This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft File: lFlKrsbtZqaAoVv-tc2leC1MLYg.mft (raw, json) Hash identifier: ANK8ksxXRzHH7Q5kwn4635gJPGuPiCtprCvZwJs+sVM= Subject key identifier: E6:DB:85:DB:73:CF:BA:EF:E2:C2:A7:86:0E:EB:61:0C:6D:1F:9A:2E Authority key identifier: 94:59:4A:AE:C6:ED:66:A6:80:A1:5B:FE:B5:CD:A5:78:2D:4C:2D:88 Certificate issuer: /CN=A91E2EF9/serialNumber=94594AAEC6ED66A680A15BFEB5CDA5782D4C2D88 Certificate serial: 0103 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft Manifest number: FE Signing time: Fri 19 Dec 2025 04:20:26 +0000 Manifest this update: Fri 19 Dec 2025 04:20:25 +0000 Manifest next update: Fri 26 Dec 2025 04:20:25 +0000 Files and hashes: 1: lFlKrsbtZqaAoVv-tc2leC1MLYg.crl (hash: LejVnoaOYlgdFFtJjvSOfy01ZUCf6pvwsaMu5DVQzA0=) 2: 5D3D752CDBEB11F0A1AC385A536F56BC.roa (hash: uYeNFOSniBkkb6Cc56Cb53aZvEwuRUlCfEZxR4PFQpI=) 3: E7C7DBF8A0E411EF98A7340EC4F9AE02.roa (hash: 7jEw+cOkWTAknu5PcBj2MNehVkDO0rbITl2EdNIaO7o=) 4: D926DBDA605211EF90C2C621C4F9AE02.roa (hash: Cl2PJo7826qehYKKSG2/VdHV6kV/QSQl5KdRQS87oS0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.crl rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:20:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2EF9, serialNumber=94594AAEC6ED66A680A15BFEB5CDA5782D4C2D88 Validity Not Before: Dec 19 04:20:25 2025 GMT Not After : Dec 26 04:20:25 2025 GMT Subject: CN=6944d28a-255f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:51:a0:ec:81:4e:f8:12:81:1b:75:9a:13:6e: 6d:de:07:35:bb:9d:3b:07:78:5b:cc:65:2d:4d:78: d7:ec:38:a2:63:fe:d5:45:cd:10:de:3b:dd:63:19: 34:2a:d7:fd:5a:86:88:43:ce:b0:6b:8f:b6:12:7a: c4:47:18:0f:1b:14:1c:26:45:d5:23:34:e4:80:ea: 0e:7a:cb:45:82:04:c2:dd:57:49:64:6d:27:24:7e: 30:a4:3f:9c:dc:20:b3:65:5d:0a:69:b1:51:ce:6c: 34:f4:17:4f:b0:e9:fd:fb:5d:a5:cc:30:95:0e:ad: 0d:7d:1a:ad:fb:10:b5:3d:9d:7b:ca:2f:6c:67:60: 8f:e0:13:87:d0:f1:9c:e2:15:82:cc:bb:db:c8:70: 35:ce:d2:80:5a:7a:b9:76:ab:4d:0c:19:aa:7d:6f: 3a:f4:25:e8:b0:ca:75:5d:98:08:29:86:b1:6d:9c: 5e:d8:18:75:3d:db:a6:10:ce:19:b9:03:bb:32:a1: 2c:f4:d2:ed:f7:d4:44:1e:82:69:e7:8d:ca:a7:60: 17:0a:c6:80:e7:9b:3f:3c:40:c9:59:52:bf:ee:fd: d9:b3:e0:b8:25:3c:ad:bd:96:95:2d:b9:b1:8a:d5: 48:45:a4:fb:55:73:14:4a:56:cb:aa:e9:f9:5b:fb: a7:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:DB:85:DB:73:CF:BA:EF:E2:C2:A7:86:0E:EB:61:0C:6D:1F:9A:2E X509v3 Authority Key Identifier: keyid:94:59:4A:AE:C6:ED:66:A6:80:A1:5B:FE:B5:CD:A5:78:2D:4C:2D:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:b6:48:1d:14:93:8a:fb:f5:f0:36:2c:7e:22:c2:08:76:33: 74:28:17:49:fe:95:9f:a8:67:a4:cf:b9:6d:5d:dd:75:07:00: 39:d7:51:c0:99:4d:f4:10:aa:9f:9d:84:b9:6a:2a:0b:49:24: 04:03:9a:53:eb:08:75:2f:de:dd:7b:17:c2:ec:49:af:4e:a6: da:1a:27:9c:23:84:06:4e:a9:be:04:c6:8e:b1:1b:9f:f7:5e: 90:e9:a9:08:bb:b7:70:21:25:bc:f1:40:d6:af:19:2c:78:d0: f8:ff:f2:15:1f:a4:65:bf:14:bf:24:66:a9:f9:3a:3a:b5:5a: 8d:59:01:9b:12:c9:92:ae:63:db:35:9b:3f:c6:9b:de:f2:15: 88:ac:71:bf:e4:34:2e:5b:9c:f1:4c:37:0d:2c:e2:c3:77:41: 24:bc:20:02:32:d9:62:0d:24:a9:8a:c9:71:24:18:a4:7a:57: 0a:95:0a:6f:c7:7c:36:17:b3:40:15:fe:e4:2c:b5:3a:82:54: bc:6b:7d:4f:f7:3b:8a:0e:2d:37:19:55:38:97:d6:26:03:81: dd:f5:73:65:35:a5:4b:e9:71:9b:05:af:a0:08:05:ff:0a:1c: a1:f8:df:54:8a:62:3b:02:84:d5:a4:fc:5f:00:bc:93:85:04: aa:06:8e:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJFRjkxMTAvBgNVBAUTKDk0NTk0QUFFQzZFRDY2QTY4MEExNUJGRUI1Q0RBNTc4 MkQ0QzJEODgwHhcNMjUxMjE5MDQyMDI1WhcNMjUxMjI2MDQyMDI1WjAYMRYwFAYD VQQDDA02OTQ0ZDI4YS0yNTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0VGg7IFO+BKBG3WaE25t3gc1u507B3hbzGUtTXjX7DiiY/7VRc0Q3jvdYxk0 Ktf9WoaIQ86wa4+2EnrERxgPGxQcJkXVIzTkgOoOestFggTC3VdJZG0nJH4wpD+c 3CCzZV0KabFRzmw09BdPsOn9+12lzDCVDq0NfRqt+xC1PZ17yi9sZ2CP4BOH0PGc 4hWCzLvbyHA1ztKAWnq5dqtNDBmqfW869CXosMp1XZgIKYaxbZxe2Bh1PdumEM4Z uQO7MqEs9NLt99REHoJp543Kp2AXCsaA55s/PEDJWVK/7v3Zs+C4JTytvZaVLbmx itVIRaT7VXMUSlbLqun5W/unGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFObbhdtz z7rv4sKnhg7rYQxtH5ouMB8GA1UdIwQYMBaAFJRZSq7G7WamgKFb/rXNpXgtTC2I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkVGOS84MDRENkJGMDYw NTIxMUVGQjI4NkZEMjBDNEY5QUUwMi9sRmxLcnNidFpxYUFvVnYtdGMybGVDMU1M WWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xGbEtyc2J0WnFhQW9Wdi10YzJsZUMxTUxZZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkVGOS84MDRENkJGMDYwNTIxMUVGQjI4NkZEMjBDNEY5QUUwMi9sRmxLcnNidFpx YUFvVnYtdGMybGVDMU1MWWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChtkgdFJOK+/XwNix+IsIIdjN0KBdJ/pWfqGekz7ltXd11BwA511HA mU30EKqfnYS5aioLSSQEA5pT6wh1L97dexfC7EmvTqbaGiecI4QGTqm+BMaOsRuf 916Q6akIu7dwISW88UDWrxkseND4//IVH6RlvxS/JGap+To6tVqNWQGbEsmSrmPb NZs/xpve8hWIrHG/5DQuW5zxTDcNLOLDd0EkvCACMtliDSSpislxJBikelcKlQpv x3w2F7NAFf7kLLU6glS8a31P9zuKDi03GVU4l9YmA4Hd9XNlNaVL6XGbBa+gCAX/ Chyh+N9UimI7AoTVpPxfALyThQSqBo4I -----END CERTIFICATE-----Generated at Fri Dec 19 17:59:56 2025 by rpki-client