This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft File: lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft (raw, json) Hash identifier: TRIePgqxdTvmojBO/bms7YRg2DsZebXGGPHQCPGYJOc= Subject key identifier: B0:CB:04:E5:41:5C:C2:25:85:C7:98:D5:CE:57:45:33:0B:20:C5:C3 Authority key identifier: 96:8D:2A:AA:61:68:CB:49:69:44:A7:27:01:8A:FB:42:A2:6E:31:E1 Certificate issuer: /CN=A91211D4/serialNumber=968D2AAA6168CB496944A727018AFB42A26E31E1 Certificate serial: 070A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lo0qqmFoy0lpRKcnAYr7QqJuMeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft Manifest number: 06E9 Signing time: Wed 31 Dec 2025 21:44:32 +0000 Manifest this update: Wed 31 Dec 2025 21:44:31 +0000 Manifest next update: Wed 07 Jan 2026 21:44:31 +0000 Files and hashes: 1: lo0qqmFoy0lpRKcnAYr7QqJuMeE.crl (hash: /o5GbuMG7y7Wf/4IXMPmydqol4rE+eTOfpyPMyUtoAg=) 2: 1C9DA52E9BD011F0AE2D7868C4F9AE02.roa (hash: DWlVGSmUTrs+mVqgzEs4ZghKv3WdHzrNxG9RIMrV1aI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.crl rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lo0qqmFoy0lpRKcnAYr7QqJuMeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 21:44:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1802 (0x70a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91211D4, serialNumber=968D2AAA6168CB496944A727018AFB42A26E31E1 Validity Not Before: Dec 31 21:44:31 2025 GMT Not After : Jan 7 21:44:31 2026 GMT Subject: CN=69559940-6230 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:c0:35:f1:4b:7c:ab:40:d5:fa:1f:d5:b8:4f: f1:15:23:d8:9c:f2:79:b5:b0:09:b6:46:98:33:aa: aa:aa:ec:0d:26:ad:62:9f:35:ac:f1:8d:26:eb:64: d6:1a:5c:ff:f9:5a:e3:70:2f:24:32:87:1b:29:af: b5:18:b8:0f:de:ef:a2:50:30:69:d6:2b:ca:2c:c0: e7:bc:56:b9:ef:82:74:26:af:37:cf:0e:b5:bd:f7: 66:53:f0:cd:f0:41:86:b2:72:77:cb:f4:e0:8d:a7: 36:ea:c1:44:66:4d:fa:99:f3:64:5a:a4:8e:16:6d: 60:67:ea:0b:ce:03:12:75:85:1d:e6:36:d4:93:ce: 2a:57:41:48:be:a2:2a:26:bf:4c:16:03:f8:99:76: b2:95:9f:07:67:60:40:27:c0:60:63:dd:0e:42:61: 5a:88:c0:3f:9f:a3:83:c2:db:3b:3b:58:42:5f:30: 85:42:d8:0d:9f:73:2b:c2:74:c9:db:b0:2a:ca:4a: bc:16:bc:ec:bf:d7:3b:c4:7c:f2:ff:68:fe:f0:66: 25:92:8a:70:6d:24:57:ef:f2:b5:15:19:03:39:58: 4e:77:fc:70:89:5c:39:d0:3c:9b:a1:28:11:6d:7a: 9c:d9:7a:97:07:fd:bc:9a:9a:6d:d9:f9:bf:77:04: 9f:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:CB:04:E5:41:5C:C2:25:85:C7:98:D5:CE:57:45:33:0B:20:C5:C3 X509v3 Authority Key Identifier: keyid:96:8D:2A:AA:61:68:CB:49:69:44:A7:27:01:8A:FB:42:A2:6E:31:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lo0qqmFoy0lpRKcnAYr7QqJuMeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:42:44:99:48:15:22:02:92:a1:58:dc:3c:40:6b:7d:20:55: 11:d7:cc:23:f6:ac:10:fd:aa:8e:dd:76:b9:34:c7:1f:db:50: c0:20:3d:22:31:70:3b:6a:fb:49:9a:5d:cd:90:ad:17:84:ef: 29:e1:ec:59:ae:f5:d0:a8:71:37:14:8e:36:bc:28:46:54:2d: 06:2d:43:c2:86:16:68:74:a5:fe:f1:f8:7a:4b:fa:56:9a:68: d8:f6:78:74:1f:c5:38:b3:11:6b:4a:6f:03:b5:7f:80:9f:9b: d2:d0:eb:fd:4b:3e:c4:4a:52:c9:e2:9a:e2:63:97:42:cd:40: de:47:65:c6:7d:70:59:cd:fa:ad:09:d9:1b:03:92:f2:51:cc: 90:e5:13:75:34:f3:69:d3:6e:eb:8f:62:e4:84:9b:15:2e:84: 1b:70:f0:a8:3a:76:dd:7e:4d:83:86:0f:1d:dd:5d:af:a9:13: 41:82:4b:dd:f7:3a:0b:d3:4c:92:d4:39:79:1d:71:91:a4:04: 06:c9:ef:16:11:5e:be:ac:19:d0:b1:27:1f:07:03:a0:1b:16: 86:67:e5:50:a3:7f:aa:df:ee:78:03:89:ce:4c:ad:f7:0b:51: ff:93:55:14:65:60:d0:5f:a7:f6:82:1a:24:25:27:3d:03:a4: eb:ff:36:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjExRDQxMTAvBgNVBAUTKDk2OEQyQUFBNjE2OENCNDk2OTQ0QTcyNzAxOEFGQjQy QTI2RTMxRTEwHhcNMjUxMjMxMjE0NDMxWhcNMjYwMTA3MjE0NDMxWjAYMRYwFAYD VQQDDA02OTU1OTk0MC02MjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA68A18Ut8q0DV+h/VuE/xFSPYnPJ5tbAJtkaYM6qqquwNJq1inzWs8Y0m62TW Glz/+VrjcC8kMocbKa+1GLgP3u+iUDBp1ivKLMDnvFa574J0Jq83zw61vfdmU/DN 8EGGsnJ3y/Tgjac26sFEZk36mfNkWqSOFm1gZ+oLzgMSdYUd5jbUk84qV0FIvqIq Jr9MFgP4mXaylZ8HZ2BAJ8BgY90OQmFaiMA/n6ODwts7O1hCXzCFQtgNn3MrwnTJ 27Aqykq8Frzsv9c7xHzy/2j+8GYlkopwbSRX7/K1FRkDOVhOd/xwiVw50DyboSgR bXqc2XqXB/28mppt2fm/dwSfTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLDLBOVB XMIlhceY1c5XRTMLIMXDMB8GA1UdIwQYMBaAFJaNKqphaMtJaUSnJwGK+0KibjHh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTFENC9BOUY0OTY1Mjg2 Q0QxMUVCQTRBRkY2MDlDNEY5QUUwMi9sbzBxcW1Gb3kwbHBSS2NuQVlyN1FxSnVN ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xvMHFxbUZveTBscFJLY25BWXI3UXFKdU1lRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MTFENC9BOUY0OTY1Mjg2Q0QxMUVCQTRBRkY2MDlDNEY5QUUwMi9sbzBxcW1Gb3kw bHBSS2NuQVlyN1FxSnVNZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFQkSZSBUiApKhWNw8QGt9IFUR18wj9qwQ/aqO3Xa5NMcf21DAID0i MXA7avtJml3NkK0XhO8p4exZrvXQqHE3FI42vChGVC0GLUPChhZodKX+8fh6S/pW mmjY9nh0H8U4sxFrSm8DtX+An5vS0Ov9Sz7ESlLJ4priY5dCzUDeR2XGfXBZzfqt CdkbA5LyUcyQ5RN1NPNp027rj2LkhJsVLoQbcPCoOnbdfk2Dhg8d3V2vqRNBgkvd 9zoL00yS1Dl5HXGRpAQGye8WEV6+rBnQsScfBwOgGxaGZ+VQo3+q3+54A4nOTK33 C1H/k1UUZWDQX6f2ghokJSc9A6Tr/zaT -----END CERTIFICATE-----Generated at Fri Jan 2 17:04:33 2026 by rpki-client