This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft File: leqvwkta9LFytYuwGnAc_hltoZk.mft (raw, json) Hash identifier: gM0M9/eTh/JmxdP1fNfXyQXcYB0T+NZqFZM24yllaxI= Subject key identifier: 68:A9:3E:5D:A1:9E:C0:38:83:9A:6C:50:27:06:55:83:E9:A6:36:CF Authority key identifier: 95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 Certificate issuer: /CN=A91972B6/serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Certificate serial: 117F Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft Manifest number: 1175 Signing time: Sat 20 Dec 2025 16:57:26 +0000 Manifest this update: Sat 20 Dec 2025 16:57:26 +0000 Manifest next update: Sat 27 Dec 2025 16:57:26 +0000 Files and hashes: 1: leqvwkta9LFytYuwGnAc_hltoZk.crl (hash: JFmJC9UmTSOKk3hGD4n1wO+sY+Dss4iLe5wKLtNPiiQ=) 2: 2837843AA3E811EAB397F675C4F9AE02.roa (hash: y9Ue7Mqnzr2Y9oHbpxdCKjDeFirsk0PRqFHYUCwvvtk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4479 (0x117f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972B6, serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Validity Not Before: Dec 20 16:57:26 2025 GMT Not After : Dec 27 16:57:26 2025 GMT Subject: CN=6946d576-0543 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d6:44:d2:8f:b1:2d:5c:28:22:6a:71:98:6c: 97:7a:ff:2d:82:07:26:76:7f:ab:90:d5:3f:76:09: 3e:0b:ae:55:c5:6c:8e:e6:d9:b3:0a:f7:82:48:92: eb:85:03:29:2b:04:e1:b5:79:4c:f5:3b:fa:35:2b: a1:93:c3:f3:cd:b9:b9:a4:9d:8c:59:72:20:53:b1: 7c:99:bb:65:3b:e4:3d:0d:67:30:c3:54:dc:16:30: 03:78:3e:87:bf:fe:25:3e:10:1f:bc:e8:1c:b2:8a: 35:23:64:8b:30:0e:2f:bf:1a:83:f8:a4:d6:89:d6: 39:e8:6f:df:ed:ef:90:ad:6e:26:54:e9:44:6d:31: 4b:11:d6:42:bd:47:25:0b:61:48:14:dd:a0:99:1b: f1:9a:a5:2a:3a:64:78:ea:21:07:df:d4:92:85:1b: 32:e2:82:5c:22:49:af:16:7c:f3:d7:61:b0:7f:1b: 88:a6:a4:20:b5:63:b7:3c:68:63:3a:44:fa:4b:b3: 3c:11:b8:01:29:bc:39:42:6d:16:1f:d8:89:af:9d: 38:3f:fd:7f:39:dc:e0:ce:99:6f:92:94:d1:ea:cb: 83:3a:79:32:12:b4:c6:b2:de:aa:ff:25:7d:ad:2d: e3:8f:40:07:19:b7:93:2d:36:e7:a6:ad:ee:f5:cc: 72:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:A9:3E:5D:A1:9E:C0:38:83:9A:6C:50:27:06:55:83:E9:A6:36:CF X509v3 Authority Key Identifier: keyid:95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:ec:73:a9:d2:80:68:c9:5e:69:42:9d:af:77:1d:25:37:64: 35:aa:e7:b3:ac:54:cf:e8:2e:28:66:58:6d:24:9a:55:ff:47: 8c:c3:1d:f6:bf:69:32:56:ff:89:d4:6f:88:12:ac:20:61:b3: c5:cf:e2:b2:14:c2:dc:1e:cd:44:10:2d:95:88:3b:7a:8c:91: 5f:3d:24:df:81:08:99:bd:98:85:1e:89:fa:7c:a0:2f:48:cf: 70:82:bc:37:48:7c:2f:bf:df:7f:2b:c1:5a:1d:10:b2:a0:1f: df:e6:b6:66:4e:14:b8:15:29:0b:ba:bb:89:2f:c9:fa:35:8e: de:73:57:17:44:07:d9:37:9d:fd:79:cc:de:67:1c:08:6a:ab: 63:62:6e:04:9b:b5:0d:e9:ee:97:92:af:7f:c4:5f:20:af:8b: 9a:3b:3d:48:e3:ca:e4:11:1a:44:cc:fd:98:f8:2f:e3:8d:15: 51:45:9b:dd:f8:81:e9:4c:c7:f2:06:72:11:b4:e7:89:53:2f: ce:94:47:e3:c3:c7:f6:35:d2:b3:82:e5:2b:b2:92:b1:97:92: 9d:cc:e7:24:07:08:cd:d0:f8:f9:01:91:9d:c4:3e:a5:58:5b: 29:cf:02:6f:e8:a8:fd:c2:54:c5:2d:ce:76:9e:03:7c:ee:79: 08:c4:d2:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyQjYxMTAvBgNVBAUTKDk1RUFBRkMyNEI1QUY0QjE3MkI1OEJCMDFBNzAxQ0ZF MTk2REExOTkwHhcNMjUxMjIwMTY1NzI2WhcNMjUxMjI3MTY1NzI2WjAYMRYwFAYD VQQDDA02OTQ2ZDU3Ni0wNTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9ZE0o+xLVwoImpxmGyXev8tggcmdn+rkNU/dgk+C65VxWyO5tmzCveCSJLr hQMpKwThtXlM9Tv6NSuhk8Pzzbm5pJ2MWXIgU7F8mbtlO+Q9DWcww1TcFjADeD6H v/4lPhAfvOgcsoo1I2SLMA4vvxqD+KTWidY56G/f7e+QrW4mVOlEbTFLEdZCvUcl C2FIFN2gmRvxmqUqOmR46iEH39SShRsy4oJcIkmvFnzz12GwfxuIpqQgtWO3PGhj OkT6S7M8EbgBKbw5Qm0WH9iJr504P/1/OdzgzplvkpTR6suDOnkyErTGst6q/yV9 rS3jj0AHGbeTLTbnpq3u9cxyxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGipPl2h nsA4g5psUCcGVYPppjbPMB8GA1UdIwQYMBaAFJXqr8JLWvSxcrWLsBpwHP4ZbaGZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJCNi8wODI0M0M4QzEz MkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlMRnl0WXV3R25BY19obHRv WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xlcXZ3a3RhOUxGeXRZdXdHbkFjX2hsdG9aay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJCNi8wODI0M0M4QzEzMkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlM Rnl0WXV3R25BY19obHRvWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCg7HOp0oBoyV5pQp2vdx0lN2Q1quezrFTP6C4oZlhtJJpV/0eMwx32 v2kyVv+J1G+IEqwgYbPFz+KyFMLcHs1EEC2ViDt6jJFfPSTfgQiZvZiFHon6fKAv SM9wgrw3SHwvv99/K8FaHRCyoB/f5rZmThS4FSkLuruJL8n6NY7ec1cXRAfZN539 eczeZxwIaqtjYm4Em7UN6e6Xkq9/xF8gr4uaOz1I48rkERpEzP2Y+C/jjRVRRZvd +IHpTMfyBnIRtOeJUy/OlEfjw8f2NdKzguUrspKxl5KdzOckBwjN0Pj5AZGdxD6l WFspzwJv6Kj9wlTFLc52ngN87nkIxNLI -----END CERTIFICATE-----Generated at Sat Dec 20 21:10:25 2025 by rpki-client