This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft File: leqvwkta9LFytYuwGnAc_hltoZk.mft (raw, json) Hash identifier: U19Cfyo1MGshrTA5RUuETyhXuhQ9Q1Ud2ntGrlWKQOc= Subject key identifier: 73:8E:4B:D2:0A:E2:AE:37:FE:21:3A:32:09:FE:7F:6E:84:EA:CD:FF Authority key identifier: 95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 Certificate issuer: /CN=A91972B6/serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Certificate serial: 1171 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft Manifest number: 1167 Signing time: Sat 22 Nov 2025 16:40:37 +0000 Manifest this update: Sat 22 Nov 2025 16:40:37 +0000 Manifest next update: Sat 29 Nov 2025 16:40:37 +0000 Files and hashes: 1: leqvwkta9LFytYuwGnAc_hltoZk.crl (hash: 24IE2eAFBeeonL+1+jwFKhAgMtkAr6Ve0dFxgGQn65g=) 2: 2837843AA3E811EAB397F675C4F9AE02.roa (hash: y9Ue7Mqnzr2Y9oHbpxdCKjDeFirsk0PRqFHYUCwvvtk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 29 Nov 2025 15:44:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4465 (0x1171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972B6, serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Validity Not Before: Nov 22 16:40:37 2025 GMT Not After : Nov 29 16:40:37 2025 GMT Subject: CN=6921e785-ad5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:e6:77:a6:d8:bc:ba:cd:df:bc:04:4b:e9:09: 7d:e2:9f:13:f2:2f:46:8a:ff:d6:7b:ff:ba:e6:5a: d6:f8:53:c4:0a:16:a5:08:38:95:ec:22:7c:60:b7: 23:6a:ce:ab:94:4a:30:43:28:94:52:37:52:46:9a: 12:b4:0b:be:62:6a:f1:a8:f9:14:8d:72:13:5c:63: fa:32:75:36:35:ec:12:91:70:9b:e3:60:c9:8a:26: 65:36:80:0f:39:50:5b:f1:d6:0a:03:4f:ed:0f:20: 2c:c2:9a:a5:25:a2:72:e8:49:41:7b:08:8e:80:f3: b4:73:fd:9b:5f:66:79:b7:cd:c8:ee:02:ea:47:a5: e2:ba:c6:f6:db:a8:3f:4b:83:8f:82:06:ad:2a:e3: 57:c3:51:62:64:ab:87:f1:0e:f5:09:c4:3c:06:5a: e3:e1:ba:15:91:1e:46:c8:9b:e6:df:70:75:c6:20: d5:f6:e2:18:5a:c9:3d:28:c5:5a:89:4b:48:ee:43: 4f:33:59:cc:14:4a:b4:8c:0a:c9:dd:79:2f:e2:b7: d6:e2:74:c3:ff:6a:f3:00:bc:d1:34:4c:2e:f6:88: 18:6a:be:59:e5:cb:60:e3:ed:fc:2a:ad:46:3b:4f: 6a:d8:52:d2:48:fc:c2:45:91:f6:50:86:6b:85:91: 49:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:8E:4B:D2:0A:E2:AE:37:FE:21:3A:32:09:FE:7F:6E:84:EA:CD:FF X509v3 Authority Key Identifier: keyid:95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:ee:2c:a1:20:03:0d:19:d9:dd:47:71:19:0a:d3:d3:f0:5e: a0:c5:3e:81:9c:3f:93:9e:d9:42:67:12:a2:fc:a9:1e:d0:d9: 05:1b:06:24:a2:57:6b:2f:02:58:32:74:fa:04:c2:3c:25:71: 12:93:05:9a:3c:b5:7c:37:d8:8d:e5:b4:e5:0c:f5:cd:dc:b1: 12:60:9b:4c:33:13:5f:a3:b6:f5:fc:c4:1a:5a:be:4d:36:bf: 50:d6:a3:6c:2f:fe:e3:e2:5b:1c:f5:6f:ec:32:b2:85:d8:24: 15:bb:31:72:64:ce:cb:17:49:ea:f3:ec:61:f3:fa:4b:c7:c9: 55:80:45:63:48:f1:fa:b1:f3:bb:fb:23:44:58:9b:e1:f5:03: e1:70:e0:d0:87:45:37:f4:81:e0:9e:f5:f2:89:3b:84:cc:64: 94:3a:3e:37:3f:97:02:13:56:3b:d6:ef:de:e7:21:d6:11:9a: 69:83:da:64:df:d0:96:d9:48:6f:ff:ec:7b:f2:fb:f3:30:36: cf:e5:59:52:7d:5a:d9:35:35:fe:cd:57:8e:5a:98:22:9d:20: 49:ae:af:80:b7:95:52:36:70:bb:da:be:3d:4d:a4:71:25:bd: fa:c1:39:d0:09:f9:e3:38:d5:a7:0c:c2:98:ed:f2:cb:9c:ce: 1e:1c:fc:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyQjYxMTAvBgNVBAUTKDk1RUFBRkMyNEI1QUY0QjE3MkI1OEJCMDFBNzAxQ0ZF MTk2REExOTkwHhcNMjUxMTIyMTY0MDM3WhcNMjUxMTI5MTY0MDM3WjAYMRYwFAYD VQQDEw02OTIxZTc4NS1hZDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3OZ3pti8us3fvARL6Ql94p8T8i9Giv/We/+65lrW+FPEChalCDiV7CJ8YLcj as6rlEowQyiUUjdSRpoStAu+YmrxqPkUjXITXGP6MnU2NewSkXCb42DJiiZlNoAP OVBb8dYKA0/tDyAswpqlJaJy6ElBewiOgPO0c/2bX2Z5t83I7gLqR6Xiusb226g/ S4OPggatKuNXw1FiZKuH8Q71CcQ8Blrj4boVkR5GyJvm33B1xiDV9uIYWsk9KMVa iUtI7kNPM1nMFEq0jArJ3Xkv4rfW4nTD/2rzALzRNEwu9ogYar5Z5ctg4+38Kq1G O09q2FLSSPzCRZH2UIZrhZFJ/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHOOS9IK 4q43/iE6Mgn+f26E6s3/MB8GA1UdIwQYMBaAFJXqr8JLWvSxcrWLsBpwHP4ZbaGZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJCNi8wODI0M0M4QzEz MkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlMRnl0WXV3R25BY19obHRv WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xlcXZ3a3RhOUxGeXRZdXdHbkFjX2hsdG9aay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJCNi8wODI0M0M4QzEzMkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlM Rnl0WXV3R25BY19obHRvWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAz7iyhIAMNGdndR3EZCtPT8F6gxT6BnD+TntlCZxKi/Kke0NkFGwYk oldrLwJYMnT6BMI8JXESkwWaPLV8N9iN5bTlDPXN3LESYJtMMxNfo7b1/MQaWr5N Nr9Q1qNsL/7j4lsc9W/sMrKF2CQVuzFyZM7LF0nq8+xh8/pLx8lVgEVjSPH6sfO7 +yNEWJvh9QPhcODQh0U39IHgnvXyiTuEzGSUOj43P5cCE1Y71u/e5yHWEZppg9pk 39CW2Uhv/+x78vvzMDbP5VlSfVrZNTX+zVeOWpginSBJrq+At5VSNnC72r49TaRx Jb36wTnQCfnjONWnDMKY7fLLnM4eHPzT -----END CERTIFICATE-----Generated at Sat Nov 22 21:43:49 2025 by rpki-client