This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft File: lKlQswO0aQDdWjBhAwyJpIloA68.mft (raw, json) Hash identifier: RhrkPTktuLKrtLqfDlhvXkkaZI4zXpJIJlJwZRPTAPg= Subject key identifier: 0C:F2:24:74:C9:2E:ED:86:11:28:B6:79:2C:71:E9:CE:77:17:B1:E6 Authority key identifier: 94:A9:50:B3:03:B4:69:00:DD:5A:30:61:03:0C:89:A4:89:68:03:AF Certificate issuer: /CN=A91BAD2D/serialNumber=94A950B303B46900DD5A3061030C89A4896803AF Certificate serial: 015A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft Manifest number: 014E Signing time: Tue 09 Dec 2025 02:30:01 +0000 Manifest this update: Tue 09 Dec 2025 02:30:01 +0000 Manifest next update: Tue 16 Dec 2025 02:30:01 +0000 Files and hashes: 1: lKlQswO0aQDdWjBhAwyJpIloA68.crl (hash: jjFIjcMUHOxvubxxcDgLDiDcjBaquNLCEPTaBWLk4hg=) 2: 10771E5497C211F0A9D40817C4F9AE02.roa (hash: v/Xxd5gw24bVPmwugefsnZRtykzRBUwrtrP5k40Invw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.crl rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Dec 2025 02:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 346 (0x15a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAD2D, serialNumber=94A950B303B46900DD5A3061030C89A4896803AF Validity Not Before: Dec 9 02:30:01 2025 GMT Not After : Dec 16 02:30:01 2025 GMT Subject: CN=693789a9-77d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:66:ca:eb:5f:ae:e4:7d:72:28:56:b2:bf:2d: 93:f3:86:53:8c:5c:a3:03:17:ad:26:78:d1:95:9f: 08:a7:60:95:64:f8:2a:07:f9:19:9b:4c:75:f4:01: 47:c2:35:2e:27:87:45:01:12:dc:4a:6b:fb:9f:1d: 73:ef:6a:28:2c:3a:49:aa:b6:e3:26:32:12:61:35: 31:72:e6:6d:16:b2:28:cb:d6:81:37:1e:6e:5d:1c: e1:8b:49:bb:89:1d:52:43:fa:5d:af:4e:15:d4:c8: b1:6d:de:d0:da:fe:63:c5:da:2a:32:8e:3d:65:36: 7e:25:67:32:59:c6:01:7f:69:a1:e4:cd:ef:e2:99: bb:50:3e:3e:ff:d3:71:c7:70:f1:22:5c:de:61:b4: 18:35:eb:2b:0a:6c:ee:f4:77:aa:8d:58:69:99:40: 53:34:95:79:c8:af:49:07:43:25:04:66:c4:aa:c2: 0b:5a:07:25:6e:4e:d6:19:d8:2f:83:54:ef:75:fc: 45:ca:36:3a:0e:58:cd:f7:8f:6a:fb:cd:20:03:3a: 0d:1e:87:0a:92:ad:c4:ce:d3:3c:dc:2b:e8:42:33: 27:08:66:87:7a:56:14:0f:49:f5:e2:25:9d:ef:4d: 45:35:db:51:f3:7f:e7:48:25:7f:f4:15:14:6a:c0: 9a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:F2:24:74:C9:2E:ED:86:11:28:B6:79:2C:71:E9:CE:77:17:B1:E6 X509v3 Authority Key Identifier: keyid:94:A9:50:B3:03:B4:69:00:DD:5A:30:61:03:0C:89:A4:89:68:03:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:f9:76:03:d4:33:de:5e:85:c5:d4:9b:38:04:ca:2d:7d:d9: 98:33:ee:68:7d:f2:a9:44:2c:af:90:86:ab:ef:b0:a0:99:5c: 4f:2b:a6:34:dd:f2:d6:7d:4b:1e:54:81:25:6d:da:a4:19:9f: 03:67:c9:0f:ff:7b:c9:c7:39:54:00:aa:3e:e3:24:b7:21:7b: 8e:bf:22:a8:09:8e:3e:9b:1d:11:c5:48:82:e7:85:26:97:25: 66:27:57:18:1a:c2:86:51:40:6f:98:57:6b:49:d9:7c:96:93: d6:d9:18:63:c1:33:68:de:ea:bd:fa:dd:f8:52:99:72:37:45: 25:a6:44:77:9f:10:62:84:fd:2d:ef:48:8c:89:6f:1a:19:21: 21:b4:96:53:f7:ec:d1:77:60:21:f2:07:d5:78:e5:c2:1e:70: 39:66:21:1b:90:6f:fc:87:d0:89:23:52:5e:7a:ce:59:06:a1: bc:38:fe:09:40:f4:f6:f9:0c:99:0a:46:4a:e8:3b:66:8f:f5: 70:fc:4f:07:2b:da:c0:26:37:ce:a4:3f:7b:90:f6:38:3a:bc: 8a:48:91:9f:fc:c5:29:dd:0b:b0:e5:2e:79:9e:ad:e5:ee:95: 55:ae:3f:d8:51:bb:7b:83:f2:03:a5:67:6b:fa:01:7e:15:2d: d1:27:43:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFEMkQxMTAvBgNVBAUTKDk0QTk1MEIzMDNCNDY5MDBERDVBMzA2MTAzMEM4OUE0 ODk2ODAzQUYwHhcNMjUxMjA5MDIzMDAxWhcNMjUxMjE2MDIzMDAxWjAYMRYwFAYD VQQDEw02OTM3ODlhOS03N2Q5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArmbK61+u5H1yKFayvy2T84ZTjFyjAxetJnjRlZ8Ip2CVZPgqB/kZm0x19AFH wjUuJ4dFARLcSmv7nx1z72ooLDpJqrbjJjISYTUxcuZtFrIoy9aBNx5uXRzhi0m7 iR1SQ/pdr04V1Mixbd7Q2v5jxdoqMo49ZTZ+JWcyWcYBf2mh5M3v4pm7UD4+/9Nx x3DxIlzeYbQYNesrCmzu9HeqjVhpmUBTNJV5yK9JB0MlBGbEqsILWgclbk7WGdgv g1TvdfxFyjY6DljN949q+80gAzoNHocKkq3EztM83CvoQjMnCGaHelYUD0n14iWd 701FNdtR83/nSCV/9BUUasCakwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAzyJHTJ Lu2GESi2eSxx6c53F7HmMB8GA1UdIwQYMBaAFJSpULMDtGkA3VowYQMMiaSJaAOv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUQyRC85MDg4RUU1QUU4 MDExMUVFQUQ2QzUwMzBDNEY5QUUwMi9sS2xRc3dPMGFRRGRXakJoQXd5SnBJbG9B NjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xLbFFzd08wYVFEZFdqQmhBd3lKcElsb0E2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUQyRC85MDg4RUU1QUU4MDExMUVFQUQ2QzUwMzBDNEY5QUUwMi9sS2xRc3dPMGFR RGRXakJoQXd5SnBJbG9BNjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAA+XYD1DPeXoXF1Js4BMotfdmYM+5offKpRCyvkIar77CgmVxPK6Y0 3fLWfUseVIElbdqkGZ8DZ8kP/3vJxzlUAKo+4yS3IXuOvyKoCY4+mx0RxUiC54Um lyVmJ1cYGsKGUUBvmFdrSdl8lpPW2RhjwTNo3uq9+t34UplyN0UlpkR3nxBihP0t 70iMiW8aGSEhtJZT9+zRd2Ah8gfVeOXCHnA5ZiEbkG/8h9CJI1Jees5ZBqG8OP4J QPT2+QyZCkZK6Dtmj/Vw/E8HK9rAJjfOpD97kPY4OryKSJGf/MUp3Quw5S55nq3l 7pVVrj/YUbt7g/IDpWdr+gF+FS3RJ0Md -----END CERTIFICATE-----Generated at Wed Dec 10 09:06:21 2025 by rpki-client