This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft File: ldG-85ALQWWEFku3RjF3EwIpFog.mft (raw, json) Hash identifier: JXTj2zG3aNmzP1tYJmgUtg0yVIhV28f//OogHqTTa38= Subject key identifier: 01:80:D0:DC:B6:19:95:B5:CE:F9:AF:11:DF:D0:B7:33:AB:A4:24:AC Authority key identifier: 95:D1:BE:F3:90:0B:41:65:84:16:4B:B7:46:31:77:13:02:29:16:88 Certificate issuer: /CN=A91577DD/serialNumber=95D1BEF3900B416584164BB74631771302291688 Certificate serial: 350A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldG-85ALQWWEFku3RjF3EwIpFog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft Manifest number: 34FE Signing time: Thu 18 Dec 2025 14:48:13 +0000 Manifest this update: Thu 18 Dec 2025 14:48:13 +0000 Manifest next update: Thu 25 Dec 2025 14:48:13 +0000 Files and hashes: 1: ldG-85ALQWWEFku3RjF3EwIpFog.crl (hash: WJ7X+xvzX5B1nLXqaZFq1PPW5ZJu7Z+/Dxa6fZm02MU=) 2: C2F7AE40C03111EA9777314AC4F9AE02.roa (hash: 5UVYc1gM3pcN5MyLC+3d2F4QJ6pH7wnclugT6lLmPzA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.crl rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldG-85ALQWWEFku3RjF3EwIpFog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 14:48:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13578 (0x350a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91577DD, serialNumber=95D1BEF3900B416584164BB74631771302291688 Validity Not Before: Dec 18 14:48:13 2025 GMT Not After : Dec 25 14:48:13 2025 GMT Subject: CN=6944142d-69ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b3:49:b6:71:d2:13:6b:76:11:f7:a8:b7:31: 59:b7:53:54:f2:59:03:89:4e:1c:d1:c4:c0:39:44: f0:41:56:8c:22:f6:69:83:3d:6c:63:4f:6a:42:51: bf:eb:77:48:47:65:cc:66:b8:d0:b3:f1:9c:61:53: 0b:93:a8:cb:48:30:40:63:d5:83:1e:f8:be:56:ca: 97:96:76:1b:12:08:bf:97:1e:24:ec:7d:fb:79:58: 4d:38:63:b9:45:cf:c9:72:6a:9a:20:02:d6:20:d7: a7:e5:ad:cf:c7:92:ba:5f:6c:22:41:6e:dc:31:c4: be:98:2e:91:ce:fa:44:80:a1:e6:53:30:c0:ca:8c: 77:69:1c:d6:0c:e9:17:fb:69:d4:a1:6c:7e:43:b2: 0b:68:21:f4:2f:76:84:1f:26:d8:dd:db:12:c5:55: 25:f6:ec:76:b9:21:bd:4b:ea:82:ea:e2:c8:73:e8: b1:7d:a4:3d:3d:ee:2d:18:88:7d:a9:b0:80:10:a1: b0:33:34:81:6e:3b:2a:97:be:97:6f:e4:ad:02:10: a5:b4:89:69:cc:79:2b:11:e2:a9:71:88:a9:85:06: c7:be:c9:5b:79:5e:98:91:dc:a1:bd:c4:96:71:19: 6c:4a:b5:73:7a:e8:7e:f2:aa:e9:bc:1b:fa:da:25: 95:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:80:D0:DC:B6:19:95:B5:CE:F9:AF:11:DF:D0:B7:33:AB:A4:24:AC X509v3 Authority Key Identifier: keyid:95:D1:BE:F3:90:0B:41:65:84:16:4B:B7:46:31:77:13:02:29:16:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldG-85ALQWWEFku3RjF3EwIpFog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d9:6c:06:4b:a3:14:7a:bb:ba:90:39:b2:97:e7:eb:6b:8c:ac: fc:3c:e1:e5:55:56:29:8a:75:58:b4:53:d2:e2:5c:04:c4:55: 9f:f3:c5:0e:1f:26:b2:4b:1a:60:db:15:5c:e5:63:f7:c8:7c: 11:05:6d:96:a6:34:8b:b4:11:e1:18:00:5b:91:8b:bf:45:8c: 15:2f:47:3f:2f:c2:58:08:8f:b3:53:1c:af:db:45:49:64:02: 79:90:1d:8a:94:58:79:1d:95:14:7f:5a:a1:61:7f:54:a4:3b: 0d:97:28:ca:e3:82:db:b0:0d:cc:30:2b:ae:d0:56:ce:df:86: 9f:5b:7d:52:f7:5d:d8:aa:6d:c3:61:41:d7:18:24:fd:45:d4: a7:6f:d9:b0:3d:c5:c1:3a:61:6a:bb:97:c8:40:ca:e9:a5:bc: c1:30:c1:de:68:48:26:94:a9:71:1b:53:a2:7a:c7:49:20:5c: bb:45:fb:ae:6d:d6:96:77:c2:6e:e4:7b:be:79:7e:f4:36:53: e9:85:c4:f0:33:f5:6e:b1:f4:bc:ae:f2:bc:bd:57:88:65:41: 13:32:49:b8:12:2d:63:1d:0a:58:aa:79:86:c5:5d:6f:a2:b5: 6f:77:7e:b3:48:bb:a9:90:73:ca:a5:41:ef:a4:ff:18:64:94: 4c:1e:fc:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3REQxMTAvBgNVBAUTKDk1RDFCRUYzOTAwQjQxNjU4NDE2NEJCNzQ2MzE3NzEz MDIyOTE2ODgwHhcNMjUxMjE4MTQ0ODEzWhcNMjUxMjI1MTQ0ODEzWjAYMRYwFAYD VQQDDA02OTQ0MTQyZC02OWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLNJtnHSE2t2EfeotzFZt1NU8lkDiU4c0cTAOUTwQVaMIvZpgz1sY09qQlG/ 63dIR2XMZrjQs/GcYVMLk6jLSDBAY9WDHvi+VsqXlnYbEgi/lx4k7H37eVhNOGO5 Rc/JcmqaIALWINen5a3Px5K6X2wiQW7cMcS+mC6RzvpEgKHmUzDAyox3aRzWDOkX +2nUoWx+Q7ILaCH0L3aEHybY3dsSxVUl9ux2uSG9S+qC6uLIc+ixfaQ9Pe4tGIh9 qbCAEKGwMzSBbjsql76Xb+StAhCltIlpzHkrEeKpcYiphQbHvslbeV6YkdyhvcSW cRlsSrVzeuh+8qrpvBv62iWVrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAGA0Ny2 GZW1zvmvEd/QtzOrpCSsMB8GA1UdIwQYMBaAFJXRvvOQC0FlhBZLt0YxdxMCKRaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzdERC9EMUM1QjAyQTFE OTYxMUUyQTFDQUI0N0YwOEIwMkNEMi9sZEctODVBTFFXV0VGa3UzUmpGM0V3SXBG b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xkRy04NUFMUVdXRUZrdTNSakYzRXdJcEZvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzdERC9EMUM1QjAyQTFEOTYxMUUyQTFDQUI0N0YwOEIwMkNEMi9sZEctODVBTFFX V0VGa3UzUmpGM0V3SXBGb2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDZbAZLoxR6u7qQObKX5+trjKz8POHlVVYpinVYtFPS4lwExFWf88UO HyaySxpg2xVc5WP3yHwRBW2WpjSLtBHhGABbkYu/RYwVL0c/L8JYCI+zUxyv20VJ ZAJ5kB2KlFh5HZUUf1qhYX9UpDsNlyjK44LbsA3MMCuu0FbO34afW31S913Yqm3D YUHXGCT9RdSnb9mwPcXBOmFqu5fIQMrppbzBMMHeaEgmlKlxG1OiesdJIFy7Rfuu bdaWd8Ju5Hu+eX70NlPphcTwM/VusfS8rvK8vVeIZUETMkm4Ei1jHQpYqnmGxV1v orVvd36zSLupkHPKpUHvpP8YZJRMHvy/ -----END CERTIFICATE-----Generated at Fri Dec 19 18:50:29 2025 by rpki-client