This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft File: lDuBQuFVPslGJaRyTlaYKhVY_pw.mft (raw, json) Hash identifier: Wbkg+fDEr8r2uQfWGx5P/eamQgA6j/1RHNVuUd6PKss= Subject key identifier: A3:E3:2C:7D:78:E4:84:17:32:9A:38:C5:3F:42:C9:DC:97:56:FA:AB Authority key identifier: 94:3B:81:42:E1:55:3E:C9:46:25:A4:72:4E:56:98:2A:15:58:FE:9C Certificate issuer: /CN=A91582D9/serialNumber=943B8142E1553EC94625A4724E56982A1558FE9C Certificate serial: 17FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lDuBQuFVPslGJaRyTlaYKhVY_pw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft Manifest number: 2063 Signing time: Sat 20 Dec 2025 16:19:50 +0000 Manifest this update: Sat 20 Dec 2025 16:19:49 +0000 Manifest next update: Sat 27 Dec 2025 16:19:49 +0000 Files and hashes: 1: lDuBQuFVPslGJaRyTlaYKhVY_pw.crl (hash: 1cwVB5slZINWGKgFrgXMr5O7S4VZYXe0C+FZjSRnjAc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.crl rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lDuBQuFVPslGJaRyTlaYKhVY_pw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6140 (0x17fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91582D9, serialNumber=943B8142E1553EC94625A4724E56982A1558FE9C Validity Not Before: Dec 20 16:19:49 2025 GMT Not After : Dec 27 16:19:49 2025 GMT Subject: CN=6946cca6-9afa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:db:00:c6:35:60:cc:2e:8b:38:5a:ce:1b:51: a2:63:2a:1f:20:f8:6a:94:07:01:70:d9:c4:60:38: 07:a8:39:c1:63:4d:8e:f4:33:c8:f8:8d:42:31:fe: 9a:5c:c6:93:7f:f4:bd:ea:27:62:e0:42:e1:f6:36: 3b:3e:f8:6a:a9:e7:ba:60:9a:69:5a:a2:e9:19:44: 32:6d:ee:8b:78:c0:68:1e:e2:58:97:87:f1:c3:53: 81:d3:95:90:81:29:40:a2:6f:dd:b5:9d:01:c5:ec: ba:b3:26:a4:1e:54:7b:ae:e8:66:c9:21:8c:36:ec: 1b:2b:2f:a4:8e:b5:3b:27:25:31:fe:81:18:08:e9: 5d:55:13:dc:64:10:47:17:df:42:66:ed:40:8a:c6: 4f:96:5e:ea:0b:e5:17:be:6f:e7:9d:6b:d0:90:81: 72:52:ed:02:45:2b:17:08:dc:fe:25:61:03:89:b3: ae:db:a1:08:8c:e8:7d:ab:61:b8:17:65:c8:04:1b: ba:b7:a1:e9:b7:85:82:23:71:18:66:15:c4:b5:eb: 76:4a:0c:68:8b:10:93:41:5a:b2:3f:e5:5b:91:29: e1:2f:bf:57:2c:d0:9f:9f:17:91:4c:a5:b4:35:31: 6d:1c:0e:ba:8b:a4:e5:a6:23:aa:26:ff:e2:eb:37: 76:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:E3:2C:7D:78:E4:84:17:32:9A:38:C5:3F:42:C9:DC:97:56:FA:AB X509v3 Authority Key Identifier: keyid:94:3B:81:42:E1:55:3E:C9:46:25:A4:72:4E:56:98:2A:15:58:FE:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lDuBQuFVPslGJaRyTlaYKhVY_pw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/lDuBQuFVPslGJaRyTlaYKhVY_pw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:92:20:2e:d9:26:f1:74:b0:16:48:62:70:49:d2:4d:dc:95: 7b:1d:00:8c:8f:13:f8:2b:63:42:07:81:e6:7d:1f:0b:24:39: 2f:5c:60:95:3b:c6:a8:af:cf:66:27:8b:b2:67:3e:ab:4f:fd: 38:ed:e8:06:29:fa:bd:79:79:41:ba:6f:32:5a:88:92:29:7f: 8c:e3:e5:eb:10:10:22:1a:01:51:4d:5a:0d:6d:9e:ab:93:12: 32:ff:5a:e7:87:e2:23:30:0f:9d:de:08:36:0f:fd:33:bb:28: 9e:34:83:66:93:ae:1c:eb:fe:65:f1:23:ae:7f:f6:56:a3:42: 42:0f:00:5b:87:16:75:b3:22:e2:ed:d5:b6:eb:b8:6b:a9:1b: de:3d:f4:a4:5a:77:1e:60:3e:26:c3:30:bb:26:f6:af:95:b5: 27:08:cd:a7:80:54:31:41:b5:a6:c8:73:bc:53:a7:5c:ae:0b: 3f:23:28:30:3c:3d:54:c3:bd:41:e1:bf:b6:88:3a:52:d6:11: 08:54:0b:44:34:1e:26:ee:fd:d3:b2:ae:db:04:2c:e0:a9:0d: 98:0d:1d:1f:2b:fe:e5:e7:08:04:5a:a5:3f:0a:67:b6:6b:2d: 65:ac:c2:e9:f8:27:28:4f:a6:78:aa:0f:df:25:cf:66:71:f6: d4:08:ee:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF/wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgyRDkxMTAvBgNVBAUTKDk0M0I4MTQyRTE1NTNFQzk0NjI1QTQ3MjRFNTY5ODJB MTU1OEZFOUMwHhcNMjUxMjIwMTYxOTQ5WhcNMjUxMjI3MTYxOTQ5WjAYMRYwFAYD VQQDDA02OTQ2Y2NhNi05YWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvdsAxjVgzC6LOFrOG1GiYyofIPhqlAcBcNnEYDgHqDnBY02O9DPI+I1CMf6a XMaTf/S96idi4ELh9jY7Pvhqqee6YJppWqLpGUQybe6LeMBoHuJYl4fxw1OB05WQ gSlAom/dtZ0Bxey6syakHlR7ruhmySGMNuwbKy+kjrU7JyUx/oEYCOldVRPcZBBH F99CZu1AisZPll7qC+UXvm/nnWvQkIFyUu0CRSsXCNz+JWEDibOu26EIjOh9q2G4 F2XIBBu6t6Hpt4WCI3EYZhXEtet2SgxoixCTQVqyP+VbkSnhL79XLNCfnxeRTKW0 NTFtHA66i6TlpiOqJv/i6zd2awIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKPjLH14 5IQXMpo4xT9CydyXVvqrMB8GA1UdIwQYMBaAFJQ7gULhVT7JRiWkck5WmCoVWP6c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODJEOS8wRURBNkQ1RUNE REExMUU3QkRFQThDMkJDNEY5QUUwMi9sRHVCUXVGVlBzbEdKYVJ5VGxhWUtoVllf cHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xEdUJRdUZWUHNsR0phUnlUbGFZS2hWWV9wdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODJEOS8wRURBNkQ1RUNEREExMUU3QkRFQThDMkJDNEY5QUUwMi9sRHVCUXVGVlBz bEdKYVJ5VGxhWUtoVllfcHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmkiAu2SbxdLAWSGJwSdJN3JV7HQCMjxP4K2NCB4HmfR8LJDkvXGCV O8aor89mJ4uyZz6rT/047egGKfq9eXlBum8yWoiSKX+M4+XrEBAiGgFRTVoNbZ6r kxIy/1rnh+IjMA+d3gg2D/0zuyieNINmk64c6/5l8SOuf/ZWo0JCDwBbhxZ1syLi 7dW267hrqRvePfSkWnceYD4mwzC7JvavlbUnCM2ngFQxQbWmyHO8U6dcrgs/Iygw PD1Uw71B4b+2iDpS1hEIVAtENB4m7v3Tsq7bBCzgqQ2YDR0fK/7l5wgEWqU/Cme2 ay1lrMLp+CcoT6Z4qg/fJc9mcfbUCO6T -----END CERTIFICATE-----Generated at Sat Dec 20 20:24:56 2025 by rpki-client