This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft File: lQfxHRNjrFs5Lzb17zgixc_NaPk.mft (raw, json) Hash identifier: zAe5jMSFYPprdikK+s09GXz21Qv5rxlk2IUeN2bY4Do= Subject key identifier: A8:7F:F5:DC:10:34:0A:D4:9F:EC:3F:A6:0F:7A:FE:EA:F9:46:51:25 Authority key identifier: 95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9 Certificate issuer: /CN=A91EE8AC/serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9 Certificate serial: 023C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft Manifest number: 0382 Signing time: Tue 23 Dec 2025 01:00:46 +0000 Manifest this update: Tue 23 Dec 2025 01:00:46 +0000 Manifest next update: Tue 30 Dec 2025 01:00:46 +0000 Files and hashes: 1: lQfxHRNjrFs5Lzb17zgixc_NaPk.crl (hash: ekmSBGwYcRRMI4p/Ky6s4kxgma9H7ASUSNwOIfKnyZk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 572 (0x23c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE8AC, serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9 Validity Not Before: Dec 23 01:00:46 2025 GMT Not After : Dec 30 01:00:46 2025 GMT Subject: CN=6949e9be-45a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:e7:e6:7b:be:2c:40:5c:c5:10:60:de:f5:02: 66:10:26:d7:eb:83:a1:b8:24:9b:45:8a:7d:49:2f: 7a:c2:3c:ae:5d:73:03:3d:f7:33:8a:b2:24:2b:92: fb:85:48:d6:89:a8:bd:36:e0:1c:7e:ee:46:3c:8f: d1:97:d4:98:40:a6:4d:5c:2b:aa:41:8f:42:5a:b3: 30:8a:55:70:9d:d2:f7:e4:72:b8:9c:9f:c8:d9:e0: 81:04:6e:58:d3:76:0c:1c:fe:19:fb:35:e5:dd:16: 44:0d:f6:bb:b8:18:59:dc:ba:e6:a9:3c:62:80:1d: 78:7c:38:53:f0:f2:ab:6a:a9:26:de:bc:d4:5a:31: 2b:1f:63:d2:61:b7:71:50:c6:18:14:f8:73:70:d0: a5:c2:7a:15:aa:97:6d:2e:1e:99:bf:a7:be:8e:60: 85:0a:b4:ea:10:4a:6e:1e:61:c0:cf:dc:ac:19:67: c4:03:07:21:ab:eb:f2:ff:83:da:a6:a2:34:9d:d3: 78:6e:fd:a1:0c:ec:14:0e:f0:97:1d:13:44:36:b7: 2d:4b:ed:5d:4e:ee:1a:ed:ad:3c:cb:3e:58:cc:33: f4:47:5a:d2:fb:bf:bf:e5:45:36:04:9c:88:fc:85: 4c:cb:4e:14:32:96:9e:46:b0:06:16:81:3a:1b:7f: 9b:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:7F:F5:DC:10:34:0A:D4:9F:EC:3F:A6:0F:7A:FE:EA:F9:46:51:25 X509v3 Authority Key Identifier: keyid:95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:c4:a8:33:3e:e2:95:6c:a1:60:47:cc:e1:4f:19:c1:23:01: 29:5c:42:d1:72:a8:00:77:ff:5d:e8:ca:c8:36:72:b7:48:a7: 46:9b:81:1c:da:74:ed:c4:6b:b2:9c:e8:dd:a8:bc:a6:71:81: 5f:cf:be:68:e8:fb:bf:93:3e:e1:7f:7f:65:3f:7b:f0:18:b4: b2:09:9a:d0:23:ce:93:e0:dd:57:48:b4:10:30:96:d5:fa:3f: 96:f5:b0:c0:d9:1b:c7:ee:0e:02:42:f4:ad:df:b2:42:c6:b7: 36:5d:33:0f:38:0f:f5:cd:94:74:a3:16:a3:f7:fa:1a:be:e0: 26:57:6f:32:8b:e4:07:77:15:2e:de:cd:4e:66:bd:00:c5:e1: b7:48:30:be:e1:9f:fd:97:46:09:ee:5b:e9:04:39:10:8a:8c: 09:72:73:42:5f:32:82:fd:6d:ff:55:d5:dd:c8:1a:99:c1:13: 04:4c:b1:72:d5:38:9e:b2:2e:35:bc:f0:85:85:86:d6:f6:5b: 69:28:f2:6e:77:20:e5:2e:14:19:40:71:23:ec:74:e7:eb:b3: e2:fa:83:d1:ef:3e:55:2b:40:49:6a:b9:36:b7:44:8c:de:4d: 12:4d:34:43:4b:56:8a:55:84:e2:c8:3b:71:23:6a:ef:0e:c1: f0:93:56:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU4QUMxMTAvBgNVBAUTKDk1MDdGMTFEMTM2M0FDNUIzOTJGMzZGNUVGMzgyMkM1 Q0ZDRDY4RjkwHhcNMjUxMjIzMDEwMDQ2WhcNMjUxMjMwMDEwMDQ2WjAYMRYwFAYD VQQDDA02OTQ5ZTliZS00NWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Ofme74sQFzFEGDe9QJmECbX64OhuCSbRYp9SS96wjyuXXMDPfczirIkK5L7 hUjWiai9NuAcfu5GPI/Rl9SYQKZNXCuqQY9CWrMwilVwndL35HK4nJ/I2eCBBG5Y 03YMHP4Z+zXl3RZEDfa7uBhZ3LrmqTxigB14fDhT8PKraqkm3rzUWjErH2PSYbdx UMYYFPhzcNClwnoVqpdtLh6Zv6e+jmCFCrTqEEpuHmHAz9ysGWfEAwchq+vy/4Pa pqI0ndN4bv2hDOwUDvCXHRNENrctS+1dTu4a7a08yz5YzDP0R1rS+7+/5UU2BJyI /IVMy04UMpaeRrAGFoE6G3+b+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKh/9dwQ NArUn+w/pg96/ur5RlElMB8GA1UdIwQYMBaAFJUH8R0TY6xbOS829e84IsXPzWj5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRThBQy81MDM4RUM4QzdE RUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJGczVMemIxN3pnaXhjX05h UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRZnhIUk5qckZzNUx6YjE3emdpeGNfTmFQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RThBQy81MDM4RUM4QzdERUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJG czVMemIxN3pnaXhjX05hUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKxKgzPuKVbKFgR8zhTxnBIwEpXELRcqgAd/9d6MrINnK3SKdGm4Ec 2nTtxGuynOjdqLymcYFfz75o6Pu/kz7hf39lP3vwGLSyCZrQI86T4N1XSLQQMJbV +j+W9bDA2RvH7g4CQvSt37JCxrc2XTMPOA/1zZR0oxaj9/oavuAmV28yi+QHdxUu 3s1OZr0AxeG3SDC+4Z/9l0YJ7lvpBDkQiowJcnNCXzKC/W3/VdXdyBqZwRMETLFy 1Tiesi41vPCFhYbW9ltpKPJudyDlLhQZQHEj7HTn67Pi+oPR7z5VK0BJark2t0SM 3k0STTRDS1aKVYTiyDtxI2rvDsHwk1Y/ -----END CERTIFICATE-----Generated at Wed Dec 24 17:37:39 2025 by rpki-client