This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft File: lpDF1gn85ELDW5kW1WP58Ye2itQ.mft (raw, json) Hash identifier: 6pGt2SwkSH3OKgKbmpWjhwVUOxnLmAe1d1eDndh77uU= Subject key identifier: A0:D0:08:68:2F:C2:97:01:CA:87:3F:95:B8:6A:2F:E3:FB:50:4E:AE Authority key identifier: 96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 Certificate issuer: /CN=A91D8E2C/serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Certificate serial: 0EA7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft Manifest number: 0E9E Signing time: Mon 22 Dec 2025 17:21:18 +0000 Manifest this update: Mon 22 Dec 2025 17:21:18 +0000 Manifest next update: Mon 29 Dec 2025 17:21:18 +0000 Files and hashes: 1: lpDF1gn85ELDW5kW1WP58Ye2itQ.crl (hash: CVMI5lVAyh9rkzdVzAujLmbW4UUmbuL5S8MqdOCODhQ=) 2: 6C153768CE5511EB9DD80C30C4F9AE02.roa (hash: FB/I0gTgEb20qtL8a4Y3PnJsdj8cSocHpg/e5FisnJk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:21:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3751 (0xea7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8E2C, serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Validity Not Before: Dec 22 17:21:18 2025 GMT Not After : Dec 29 17:21:18 2025 GMT Subject: CN=69497e0e-1730 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:fa:72:f0:c4:1a:70:cf:eb:0d:2a:d2:42:81: b0:e9:a0:23:99:22:6c:90:bc:46:b8:de:3b:ff:1e: 61:18:7f:8e:0a:7e:99:8d:f7:75:20:80:32:58:4c: 49:e3:6c:28:88:eb:26:1b:7a:02:47:25:81:7c:ee: 54:d6:66:12:70:03:76:cb:2b:31:5d:be:4c:1e:1b: 7e:64:31:8b:fc:a6:05:5f:7a:79:01:df:58:e2:6d: 64:11:f8:5f:6a:04:00:1a:a1:e8:46:a6:9d:77:5f: 45:b9:d6:3d:e9:cb:9e:43:7a:18:3f:e1:ea:4e:76: 46:54:2b:75:5e:46:e3:04:12:a9:85:f0:69:60:1b: 9e:ce:1f:05:2d:9c:11:af:f7:df:e4:20:a8:15:9c: 51:50:5d:75:3f:02:11:ce:f0:a0:11:4e:94:a1:bd: b2:57:90:c1:99:7b:cd:a5:9f:27:60:07:a7:9e:6d: 47:48:28:9f:82:5f:07:ef:ea:5e:c1:60:70:79:63: fd:79:60:2b:e0:93:f8:0b:03:00:d4:6e:87:23:34: 27:38:9a:1d:0d:70:bd:c6:fe:c3:06:dc:48:fb:f6: 08:76:8e:e7:0e:98:67:47:a1:2e:2e:bf:db:11:b8: e8:38:e7:fe:38:b2:b8:4a:05:bd:c2:87:39:40:82: f7:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:D0:08:68:2F:C2:97:01:CA:87:3F:95:B8:6A:2F:E3:FB:50:4E:AE X509v3 Authority Key Identifier: keyid:96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:fc:de:b5:02:35:ce:08:84:bb:a5:32:33:21:31:4d:53:37: d4:93:4b:85:0b:3c:63:93:dd:e4:e8:24:e9:03:59:8f:de:c0: 6b:87:9a:10:ee:04:7b:39:c5:24:11:c2:4d:5b:31:df:3e:71: 41:39:29:de:bc:36:85:f6:b4:df:b1:c4:74:de:65:e3:6a:84: 10:47:a8:d6:30:78:8c:79:c5:de:4a:8a:23:15:24:1a:2c:b1: bc:a2:30:ab:fb:71:26:6d:aa:92:6e:8f:e8:f9:25:17:a5:1b: 56:5e:e0:06:d8:8d:f3:1a:b3:85:ce:8c:c4:50:b0:d6:8e:84: 9a:6d:86:c2:02:99:75:96:95:2d:82:e3:1e:ae:fa:b4:54:41: 85:83:59:94:50:e3:60:38:36:6c:4c:24:12:28:ff:aa:18:3f: c2:52:ed:2e:08:ca:a5:be:3b:86:e8:83:a1:66:78:8f:f6:ad: be:e5:e5:77:4a:68:3a:2d:86:78:83:aa:ad:98:13:2d:06:7d: 70:0b:1e:65:31:99:f5:1e:c2:95:43:83:95:1c:ac:1b:f6:8d: 0c:4f:86:1e:92:39:83:34:37:e6:65:7e:ec:cf:09:e7:3e:2b: 5c:17:5b:85:e3:bf:be:9c:17:2d:38:53:b8:0f:b6:9a:94:85: 50:e8:0f:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFMkMxMTAvBgNVBAUTKDk2OTBDNUQ2MDlGQ0U0NDJDMzVCOTkxNkQ1NjNGOUYx ODdCNjhBRDQwHhcNMjUxMjIyMTcyMTE4WhcNMjUxMjI5MTcyMTE4WjAYMRYwFAYD VQQDDA02OTQ5N2UwZS0xNzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Ppy8MQacM/rDSrSQoGw6aAjmSJskLxGuN47/x5hGH+OCn6Zjfd1IIAyWExJ 42woiOsmG3oCRyWBfO5U1mYScAN2yysxXb5MHht+ZDGL/KYFX3p5Ad9Y4m1kEfhf agQAGqHoRqadd19FudY96cueQ3oYP+HqTnZGVCt1XkbjBBKphfBpYBuezh8FLZwR r/ff5CCoFZxRUF11PwIRzvCgEU6Uob2yV5DBmXvNpZ8nYAennm1HSCifgl8H7+pe wWBweWP9eWAr4JP4CwMA1G6HIzQnOJodDXC9xv7DBtxI+/YIdo7nDphnR6EuLr/b EbjoOOf+OLK4SgW9woc5QIL38QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKDQCGgv wpcByoc/lbhqL+P7UE6uMB8GA1UdIwQYMBaAFJaQxdYJ/ORCw1uZFtVj+fGHtorU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEUyQy8wRkUxRUQwNkEy RkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVFTERXNWtXMVdQNThZZTJp dFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xwREYxZ244NUVMRFc1a1cxV1A1OFllMml0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEUyQy8wRkUxRUQwNkEyRkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVF TERXNWtXMVdQNThZZTJpdFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJ/N61AjXOCIS7pTIzITFNUzfUk0uFCzxjk93k6CTpA1mP3sBrh5oQ 7gR7OcUkEcJNWzHfPnFBOSnevDaF9rTfscR03mXjaoQQR6jWMHiMecXeSoojFSQa LLG8ojCr+3EmbaqSbo/o+SUXpRtWXuAG2I3zGrOFzozEULDWjoSabYbCApl1lpUt guMervq0VEGFg1mUUONgODZsTCQSKP+qGD/CUu0uCMqlvjuG6IOhZniP9q2+5eV3 Smg6LYZ4g6qtmBMtBn1wCx5lMZn1HsKVQ4OVHKwb9o0MT4YekjmDNDfmZX7szwnn PitcF1uF47++nBctOFO4D7aalIVQ6A+T -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:11 2025 by rpki-client