This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft File: ldQuwvRot-OPlYyPupMYARfcJuA.mft (raw, json) Hash identifier: 4YhSwCH9WNp1b/96urxQp42ghH2pB0NQXNgXhAK+Z84= Subject key identifier: C3:8B:A5:48:40:D6:3C:CD:0F:B8:D8:C7:6E:0C:DF:D5:D2:74:05:7A Authority key identifier: 95:D4:2E:C2:F4:68:B7:E3:8F:95:8C:8F:BA:93:18:01:17:DC:26:E0 Certificate issuer: /CN=A91A7F6A/serialNumber=95D42EC2F468B7E38F958C8FBA93180117DC26E0 Certificate serial: 9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft Manifest number: 95 Signing time: Tue 23 Dec 2025 05:30:58 +0000 Manifest this update: Tue 23 Dec 2025 05:30:57 +0000 Manifest next update: Tue 30 Dec 2025 05:30:57 +0000 Files and hashes: 1: ldQuwvRot-OPlYyPupMYARfcJuA.crl (hash: 7Bn/T4KslZmz2ZT6nrDKkOwTsu0/YRRx8NfOnmK5Zqo=) 2: B3849A9A359311F09B54926FC4F9AE02.roa (hash: Y+aC1xM6nmmoKwU/+TkwylgFTc7TBvkghCXTXAy84ng=) 3: 4210D4508CD711F0A2DFAA45C4F9AE02.roa (hash: 2JnfU/Mgp4zZ19X7p0k0eCs4HoUbNZM1uROYF0brrz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.crl rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:30:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7F6A, serialNumber=95D42EC2F468B7E38F958C8FBA93180117DC26E0 Validity Not Before: Dec 23 05:30:57 2025 GMT Not After : Dec 30 05:30:57 2025 GMT Subject: CN=694a2912-bc34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:45:ee:dc:90:03:df:1f:bc:01:ef:5b:7e:cf: 26:4f:cb:9f:17:ac:60:01:da:2f:18:af:a9:c2:33: 60:90:e3:aa:a4:9e:cf:69:18:88:88:5d:1c:28:b4: b0:7e:b6:6c:06:50:16:8d:6d:dc:bd:7b:36:53:58: fc:50:8d:96:a3:29:26:b0:03:2d:24:54:d6:56:d6: 6b:07:fe:12:d1:d3:fe:e1:22:ba:c3:3d:c3:e0:eb: 8f:25:57:f1:e5:01:63:5a:92:5b:f8:1c:44:83:d1: ff:22:a3:eb:fd:9b:09:1b:9e:88:4e:a9:75:8f:66: 3e:d4:b3:c5:7e:bb:55:85:5f:59:aa:7f:4d:53:51: fa:73:25:c6:08:37:ff:ef:94:c1:c6:a6:aa:dc:8a: f3:18:03:26:f2:30:7c:e9:b9:5e:7c:f4:ab:74:12: 47:a0:84:74:aa:fa:8f:65:1b:07:da:cd:e2:57:d8: 4f:4d:4e:33:a5:38:2c:8e:8a:df:24:85:1f:9a:41: 0c:a3:2f:ea:24:db:87:ad:58:45:73:6d:bc:52:c0: cf:0e:7b:21:fe:da:33:a1:6d:59:65:8c:a5:8d:08: 2d:d7:c0:10:2b:4f:05:7c:af:6b:1d:7d:10:eb:ca: cb:ed:d9:b4:8c:c2:41:f9:8a:c8:8a:a0:6f:67:d0: 47:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:8B:A5:48:40:D6:3C:CD:0F:B8:D8:C7:6E:0C:DF:D5:D2:74:05:7A X509v3 Authority Key Identifier: keyid:95:D4:2E:C2:F4:68:B7:E3:8F:95:8C:8F:BA:93:18:01:17:DC:26:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:c7:40:70:97:b5:a1:a2:a2:59:f9:e4:e5:1e:70:fb:19:ea: 62:21:69:d7:65:c3:96:d6:03:f8:a2:7a:e5:39:63:83:21:fb: 15:6f:ec:37:45:bf:88:c7:45:3d:f0:b6:32:5d:c0:d5:d4:a6: c9:d0:3a:9c:f5:b1:f0:52:10:2f:32:80:97:c4:a3:8e:c4:61: 2c:cc:af:e6:96:7e:a4:d6:9b:d2:01:81:02:b6:45:be:84:81: f2:f3:78:f2:1a:5d:b0:94:16:83:11:b3:5d:42:80:d2:e3:a7: 7e:b4:99:0e:04:ad:10:b0:2c:19:a9:1e:bc:93:1f:ce:94:f1: e3:4d:06:03:2b:11:b0:4d:ff:a2:61:88:85:e6:6d:25:ef:2a: c5:82:fe:a6:08:d4:44:d2:06:9f:78:6e:06:39:ab:ba:1e:99: 48:5d:11:c9:82:ac:87:21:3a:25:b6:d5:f6:7a:20:63:d8:76: 72:5a:e9:11:cd:42:4a:f6:41:72:7d:32:36:c1:2f:be:f3:b7: a7:8c:f3:20:5e:3d:b6:b5:8a:5d:72:c1:ed:5e:99:a4:77:1e: 8c:de:b6:1e:b6:eb:4b:cb:4a:4f:61:f8:e0:e9:2c:91:0b:9d: 9c:d0:e7:33:38:c9:45:d9:f0:9a:4e:27:88:2e:0c:bb:24:6f: 59:65:d0:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdGNkExMTAvBgNVBAUTKDk1RDQyRUMyRjQ2OEI3RTM4Rjk1OEM4RkJBOTMxODAx MTdEQzI2RTAwHhcNMjUxMjIzMDUzMDU3WhcNMjUxMjMwMDUzMDU3WjAYMRYwFAYD VQQDDA02OTRhMjkxMi1iYzM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxEXu3JAD3x+8Ae9bfs8mT8ufF6xgAdovGK+pwjNgkOOqpJ7PaRiIiF0cKLSw frZsBlAWjW3cvXs2U1j8UI2WoykmsAMtJFTWVtZrB/4S0dP+4SK6wz3D4OuPJVfx 5QFjWpJb+BxEg9H/IqPr/ZsJG56ITql1j2Y+1LPFfrtVhV9Zqn9NU1H6cyXGCDf/ 75TBxqaq3IrzGAMm8jB86blefPSrdBJHoIR0qvqPZRsH2s3iV9hPTU4zpTgsjorf JIUfmkEMoy/qJNuHrVhFc228UsDPDnsh/tozoW1ZZYyljQgt18AQK08FfK9rHX0Q 68rL7dm0jMJB+YrIiqBvZ9BHnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMOLpUhA 1jzND7jYx24M39XSdAV6MB8GA1UdIwQYMBaAFJXULsL0aLfjj5WMj7qTGAEX3Cbg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0Y2QS83QTUyOTg3NjBB RjAxMUYwODUzMUQ0M0NDNEY5QUUwMi9sZFF1d3ZSb3QtT1BsWXlQdXBNWUFSZmNK dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xkUXV3dlJvdC1PUGxZeVB1cE1ZQVJmY0p1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0Y2QS83QTUyOTg3NjBBRjAxMUYwODUzMUQ0M0NDNEY5QUUwMi9sZFF1d3ZSb3Qt T1BsWXlQdXBNWUFSZmNKdUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvx0Bwl7WhoqJZ+eTlHnD7GepiIWnXZcOW1gP4onrlOWODIfsVb+w3 Rb+Ix0U98LYyXcDV1KbJ0Dqc9bHwUhAvMoCXxKOOxGEszK/mln6k1pvSAYECtkW+ hIHy83jyGl2wlBaDEbNdQoDS46d+tJkOBK0QsCwZqR68kx/OlPHjTQYDKxGwTf+i YYiF5m0l7yrFgv6mCNRE0gafeG4GOau6HplIXRHJgqyHITolttX2eiBj2HZyWukR zUJK9kFyfTI2wS++87enjPMgXj22tYpdcsHtXpmkdx6M3rYetutLy0pPYfjg6SyR C52c0OczOMlF2fCaTieILgy7JG9ZZdBL -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:12 2025 by rpki-client