This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft File: R-lr-DG7PMQ7TweEJj5ylYddVRY.mft (raw, json) Hash identifier: 2sAblLmlWwdK3ECZjTMP+FfT0jNZxHNXmswNf6zLX+8= Subject key identifier: 3B:EB:85:CF:10:8E:34:3F:46:FF:37:0B:B2:5B:8A:BC:0C:D8:BE:24 Authority key identifier: 47:E9:6B:F8:31:BB:3C:C4:3B:4F:07:84:26:3E:72:95:87:5D:55:16 Certificate issuer: /CN=A91C4204/serialNumber=47E96BF831BB3CC43B4F0784263E7295875D5516 Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft Manifest number: 69 Signing time: Wed 03 Dec 2025 05:12:12 +0000 Manifest this update: Wed 03 Dec 2025 05:12:11 +0000 Manifest next update: Wed 10 Dec 2025 05:12:11 +0000 Files and hashes: 1: R-lr-DG7PMQ7TweEJj5ylYddVRY.crl (hash: sgiJRa/nFD6nLuD8yuwOel4fCIcHgfJu/6Nc1+ntp5s=) 2: CA2D4952300911F0AB675D3EC4F9AE02.roa (hash: wSACUp5c4PrWddzrJcvj1KCwEmCFzuB6DHldOTgXN4E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.crl rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 05:12:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4204, serialNumber=47E96BF831BB3CC43B4F0784263E7295875D5516 Validity Not Before: Dec 3 05:12:11 2025 GMT Not After : Dec 10 05:12:11 2025 GMT Subject: CN=692fc6ac-ef46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d3:3f:83:f5:52:fd:bb:83:53:86:f5:1b:2f: 36:d5:67:e4:91:f0:74:36:9f:08:08:56:95:0d:d0: 0a:47:b7:b9:00:95:ff:f3:06:0f:30:ea:a8:6d:8d: 8e:31:35:f2:d6:fb:f7:3f:15:59:0c:67:f9:24:13: f4:99:86:41:e6:44:fc:35:74:3d:b2:c2:eb:cd:a3: 16:34:66:e6:d3:71:de:9c:2c:3f:4a:3e:29:93:96: f1:98:58:55:7c:00:80:ff:00:3e:8f:ca:26:92:37: b5:ed:95:f1:69:1a:5f:69:2c:43:a1:d2:2c:96:3b: d6:81:5f:3c:ad:26:d9:38:3b:51:10:dd:b8:90:84: a6:3f:d2:89:45:94:df:aa:ef:a6:7d:a7:e3:e3:f7: df:12:37:af:f0:bb:54:79:11:f3:bc:87:e0:17:3a: c3:0a:1f:87:ac:43:27:32:dd:7a:12:61:16:6b:ce: fb:c6:73:97:e4:80:fb:bc:ac:6e:52:60:0a:77:b4: d7:c6:f7:ed:ac:67:0e:49:68:55:eb:f6:af:9c:09: 1d:7e:f3:98:47:47:24:3c:83:95:0c:bf:ed:a2:9b: 56:4e:8c:ba:eb:1e:7a:b2:64:31:9d:20:28:55:0c: 58:96:60:74:7d:69:f7:38:8e:d1:b6:ac:85:f5:0d: 70:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:EB:85:CF:10:8E:34:3F:46:FF:37:0B:B2:5B:8A:BC:0C:D8:BE:24 X509v3 Authority Key Identifier: keyid:47:E9:6B:F8:31:BB:3C:C4:3B:4F:07:84:26:3E:72:95:87:5D:55:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:de:5b:8c:1a:ca:a6:2e:da:81:22:be:93:4b:9b:7e:80:1e: 96:16:ee:6d:c6:86:79:34:a1:cb:3f:aa:e2:25:6e:94:70:9d: bc:86:c3:8d:2e:5b:d7:7a:e6:27:5d:bf:3f:0b:60:5f:b4:e5: 35:de:14:72:91:a4:83:c9:02:ff:f5:6a:63:19:89:ce:ed:d7: f1:52:f7:1e:25:a2:4f:50:44:68:af:c1:79:df:57:d1:9a:89: ee:0b:be:fc:b6:ad:6f:45:6f:92:f9:95:b1:af:67:30:cc:53: 93:8a:da:cd:05:d1:5b:36:d1:4f:2b:61:3a:9c:ac:6e:d9:e8: 19:2e:e3:e2:ec:5d:16:01:e5:69:63:ce:1f:ca:f8:8b:40:09: bd:40:43:91:dc:75:b8:a3:1a:fd:ab:44:ef:fe:85:79:02:01: 0a:f3:cd:7b:52:c6:d7:ae:e6:61:96:76:09:84:1a:4b:32:1e: 01:8f:a7:36:cd:f3:50:81:7b:d7:59:76:5f:28:df:06:c7:c9: 07:30:bf:6a:c6:da:8c:59:c7:26:b3:94:07:6d:9e:de:b5:47: 1c:71:36:3b:88:d5:ef:e0:bb:fb:1d:d9:19:0d:4c:0d:d4:23: e4:4c:d9:75:03:95:9c:46:21:16:1d:9c:20:8f:11:8c:5f:3a: 9f:32:0d:e8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NDIwNDExMC8GA1UEBRMoNDdFOTZCRjgzMUJCM0NDNDNCNEYwNzg0MjYzRTcyOTU4 NzVENTUxNjAeFw0yNTEyMDMwNTEyMTFaFw0yNTEyMTAwNTEyMTFaMBgxFjAUBgNV BAMTDTY5MmZjNmFjLWVmNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/0z+D9VL9u4NThvUbLzbVZ+SR8HQ2nwgIVpUN0ApHt7kAlf/zBg8w6qhtjY4x NfLW+/c/FVkMZ/kkE/SZhkHmRPw1dD2ywuvNoxY0ZubTcd6cLD9KPimTlvGYWFV8 AID/AD6PyiaSN7XtlfFpGl9pLEOh0iyWO9aBXzytJtk4O1EQ3biQhKY/0olFlN+q 76Z9p+Pj998SN6/wu1R5EfO8h+AXOsMKH4esQycy3XoSYRZrzvvGc5fkgPu8rG5S YAp3tNfG9+2sZw5JaFXr9q+cCR1+85hHRyQ8g5UMv+2im1ZOjLrrHnqyZDGdIChV DFiWYHR9afc4jtG2rIX1DXDhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUO+uFzxCO ND9G/zcLsluKvAzYviQwHwYDVR0jBBgwFoAUR+lr+DG7PMQ7TweEJj5ylYddVRYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0MjA0LzQ0MUI1MDUyMzAw OTExRjBBMEFBN0QzREM0RjlBRTAyL1ItbHItREc3UE1RN1R3ZUVKajV5bFlkZFZS WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUi1sci1ERzdQTVE3VHdlRUpqNXlsWWRkVlJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0 MjA0LzQ0MUI1MDUyMzAwOTExRjBBMEFBN0QzREM0RjlBRTAyL1ItbHItREc3UE1R N1R3ZUVKajV5bFlkZFZSWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACXeW4wayqYu2oEivpNLm36AHpYW7m3Ghnk0ocs/quIlbpRwnbyGw40u W9d65iddvz8LYF+05TXeFHKRpIPJAv/1amMZic7t1/FS9x4lok9QRGivwXnfV9Ga ie4Lvvy2rW9Fb5L5lbGvZzDMU5OK2s0F0Vs20U8rYTqcrG7Z6Bku4+LsXRYB5Wlj zh/K+ItACb1AQ5HcdbijGv2rRO/+hXkCAQrzzXtSxteu5mGWdgmEGksyHgGPpzbN 81CBe9dZdl8o3wbHyQcwv2rG2oxZxyazlAdtnt61RxxxNjuI1e/gu/sd2RkNTA3U I+RM2XUDlZxGIRYdnCCPEYxfOp8yDeg= -----END CERTIFICATE-----Generated at Wed Dec 3 14:48:40 2025 by rpki-client