This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft File: R-lr-DG7PMQ7TweEJj5ylYddVRY.mft (raw, json) Hash identifier: a+pdMvn7OcnMTmX7Z/aipxxhDuTjQH9pwh67DdirTsM= Subject key identifier: A7:3F:72:37:13:E8:10:A4:95:C2:CB:7D:6D:28:07:C2:63:0E:11:CA Authority key identifier: 47:E9:6B:F8:31:BB:3C:C4:3B:4F:07:84:26:3E:72:95:87:5D:55:16 Certificate issuer: /CN=A91C4204/serialNumber=47E96BF831BB3CC43B4F0784263E7295875D5516 Certificate serial: 82 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft Manifest number: 80 Signing time: Sat 17 Jan 2026 05:45:47 +0000 Manifest this update: Sat 17 Jan 2026 05:45:46 +0000 Manifest next update: Sat 24 Jan 2026 05:45:46 +0000 Files and hashes: 1: R-lr-DG7PMQ7TweEJj5ylYddVRY.crl (hash: qVBPXkqUZl7cZ/79Bs/M72aEUz7a4ntPs1gt2dJcH5g=) 2: CA2D4952300911F0AB675D3EC4F9AE02.roa (hash: wSACUp5c4PrWddzrJcvj1KCwEmCFzuB6DHldOTgXN4E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.crl rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 05:45:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 130 (0x82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4204, serialNumber=47E96BF831BB3CC43B4F0784263E7295875D5516 Validity Not Before: Jan 17 05:45:46 2026 GMT Not After : Jan 24 05:45:46 2026 GMT Subject: CN=696b220b-3910 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:dc:b8:e3:47:d7:bb:2b:a5:89:31:72:db:06: e9:d9:e4:bf:42:c0:bd:12:41:e4:e8:07:63:0d:0d: 1e:cb:50:62:f5:9b:2d:8f:65:ec:5e:4e:af:29:b7: b2:4d:26:ca:0c:59:0a:80:e6:2e:d9:4d:0d:8f:38: 40:8d:ad:ca:e5:8c:bf:91:08:38:4b:40:a8:b5:ca: 8f:41:ed:7a:40:90:f8:7f:3d:ad:ff:9f:07:8b:f2: 57:62:89:1a:c7:6b:66:6b:19:67:c1:db:59:63:1e: ee:4d:f1:87:ba:a7:ed:8a:e0:0e:bc:bd:10:4b:fb: e0:05:51:1e:e9:72:69:69:6f:dd:0a:2b:7f:f2:9a: 52:4d:dd:c3:14:5e:bf:dc:f6:6e:a8:88:da:d0:c4: 80:6e:e8:33:5b:3c:2b:d4:91:e5:6a:0d:de:43:b4: e4:09:39:a0:2e:af:58:4f:b2:f6:d8:3e:df:20:f1: 7b:fb:80:63:eb:fb:0a:c0:fe:53:ca:38:76:98:85: 68:f0:bb:bf:0a:42:93:05:34:3e:f6:90:c0:48:91: 9f:68:2c:b4:f2:06:b1:31:05:3b:b6:14:be:04:bf: 1b:90:72:db:6b:5d:20:41:47:9f:c5:24:0a:3e:4b: 01:52:8f:04:2a:ff:db:0c:55:35:84:3e:75:f0:2b: 62:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:3F:72:37:13:E8:10:A4:95:C2:CB:7D:6D:28:07:C2:63:0E:11:CA X509v3 Authority Key Identifier: keyid:47:E9:6B:F8:31:BB:3C:C4:3B:4F:07:84:26:3E:72:95:87:5D:55:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:ee:34:86:5e:ac:16:ab:70:a8:b1:41:6e:b9:5a:af:51:2d: d5:10:0c:a3:84:ee:7b:b3:c8:a1:d3:67:08:05:c9:f4:ba:cd: 82:a4:3b:b6:34:db:2d:d3:f3:dc:6b:84:fa:e9:89:ea:32:07: 43:73:43:28:48:db:07:6d:2a:b4:61:e8:1b:88:00:6d:62:25: f1:0e:8e:20:cc:29:d0:10:1e:ad:33:f1:d5:12:08:bf:8e:bc: 17:c9:21:26:eb:7e:fa:12:85:43:f1:87:8a:60:58:c7:6d:1b: ff:83:17:c5:3c:28:bd:77:b3:cc:bf:0c:12:26:8a:20:9f:1f: 5a:c6:21:5f:71:24:fa:ba:fb:e8:35:63:2a:f5:56:37:05:be: 69:59:af:f4:b9:73:ed:0b:2c:33:ef:43:75:fc:2e:ed:ee:6c: c1:2c:f1:21:8e:cf:84:67:35:e3:31:e3:e0:05:94:06:dd:1e: 07:bd:e5:d7:64:1a:af:f6:9c:e9:64:35:35:f7:c0:00:81:7d: 3f:44:19:68:ce:19:fc:17:7f:c5:7f:90:7a:dc:88:3a:1b:a9: 58:ca:b7:b9:4e:f5:f9:89:61:82:29:cc:1c:04:4a:be:d0:a1: ef:56:bc:c8:02:ac:f5:2b:05:24:c2:0c:f0:1c:4b:5d:3f:7a: 13:e0:32:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQyMDQxMTAvBgNVBAUTKDQ3RTk2QkY4MzFCQjNDQzQzQjRGMDc4NDI2M0U3Mjk1 ODc1RDU1MTYwHhcNMjYwMTE3MDU0NTQ2WhcNMjYwMTI0MDU0NTQ2WjAYMRYwFAYD VQQDDA02OTZiMjIwYi0zOTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArty440fXuyuliTFy2wbp2eS/QsC9EkHk6AdjDQ0ey1Bi9Zstj2XsXk6vKbey TSbKDFkKgOYu2U0NjzhAja3K5Yy/kQg4S0CotcqPQe16QJD4fz2t/58Hi/JXYoka x2tmaxlnwdtZYx7uTfGHuqftiuAOvL0QS/vgBVEe6XJpaW/dCit/8ppSTd3DFF6/ 3PZuqIja0MSAbugzWzwr1JHlag3eQ7TkCTmgLq9YT7L22D7fIPF7+4Bj6/sKwP5T yjh2mIVo8Lu/CkKTBTQ+9pDASJGfaCy08gaxMQU7thS+BL8bkHLba10gQUefxSQK PksBUo8EKv/bDFU1hD518CtixwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKc/cjcT 6BCklcLLfW0oB8JjDhHKMB8GA1UdIwQYMBaAFEfpa/gxuzzEO08HhCY+cpWHXVUW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDIwNC80NDFCNTA1MjMw MDkxMUYwQTBBQTdEM0RDNEY5QUUwMi9SLWxyLURHN1BNUTdUd2VFSmo1eWxZZGRW UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1ItbHItREc3UE1RN1R3ZUVKajV5bFlkZFZSWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDIwNC80NDFCNTA1MjMwMDkxMUYwQTBBQTdEM0RDNEY5QUUwMi9SLWxyLURHN1BN UTdUd2VFSmo1eWxZZGRWUlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAF7jSGXqwWq3CosUFuuVqvUS3VEAyjhO57s8ih02cIBcn0us2CpDu2 NNst0/Pca4T66YnqMgdDc0MoSNsHbSq0YegbiABtYiXxDo4gzCnQEB6tM/HVEgi/ jrwXySEm6376EoVD8YeKYFjHbRv/gxfFPCi9d7PMvwwSJoognx9axiFfcST6uvvo NWMq9VY3Bb5pWa/0uXPtCywz70N1/C7t7mzBLPEhjs+EZzXjMePgBZQG3R4HveXX ZBqv9pzpZDU198AAgX0/RBlozhn8F3/Ff5B63Ig6G6lYyre5TvX5iWGCKcwcBEq+ 0KHvVrzIAqz1KwUkwgzwHEtdP3oT4DIt -----END CERTIFICATE-----Generated at Sun Jan 18 03:01:52 2026 by rpki-client