This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft File: L9JLb9eYBEVzVDhmYs4w3aOyALU.mft (raw, json) Hash identifier: i1kOxigkTrlvPb0sn36pYqoL0o10uwdb3Hz8d14cvV0= Subject key identifier: 06:47:2A:F7:58:48:77:07:40:A3:55:93:A0:18:F4:52:87:91:C2:BC Authority key identifier: 2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 Certificate issuer: /CN=A91A29DA/serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Certificate serial: 014F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft Manifest number: 014D Signing time: Fri 19 Dec 2025 03:23:43 +0000 Manifest this update: Fri 19 Dec 2025 03:23:43 +0000 Manifest next update: Fri 26 Dec 2025 03:23:43 +0000 Files and hashes: 1: L9JLb9eYBEVzVDhmYs4w3aOyALU.crl (hash: kwfzwWA7RwE2sb9KhigyJ8zpSUNgVilRCx5DXvclf9Y=) 2: AE2FD9C4DA5411EE83E9E67EC4F9AE02.roa (hash: tK5HTPbAj/ZNMX+j7tcaCGQxo/xqwq0UKtlHWscWUVg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:23:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 335 (0x14f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A29DA, serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Validity Not Before: Dec 19 03:23:43 2025 GMT Not After : Dec 26 03:23:43 2025 GMT Subject: CN=6944c53f-04db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:89:bb:81:0a:18:b2:0c:e8:97:d8:00:b6:10: ff:c0:48:eb:4c:f1:97:1a:0e:a1:9e:52:10:e7:ed: 04:e7:c8:63:0b:fe:d2:18:40:f6:7d:51:d7:cc:5e: a0:54:a5:c7:7a:33:9b:d1:38:08:7e:ac:4c:36:34: 29:1a:c7:b9:a1:4e:92:ab:a4:15:67:0e:f0:62:30: 59:a1:03:9f:ab:07:d9:a2:73:34:75:1b:20:95:21: 8a:47:16:45:d7:02:95:a0:84:71:08:fb:91:22:98: d6:6f:58:eb:a5:52:d4:fb:36:eb:22:72:d3:a6:30: 05:87:96:be:ff:a9:e7:2e:35:6d:90:18:ca:47:fe: 41:a1:b8:71:c0:b5:3e:e0:13:6a:08:50:7d:4e:0c: ed:da:00:de:4e:f7:23:69:95:b4:06:01:4b:78:50: f9:71:1c:7b:82:14:ed:15:47:66:e7:31:9e:fe:60: 7d:97:8f:0a:f9:34:dc:fd:d3:76:36:4d:60:3a:fc: 49:61:ee:bc:39:32:ce:90:18:43:6b:ff:d7:49:0c: 4f:aa:bf:00:be:b9:19:f6:68:b6:27:59:2b:00:01: 7a:05:98:26:01:fa:e7:8d:46:07:c2:07:77:94:ee: 34:bb:65:2e:32:a6:5a:5b:85:d0:5d:53:51:7a:c6: 1a:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:47:2A:F7:58:48:77:07:40:A3:55:93:A0:18:F4:52:87:91:C2:BC X509v3 Authority Key Identifier: keyid:2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:5e:16:5a:18:1d:6f:54:ea:63:51:23:3f:b8:f8:9d:6e:34: 89:08:88:73:38:b2:7e:4f:cd:ba:54:41:69:6d:f4:e9:07:fb: 13:ac:cf:28:2c:70:11:5c:a8:16:84:24:15:5e:b8:09:d6:88: ff:a4:8b:46:f3:b6:d8:18:9a:81:94:b9:be:ee:99:43:84:31: a1:e2:a9:82:03:c8:95:00:d5:3b:d6:19:f1:30:1b:53:1e:d1: 69:6d:19:da:37:da:be:ce:65:eb:24:29:23:f4:70:67:aa:ed: ca:e1:3e:e5:e0:f7:49:8e:f0:15:4e:ec:76:1c:8d:b3:e5:17: 86:44:cd:41:14:ea:cc:82:3d:04:77:e0:57:83:1d:86:7c:88: 0f:f7:92:e3:92:82:3e:ec:e4:3a:95:43:34:2b:49:7d:5e:16: 38:5c:72:5f:02:c7:5d:eb:ba:00:78:4b:f6:30:9d:1f:b0:35: 6f:34:9e:21:a8:98:28:14:42:d1:c4:5e:e1:09:25:65:ff:56: 85:84:b3:5e:35:87:da:70:53:66:67:79:38:30:ff:bd:fd:af: 6f:3f:4e:6d:ca:ff:a8:61:dd:2e:68:c5:5a:00:b4:23:cb:92: f2:b9:e5:10:cb:e6:01:58:07:e4:31:86:98:7a:02:69:a4:00: 99:53:4e:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI5REExMTAvBgNVBAUTKDJGRDI0QjZGRDc5ODA0NDU3MzU0Mzg2NjYyQ0UzMERE QTNCMjAwQjUwHhcNMjUxMjE5MDMyMzQzWhcNMjUxMjI2MDMyMzQzWjAYMRYwFAYD VQQDDA02OTQ0YzUzZi0wNGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArYm7gQoYsgzol9gAthD/wEjrTPGXGg6hnlIQ5+0E58hjC/7SGED2fVHXzF6g VKXHejOb0TgIfqxMNjQpGse5oU6Sq6QVZw7wYjBZoQOfqwfZonM0dRsglSGKRxZF 1wKVoIRxCPuRIpjWb1jrpVLU+zbrInLTpjAFh5a+/6nnLjVtkBjKR/5BobhxwLU+ 4BNqCFB9Tgzt2gDeTvcjaZW0BgFLeFD5cRx7ghTtFUdm5zGe/mB9l48K+TTc/dN2 Nk1gOvxJYe68OTLOkBhDa//XSQxPqr8AvrkZ9mi2J1krAAF6BZgmAfrnjUYHwgd3 lO40u2UuMqZaW4XQXVNResYalQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAZHKvdY SHcHQKNVk6AY9FKHkcK8MB8GA1UdIwQYMBaAFC/SS2/XmARFc1Q4ZmLOMN2jsgC1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjlEQS8zNEI1QjUxNERB NTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJFVnpWRGhtWXM0dzNhT3lB TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0w5SkxiOWVZQkVWelZEaG1ZczR3M2FPeUFMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjlEQS8zNEI1QjUxNERBNTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJF VnpWRGhtWXM0dzNhT3lBTFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1XhZaGB1vVOpjUSM/uPidbjSJCIhzOLJ+T826VEFpbfTpB/sTrM8o LHARXKgWhCQVXrgJ1oj/pItG87bYGJqBlLm+7plDhDGh4qmCA8iVANU71hnxMBtT HtFpbRnaN9q+zmXrJCkj9HBnqu3K4T7l4PdJjvAVTux2HI2z5ReGRM1BFOrMgj0E d+BXgx2GfIgP95LjkoI+7OQ6lUM0K0l9XhY4XHJfAsdd67oAeEv2MJ0fsDVvNJ4h qJgoFELRxF7hCSVl/1aFhLNeNYfacFNmZ3k4MP+9/a9vP05tyv+oYd0uaMVaALQj y5LyueUQy+YBWAfkMYaYegJppACZU05c -----END CERTIFICATE-----Generated at Sat Dec 20 00:54:41 2025 by rpki-client