This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.mft File: Lz71uQE3FOMXTGcArgSCTi8FwjA.mft (raw, json) Hash identifier: xwhLmqMtrn1f1lIHlYK8bLWU9eAQLwjudiaCaR+rub8= Subject key identifier: 7C:C7:83:82:F7:14:3E:06:0D:A3:2C:93:0B:01:65:E0:F8:F1:15:FC Authority key identifier: 2F:3E:F5:B9:01:37:14:E3:17:4C:67:00:AE:04:82:4E:2F:05:C2:30 Certificate issuer: /CN=A91346B1/serialNumber=2F3EF5B9013714E3174C6700AE04824E2F05C230 Certificate serial: 03A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.mft Manifest number: 037E Signing time: Sun 21 Dec 2025 00:06:04 +0000 Manifest this update: Sun 21 Dec 2025 00:06:03 +0000 Manifest next update: Sun 28 Dec 2025 00:06:03 +0000 Files and hashes: 1: Lz71uQE3FOMXTGcArgSCTi8FwjA.crl (hash: DBhzPsvqYMdr4tZsVIX8E+YuqWGv/Fu33u7v3a7bPzo=) 2: 196C52A8D0F711EC8673072FC4F9AE02.roa (hash: 1zywqVEPzRbdKjUH9lfurYX548Q8woU0JCmn0L04HiU=) 3: 6920E4D8D0F411EC8DAD6D11C4F9AE02.roa (hash: RP0USEP4cmm5/rPyavYfSImz5bM19LFBMACm4cna7sk=) 4: 19E46D60D0F711EC8673072FC4F9AE02.roa (hash: eS0SkthbbyWxVM1PH+Y2UO1xSi4Vr2C2N13i593TCX4=) 5: 6A430D5AD0F411EC8DAD6D11C4F9AE02.roa (hash: QV4TEx4o0H+S1ztXPsRaHI/PqCLYaPoZZrkBgaPymwI=) 6: 1BC3E9F8D0F711EC8673072FC4F9AE02.roa (hash: uEFMEysaJCpfT6acgeEaH657dOYiucYQFMSducsR5+M=) 7: 69C96612D0F411EC8DAD6D11C4F9AE02.roa (hash: ugSG0jqem3rs4xTGOWUqAAlzlasFYzS5jXjJfZyh3NM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.crl rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:06:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 928 (0x3a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91346B1, serialNumber=2F3EF5B9013714E3174C6700AE04824E2F05C230 Validity Not Before: Dec 21 00:06:03 2025 GMT Not After : Dec 28 00:06:03 2025 GMT Subject: CN=694739eb-5290 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:7e:a6:25:d1:4e:42:f3:19:9b:cb:90:6b:61: 64:29:84:33:a0:0c:8b:4c:78:59:bb:75:4b:4d:6a: 60:36:f3:f3:84:55:5d:c6:70:33:d1:e0:f9:57:fd: 48:c0:ba:f7:07:c0:df:04:80:86:94:75:97:35:1d: 79:96:9c:e3:0a:33:12:5b:1d:8b:88:55:f2:cb:f7: 5a:27:bb:13:32:7a:13:73:a6:10:c7:dc:f3:62:2b: df:f0:3b:3c:4d:42:de:18:12:54:b8:f8:26:c4:fd: a6:49:4f:a9:c6:38:e9:12:66:79:5c:2b:e1:01:46: 07:4c:8a:c3:fc:7a:aa:5b:22:6c:04:0f:27:64:c8: 47:04:75:44:b1:24:26:b7:ff:72:1e:7e:27:e2:54: f0:78:e6:5d:08:c5:fd:d9:98:af:6c:7a:11:fa:4e: eb:71:48:14:ce:be:dc:bc:45:d5:33:c2:19:5e:e2: f7:14:07:e0:42:83:45:45:74:a3:30:64:ea:22:93: 17:6f:8b:25:ef:cb:8d:ae:53:2a:1c:2f:ec:7f:48: 17:83:b8:dd:07:68:6f:22:c2:89:b1:08:ce:de:00: 83:e6:b7:20:09:bb:c1:b6:95:58:10:1a:e1:4b:e8: cd:bc:67:93:56:e3:20:0f:73:4c:13:76:4b:05:18: 60:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:C7:83:82:F7:14:3E:06:0D:A3:2C:93:0B:01:65:E0:F8:F1:15:FC X509v3 Authority Key Identifier: keyid:2F:3E:F5:B9:01:37:14:E3:17:4C:67:00:AE:04:82:4E:2F:05:C2:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:71:36:1a:2c:52:67:fa:38:e3:eb:98:1e:d2:67:1f:b0:40: 3e:33:7c:e1:1c:44:4b:f8:6c:4d:ff:2f:f1:55:f2:8d:10:16: 46:bf:5d:7e:35:cf:1a:1a:a5:2f:e6:85:f5:f1:54:88:d5:58: 80:84:da:67:51:4f:72:44:bf:95:1b:0d:69:d5:b7:53:4a:3e: ba:26:f6:9e:1a:91:75:a1:42:29:81:20:0b:75:51:a8:7e:e9: b4:eb:23:fe:6d:a0:8c:26:9e:a7:b0:68:6e:12:e8:ca:90:62: 6a:84:46:68:5d:37:8b:81:6a:af:0a:c5:ed:23:58:c1:fd:f1: 4a:35:8b:5b:d0:6d:77:8b:92:40:46:11:25:8d:d6:43:b1:22: 40:61:14:54:76:e7:e6:2d:f1:c5:2d:45:b3:41:21:09:94:07: 05:9a:e1:f8:d8:36:9f:37:fa:a1:b8:d6:fe:75:fd:0e:73:d1: c4:a7:a6:02:85:71:90:e0:d6:04:dc:70:3d:12:4a:4c:1c:af: 2b:14:1c:bd:b3:6e:7a:07:a5:78:48:1f:a0:e0:44:b5:50:eb: 32:7c:08:7f:f3:e5:33:94:e2:66:0b:1e:a5:29:ea:05:18:9c: 6f:8c:49:1b:98:17:88:a2:13:15:55:08:5e:0c:91:73:74:8b: 1b:77:60:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ2QjExMTAvBgNVBAUTKDJGM0VGNUI5MDEzNzE0RTMxNzRDNjcwMEFFMDQ4MjRF MkYwNUMyMzAwHhcNMjUxMjIxMDAwNjAzWhcNMjUxMjI4MDAwNjAzWjAYMRYwFAYD VQQDDA02OTQ3MzllYi01MjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqH6mJdFOQvMZm8uQa2FkKYQzoAyLTHhZu3VLTWpgNvPzhFVdxnAz0eD5V/1I wLr3B8DfBICGlHWXNR15lpzjCjMSWx2LiFXyy/daJ7sTMnoTc6YQx9zzYivf8Ds8 TULeGBJUuPgmxP2mSU+pxjjpEmZ5XCvhAUYHTIrD/HqqWyJsBA8nZMhHBHVEsSQm t/9yHn4n4lTweOZdCMX92ZivbHoR+k7rcUgUzr7cvEXVM8IZXuL3FAfgQoNFRXSj MGTqIpMXb4sl78uNrlMqHC/sf0gXg7jdB2hvIsKJsQjO3gCD5rcgCbvBtpVYEBrh S+jNvGeTVuMgD3NME3ZLBRhgKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHzHg4L3 FD4GDaMskwsBZeD48RX8MB8GA1UdIwQYMBaAFC8+9bkBNxTjF0xnAK4Egk4vBcIw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDZCMS85QTBFQ0UxMEQw RjAxMUVDOEVDREJGNjNDNEY5QUUwMi9MejcxdVFFM0ZPTVhUR2NBcmdTQ1RpOEZ3 akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x6NzF1UUUzRk9NWFRHY0FyZ1NDVGk4RndqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDZCMS85QTBFQ0UxMEQwRjAxMUVDOEVDREJGNjNDNEY5QUUwMi9MejcxdVFFM0ZP TVhUR2NBcmdTQ1RpOEZ3akEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5cTYaLFJn+jjj65ge0mcfsEA+M3zhHERL+GxN/y/xVfKNEBZGv11+ Nc8aGqUv5oX18VSI1ViAhNpnUU9yRL+VGw1p1bdTSj66JvaeGpF1oUIpgSALdVGo fum06yP+baCMJp6nsGhuEujKkGJqhEZoXTeLgWqvCsXtI1jB/fFKNYtb0G13i5JA RhEljdZDsSJAYRRUdufmLfHFLUWzQSEJlAcFmuH42DafN/qhuNb+df0Oc9HEp6YC hXGQ4NYE3HA9EkpMHK8rFBy9s256B6V4SB+g4ES1UOsyfAh/8+UzlOJmCx6lKeoF GJxvjEkbmBeIohMVVQheDJFzdIsbd2BV -----END CERTIFICATE-----Generated at Sun Dec 21 17:21:49 2025 by rpki-client