This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft File: lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft (raw, json) Hash identifier: KUKWcIcsJEQ5yQROblu2SmNK+f79QmdRy73i6whfAek= Subject key identifier: 88:BB:EF:10:F5:09:48:BE:8F:AA:77:41:57:AD:B4:E1:EE:13:EC:CE Authority key identifier: 96:8D:2A:AA:61:68:CB:49:69:44:A7:27:01:8A:FB:42:A2:6E:31:E1 Certificate issuer: /CN=A91211D4/serialNumber=968D2AAA6168CB496944A727018AFB42A26E31E1 Certificate serial: 0703 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lo0qqmFoy0lpRKcnAYr7QqJuMeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft Manifest number: 06E2 Signing time: Thu 18 Dec 2025 21:35:46 +0000 Manifest this update: Thu 18 Dec 2025 21:35:45 +0000 Manifest next update: Thu 25 Dec 2025 21:35:45 +0000 Files and hashes: 1: lo0qqmFoy0lpRKcnAYr7QqJuMeE.crl (hash: NNeOt5K4hKZw0lfEBRybjcX6wZtrXAD1sr4gBIxlDZ4=) 2: 1C9DA52E9BD011F0AE2D7868C4F9AE02.roa (hash: DWlVGSmUTrs+mVqgzEs4ZghKv3WdHzrNxG9RIMrV1aI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.crl rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lo0qqmFoy0lpRKcnAYr7QqJuMeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 21:35:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1795 (0x703) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91211D4, serialNumber=968D2AAA6168CB496944A727018AFB42A26E31E1 Validity Not Before: Dec 18 21:35:45 2025 GMT Not After : Dec 25 21:35:45 2025 GMT Subject: CN=694473b2-b3a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:fa:69:32:44:49:6d:8e:3a:b6:ae:67:56:51: 0c:29:45:90:c8:c2:0d:b8:51:3a:71:34:78:65:6b: bc:a8:c9:73:20:9b:5d:2f:45:97:97:7c:a6:8f:26: d0:f8:45:93:af:b6:ac:8a:cc:55:46:bd:08:4e:9c: 85:75:d4:02:50:49:bc:a3:3f:bb:a0:46:4e:88:89: 95:a5:d5:9b:54:68:91:55:2a:7c:3d:15:de:f8:c4: 5a:86:77:3a:b6:6c:2c:cb:6f:8f:58:5d:85:d9:e5: d4:40:80:2d:99:46:04:3c:f6:47:d7:96:46:bf:a0: fa:23:6e:b3:69:b7:48:0d:46:2d:47:6a:59:8e:8a: 1d:21:30:4e:ee:26:cb:95:4f:7b:77:55:d0:79:1d: 5b:b3:df:56:03:97:80:30:50:e0:35:41:e3:0f:0a: b3:9f:1d:ed:88:89:4e:11:ad:6b:aa:49:e8:ab:78: 4a:c5:c0:ec:dd:5f:5f:38:f2:97:89:42:56:a5:30: b7:0f:1c:17:ee:f2:4a:0d:30:f8:34:ba:d5:fd:19: 86:9a:f2:12:78:5a:93:c9:0c:a0:c3:71:22:d1:31: 8a:ba:f3:a2:74:48:aa:73:d0:92:5b:58:dc:75:38: db:5e:f4:1c:ca:44:fd:cc:b1:4e:ed:ff:2a:e8:b1: 22:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:BB:EF:10:F5:09:48:BE:8F:AA:77:41:57:AD:B4:E1:EE:13:EC:CE X509v3 Authority Key Identifier: keyid:96:8D:2A:AA:61:68:CB:49:69:44:A7:27:01:8A:FB:42:A2:6E:31:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lo0qqmFoy0lpRKcnAYr7QqJuMeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:02:71:3c:31:0b:78:f2:d5:6f:66:cc:6e:92:5c:fa:97:ad: d7:26:9e:84:c2:1a:34:0f:bd:5a:5a:8a:e3:fc:85:ae:9d:b7: 80:57:0f:20:aa:a7:fa:c1:2c:ad:8d:f2:b8:6c:48:97:cb:bf: 9d:18:67:60:e2:a6:46:80:f6:e0:5a:0f:0d:05:71:3a:53:ea: 63:2d:9c:41:c3:82:91:20:db:ac:d5:36:66:ea:65:fb:38:a4: 9e:c7:df:1e:01:b8:a7:a9:06:73:d5:76:6c:c4:e5:4c:2e:05: 03:c8:a4:36:ab:a5:d1:44:51:0a:5e:aa:23:ed:19:f0:07:ab: 8f:78:f9:37:8a:70:4a:94:ef:7f:d4:e5:5f:76:86:3f:d7:f1: 27:fc:f1:84:da:8a:27:72:b3:fa:13:03:52:f2:e2:dc:8f:be: 5b:85:cb:ca:e7:05:4b:f3:b1:fe:6c:ad:f8:c6:08:cc:02:59: 38:ac:02:01:ee:74:11:32:4c:33:c2:bf:89:d0:48:6a:82:ee: 81:55:10:ab:c4:87:35:31:81:12:b4:61:ec:b9:c8:28:f8:fc: c3:2d:a5:59:98:fc:e2:01:91:cc:03:94:29:8c:b0:f3:0e:d0: 94:89:48:45:f6:dd:d6:4c:44:fd:be:a6:52:7c:a1:94:1a:48: 79:2c:ce:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjExRDQxMTAvBgNVBAUTKDk2OEQyQUFBNjE2OENCNDk2OTQ0QTcyNzAxOEFGQjQy QTI2RTMxRTEwHhcNMjUxMjE4MjEzNTQ1WhcNMjUxMjI1MjEzNTQ1WjAYMRYwFAYD VQQDDA02OTQ0NzNiMi1iM2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjPppMkRJbY46tq5nVlEMKUWQyMINuFE6cTR4ZWu8qMlzIJtdL0WXl3ymjybQ +EWTr7asisxVRr0ITpyFddQCUEm8oz+7oEZOiImVpdWbVGiRVSp8PRXe+MRahnc6 tmwsy2+PWF2F2eXUQIAtmUYEPPZH15ZGv6D6I26zabdIDUYtR2pZjoodITBO7ibL lU97d1XQeR1bs99WA5eAMFDgNUHjDwqznx3tiIlOEa1rqknoq3hKxcDs3V9fOPKX iUJWpTC3DxwX7vJKDTD4NLrV/RmGmvISeFqTyQygw3Ei0TGKuvOidEiqc9CSW1jc dTjbXvQcykT9zLFO7f8q6LEijQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIi77xD1 CUi+j6p3QVettOHuE+zOMB8GA1UdIwQYMBaAFJaNKqphaMtJaUSnJwGK+0KibjHh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTFENC9BOUY0OTY1Mjg2 Q0QxMUVCQTRBRkY2MDlDNEY5QUUwMi9sbzBxcW1Gb3kwbHBSS2NuQVlyN1FxSnVN ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xvMHFxbUZveTBscFJLY25BWXI3UXFKdU1lRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MTFENC9BOUY0OTY1Mjg2Q0QxMUVCQTRBRkY2MDlDNEY5QUUwMi9sbzBxcW1Gb3kw bHBSS2NuQVlyN1FxSnVNZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZAnE8MQt48tVvZsxuklz6l63XJp6Ewho0D71aWorj/IWunbeAVw8g qqf6wSytjfK4bEiXy7+dGGdg4qZGgPbgWg8NBXE6U+pjLZxBw4KRINus1TZm6mX7 OKSex98eAbinqQZz1XZsxOVMLgUDyKQ2q6XRRFEKXqoj7RnwB6uPePk3inBKlO9/ 1OVfdoY/1/En/PGE2ooncrP6EwNS8uLcj75bhcvK5wVL87H+bK34xgjMAlk4rAIB 7nQRMkwzwr+J0Ehqgu6BVRCrxIc1MYEStGHsucgo+PzDLaVZmPziAZHMA5QpjLDz DtCUiUhF9t3WTET9vqZSfKGUGkh5LM4G -----END CERTIFICATE-----Generated at Fri Dec 19 22:00:24 2025 by rpki-client