This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/lT7Cob5wJZ5qL9nOjUg72b0a4z8.mft File: lT7Cob5wJZ5qL9nOjUg72b0a4z8.mft (raw, json) Hash identifier: +jP5rnBDg5d8F6xqbua+YKoN5wFaoOHoQn+RmrJ9qvw= Subject key identifier: 19:FC:A7:70:A3:0F:6C:63:46:4B:15:F5:CA:35:94:5A:0C:14:97:84 Authority key identifier: 95:3E:C2:A1:BE:70:25:9E:6A:2F:D9:CE:8D:48:3B:D9:BD:1A:E3:3F Certificate issuer: /CN=A91B075B/serialNumber=953EC2A1BE70259E6A2FD9CE8D483BD9BD1AE33F Certificate serial: 04D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lT7Cob5wJZ5qL9nOjUg72b0a4z8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/lT7Cob5wJZ5qL9nOjUg72b0a4z8.mft Manifest number: 04CE Signing time: Mon 22 Dec 2025 22:54:14 +0000 Manifest this update: Mon 22 Dec 2025 22:54:14 +0000 Manifest next update: Mon 29 Dec 2025 22:54:14 +0000 Files and hashes: 1: lT7Cob5wJZ5qL9nOjUg72b0a4z8.crl (hash: Cf4qFcr8PhyyY+2uYrV+uUJx8zJyUGDyfxV6B2K1/UM=) 2: 85A82A144C1311ECB5708257C4F9AE02.roa (hash: dphkC3ssGJ+iIglODQswGH04mVygF6iWdjby9ZvopB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/lT7Cob5wJZ5qL9nOjUg72b0a4z8.crl rsync://rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/lT7Cob5wJZ5qL9nOjUg72b0a4z8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lT7Cob5wJZ5qL9nOjUg72b0a4z8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 22:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1234 (0x4d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B075B, serialNumber=953EC2A1BE70259E6A2FD9CE8D483BD9BD1AE33F Validity Not Before: Dec 22 22:54:14 2025 GMT Not After : Dec 29 22:54:14 2025 GMT Subject: CN=6949cc16-08cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ef:ff:da:3d:7e:c1:bf:78:e4:62:a7:84:43: 09:7f:79:fe:9e:92:b5:ec:51:32:f6:77:5f:43:08: 79:7e:16:d0:96:73:fd:e3:ba:77:19:ca:1e:1a:86: bb:e5:6a:7d:c0:a8:05:49:85:84:9c:3d:d2:a1:c5: 1e:3b:09:cb:16:35:27:19:ad:e2:40:e9:4b:99:65: b6:46:3f:88:c2:21:c9:43:6e:f3:ba:d6:65:3d:af: ea:71:e1:c4:5c:6b:3c:95:13:d8:e9:fb:5c:22:19: 6f:a4:84:82:6f:17:c5:65:4e:a6:ee:1d:bc:7d:2e: ff:45:88:75:65:e5:43:96:84:84:19:23:6b:62:21: af:20:73:3c:0f:d2:39:a1:fd:50:95:aa:52:be:54: b8:7e:5a:b6:b9:df:85:10:20:27:8d:b4:8a:36:9e: 8e:e9:12:dd:6f:0b:d2:bd:6f:30:45:3b:96:fd:a3: 5e:94:b3:69:c6:ff:0b:82:69:99:8e:b5:a7:84:84: 31:9f:05:62:bd:af:bf:aa:7b:cb:3c:83:56:59:a6: 6a:a7:a6:96:59:ba:60:c1:d9:b5:94:e4:f2:21:95: 42:22:6c:7f:a1:a5:c2:c5:18:1e:c7:4e:58:4e:1d: 63:53:cf:b0:72:46:f2:15:bf:fd:6c:8f:7a:40:bd: 43:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:FC:A7:70:A3:0F:6C:63:46:4B:15:F5:CA:35:94:5A:0C:14:97:84 X509v3 Authority Key Identifier: keyid:95:3E:C2:A1:BE:70:25:9E:6A:2F:D9:CE:8D:48:3B:D9:BD:1A:E3:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/lT7Cob5wJZ5qL9nOjUg72b0a4z8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lT7Cob5wJZ5qL9nOjUg72b0a4z8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/lT7Cob5wJZ5qL9nOjUg72b0a4z8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:8c:17:08:7f:23:c7:03:99:05:c2:c0:8b:01:4d:d2:60:d7: 3c:d1:56:eb:67:74:9d:11:c2:df:22:e6:60:85:0b:ba:d6:39: dd:73:e9:08:1a:c3:9b:ee:c1:4e:41:41:6b:fe:b3:d4:0d:3f: 82:ad:6a:3b:45:18:ea:5b:f8:61:dc:83:a4:15:11:f3:78:06: c4:46:8e:f3:1a:29:16:9e:75:f3:11:da:ca:7c:8d:dc:ea:82: 87:eb:01:1d:5e:9d:2e:2c:1c:ab:a4:e4:c4:28:2a:2a:cd:e5: ea:e2:ed:9b:14:82:3b:bb:f6:1c:bf:f5:0f:e3:5e:d8:19:8d: 92:a3:13:ec:9d:0f:38:60:64:d6:5e:0f:1e:50:68:f7:e6:bd: d5:44:7f:77:dd:50:65:2e:b4:9d:cf:73:77:4c:82:a7:d5:6e: 7b:f1:02:bc:a4:b7:55:f0:74:b1:3c:10:f0:3d:27:0e:fc:21: 7e:75:e9:c5:81:a4:c0:49:fd:1a:67:11:e2:71:c6:a2:3b:0f: d4:72:be:ab:79:0b:06:f9:23:1d:ae:3e:87:b9:08:4a:bc:34: 36:2e:c6:e4:46:e1:07:5b:f3:2d:37:6f:4e:b4:ea:f9:23:d0: 8d:71:90:43:97:95:b6:2d:26:6d:e9:d1:35:d0:76:73:1f:5e: 44:df:cc:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA3NUIxMTAvBgNVBAUTKDk1M0VDMkExQkU3MDI1OUU2QTJGRDlDRThENDgzQkQ5 QkQxQUUzM0YwHhcNMjUxMjIyMjI1NDE0WhcNMjUxMjI5MjI1NDE0WjAYMRYwFAYD VQQDDA02OTQ5Y2MxNi0wOGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsu//2j1+wb945GKnhEMJf3n+npK17FEy9ndfQwh5fhbQlnP947p3GcoeGoa7 5Wp9wKgFSYWEnD3SocUeOwnLFjUnGa3iQOlLmWW2Rj+IwiHJQ27zutZlPa/qceHE XGs8lRPY6ftcIhlvpISCbxfFZU6m7h28fS7/RYh1ZeVDloSEGSNrYiGvIHM8D9I5 of1QlapSvlS4flq2ud+FECAnjbSKNp6O6RLdbwvSvW8wRTuW/aNelLNpxv8LgmmZ jrWnhIQxnwViva+/qnvLPINWWaZqp6aWWbpgwdm1lOTyIZVCImx/oaXCxRgex05Y Th1jU8+wckbyFb/9bI96QL1DFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBn8p3Cj D2xjRksV9co1lFoMFJeEMB8GA1UdIwQYMBaAFJU+wqG+cCWeai/Zzo1IO9m9GuM/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDc1Qi80NEExM0I0RTRD MTAxMUVDQTVEMkE5NEZDNEY5QUUwMi9sVDdDb2I1d0paNXFMOW5PalVnNzJiMGE0 ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xUN0NvYjV3Slo1cUw5bk9qVWc3MmIwYTR6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDc1Qi80NEExM0I0RTRDMTAxMUVDQTVEMkE5NEZDNEY5QUUwMi9sVDdDb2I1d0pa NXFMOW5PalVnNzJiMGE0ejgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCjBcIfyPHA5kFwsCLAU3SYNc80VbrZ3SdEcLfIuZghQu61jndc+kI GsOb7sFOQUFr/rPUDT+CrWo7RRjqW/hh3IOkFRHzeAbERo7zGikWnnXzEdrKfI3c 6oKH6wEdXp0uLByrpOTEKCoqzeXq4u2bFII7u/Ycv/UP417YGY2SoxPsnQ84YGTW Xg8eUGj35r3VRH933VBlLrSdz3N3TIKn1W578QK8pLdV8HSxPBDwPScO/CF+denF gaTASf0aZxHiccaiOw/Ucr6reQsG+SMdrj6HuQhKvDQ2LsbkRuEHW/MtN29OtOr5 I9CNcZBDl5W2LSZt6dE10HZzH15E38wk -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:28 2025 by rpki-client