This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft File: lfCdXluLzW9LTWm1yTbJEvd9LP0.mft (raw, json) Hash identifier: N9kdMdyjEyhIJUg80iq4KkvDXe4wuWwapfg1ASDupRA= Subject key identifier: 19:81:AF:95:EB:60:6D:2D:AF:E5:EB:17:67:F3:A7:F8:11:D4:AB:F8 Authority key identifier: 95:F0:9D:5E:5B:8B:CD:6F:4B:4D:69:B5:C9:36:C9:12:F7:7D:2C:FD Certificate issuer: /CN=A91D44BE/serialNumber=95F09D5E5B8BCD6F4B4D69B5C936C912F77D2CFD Certificate serial: 0103 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft Manifest number: FE Signing time: Tue 23 Dec 2025 04:14:29 +0000 Manifest this update: Tue 23 Dec 2025 04:14:28 +0000 Manifest next update: Tue 30 Dec 2025 04:14:28 +0000 Files and hashes: 1: lfCdXluLzW9LTWm1yTbJEvd9LP0.crl (hash: 72SRjYqSPFXignRVGLOB/L6xA6J9V38n9D627z4AWAw=) 2: B23569E2756511EFB018F20DC4F9AE02.roa (hash: 5VNZ8rNXbQQKdKelf/v7rMupqWLx2zXfYFtsUljtzac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.crl rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:14:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D44BE, serialNumber=95F09D5E5B8BCD6F4B4D69B5C936C912F77D2CFD Validity Not Before: Dec 23 04:14:28 2025 GMT Not After : Dec 30 04:14:28 2025 GMT Subject: CN=694a1724-700c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1c:4c:2b:07:c9:a6:f5:f9:c3:bb:5d:39:6b: ea:83:c8:fe:7d:de:e1:9c:0e:b9:c4:d4:6f:af:33: ef:b8:19:d1:38:e1:42:2f:73:b7:0c:81:48:91:e4: 50:95:50:2d:cf:1e:91:e9:cd:dc:6c:0b:08:c5:0f: 74:96:12:26:d0:62:8f:29:c7:f2:9f:58:32:65:0a: fb:51:3e:20:b5:53:4c:d0:5c:8d:1b:dc:6e:12:25: 37:2e:20:aa:39:e3:4a:f4:d0:de:64:12:af:6d:ba: 96:fb:cd:a1:91:92:e6:c7:fb:22:28:a3:18:c1:3d: af:57:2e:63:a9:d7:46:4b:70:0a:1a:35:8d:8e:53: 77:35:25:48:1a:57:92:11:25:a7:9d:67:72:50:8d: af:c0:b8:6a:b8:e2:f3:9e:c2:a5:c8:97:c5:95:1b: 7d:6a:58:99:0d:28:3a:6e:08:d0:f9:a8:a5:c1:3d: 51:2e:b7:44:52:f3:ff:fe:96:54:1d:bb:13:16:36: 25:14:2f:db:9c:35:d0:0a:4d:2e:8a:77:57:76:22: 77:b2:a5:61:41:69:36:39:92:20:52:c8:7b:9c:d0: 2b:f5:a9:fc:6b:5c:ad:70:d6:85:12:ed:73:55:61: 1a:54:48:f2:9d:40:bd:12:ea:fa:5a:f4:ee:a7:c8: ba:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:81:AF:95:EB:60:6D:2D:AF:E5:EB:17:67:F3:A7:F8:11:D4:AB:F8 X509v3 Authority Key Identifier: keyid:95:F0:9D:5E:5B:8B:CD:6F:4B:4D:69:B5:C9:36:C9:12:F7:7D:2C:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:21:d9:de:73:f3:82:57:52:f0:7a:1f:84:1f:61:7a:69:d1: 83:5f:3c:8a:0c:fd:3a:66:c4:89:f9:f1:9f:3a:7e:33:da:ba: ff:9e:91:de:fb:28:f0:61:c0:5e:fc:1a:7b:58:c0:1e:5b:98: 2e:84:32:c5:e7:a4:8e:d8:9a:87:6a:7d:a0:97:19:fb:cf:18: da:ba:d3:25:a1:5b:b3:0f:b3:1b:9c:55:1d:05:93:5d:1b:a6: 00:39:b9:0a:c3:0a:bb:af:7a:de:20:50:75:d5:4a:5d:6f:13: 73:e2:b3:28:ae:96:b5:6d:ae:af:ee:57:bd:de:13:33:14:ad: 84:3e:ce:15:1d:99:02:15:f4:16:d3:9d:d2:f5:ce:05:0c:f5: 78:9d:5d:11:16:10:1c:fe:69:fe:56:b9:09:96:0a:6f:85:99: 89:58:ff:2d:a8:80:fa:ca:3f:03:a0:7b:43:89:f6:5d:3f:52: de:8a:9b:92:ae:6b:45:3e:29:40:e9:c8:56:ae:59:49:8a:f1: 80:21:92:40:df:45:27:ab:ce:ff:39:f3:70:34:7c:95:61:aa: d5:c3:01:05:3d:e1:ae:bd:05:0e:c0:f3:b1:d2:dc:82:42:46: 84:61:c3:87:31:cb:93:7b:7d:d8:6e:7a:62:a9:44:1d:f9:b7: 7b:69:ee:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ0QkUxMTAvBgNVBAUTKDk1RjA5RDVFNUI4QkNENkY0QjRENjlCNUM5MzZDOTEy Rjc3RDJDRkQwHhcNMjUxMjIzMDQxNDI4WhcNMjUxMjMwMDQxNDI4WjAYMRYwFAYD VQQDDA02OTRhMTcyNC03MDBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRxMKwfJpvX5w7tdOWvqg8j+fd7hnA65xNRvrzPvuBnROOFCL3O3DIFIkeRQ lVAtzx6R6c3cbAsIxQ90lhIm0GKPKcfyn1gyZQr7UT4gtVNM0FyNG9xuEiU3LiCq OeNK9NDeZBKvbbqW+82hkZLmx/siKKMYwT2vVy5jqddGS3AKGjWNjlN3NSVIGleS ESWnnWdyUI2vwLhquOLznsKlyJfFlRt9aliZDSg6bgjQ+ailwT1RLrdEUvP//pZU HbsTFjYlFC/bnDXQCk0uindXdiJ3sqVhQWk2OZIgUsh7nNAr9an8a1ytcNaFEu1z VWEaVEjynUC9Eur6WvTup8i6LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBmBr5Xr YG0tr+XrF2fzp/gR1Kv4MB8GA1UdIwQYMBaAFJXwnV5bi81vS01ptck2yRL3fSz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDRCRS8wMjhBQkU0MjY5 MjIxMUVGQkY4N0JCMEVDNEY5QUUwMi9sZkNkWGx1THpXOUxUV20xeVRiSkV2ZDlM UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmQ2RYbHVMelc5TFRXbTF5VGJKRXZkOUxQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDRCRS8wMjhBQkU0MjY5MjIxMUVGQkY4N0JCMEVDNEY5QUUwMi9sZkNkWGx1THpX OUxUV20xeVRiSkV2ZDlMUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7Idnec/OCV1Lweh+EH2F6adGDXzyKDP06ZsSJ+fGfOn4z2rr/npHe +yjwYcBe/Bp7WMAeW5guhDLF56SO2JqHan2glxn7zxjautMloVuzD7MbnFUdBZNd G6YAObkKwwq7r3reIFB11UpdbxNz4rMorpa1ba6v7le93hMzFK2EPs4VHZkCFfQW 053S9c4FDPV4nV0RFhAc/mn+VrkJlgpvhZmJWP8tqID6yj8DoHtDifZdP1LeipuS rmtFPilA6chWrllJivGAIZJA30Unq87/OfNwNHyVYarVwwEFPeGuvQUOwPOx0tyC QkaEYcOHMcuTe33YbnpiqUQd+bd7ae5c -----END CERTIFICATE-----Generated at Wed Dec 24 09:00:40 2025 by rpki-client