This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft File: lVqjNNYHfBfALW18rdIVmRIeTvo.mft (raw, json) Hash identifier: W4GtbVYmwN9BMU6lkQSTQouzHPysuPGhkReK5d1A5vc= Subject key identifier: 55:CB:35:4E:F6:56:F6:A9:96:A0:8D:D5:FB:1C:C9:D7:D6:83:E4:32 Authority key identifier: 95:5A:A3:34:D6:07:7C:17:C0:2D:6D:7C:AD:D2:15:99:12:1E:4E:FA Certificate issuer: /CN=A91D01AF/serialNumber=955AA334D6077C17C02D6D7CADD21599121E4EFA Certificate serial: 0845 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft Manifest number: 083D Signing time: Mon 22 Dec 2025 20:06:22 +0000 Manifest this update: Mon 22 Dec 2025 20:06:21 +0000 Manifest next update: Mon 29 Dec 2025 20:06:21 +0000 Files and hashes: 1: lVqjNNYHfBfALW18rdIVmRIeTvo.crl (hash: OasyJG8FmHDngBfg6lqcfE5riyLTkLk0sfIah8DzCTc=) 2: AD797FA2F17E11EAA3CC597BC4F9AE02.roa (hash: FrUF8k+q0iQX/Bos2myD8zLROjp2eOpyug9lyw9AGzE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.crl rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:06:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2117 (0x845) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D01AF, serialNumber=955AA334D6077C17C02D6D7CADD21599121E4EFA Validity Not Before: Dec 22 20:06:21 2025 GMT Not After : Dec 29 20:06:21 2025 GMT Subject: CN=6949a4be-6c9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9b:68:d9:4b:95:74:03:e3:0e:20:b9:b8:e4: e7:ee:4e:85:dc:fc:46:b7:1b:8a:76:0e:60:46:a1: 3d:7e:bd:78:c7:df:a6:bb:fc:b3:75:42:a6:dc:c2: 06:f6:e6:24:9b:3a:47:f1:3e:5f:c6:73:7d:b3:e3: 08:66:b7:d1:64:c4:1f:87:be:6e:40:ec:9a:ea:21: e6:b9:dd:df:63:82:ca:28:df:59:20:43:a3:26:38: 48:66:d5:0c:da:18:60:f8:01:ca:66:e1:3e:85:98: d7:4c:67:20:7a:65:e1:95:20:8f:07:dc:e6:49:f7: 91:5f:e3:d8:0a:f0:ba:b6:bb:54:f3:29:1b:72:c3: c0:c1:7e:27:3b:98:b5:37:7d:08:df:62:84:97:0a: 3c:18:15:2d:70:e3:7a:37:ed:7a:28:b2:d5:9c:37: c5:9f:73:b9:83:3e:31:02:7e:3f:16:30:55:df:cb: 33:03:af:e9:54:ef:19:5a:54:c9:81:0a:33:19:bc: 4c:d7:e4:1d:02:b3:b9:f6:89:18:b6:7b:70:20:ac: d1:9d:af:ba:dd:bb:98:83:77:09:1a:fe:2d:3e:fd: 88:04:4a:46:2d:bf:34:72:51:fc:d4:8e:0c:58:6f: 08:bc:ac:17:4e:76:8c:77:37:20:00:2b:fb:ec:e0: a5:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:CB:35:4E:F6:56:F6:A9:96:A0:8D:D5:FB:1C:C9:D7:D6:83:E4:32 X509v3 Authority Key Identifier: keyid:95:5A:A3:34:D6:07:7C:17:C0:2D:6D:7C:AD:D2:15:99:12:1E:4E:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:b6:7e:10:82:5b:37:fc:7a:17:77:1a:2b:49:ea:91:f5:71: ce:da:b9:1b:9d:14:e4:6f:bc:0c:99:1f:06:d0:da:18:57:b4: 3d:5e:bd:25:b9:cc:fd:be:1f:6e:ca:3c:7b:4c:ea:7d:e9:e8: cd:c5:80:c1:66:ef:8f:a3:84:c2:bd:f9:cd:00:66:75:0e:6e: 18:67:41:77:eb:db:15:ed:04:06:18:e3:40:6a:31:19:d7:45: ea:d0:d0:d4:2f:4f:52:fe:77:13:c4:52:2e:f1:73:27:57:28: 96:70:64:c1:e0:39:5e:ff:4a:d3:00:fb:da:44:6a:b6:1d:ee: 3d:b7:75:06:2b:e5:1c:e0:5d:eb:41:1c:05:85:62:7d:2e:a0: 5d:d6:08:a9:7d:d8:c0:6d:92:f0:cd:02:98:bd:91:64:ff:70: 20:6c:0f:af:36:97:03:57:bc:4b:5f:01:e3:74:00:52:26:63: 46:6d:78:8b:f1:a3:1d:82:d6:cd:24:12:99:c9:9f:06:e1:6f: da:b8:75:40:55:f8:10:ff:7f:de:3c:ad:30:eb:57:49:f7:21: 5a:9e:0f:8b:f6:6a:f6:72:cb:d3:22:22:76:2a:0f:87:35:3c: e6:bb:0c:17:ef:5a:72:36:38:8e:e2:97:26:c8:b9:e6:92:a5: aa:58:09:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAxQUYxMTAvBgNVBAUTKDk1NUFBMzM0RDYwNzdDMTdDMDJENkQ3Q0FERDIxNTk5 MTIxRTRFRkEwHhcNMjUxMjIyMjAwNjIxWhcNMjUxMjI5MjAwNjIxWjAYMRYwFAYD VQQDDA02OTQ5YTRiZS02YzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupto2UuVdAPjDiC5uOTn7k6F3PxGtxuKdg5gRqE9fr14x9+mu/yzdUKm3MIG 9uYkmzpH8T5fxnN9s+MIZrfRZMQfh75uQOya6iHmud3fY4LKKN9ZIEOjJjhIZtUM 2hhg+AHKZuE+hZjXTGcgemXhlSCPB9zmSfeRX+PYCvC6trtU8ykbcsPAwX4nO5i1 N30I32KElwo8GBUtcON6N+16KLLVnDfFn3O5gz4xAn4/FjBV38szA6/pVO8ZWlTJ gQozGbxM1+QdArO59okYtntwIKzRna+63buYg3cJGv4tPv2IBEpGLb80clH81I4M WG8IvKwXTnaMdzcgACv77OClKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFXLNU72 VvaplqCN1fscydfWg+QyMB8GA1UdIwQYMBaAFJVaozTWB3wXwC1tfK3SFZkSHk76 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDFBRi9DRDdFNzBEOEYx N0QxMUVBQUIzOTI1NzhDNEY5QUUwMi9sVnFqTk5ZSGZCZkFMVzE4cmRJVm1SSWVU dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xWcWpOTllIZkJmQUxXMThyZElWbVJJZVR2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDFBRi9DRDdFNzBEOEYxN0QxMUVBQUIzOTI1NzhDNEY5QUUwMi9sVnFqTk5ZSGZC ZkFMVzE4cmRJVm1SSWVUdm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5tn4Qgls3/HoXdxorSeqR9XHO2rkbnRTkb7wMmR8G0NoYV7Q9Xr0l ucz9vh9uyjx7TOp96ejNxYDBZu+Po4TCvfnNAGZ1Dm4YZ0F369sV7QQGGONAajEZ 10Xq0NDUL09S/ncTxFIu8XMnVyiWcGTB4Dle/0rTAPvaRGq2He49t3UGK+Uc4F3r QRwFhWJ9LqBd1gipfdjAbZLwzQKYvZFk/3AgbA+vNpcDV7xLXwHjdABSJmNGbXiL 8aMdgtbNJBKZyZ8G4W/auHVAVfgQ/3/ePK0w61dJ9yFang+L9mr2csvTIiJ2Kg+H NTzmuwwX71pyNjiO4pcmyLnmkqWqWAnZ -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:31 2025 by rpki-client