This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft File: LD0jWhshn0FmEJALADuKv9wXAqI.mft (raw, json) Hash identifier: 3LnoERTItE39Z/8Vh8jHbpLb8kDis2gemjQaKIupIXI= Subject key identifier: A6:84:57:DD:80:C8:FD:87:80:A1:DF:A9:43:0B:AE:3A:F9:72:1E:B8 Authority key identifier: 2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 Certificate issuer: /CN=A91CEA40/serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Certificate serial: 0679 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft Manifest number: 066C Signing time: Mon 22 Dec 2025 21:49:17 +0000 Manifest this update: Mon 22 Dec 2025 21:49:16 +0000 Manifest next update: Mon 29 Dec 2025 21:49:16 +0000 Files and hashes: 1: LD0jWhshn0FmEJALADuKv9wXAqI.crl (hash: NGCbXnWARfmoyvjTHO86nOaAiQdbalwermVkAzcYIFw=) 2: 96F093D4BEA011EB8CAD965FC4F9AE02.roa (hash: NpLkQ/NypmNX/0X8ZR0aPK3YWZwmOShkZdvPXd4fivY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:49:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1657 (0x679) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEA40, serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Validity Not Before: Dec 22 21:49:16 2025 GMT Not After : Dec 29 21:49:16 2025 GMT Subject: CN=6949bcdd-4063 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:18:2b:e2:70:80:6d:bb:23:0d:25:5b:bd:fe: 22:e1:fa:a7:87:06:c1:2e:d4:08:f0:2f:25:c1:7c: c7:01:f1:25:16:1f:84:44:1b:c6:4b:9e:9a:e2:db: 87:85:ba:8e:d0:3f:1f:b8:ee:c7:de:02:e2:b5:42: d2:a2:1b:76:2d:ec:26:09:40:9f:d2:09:e3:95:6f: a2:7e:e6:06:f1:b7:4d:32:e2:5a:2a:5b:20:fe:fe: 71:ce:fd:44:e9:03:12:ef:99:e9:50:21:9f:8c:1c: d9:82:70:62:ec:44:37:04:0c:0f:89:26:ce:b9:88: 00:a8:4d:7f:94:68:fb:75:35:64:1f:93:8a:5f:2d: c9:eb:f7:64:84:bb:0d:c4:41:e9:bd:cf:35:c0:81: b2:f9:35:25:d1:12:f2:c6:d6:56:7f:ea:0e:14:d9: 91:60:43:bb:54:2d:b7:4e:dc:7f:0d:1b:5b:67:73: c7:07:be:df:77:56:4c:70:8c:f4:7f:a5:c9:cd:49: f4:cd:9f:d4:6e:64:3c:88:b3:fd:f5:69:0f:43:c8: 9b:ba:64:84:5c:08:9e:c5:33:28:7d:5f:01:72:f7: b2:44:a0:f6:ed:c3:38:8f:c9:8a:21:e3:c4:da:83: 41:9f:3e:34:ad:50:d6:fb:52:74:07:be:6f:1f:c2: f7:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:84:57:DD:80:C8:FD:87:80:A1:DF:A9:43:0B:AE:3A:F9:72:1E:B8 X509v3 Authority Key Identifier: keyid:2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:99:6c:c9:c2:54:d8:ee:29:b8:5e:d8:3a:29:44:ea:98:fc: 0e:ce:ba:8b:fd:26:59:c1:f8:d9:f6:18:07:84:8b:41:9b:b8: 22:3e:34:c6:1f:e5:5d:a0:a1:ac:34:e4:ab:be:1f:1e:c1:08: 65:5e:95:02:72:f1:67:9a:68:23:b7:27:6c:6c:0b:e4:73:63: 90:fb:9d:25:c6:72:42:65:5a:f4:8f:c5:ff:0b:7a:78:ca:93: 1b:0b:b6:a0:61:57:9f:2b:2b:e9:81:2b:f0:10:bb:61:0a:17: 61:e3:be:33:47:c2:5b:83:8d:bc:ae:cb:17:da:e0:49:d8:ec: a7:6a:48:e4:93:ca:86:e3:58:e5:a8:a1:6f:85:81:d3:4c:80: 00:19:14:4b:70:af:34:cb:ec:5d:3a:4d:c0:0b:93:6f:06:07: b1:ca:7c:58:d4:19:85:c8:f0:f7:19:3d:42:1f:be:05:fc:c6: 02:32:60:f4:c4:ac:06:e5:99:7b:6d:f3:8e:26:01:e8:44:f5: be:32:c2:f9:89:75:7c:ca:70:41:22:30:ea:bc:b1:1a:e1:71: 34:37:b2:d9:e8:70:4e:bf:a8:0b:bf:a9:4c:1d:12:9c:95:3c: 8b:4b:76:2e:9c:4e:3a:eb:13:f1:76:db:ef:11:79:68:95:6d: 99:31:60:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBNDAxMTAvBgNVBAUTKDJDM0QyMzVBMUIyMTlGNDE2NjEwOTAwQjAwM0I4QUJG REMxNzAyQTIwHhcNMjUxMjIyMjE0OTE2WhcNMjUxMjI5MjE0OTE2WjAYMRYwFAYD VQQDDA02OTQ5YmNkZC00MDYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyxgr4nCAbbsjDSVbvf4i4fqnhwbBLtQI8C8lwXzHAfElFh+ERBvGS56a4tuH hbqO0D8fuO7H3gLitULSoht2LewmCUCf0gnjlW+ifuYG8bdNMuJaKlsg/v5xzv1E 6QMS75npUCGfjBzZgnBi7EQ3BAwPiSbOuYgAqE1/lGj7dTVkH5OKXy3J6/dkhLsN xEHpvc81wIGy+TUl0RLyxtZWf+oOFNmRYEO7VC23Ttx/DRtbZ3PHB77fd1ZMcIz0 f6XJzUn0zZ/UbmQ8iLP99WkPQ8ibumSEXAiexTMofV8BcveyRKD27cM4j8mKIePE 2oNBnz40rVDW+1J0B75vH8L3BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKaEV92A yP2HgKHfqUMLrjr5ch64MB8GA1UdIwQYMBaAFCw9I1obIZ9BZhCQCwA7ir/cFwKi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUE0MC84RTk2NEJDRUFG NzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4wRm1FSkFMQUR1S3Y5d1hB cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEMGpXaHNobjBGbUVKQUxBRHVLdjl3WEFxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUE0MC84RTk2NEJDRUFGNzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4w Rm1FSkFMQUR1S3Y5d1hBcUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpmWzJwlTY7im4Xtg6KUTqmPwOzrqL/SZZwfjZ9hgHhItBm7giPjTG H+VdoKGsNOSrvh8ewQhlXpUCcvFnmmgjtydsbAvkc2OQ+50lxnJCZVr0j8X/C3p4 ypMbC7agYVefKyvpgSvwELthChdh474zR8Jbg428rssX2uBJ2Oynakjkk8qG41jl qKFvhYHTTIAAGRRLcK80y+xdOk3AC5NvBgexynxY1BmFyPD3GT1CH74F/MYCMmD0 xKwG5Zl7bfOOJgHoRPW+MsL5iXV8ynBBIjDqvLEa4XE0N7LZ6HBOv6gLv6lMHRKc lTyLS3YunE466xPxdtvvEXlolW2ZMWCC -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:40 2025 by rpki-client