This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A394B/10ACAB0A61B411EE80CE1846C4F9AE02/lAjp17bOuDTKkJAeRXhgEMBpwys.mft File: lAjp17bOuDTKkJAeRXhgEMBpwys.mft (raw, json) Hash identifier: lczpgKs+Ua0KTVYRyn4s9gAZoHcLMtWQB86Vv3XrLoc= Subject key identifier: 6A:C0:40:83:EB:2D:0B:4A:F8:C8:1D:D5:1F:43:7E:AD:26:38:25:75 Authority key identifier: 94:08:E9:D7:B6:CE:B8:34:CA:90:90:1E:45:78:60:10:C0:69:C3:2B Certificate issuer: /CN=A91A394B/serialNumber=9408E9D7B6CEB834CA90901E45786010C069C32B Certificate serial: 01A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAjp17bOuDTKkJAeRXhgEMBpwys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A394B/10ACAB0A61B411EE80CE1846C4F9AE02/lAjp17bOuDTKkJAeRXhgEMBpwys.mft Manifest number: 019F Signing time: Fri 19 Dec 2025 02:31:31 +0000 Manifest this update: Fri 19 Dec 2025 02:31:30 +0000 Manifest next update: Fri 26 Dec 2025 02:31:30 +0000 Files and hashes: 1: lAjp17bOuDTKkJAeRXhgEMBpwys.crl (hash: v5T2S/BiFMBsGEEWqfg0NcSgV/LePvSf6fk8ZLW6KdI=) 2: 6015E82861B411EEBAA6AD59C4F9AE02.roa (hash: LwGVKFP/xTdHf/wYi8eVp6yJDAuRI5jefu1jxHK93RU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A394B/10ACAB0A61B411EE80CE1846C4F9AE02/lAjp17bOuDTKkJAeRXhgEMBpwys.crl rsync://rpki.apnic.net/member_repository/A91A394B/10ACAB0A61B411EE80CE1846C4F9AE02/lAjp17bOuDTKkJAeRXhgEMBpwys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAjp17bOuDTKkJAeRXhgEMBpwys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:31:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 419 (0x1a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A394B, serialNumber=9408E9D7B6CEB834CA90901E45786010C069C32B Validity Not Before: Dec 19 02:31:30 2025 GMT Not After : Dec 26 02:31:30 2025 GMT Subject: CN=6944b903-68c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:75:a4:e2:b0:0d:c2:e5:7e:8f:bf:24:3d:e8: 75:f6:1f:8c:8b:be:63:2e:40:26:43:1c:42:ae:3b: a0:65:c0:f9:28:61:cf:33:fa:4f:0f:26:1b:84:0d: 5f:03:38:f7:13:cb:7d:b8:49:c4:70:7a:3e:08:3f: aa:e3:79:0c:a9:7e:c0:dd:79:db:37:66:02:88:42: fd:fc:ae:26:0b:45:cf:1c:fd:d3:88:be:12:d2:5e: 1b:81:6f:5b:36:29:8e:e6:4f:61:75:cc:fd:ab:2e: 71:12:54:11:5d:b7:83:f0:be:a3:f7:88:82:a5:37: 12:12:e0:c0:fb:a6:49:bd:96:5a:64:8c:2f:e3:72: 78:bf:6c:6e:ed:8f:a9:a5:51:93:3d:7a:e0:1e:b7: a2:aa:28:bf:4d:f9:dd:64:f4:89:56:fa:e9:73:1e: fc:ce:19:c0:d0:57:db:0e:24:e4:5d:cc:bd:25:83: d8:37:b8:c9:1c:9f:e5:61:f0:e6:d2:79:60:cf:ef: d2:3b:96:9d:0d:f9:8a:33:30:0c:a7:9f:65:81:b1: e4:3b:75:d7:45:1e:37:1a:80:ae:75:bc:c0:55:23: 4e:67:43:86:e8:a1:fb:ad:02:ca:2b:f0:5e:2d:12: 65:7b:fa:05:bb:09:6b:94:09:3a:26:3c:a8:a9:7f: cf:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:C0:40:83:EB:2D:0B:4A:F8:C8:1D:D5:1F:43:7E:AD:26:38:25:75 X509v3 Authority Key Identifier: keyid:94:08:E9:D7:B6:CE:B8:34:CA:90:90:1E:45:78:60:10:C0:69:C3:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A394B/10ACAB0A61B411EE80CE1846C4F9AE02/lAjp17bOuDTKkJAeRXhgEMBpwys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAjp17bOuDTKkJAeRXhgEMBpwys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A394B/10ACAB0A61B411EE80CE1846C4F9AE02/lAjp17bOuDTKkJAeRXhgEMBpwys.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:fb:b4:05:8e:3e:54:79:77:fa:3d:73:8a:fa:8f:e0:69:47: ba:fb:e6:0a:c2:af:60:e4:b9:52:79:8a:c7:c9:7e:5b:f2:df: b6:77:e5:91:9a:f9:5c:5f:3e:e0:2f:bc:e8:01:bc:8e:61:b2: 24:f5:a7:27:99:a1:2a:a2:3f:59:c0:d5:7b:c8:a1:44:00:24: 4b:b9:96:a6:bd:cc:9f:6d:9f:82:29:47:4f:06:65:a1:d1:c4: 17:a7:a9:a6:2b:9c:49:93:b3:d9:66:93:48:ff:3f:cc:1e:b5: 18:7a:58:74:60:fc:a0:81:d4:58:9d:ef:5d:f5:86:1c:a3:5e: 3e:c9:7d:9f:75:35:86:f1:45:7f:6b:4a:8a:bd:fc:4f:f3:8b: 68:b9:e2:7b:4b:02:7c:ba:4b:ed:31:23:94:3a:61:1d:65:e5: c0:d9:e2:86:67:ba:31:89:ad:42:15:fb:ee:d4:7e:e8:da:16: 10:42:62:f5:76:25:9f:58:cc:73:60:9b:62:a4:61:15:97:c3: cd:6e:c1:37:34:f5:9e:b7:2b:6a:da:37:4c:52:73:32:41:50: 74:23:a1:31:03:36:d8:98:e9:a7:c6:e6:72:1c:95:39:53:e3: 02:90:9c:b4:c1:70:75:23:41:b7:f1:29:50:a8:9b:46:76:36: 3c:74:da:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM5NEIxMTAvBgNVBAUTKDk0MDhFOUQ3QjZDRUI4MzRDQTkwOTAxRTQ1Nzg2MDEw QzA2OUMzMkIwHhcNMjUxMjE5MDIzMTMwWhcNMjUxMjI2MDIzMTMwWjAYMRYwFAYD VQQDDA02OTQ0YjkwMy02OGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2XWk4rANwuV+j78kPeh19h+Mi75jLkAmQxxCrjugZcD5KGHPM/pPDyYbhA1f Azj3E8t9uEnEcHo+CD+q43kMqX7A3XnbN2YCiEL9/K4mC0XPHP3TiL4S0l4bgW9b NimO5k9hdcz9qy5xElQRXbeD8L6j94iCpTcSEuDA+6ZJvZZaZIwv43J4v2xu7Y+p pVGTPXrgHreiqii/TfndZPSJVvrpcx78zhnA0FfbDiTkXcy9JYPYN7jJHJ/lYfDm 0nlgz+/SO5adDfmKMzAMp59lgbHkO3XXRR43GoCudbzAVSNOZ0OG6KH7rQLKK/Be LRJle/oFuwlrlAk6JjyoqX/PtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGrAQIPr LQtK+Mgd1R9Dfq0mOCV1MB8GA1UdIwQYMBaAFJQI6de2zrg0ypCQHkV4YBDAacMr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzk0Qi8xMEFDQUIwQTYx QjQxMUVFODBDRTE4NDZDNEY5QUUwMi9sQWpwMTdiT3VEVEtrSkFlUlhoZ0VNQnB3 eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xBanAxN2JPdURUS2tKQWVSWGhnRU1CcHd5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Mzk0Qi8xMEFDQUIwQTYxQjQxMUVFODBDRTE4NDZDNEY5QUUwMi9sQWpwMTdiT3VE VEtrSkFlUlhoZ0VNQnB3eXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBf+7QFjj5UeXf6PXOK+o/gaUe6++YKwq9g5LlSeYrHyX5b8t+2d+WR mvlcXz7gL7zoAbyOYbIk9acnmaEqoj9ZwNV7yKFEACRLuZamvcyfbZ+CKUdPBmWh 0cQXp6mmK5xJk7PZZpNI/z/MHrUYelh0YPyggdRYne9d9YYco14+yX2fdTWG8UV/ a0qKvfxP84toueJ7SwJ8ukvtMSOUOmEdZeXA2eKGZ7oxia1CFfvu1H7o2hYQQmL1 diWfWMxzYJtipGEVl8PNbsE3NPWetytq2jdMUnMyQVB0I6ExAzbYmOmnxuZyHJU5 U+MCkJy0wXB1I0G38SlQqJtGdjY8dNoz -----END CERTIFICATE-----Generated at Fri Dec 19 21:09:29 2025 by rpki-client