This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft File: 1lqglKUeKDl1O1khC2zyxUkVwB4.mft (raw, json) Hash identifier: YRAjuYFDhTHNXWNLYdiT9QF5JYCbf4IvJcrJm74ipwA= Subject key identifier: 34:3A:28:9A:16:C0:2F:AE:7E:28:6A:84:A7:85:81:B2:18:57:44:68 Authority key identifier: D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E Certificate issuer: /CN=A915C1AA/serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Certificate serial: 0A41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft Manifest number: 0A3A Signing time: Mon 22 Dec 2025 19:08:20 +0000 Manifest this update: Mon 22 Dec 2025 19:08:19 +0000 Manifest next update: Mon 29 Dec 2025 19:08:19 +0000 Files and hashes: 1: 1lqglKUeKDl1O1khC2zyxUkVwB4.crl (hash: dMtQlkdbVZ/dzYRyDrDFwQ930rrJyAwSovrheEfYHFM=) 2: 220853047F2211EA8E730F35C4F9AE02.roa (hash: GncSpKfRZkeGl3QwfrF2wdsfNONCmDmNLMd0bZEde3M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:08:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2625 (0xa41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C1AA, serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Validity Not Before: Dec 22 19:08:19 2025 GMT Not After : Dec 29 19:08:19 2025 GMT Subject: CN=69499724-b71d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:ce:e0:d0:8b:17:13:b5:ed:2f:08:03:ff:ba: 1b:c7:d7:4d:c4:99:c7:10:45:a3:0c:45:2d:9e:f2: 1c:be:03:a0:ba:0e:b1:97:d2:0e:a3:de:a1:0c:54: 9b:df:b0:ae:e5:cf:7b:5c:6c:57:3b:19:4e:62:66: 28:7d:ef:1c:63:cd:d6:9b:89:41:9b:6c:38:12:f3: 31:57:89:be:bc:2c:9b:ec:3e:c5:28:4a:2b:4e:26: 8a:43:bc:a9:c2:18:a5:9a:ff:8e:62:1f:de:ce:9a: e3:69:e4:20:ec:8b:7d:e7:e2:ce:73:d3:73:2a:f9: 07:90:ae:e0:9a:46:5b:b0:a3:60:02:7a:41:83:ed: e7:62:d4:01:44:95:72:ec:c6:76:fa:1d:f6:bd:df: f6:a5:85:67:2e:fd:25:20:d8:5c:2d:d7:47:96:bd: 5c:cc:93:c8:74:62:7c:a3:65:b6:3f:69:f0:6b:8a: 6d:41:3c:2d:52:be:82:59:59:a0:1b:63:c0:f0:4e: 73:88:c9:d3:48:f3:71:bc:1f:73:5b:14:7e:36:d8: 7e:c4:6b:ad:be:5b:ed:ad:a0:ab:ed:94:95:09:13: bc:4e:6c:be:d5:51:09:eb:15:d7:6e:1e:32:37:6b: 2f:92:81:22:34:70:35:55:f3:e6:27:db:97:ef:85: 28:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:3A:28:9A:16:C0:2F:AE:7E:28:6A:84:A7:85:81:B2:18:57:44:68 X509v3 Authority Key Identifier: keyid:D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:21:bf:d4:87:2d:d9:49:b7:ef:85:a0:57:28:d6:5b:96:26: 78:cc:28:37:94:f1:96:60:e3:72:64:2a:d4:83:7a:33:52:45: 63:91:ea:46:43:2f:3b:2f:e0:90:e0:cb:0e:ae:f9:43:be:e4: 0d:47:0d:c8:46:26:16:06:7a:b6:ab:b3:45:cf:cf:3a:ae:3d: 14:9f:53:55:8d:0f:32:75:59:17:7a:51:0f:2c:65:eb:8f:83: b1:5a:e1:93:d5:d2:e7:48:a3:71:43:ee:c6:66:c5:99:49:a2: a2:3c:2b:ca:69:8b:59:e5:76:00:ed:26:82:68:17:00:52:c4: 31:5d:24:86:f5:43:9a:df:45:95:f6:0c:d3:e6:26:0b:6e:a8: 13:75:bb:22:50:f6:44:b0:10:9f:56:c2:a5:51:2d:d7:30:95: ab:35:50:86:e7:6e:74:3a:dd:25:41:c1:89:8d:2b:73:4a:04: 6e:71:ce:b9:7c:ff:fc:e1:ac:44:1f:c3:4f:ce:07:52:9c:7e: 50:f6:72:fc:9a:54:a1:ff:2e:ff:53:3d:79:56:2e:03:99:7b: 97:5f:be:0c:11:81:2d:00:cf:c4:30:ec:00:e0:e7:00:4b:23: 09:09:75:12:a6:99:51:21:6f:1c:10:58:91:d4:d4:59:57:88: 76:cb:7c:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMxQUExMTAvBgNVBAUTKEQ2NUFBMDk0QTUxRTI4Mzk3NTNCNTkyMTBCNkNGMkM1 NDkxNUMwMUUwHhcNMjUxMjIyMTkwODE5WhcNMjUxMjI5MTkwODE5WjAYMRYwFAYD VQQDDA02OTQ5OTcyNC1iNzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkM7g0IsXE7XtLwgD/7obx9dNxJnHEEWjDEUtnvIcvgOgug6xl9IOo96hDFSb 37Cu5c97XGxXOxlOYmYofe8cY83Wm4lBm2w4EvMxV4m+vCyb7D7FKEorTiaKQ7yp whilmv+OYh/ezprjaeQg7It95+LOc9NzKvkHkK7gmkZbsKNgAnpBg+3nYtQBRJVy 7MZ2+h32vd/2pYVnLv0lINhcLddHlr1czJPIdGJ8o2W2P2nwa4ptQTwtUr6CWVmg G2PA8E5ziMnTSPNxvB9zWxR+Nth+xGutvlvtraCr7ZSVCRO8Tmy+1VEJ6xXXbh4y N2svkoEiNHA1VfPmJ9uX74UoNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDQ6KJoW wC+ufihqhKeFgbIYV0RoMB8GA1UdIwQYMBaAFNZaoJSlHig5dTtZIQts8sVJFcAe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzFBQS82QzlEMjYzMDdG MjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtEbDFPMWtoQzJ6eXhVa1Z3 QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFscWdsS1VlS0RsMU8xa2hDMnp5eFVrVndCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzFBQS82QzlEMjYzMDdGMjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtE bDFPMWtoQzJ6eXhVa1Z3QjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6Ib/Uhy3ZSbfvhaBXKNZbliZ4zCg3lPGWYONyZCrUg3ozUkVjkepG Qy87L+CQ4MsOrvlDvuQNRw3IRiYWBnq2q7NFz886rj0Un1NVjQ8ydVkXelEPLGXr j4OxWuGT1dLnSKNxQ+7GZsWZSaKiPCvKaYtZ5XYA7SaCaBcAUsQxXSSG9UOa30WV 9gzT5iYLbqgTdbsiUPZEsBCfVsKlUS3XMJWrNVCG5250Ot0lQcGJjStzSgRucc65 fP/84axEH8NPzgdSnH5Q9nL8mlSh/y7/Uz15Vi4DmXuXX74MEYEtAM/EMOwA4OcA SyMJCXUSpplRIW8cEFiR1NRZV4h2y3z/ -----END CERTIFICATE-----Generated at Wed Dec 24 16:01:11 2025 by rpki-client