This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft File: LHtdhHIAPPNDas_lth6J7Isa2Ks.mft (raw, json) Hash identifier: w3DNnClmhZkYrX1/UaYJOfwcMrR2F6m7a4jGvD0Ueis= Subject key identifier: 72:E4:51:6D:93:76:14:45:1A:73:1F:DB:96:37:5F:25:AF:E7:43:FD Authority key identifier: 2C:7B:5D:84:72:00:3C:F3:43:6A:CF:E5:B6:1E:89:EC:8B:1A:D8:AB Certificate issuer: /CN=A91E0CA1/serialNumber=2C7B5D8472003CF3436ACFE5B61E89EC8B1AD8AB Certificate serial: E5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LHtdhHIAPPNDas_lth6J7Isa2Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft Manifest number: E5 Signing time: Tue 02 Dec 2025 18:51:04 +0000 Manifest this update: Tue 02 Dec 2025 18:51:03 +0000 Manifest next update: Tue 09 Dec 2025 18:51:03 +0000 Files and hashes: 1: LHtdhHIAPPNDas_lth6J7Isa2Ks.crl (hash: Vv5zV3cAk4DJm7BDzQc9mT+T8EQ59lVoCT9illFKpSw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.crl rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LHtdhHIAPPNDas_lth6J7Isa2Ks.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 18:51:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CA1, serialNumber=2C7B5D8472003CF3436ACFE5B61E89EC8B1AD8AB Validity Not Before: Dec 2 18:51:03 2025 GMT Not After : Dec 9 18:51:03 2025 GMT Subject: CN=692f3518-ab7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:64:8e:89:e5:1b:c5:1f:44:d5:82:a0:73:9a: 66:22:04:c0:cc:05:05:51:e9:15:85:21:9b:19:99: f4:99:d3:28:55:a0:70:45:96:da:30:56:3a:c2:da: 96:c9:ff:a7:30:a8:c4:5a:7c:20:f7:1d:8d:fb:dc: ac:d2:d5:2e:c2:e1:09:e3:9c:ea:8d:6c:e2:ed:f9: 25:bf:82:40:2d:90:2c:f2:5b:63:42:06:5d:6b:7b: f0:55:8e:cc:56:31:da:83:75:3d:18:c0:dd:df:2c: 36:06:37:8b:a4:f0:bd:09:a3:6d:12:00:2e:d8:1c: 33:ac:46:a7:9b:be:93:6d:fe:1d:06:d8:05:8e:d4: 8c:a0:d7:e9:e0:6b:1e:46:b7:5e:63:f4:d3:39:0b: fd:2f:a2:b7:af:be:07:88:84:d7:10:cd:b8:95:c6: 40:55:c1:ad:85:1e:5b:3b:3c:46:6b:f0:62:af:f8: 67:99:4c:65:5d:dd:69:a3:3c:58:3e:f9:dc:7d:3e: cd:5b:0a:4b:4a:2f:4e:d0:cc:ff:3a:28:98:b1:28: de:54:af:1d:d0:79:fb:26:7e:33:6f:aa:77:78:5a: cd:b9:af:f7:3f:fb:95:a6:63:7c:87:45:42:6e:d8: fe:25:08:f1:b7:72:1f:86:40:dc:78:85:a0:2b:85: e0:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:E4:51:6D:93:76:14:45:1A:73:1F:DB:96:37:5F:25:AF:E7:43:FD X509v3 Authority Key Identifier: keyid:2C:7B:5D:84:72:00:3C:F3:43:6A:CF:E5:B6:1E:89:EC:8B:1A:D8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LHtdhHIAPPNDas_lth6J7Isa2Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:bb:bc:8a:96:c8:91:a1:b6:63:1c:27:8f:4d:98:70:a4:ea: 58:0e:a9:f5:f3:a1:f1:0a:fc:28:89:16:7a:30:c3:57:56:97: 03:64:8b:d2:fc:ab:6b:1f:cb:2e:46:6f:50:4d:a1:a2:9c:35: bc:7b:31:4d:a1:a4:ff:f7:af:d7:3f:ce:90:f2:81:68:d7:c1: 97:b5:72:cd:dc:8a:1e:da:45:d0:cf:c0:24:74:71:38:98:c4: dd:38:e4:38:c9:d4:eb:fe:8d:c2:90:2c:a5:bf:95:5e:1b:d2: 09:34:ba:1c:0d:e4:78:8b:e2:0f:ca:77:33:c0:9b:3e:38:2d: 90:26:77:b9:0f:8d:fe:89:bd:cb:c5:ca:ff:b3:bf:90:28:54: 57:78:49:cd:f7:86:ea:62:df:b8:84:05:46:8c:80:e5:9a:10: fa:82:b3:50:7a:67:f7:6d:6c:2d:e5:17:50:ed:94:69:8c:dc: 7e:21:c8:dd:73:af:6f:92:2e:6a:58:aa:43:19:73:ca:10:6f: 78:d3:4d:4b:60:25:9a:28:c8:b5:63:59:fa:85:1d:73:7f:6c: 56:13:2f:c8:a6:82:70:b6:80:10:50:3a:54:64:50:54:ca:89: cc:c8:2e:22:ae:92:2d:5a:e4:5a:11:4d:26:ba:3a:30:f6:37: 36:e1:82:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDQTExMTAvBgNVBAUTKDJDN0I1RDg0NzIwMDNDRjM0MzZBQ0ZFNUI2MUU4OUVD OEIxQUQ4QUIwHhcNMjUxMjAyMTg1MTAzWhcNMjUxMjA5MTg1MTAzWjAYMRYwFAYD VQQDEw02OTJmMzUxOC1hYjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA32SOieUbxR9E1YKgc5pmIgTAzAUFUekVhSGbGZn0mdMoVaBwRZbaMFY6wtqW yf+nMKjEWnwg9x2N+9ys0tUuwuEJ45zqjWzi7fklv4JALZAs8ltjQgZda3vwVY7M VjHag3U9GMDd3yw2BjeLpPC9CaNtEgAu2BwzrEanm76Tbf4dBtgFjtSMoNfp4Gse RrdeY/TTOQv9L6K3r74HiITXEM24lcZAVcGthR5bOzxGa/Bir/hnmUxlXd1pozxY PvncfT7NWwpLSi9O0Mz/OiiYsSjeVK8d0Hn7Jn4zb6p3eFrNua/3P/uVpmN8h0VC btj+JQjxt3IfhkDceIWgK4XgCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHLkUW2T dhRFGnMf25Y3XyWv50P9MB8GA1UdIwQYMBaAFCx7XYRyADzzQ2rP5bYeieyLGtir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMENBMS80RTExRjRENjcx OTAxMUVGODNDNEJGN0FDNEY5QUUwMi9MSHRkaEhJQVBQTkRhc19sdGg2SjdJc2Ey S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xIdGRoSElBUFBORGFzX2x0aDZKN0lzYTJLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MENBMS80RTExRjRENjcxOTAxMUVGODNDNEJGN0FDNEY5QUUwMi9MSHRkaEhJQVBQ TkRhc19sdGg2SjdJc2EyS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8u7yKlsiRobZjHCePTZhwpOpYDqn186HxCvwoiRZ6MMNXVpcDZIvS /KtrH8suRm9QTaGinDW8ezFNoaT/96/XP86Q8oFo18GXtXLN3Ioe2kXQz8AkdHE4 mMTdOOQ4ydTr/o3CkCylv5VeG9IJNLocDeR4i+IPynczwJs+OC2QJne5D43+ib3L xcr/s7+QKFRXeEnN94bqYt+4hAVGjIDlmhD6grNQemf3bWwt5RdQ7ZRpjNx+Icjd c69vki5qWKpDGXPKEG94001LYCWaKMi1Y1n6hR1zf2xWEy/IpoJwtoAQUDpUZFBU yonMyC4irpItWuRaEU0mujow9jc24YJE -----END CERTIFICATE-----Generated at Wed Dec 3 13:58:27 2025 by rpki-client