This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft File: lAiiAfAOWP6SWY7gOTkHi673d5U.mft (raw, json) Hash identifier: 5AlFwXPA5TO23BznyOGyC7jmyUg/V831Vn8hULqugdM= Subject key identifier: E0:2D:3E:8F:E1:89:E3:79:90:A6:E9:89:10:93:86:3B:B1:BE:66:96 Authority key identifier: 94:08:A2:01:F0:0E:58:FE:92:59:8E:E0:39:39:07:8B:AE:F7:77:95 Certificate issuer: /CN=A91A6F68/serialNumber=9408A201F00E58FE92598EE03939078BAEF77795 Certificate serial: A0 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft Manifest number: A0 Signing time: Fri 05 Dec 2025 04:18:09 +0000 Manifest this update: Fri 05 Dec 2025 04:18:09 +0000 Manifest next update: Fri 12 Dec 2025 04:18:09 +0000 Files and hashes: 1: lAiiAfAOWP6SWY7gOTkHi673d5U.crl (hash: d2+WKXiOCJJLlMqM20GmN6ix6GSHSCsiQMqnAPuIIsE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.crl rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:18:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F68, serialNumber=9408A201F00E58FE92598EE03939078BAEF77795 Validity Not Before: Dec 5 04:18:09 2025 GMT Not After : Dec 12 04:18:09 2025 GMT Subject: CN=69325d01-fc81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:31:75:b6:3b:74:36:db:78:ce:6e:8b:22:2d: 02:5f:14:22:7d:0a:7f:b8:2f:29:a3:5e:8a:08:a2: 98:ee:4c:57:f2:fc:ac:ef:e1:ca:37:cb:3a:be:a2: c6:73:e5:ec:a0:46:2e:8d:ac:2d:ac:ee:bd:7f:fc: 59:ad:2f:f6:91:d1:50:6f:55:c9:09:2a:aa:31:d3: 8b:00:cf:42:17:5f:ae:68:be:f6:7f:44:ef:a2:c2: cf:d6:52:f3:56:cf:54:12:32:ea:5a:ee:23:59:e1: 5f:3e:d3:f5:52:4d:2c:63:9f:60:32:5a:2f:65:6d: 41:e9:51:25:2c:ec:7a:45:08:a2:d1:27:98:0c:c0: 77:7f:ad:94:6b:db:c1:b6:e4:96:a2:88:36:1a:53: 00:96:f7:3e:d1:62:fa:99:54:17:43:2e:bc:22:c8: 28:65:52:1a:a1:a6:f9:e1:8c:ac:3a:f1:b2:be:fd: 1b:4a:30:b7:89:fa:fb:76:71:c9:ef:8f:f9:2a:fc: e4:a0:ea:d3:50:89:7d:a2:05:e2:bc:ec:10:fc:b7: 8a:23:20:da:c6:4e:e0:89:25:1f:44:ba:ec:3e:a5: 60:d0:c1:4f:93:92:ba:e9:3b:4e:77:fc:fb:75:e0: b2:e6:4b:fc:44:8b:0e:2a:1b:9b:6b:ab:aa:93:da: 93:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:2D:3E:8F:E1:89:E3:79:90:A6:E9:89:10:93:86:3B:B1:BE:66:96 X509v3 Authority Key Identifier: keyid:94:08:A2:01:F0:0E:58:FE:92:59:8E:E0:39:39:07:8B:AE:F7:77:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:db:3d:09:8a:e9:88:f9:d2:f0:8c:7f:a9:65:e2:1d:67:45: 94:b4:97:1c:37:4c:e9:71:5b:87:b3:e1:44:9f:79:a7:b2:bd: ec:e3:b3:44:a9:68:7e:03:8f:78:39:df:b5:2b:9b:c6:26:18: 6d:4f:30:1a:4b:d3:d4:0f:6b:65:6d:65:6e:8b:1d:78:c8:ec: 57:48:e1:db:1b:3b:24:5f:23:31:c1:d2:8b:62:80:84:2a:92: a6:1d:b0:fb:16:dc:ae:18:b5:cc:6a:82:de:66:92:8b:f8:f7: 25:8b:b9:60:ca:d7:36:5d:a9:b1:cf:06:3d:84:a0:06:ec:74: 49:f8:bf:f0:80:d5:da:f4:7a:06:f6:43:15:c3:89:25:aa:cd: 14:65:2e:6a:4f:ef:a4:ce:d9:ae:61:0b:91:dd:09:6d:f4:7e: 2d:7e:43:6f:79:ab:fa:b8:5f:c4:d7:42:af:98:33:a0:79:86: 8a:0a:05:e7:b2:6e:d2:ce:fb:6a:b2:cd:fd:ae:28:d3:65:81: 5b:07:dd:b1:8b:20:c0:49:d3:40:75:18:d0:e3:c3:e8:18:51: 53:40:66:d6:32:1b:96:c6:2f:cc:51:01:e7:0b:28:44:75:fc: d3:53:1a:68:d5:89:c9:3a:c5:97:8c:fd:c1:bd:9e:90:e7:06: 9d:b6:5f:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZGNjgxMTAvBgNVBAUTKDk0MDhBMjAxRjAwRTU4RkU5MjU5OEVFMDM5MzkwNzhC QUVGNzc3OTUwHhcNMjUxMjA1MDQxODA5WhcNMjUxMjEyMDQxODA5WjAYMRYwFAYD VQQDEw02OTMyNWQwMS1mYzgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtjF1tjt0Ntt4zm6LIi0CXxQifQp/uC8po16KCKKY7kxX8vys7+HKN8s6vqLG c+XsoEYujawtrO69f/xZrS/2kdFQb1XJCSqqMdOLAM9CF1+uaL72f0TvosLP1lLz Vs9UEjLqWu4jWeFfPtP1Uk0sY59gMlovZW1B6VElLOx6RQii0SeYDMB3f62Ua9vB tuSWoog2GlMAlvc+0WL6mVQXQy68IsgoZVIaoab54YysOvGyvv0bSjC3ifr7dnHJ 74/5KvzkoOrTUIl9ogXivOwQ/LeKIyDaxk7giSUfRLrsPqVg0MFPk5K66TtOd/z7 deCy5kv8RIsOKhuba6uqk9qTXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOAtPo/h ieN5kKbpiRCThjuxvmaWMB8GA1UdIwQYMBaAFJQIogHwDlj+klmO4Dk5B4uu93eV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkY2OC9CQTU2NUY1Q0RG MjExMUVGODMzRjRGMkNDNEY5QUUwMi9sQWlpQWZBT1dQNlNXWTdnT1RrSGk2NzNk NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xBaWlBZkFPV1A2U1dZN2dPVGtIaTY3M2Q1VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkY2OC9CQTU2NUY1Q0RGMjExMUVGODMzRjRGMkNDNEY5QUUwMi9sQWlpQWZBT1dQ NlNXWTdnT1RrSGk2NzNkNVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAt2z0JiumI+dLwjH+pZeIdZ0WUtJccN0zpcVuHs+FEn3mnsr3s47NE qWh+A494Od+1K5vGJhhtTzAaS9PUD2tlbWVuix14yOxXSOHbGzskXyMxwdKLYoCE KpKmHbD7FtyuGLXMaoLeZpKL+Pcli7lgytc2XamxzwY9hKAG7HRJ+L/wgNXa9HoG 9kMVw4klqs0UZS5qT++kztmuYQuR3Qlt9H4tfkNveav6uF/E10KvmDOgeYaKCgXn sm7Szvtqss39rijTZYFbB92xiyDASdNAdRjQ48PoGFFTQGbWMhuWxi/MUQHnCyhE dfzTUxpo1YnJOsWXjP3BvZ6Q5wadtl/p -----END CERTIFICATE-----Generated at Sat Dec 6 22:03:58 2025 by rpki-client