbGFZS2hWWV9wdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODJEOS8wRURBNkQ1RUNEREExMUU3QkRFQThDMkJDNEY5QUUwMi9sRHVCUXVGVlBz bEdKYVJ5VGxhWUtoVllfcHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPALxLPt6OxfD25hA+fmSFta6polP7e9kIJiAmXsBYrDEYtVLZ2vU0 4nSjXws3jh7c97U1k1GGvaxF+cJSZ/MVzH1u1qxhZY5LeKstL6X9YwMuOydmFpjt Vp0e24K/e7fA5iO8aPvEEPYy0d7honvRHJRDOBNr5jEO+nwIOw051+aiMdeS9GN3 V0Vezc4fEDzWAQahqDOnBDtWO5OfHoKima5rItQchFUDw8Q4XvQknPmR1V0oWQPO RsB0jc0S3vD1nCZoV6/3+jIc6e6y9xxlxA2wUjskEEa3Rr1CwgXPwljd8Bijjawi IZ8aF5i+u0BWM11N9bWhx479pr/MTJ7l -----END CERTIFICATE-----Generated at Wed Dec 24 19:30:39 2025 by rpki-client