This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft File: dQ-le1kVZTnLFuVKYKbO21sQ654.mft (raw, json) Hash identifier: jh1dRydwN5Ob936pv3OClwpMR8yBO+i35X9oGSGJuEk= Subject key identifier: A0:26:8D:E4:05:32:0C:9F:07:B8:C5:D1:8F:D4:69:C6:B6:A1:45:63 Authority key identifier: 75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E Certificate issuer: /CN=A91BB1F3/serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Certificate serial: 010D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft Manifest number: 010B Signing time: Tue 23 Dec 2025 03:57:49 +0000 Manifest this update: Tue 23 Dec 2025 03:57:49 +0000 Manifest next update: Tue 30 Dec 2025 03:57:49 +0000 Files and hashes: 1: dQ-le1kVZTnLFuVKYKbO21sQ654.crl (hash: nLoMIhvZUzG0InnveeOb8y8WSAe3XWthXERwNtDQalg=) 2: F9E4E14645AE11EF8870C771C4F9AE02.roa (hash: R0ve1rGoHZXsOYQBScXwsDxNaaTbtMNOWotF4DpFkvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 269 (0x10d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB1F3, serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Validity Not Before: Dec 23 03:57:49 2025 GMT Not After : Dec 30 03:57:49 2025 GMT Subject: CN=694a133d-8c11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:1d:08:b1:39:48:c5:30:bc:49:fb:b0:58:10: d7:73:fd:25:cd:86:38:f4:52:b6:10:48:36:20:2d: 09:30:18:41:25:41:fd:db:84:9e:60:1f:b3:39:16: d7:73:f5:40:d7:d7:e7:c6:a4:45:f6:97:13:b4:f5: 4a:c9:6a:d0:44:87:98:3b:9d:43:f2:79:f0:40:7f: b6:1f:06:44:78:04:d0:07:96:67:3c:6b:0a:ec:a2: 55:ce:6c:51:3f:bc:2e:fb:72:76:ed:8c:d5:b9:10: c1:be:eb:23:d7:d4:6a:70:cf:1e:56:91:63:ab:c8: c0:dc:24:01:09:e1:26:73:66:ff:99:ed:f2:b5:9d: 17:4f:b1:5a:2d:a7:e1:c5:26:47:67:29:d8:7f:f6: 0f:80:12:b4:fc:3c:c2:64:03:0a:30:69:20:8e:81: 06:e3:3a:a7:4b:2e:9f:56:6b:12:66:24:6c:57:1d: dc:82:84:d1:95:c8:9c:82:1a:bc:ea:ed:e9:88:91: 4f:8e:1e:04:56:da:22:80:d6:a4:cb:eb:1f:c6:03: 24:4f:74:42:97:10:77:82:1a:da:bb:63:fd:79:00: fb:6a:54:ee:a0:dc:63:57:b9:ce:21:25:5e:b3:71: 4b:f8:54:6b:b4:2d:d6:95:77:9c:0c:c7:a9:45:78: 0e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:26:8D:E4:05:32:0C:9F:07:B8:C5:D1:8F:D4:69:C6:B6:A1:45:63 X509v3 Authority Key Identifier: keyid:75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:fe:05:59:24:40:a7:fb:d7:e5:09:ce:92:77:0a:19:83:9f: 78:38:9f:a0:f1:4c:d3:df:37:1b:c9:69:a1:4f:ce:8b:6e:6f: 3e:d1:46:2d:16:6b:5a:05:7f:10:21:62:86:c5:bc:6c:05:1d: 1c:cc:0d:87:a4:e6:d8:8e:0a:6b:66:93:10:0e:cc:6f:fa:ed: 6c:2c:63:28:d3:b2:89:d7:b9:33:ee:5c:59:07:77:3c:22:19: 4e:e8:d2:b7:4f:16:16:0f:3d:4d:cb:9a:fe:0f:65:8a:74:24: 15:64:ae:e7:6e:37:4e:a2:1c:b9:c6:62:fa:c4:9d:f1:ae:da: c2:16:7b:a0:0a:ac:47:60:10:c4:73:0f:b5:08:75:dd:30:50: 8c:51:9e:bb:62:a5:b8:7e:8b:41:2c:ef:51:71:a3:59:52:f3: db:9f:af:a6:bd:c3:ab:39:32:08:2c:6a:56:c2:5b:59:dd:f6: 8c:d8:0d:2f:f0:56:ec:23:de:d3:50:c7:a9:f5:ed:ab:59:2d: b6:d1:54:38:b6:ca:f1:09:7c:fc:fe:78:ea:72:2f:54:ad:1c: e7:1e:2b:3a:37:4d:df:b8:87:8d:4a:d2:94:44:04:18:85:35: 7e:14:75:a3:6a:00:09:75:b6:76:7c:a1:7a:bf:95:36:8c:71: 10:88:7a:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIxRjMxMTAvBgNVBAUTKDc1MEZBNTdCNTkxNTY1MzlDQjE2RTU0QTYwQTZDRURC NUIxMEVCOUUwHhcNMjUxMjIzMDM1NzQ5WhcNMjUxMjMwMDM1NzQ5WjAYMRYwFAYD VQQDDA02OTRhMTMzZC04YzExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqR0IsTlIxTC8SfuwWBDXc/0lzYY49FK2EEg2IC0JMBhBJUH924SeYB+zORbX c/VA19fnxqRF9pcTtPVKyWrQRIeYO51D8nnwQH+2HwZEeATQB5ZnPGsK7KJVzmxR P7wu+3J27YzVuRDBvusj19RqcM8eVpFjq8jA3CQBCeEmc2b/me3ytZ0XT7FaLafh xSZHZynYf/YPgBK0/DzCZAMKMGkgjoEG4zqnSy6fVmsSZiRsVx3cgoTRlcicghq8 6u3piJFPjh4EVtoigNaky+sfxgMkT3RClxB3ghrau2P9eQD7alTuoNxjV7nOISVe s3FL+FRrtC3WlXecDMepRXgOnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKAmjeQF MgyfB7jF0Y/Uaca2oUVjMB8GA1UdIwQYMBaAFHUPpXtZFWU5yxblSmCmzttbEOue MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjFGMy80Mjk3RDA1MjQ1 QUUxMUVGQjYyMzc4NzBDNEY5QUUwMi9kUS1sZTFrVlpUbkxGdVZLWUtiTzIxc1E2 NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RRLWxlMWtWWlRuTEZ1VktZS2JPMjFzUTY1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjFGMy80Mjk3RDA1MjQ1QUUxMUVGQjYyMzc4NzBDNEY5QUUwMi9kUS1sZTFrVlpU bkxGdVZLWUtiTzIxc1E2NTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBe/gVZJECn+9flCc6SdwoZg594OJ+g8UzT3zcbyWmhT86Lbm8+0UYt FmtaBX8QIWKGxbxsBR0czA2HpObYjgprZpMQDsxv+u1sLGMo07KJ17kz7lxZB3c8 IhlO6NK3TxYWDz1Ny5r+D2WKdCQVZK7nbjdOohy5xmL6xJ3xrtrCFnugCqxHYBDE cw+1CHXdMFCMUZ67YqW4fotBLO9RcaNZUvPbn6+mvcOrOTIILGpWwltZ3faM2A0v 8FbsI97TUMep9e2rWS220VQ4tsrxCXz8/njqci9UrRznHis6N03fuIeNStKURAQY hTV+FHWjagAJdbZ2fKF6v5U2jHEQiHrm -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:28 2025 by rpki-client