This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft File: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft (raw, json) Hash identifier: nW19JfGKQk3aNDlkL9ME1nhWEncRDrajGkHUjzHNC0I= Subject key identifier: C9:7C:EC:10:27:A2:65:FC:9A:92:E5:AC:4B:AD:52:22:91:06:EB:AD Authority key identifier: 96:A8:5E:F4:B8:CA:F5:D4:C3:5A:15:7F:4E:12:5E:E4:94:BA:F9:39 Certificate issuer: /CN=A90DC5BE/serialNumber=96A85EF4B8CAF5D4C35A157F4E125EE494BAF939 Certificate serial: 482B Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer Subject info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft Manifest number: 4820 Signing time: Mon 08 Dec 2025 02:50:30 +0000 Manifest this update: Mon 08 Dec 2025 02:50:30 +0000 Manifest next update: Mon 15 Dec 2025 02:50:30 +0000 Files and hashes: 1: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl (hash: uLKOTVJ4bxSZ4R386fV2xMvGqwrcESqER7YATQYI4I8=) 2: Ak2PFao5dyF1iDou3BZQFOGSiho.cer (hash: NRcDr6REbVzbTiHoNzZyK4YoKwtLqg9UeS+C5SRci4o=) 3: 4kPzvoJVabsWrLN0vJjavmkLF8E.cer (hash: fxyUaruAjaaco/fzq2Q5nRs7XM9NtVdLWIcLFflk+gY=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Dec 2025 02:50:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18475 (0x482b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=96A85EF4B8CAF5D4C35A157F4E125EE494BAF939 Validity Not Before: Dec 8 02:50:30 2025 GMT Not After : Dec 15 02:50:30 2025 GMT Subject: CN=69363cf6-f47c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d4:da:b2:cc:10:4b:78:f6:fd:05:00:4b:cf: d2:d4:88:1b:e4:63:74:99:05:7a:27:2d:9b:a1:b2: 9b:28:91:e8:a3:d8:8d:b1:f7:e9:10:52:94:b4:11: bf:e2:41:a6:bf:c4:01:97:03:b1:10:a4:f6:9d:92: 8a:75:37:5e:5b:b1:e3:b7:1d:72:50:c0:19:00:00: 96:19:22:dd:fb:a7:b7:a2:aa:15:52:da:3f:b0:64: 2a:8c:81:0f:e8:3c:ea:83:6b:d8:d9:e0:ab:98:01: 77:06:c5:38:36:86:59:ea:52:50:b7:40:20:06:f8: 3b:52:23:35:ed:f5:88:87:54:ef:ef:3d:02:09:cc: 4d:39:4f:e3:c9:f6:8c:d8:ad:6c:ee:62:e8:bd:88: 1b:28:74:9a:37:ba:04:f2:e2:47:b4:35:1e:6c:11: 35:b1:75:7a:9f:87:dc:10:ff:13:2c:f0:ef:dc:eb: 95:33:03:c0:39:87:be:19:cd:ed:94:ee:79:a0:08: 0b:4e:08:de:ee:e5:de:3b:55:57:62:da:b2:ef:2f: c2:47:88:c4:f5:56:02:ea:85:85:47:a1:4c:e7:2e: 9c:4d:72:8c:e7:e0:f1:b8:a3:33:c8:70:b2:ce:eb: 04:68:a4:57:a7:de:36:f3:97:b7:1d:06:70:c3:be: 33:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:7C:EC:10:27:A2:65:FC:9A:92:E5:AC:4B:AD:52:22:91:06:EB:AD X509v3 Authority Key Identifier: keyid:96:A8:5E:F4:B8:CA:F5:D4:C3:5A:15:7F:4E:12:5E:E4:94:BA:F9:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:5e:8d:ce:2e:8f:27:b1:51:91:39:43:5b:4d:0b:f6:8a:7f: 6c:3c:94:2e:14:a9:0b:58:59:44:70:67:1a:cc:76:70:16:90: 51:a5:83:0b:44:9c:c9:05:41:e5:8b:ae:04:ce:cb:d1:4d:ba: cc:6e:76:43:f8:13:72:0f:f2:a2:fb:43:cf:ec:ae:13:cb:c8: 63:59:53:58:7a:88:e1:7e:02:cb:a8:39:97:df:58:97:49:4a: 16:f9:bc:c1:df:5e:aa:1f:e7:1a:a0:38:a1:66:35:40:6c:3c: be:c3:2b:78:d0:d8:81:0a:33:94:4c:d7:3f:7c:0b:5f:13:70: 5b:ea:e2:f1:90:fb:93:80:9d:7c:67:5b:15:47:82:73:96:f9: ed:d3:bf:b7:80:b0:71:f4:36:50:e5:88:e5:54:86:df:f3:55: a8:e6:fd:39:38:c6:66:6a:56:55:b6:22:6e:33:c8:fe:5e:68: 59:42:6a:50:b9:24:85:aa:4b:85:46:4f:fe:17:da:dd:62:b4: d3:76:a1:b8:40:47:53:67:c8:63:67:ca:a2:9d:d5:38:4d:cf: 06:4b:6d:b8:0f:1e:51:09:b3:99:fc:cd:01:c0:bf:24:86:62: e4:d6:4a:24:c7:68:7d:d0:8a:d5:ed:20:85:5b:69:21:53:bc: 34:c3:cd:bf -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSCswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDk2QTg1RUY0QjhDQUY1RDRDMzVBMTU3RjRFMTI1RUU0 OTRCQUY5MzkwHhcNMjUxMjA4MDI1MDMwWhcNMjUxMjE1MDI1MDMwWjAYMRYwFAYD VQQDEw02OTM2M2NmNi1mNDdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxdTasswQS3j2/QUAS8/S1Igb5GN0mQV6Jy2bobKbKJHoo9iNsffpEFKUtBG/ 4kGmv8QBlwOxEKT2nZKKdTdeW7Hjtx1yUMAZAACWGSLd+6e3oqoVUto/sGQqjIEP 6Dzqg2vY2eCrmAF3BsU4NoZZ6lJQt0AgBvg7UiM17fWIh1Tv7z0CCcxNOU/jyfaM 2K1s7mLovYgbKHSaN7oE8uJHtDUebBE1sXV6n4fcEP8TLPDv3OuVMwPAOYe+Gc3t lO55oAgLTgje7uXeO1VXYtqy7y/CR4jE9VYC6oWFR6FM5y6cTXKM5+DxuKMzyHCy zusEaKRXp94285e3HQZww74zTwIDAQABo4IChzCCAoMwHQYDVR0OBBYEFMl87BAn omX8mpLlrEutUiKRBuutMB8GA1UdIwQYMBaAFJaoXvS4yvXUw1oVf04SXuSUuvk5 MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjRBMUJFQTYxRDY2MTFFMkIyQ0Q4QjdDNzJG RDFGRjIvbHFoZTlMaks5ZFREV2hWX1RoSmU1SlM2LVRrLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9scWhlOUxqSzlk VERXaFZfVGhKZTVKUzYtVGsuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNEExQkVBNjFENjYxMUUyQjJDRDhCN0M3MkZE MUZGMi9scWhlOUxqSzlkVERXaFZfVGhKZTVKUzYtVGsubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQDGXo3OLo8nsVGROUNbTQv2in9sPJQuFKkL WFlEcGcazHZwFpBRpYMLRJzJBUHli64EzsvRTbrMbnZD+BNyD/Ki+0PP7K4Ty8hj WVNYeojhfgLLqDmX31iXSUoW+bzB316qH+caoDihZjVAbDy+wyt40NiBCjOUTNc/ fAtfE3Bb6uLxkPuTgJ18Z1sVR4Jzlvnt07+3gLBx9DZQ5YjlVIbf81Wo5v05OMZm alZVtiJuM8j+XmhZQmpQuSSFqkuFRk/+F9rdYrTTdqG4QEdTZ8hjZ8qindU4Tc8G S224Dx5RCbOZ/M0BwL8khmLk1kokx2h90IrV7SCFW2khU7w0w82/ -----END CERTIFICATE-----Generated at Mon Dec 8 07:10:39 2025 by rpki-client