This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft File: lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft (raw, json) Hash identifier: 7vyFF5cyfv23zbHhpTsVuK8ZqbHxkmvp9vJzFa2X0uM= Subject key identifier: CE:6E:5A:41:A3:B1:DF:BA:74:00:05:E1:AF:D1:15:63:5C:21:2A:A2 Authority key identifier: 96:B8:0C:37:C6:61:3D:14:A9:2C:DB:EC:66:28:21:64:3E:8A:F1:1B Certificate issuer: /CN=A91818BD/serialNumber=96B80C37C6613D14A92CDBEC662821643E8AF11B Certificate serial: 0314 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft Manifest number: 030B Signing time: Fri 19 Dec 2025 00:23:45 +0000 Manifest this update: Fri 19 Dec 2025 00:23:44 +0000 Manifest next update: Fri 26 Dec 2025 00:23:44 +0000 Files and hashes: 1: lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl (hash: ARbqH8fdo+pc2cTvGqVDj7sw0l2gu1yn2mPnjLdQjkw=) 2: 481545DEFE8211ECBAB0E13FC4F9AE02.roa (hash: jEKlncyC+64UETCLm2u7esM8VX+/1LjWilEvooOzMxI=) 3: B83B7E0C065511EDB3E94E54C4F9AE02.roa (hash: 64ZDXa38kdxwzfpX7eFWZ9w6C5i8LC3RH5BIc5A3wCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:23:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 788 (0x314) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91818BD, serialNumber=96B80C37C6613D14A92CDBEC662821643E8AF11B Validity Not Before: Dec 19 00:23:44 2025 GMT Not After : Dec 26 00:23:44 2025 GMT Subject: CN=69449b11-37a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:e4:bc:fc:e8:fe:df:6c:d4:b8:eb:8f:3c:70: e1:22:ad:64:ed:b0:f2:81:0f:61:f4:42:26:44:c5: 62:9e:7e:0a:fe:0e:47:1a:9c:4e:80:27:a6:b3:8a: 04:ba:7f:bf:64:be:e5:78:9b:b9:76:34:b8:be:c5: 61:ca:c9:cd:b6:3f:ae:32:81:9d:6c:55:e9:3e:27: bc:d2:dd:61:fb:43:e2:42:5c:4d:39:e2:3c:57:44: 3f:4e:20:5e:1b:35:9c:54:f5:e5:3c:c0:82:72:d5: 92:c0:7c:15:0f:fd:ba:85:85:af:18:a2:19:56:d0: 8c:3d:42:9a:67:b1:57:53:97:72:a6:8b:7b:85:c9: 91:f4:77:b8:36:52:a0:25:ca:92:e0:d0:19:de:65: bf:e1:12:3d:70:7e:eb:f3:1b:29:50:d7:d0:0c:e0: 0b:bb:58:f7:c0:79:08:29:94:a2:a2:3e:2f:1c:55: a6:8b:17:5d:e1:40:46:d2:67:c0:da:17:dd:2d:37: 17:b3:e0:1d:c5:bc:f2:d4:c9:3a:b3:5b:58:4f:86: 1b:81:ae:a0:62:0f:9e:75:39:9e:67:87:a0:15:e8: 82:d1:7b:96:60:27:c7:5b:c2:85:98:cb:03:b6:e5: 0f:f6:87:72:cf:1f:f1:d0:50:f6:4c:53:45:25:97: 5a:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:6E:5A:41:A3:B1:DF:BA:74:00:05:E1:AF:D1:15:63:5C:21:2A:A2 X509v3 Authority Key Identifier: keyid:96:B8:0C:37:C6:61:3D:14:A9:2C:DB:EC:66:28:21:64:3E:8A:F1:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:88:bd:83:66:70:d6:5a:a3:ca:38:01:38:30:8d:b9:19:0e: a2:7c:94:8c:40:f9:30:7f:57:91:e6:6c:47:50:79:15:b7:cc: ca:e5:c4:be:57:c7:e0:7f:20:e9:9d:94:57:ca:41:2d:5f:05: 93:d4:6f:3d:f5:82:1e:cc:c2:2a:6e:8e:b6:bf:09:7b:3d:52: 6c:54:12:57:fc:c5:27:ef:10:24:00:c3:92:1b:08:75:69:ef: 5f:c9:eb:a5:50:33:2e:e4:db:44:b6:f0:a5:11:de:b9:f7:89: 00:f1:a1:e8:ae:0b:d2:24:ac:92:c9:e4:77:6c:ab:69:65:4a: d4:ea:89:c1:1a:a0:41:e2:79:8c:31:8b:83:2a:20:03:fb:80: a3:64:37:96:62:ff:80:88:f9:63:2a:eb:a9:94:83:7d:72:b4: 5f:a0:a5:f4:a0:91:e1:6c:60:cd:01:42:18:2c:b4:31:cc:bd: 07:2d:02:e0:06:b0:f5:5d:90:49:d9:6b:57:9f:5e:8e:15:d3: dc:f0:30:c9:ee:cb:b5:b6:77:2f:1a:6c:5d:c4:4e:cf:97:e1: f7:e0:03:ad:bc:4d:98:f5:80:b7:c2:13:6b:71:64:d3:e0:9b: 9c:e2:36:f4:fd:bf:93:90:2e:d2:ba:a1:6d:5e:95:78:b0:71: d5:0e:b6:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE4QkQxMTAvBgNVBAUTKDk2QjgwQzM3QzY2MTNEMTRBOTJDREJFQzY2MjgyMTY0 M0U4QUYxMUIwHhcNMjUxMjE5MDAyMzQ0WhcNMjUxMjI2MDAyMzQ0WjAYMRYwFAYD VQQDDA02OTQ0OWIxMS0zN2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3OS8/Oj+32zUuOuPPHDhIq1k7bDygQ9h9EImRMVinn4K/g5HGpxOgCems4oE un+/ZL7leJu5djS4vsVhysnNtj+uMoGdbFXpPie80t1h+0PiQlxNOeI8V0Q/TiBe GzWcVPXlPMCCctWSwHwVD/26hYWvGKIZVtCMPUKaZ7FXU5dypot7hcmR9He4NlKg JcqS4NAZ3mW/4RI9cH7r8xspUNfQDOALu1j3wHkIKZSioj4vHFWmixdd4UBG0mfA 2hfdLTcXs+Adxbzy1Mk6s1tYT4Ybga6gYg+edTmeZ4egFeiC0XuWYCfHW8KFmMsD tuUP9odyzx/x0FD2TFNFJZdajwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM5uWkGj sd+6dAAF4a/RFWNcISqiMB8GA1UdIwQYMBaAFJa4DDfGYT0UqSzb7GYoIWQ+ivEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MThCRC80MTRENUJEQUZF ODAxMUVDOUYzMTdBM0ZDNEY5QUUwMi9scmdNTjhaaFBSU3BMTnZzWmlnaFpENks4 UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xyZ01OOFpoUFJTcExOdnNaaWdoWkQ2SzhScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MThCRC80MTRENUJEQUZFODAxMUVDOUYzMTdBM0ZDNEY5QUUwMi9scmdNTjhaaFBS U3BMTnZzWmlnaFpENks4UnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFiL2DZnDWWqPKOAE4MI25GQ6ifJSMQPkwf1eR5mxHUHkVt8zK5cS+ V8fgfyDpnZRXykEtXwWT1G899YIezMIqbo62vwl7PVJsVBJX/MUn7xAkAMOSGwh1 ae9fyeulUDMu5NtEtvClEd6594kA8aHorgvSJKySyeR3bKtpZUrU6onBGqBB4nmM MYuDKiAD+4CjZDeWYv+AiPljKuuplIN9crRfoKX0oJHhbGDNAUIYLLQxzL0HLQLg BrD1XZBJ2WtXn16OFdPc8DDJ7su1tncvGmxdxE7Pl+H34AOtvE2Y9YC3whNrcWTT 4Juc4jb0/b+TkC7SuqFtXpV4sHHVDrY6 -----END CERTIFICATE-----Generated at Sat Dec 20 02:47:57 2025 by rpki-client