This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft File: lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft (raw, json) Hash identifier: +eF4o9o82nao6uHYflSyMkTuhkV2EPlGKEyN9F1DHy8= Subject key identifier: F6:66:01:9C:83:B5:82:7F:FD:FE:ED:01:57:75:A7:C1:29:BB:97:19 Authority key identifier: 94:70:E7:61:08:06:3E:4F:7C:64:AD:43:D0:76:BC:11:AE:1F:DB:5D Certificate issuer: /CN=A91E41C9/serialNumber=9470E76108063E4F7C64AD43D076BC11AE1FDB5D Certificate serial: 08F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft Manifest number: 090F Signing time: Mon 22 Dec 2025 19:45:03 +0000 Manifest this update: Mon 22 Dec 2025 19:45:03 +0000 Manifest next update: Mon 29 Dec 2025 19:45:03 +0000 Files and hashes: 1: lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl (hash: L1brEa9kYSybW30KlZ9SkO/2+KMoRraZ2Y4KWuD1yeA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2293 (0x8f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E41C9, serialNumber=9470E76108063E4F7C64AD43D076BC11AE1FDB5D Validity Not Before: Dec 22 19:45:03 2025 GMT Not After : Dec 29 19:45:03 2025 GMT Subject: CN=69499fbf-2e17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:b0:78:5e:4d:54:47:dc:ed:18:1d:4b:1b:22: 73:b3:32:13:34:b4:70:d7:2e:a3:ae:96:cf:18:c3: e8:59:5a:e9:5f:cd:c5:95:6f:0c:07:0e:80:10:1c: b0:6e:cf:a3:36:23:cd:2b:32:b1:86:66:de:2f:cd: 69:86:2e:95:40:40:e0:69:08:21:a9:24:07:3c:8c: 54:c7:d4:51:b9:56:68:e8:d4:93:0f:3b:7d:9d:92: c1:e2:a7:40:ce:9b:ae:4e:0d:95:14:90:90:9d:5d: 73:eb:21:a7:2f:c0:3b:4c:f3:27:c9:6f:f6:f8:0d: d1:d5:e4:fb:61:46:4e:7b:6e:0d:d7:3f:bb:dd:72: 1a:ab:a2:f6:27:cd:b4:97:c8:a6:48:14:e0:38:68: 54:b9:ad:0d:96:7a:e5:22:cc:24:e4:c3:a4:d1:b4: 9c:e1:11:14:20:59:65:95:c4:d9:19:fe:31:56:e1: 2f:5b:e2:e0:0c:e9:32:9e:34:52:fc:db:4e:a3:7c: d9:20:50:0e:9c:e2:37:f0:72:ce:51:f8:c0:58:8a: 44:26:74:49:19:6e:50:99:bf:c7:11:a5:bb:e0:0e: 76:77:70:23:0e:14:0f:28:13:43:b8:5a:18:0c:f3: ae:67:57:39:56:2d:65:37:20:5f:b4:4b:3d:c8:dd: 58:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:66:01:9C:83:B5:82:7F:FD:FE:ED:01:57:75:A7:C1:29:BB:97:19 X509v3 Authority Key Identifier: keyid:94:70:E7:61:08:06:3E:4F:7C:64:AD:43:D0:76:BC:11:AE:1F:DB:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:78:23:5d:8f:f1:5e:53:c6:85:7b:20:ec:f0:90:59:8a:48: 04:51:cc:ef:21:cd:5b:61:7b:cd:10:f8:cc:0f:e4:9f:39:35: 4c:39:41:3e:59:12:2b:fe:dd:72:77:a5:67:17:85:e9:c3:7d: ed:68:e7:bf:8f:6c:54:b3:8b:60:4d:8b:96:d5:48:ee:16:b3: d1:c5:46:6d:9e:a9:ee:1f:cf:ff:31:d8:73:44:e7:5c:9d:2f: bc:7c:2e:f6:84:8d:ba:1b:fa:62:dd:f4:65:da:34:3b:b7:69: bf:c9:f6:ee:65:eb:fd:c7:b5:b0:53:d9:ad:98:1d:da:4b:60: 44:24:67:8b:6c:5f:df:c8:4f:4f:9c:f2:77:87:0a:5e:fb:e8: 89:ec:ed:e3:28:9e:46:1e:93:4a:b1:64:fd:2e:b9:e2:30:1f: 3f:4a:28:bb:7d:e3:47:ef:cc:44:8d:6d:92:11:6f:19:53:e7: fd:e7:e0:6b:c0:0c:64:11:3d:4e:d5:b2:bc:0a:9c:7e:17:57: b3:dd:9b:00:40:78:00:bd:a8:b4:49:34:d5:f7:d1:e8:b2:be: e5:76:ee:f8:75:89:cf:3b:eb:6f:d4:94:33:3a:6b:c7:db:a2: 37:2c:df:70:c0:e6:f6:83:b6:ab:c3:79:48:cc:36:aa:43:56: 2b:c9:1d:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQxQzkxMTAvBgNVBAUTKDk0NzBFNzYxMDgwNjNFNEY3QzY0QUQ0M0QwNzZCQzEx QUUxRkRCNUQwHhcNMjUxMjIyMTk0NTAzWhcNMjUxMjI5MTk0NTAzWjAYMRYwFAYD VQQDDA02OTQ5OWZiZi0yZTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+bB4Xk1UR9ztGB1LGyJzszITNLRw1y6jrpbPGMPoWVrpX83FlW8MBw6AEByw bs+jNiPNKzKxhmbeL81phi6VQEDgaQghqSQHPIxUx9RRuVZo6NSTDzt9nZLB4qdA zpuuTg2VFJCQnV1z6yGnL8A7TPMnyW/2+A3R1eT7YUZOe24N1z+73XIaq6L2J820 l8imSBTgOGhUua0NlnrlIswk5MOk0bSc4REUIFlllcTZGf4xVuEvW+LgDOkynjRS /NtOo3zZIFAOnOI38HLOUfjAWIpEJnRJGW5Qmb/HEaW74A52d3AjDhQPKBNDuFoY DPOuZ1c5Vi1lNyBftEs9yN1YAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPZmAZyD tYJ//f7tAVd1p8Epu5cZMB8GA1UdIwQYMBaAFJRw52EIBj5PfGStQ9B2vBGuH9td MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDFDOS80OUJEOURBNkMw RjgxMUVBOEFDNkM0NkNDNEY5QUUwMi9sSERuWVFnR1BrOThaSzFEMEhhOEVhNGYy MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIRG5ZUWdHUGs5OFpLMUQwSGE4RWE0ZjIxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDFDOS80OUJEOURBNkMwRjgxMUVBOEFDNkM0NkNDNEY5QUUwMi9sSERuWVFnR1Br OThaSzFEMEhhOEVhNGYyMTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWeCNdj/FeU8aFeyDs8JBZikgEUczvIc1bYXvNEPjMD+SfOTVMOUE+ WRIr/t1yd6VnF4Xpw33taOe/j2xUs4tgTYuW1UjuFrPRxUZtnqnuH8//MdhzROdc nS+8fC72hI26G/pi3fRl2jQ7t2m/yfbuZev9x7WwU9mtmB3aS2BEJGeLbF/fyE9P nPJ3hwpe++iJ7O3jKJ5GHpNKsWT9LrniMB8/Sii7feNH78xEjW2SEW8ZU+f95+Br wAxkET1O1bK8Cpx+F1ez3ZsAQHgAvai0STTV99Hosr7ldu74dYnPO+tv1JQzOmvH 26I3LN9wwOb2g7arw3lIzDaqQ1YryR2Q -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:19 2025 by rpki-client