This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft File: L9JLb9eYBEVzVDhmYs4w3aOyALU.mft (raw, json) Hash identifier: TRP/vgV8/UaSDruavcLuxJ2vbsEFTjGxzV8kWBDjtkU= Subject key identifier: 4B:B3:F0:56:06:06:8F:C1:0E:BF:2D:03:60:BB:63:6A:75:01:F5:C6 Authority key identifier: 2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 Certificate issuer: /CN=A91A29DA/serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Certificate serial: 0154 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft Manifest number: 0152 Signing time: Mon 29 Dec 2025 03:17:54 +0000 Manifest this update: Mon 29 Dec 2025 03:17:53 +0000 Manifest next update: Mon 05 Jan 2026 03:17:53 +0000 Files and hashes: 1: L9JLb9eYBEVzVDhmYs4w3aOyALU.crl (hash: 5F3YdKr54MVRWSktvadAAv4LuRhV9pRPHmsdPNG4BzI=) 2: AE2FD9C4DA5411EE83E9E67EC4F9AE02.roa (hash: tK5HTPbAj/ZNMX+j7tcaCGQxo/xqwq0UKtlHWscWUVg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 03:17:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 340 (0x154) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A29DA, serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Validity Not Before: Dec 29 03:17:53 2025 GMT Not After : Jan 5 03:17:53 2026 GMT Subject: CN=6951f2e2-ece1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:77:03:21:ec:7e:53:48:e5:83:e4:dd:6b:7f: 09:cb:2b:b1:7d:61:35:0d:59:8b:e2:bf:42:03:38: 0a:e0:90:f8:b3:37:0b:e7:bd:2b:27:7b:ac:93:0c: 2a:2e:6f:9c:77:f4:18:05:6e:68:25:f0:17:75:96: 19:fe:9b:bc:40:a2:ff:f7:45:3f:3f:b7:71:c8:32: 79:ae:f0:31:b5:9a:a5:b7:f6:e0:2e:1d:56:66:5e: c2:11:e3:e8:5b:7e:d2:9a:63:9e:0f:b2:b6:e9:82: 3d:f8:4f:26:0e:11:a5:41:a2:77:ff:da:5b:8d:55: 1e:b4:06:51:9e:e7:e4:7f:cf:f2:de:86:9b:c3:f0: fd:7c:7d:9c:c3:12:54:11:0f:71:a5:7a:6b:85:3a: 19:8d:02:53:a3:e2:09:50:c7:27:3d:a0:54:06:d1: 48:81:a3:23:c8:3b:7b:3f:ad:62:cc:2c:10:32:c1: b4:56:42:0a:76:d0:07:6d:f2:65:e6:13:96:35:a4: 8a:6a:de:38:dd:11:67:43:2b:ff:0b:4b:52:b2:cf: 9d:c1:ec:21:61:d9:9c:26:3c:c7:4e:68:5f:9d:76: 94:f2:6c:44:99:f0:f7:a8:b4:a1:f0:95:db:47:1c: 29:19:28:0f:00:41:63:37:c3:f0:71:40:47:6c:a6: fd:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:B3:F0:56:06:06:8F:C1:0E:BF:2D:03:60:BB:63:6A:75:01:F5:C6 X509v3 Authority Key Identifier: keyid:2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:d1:a7:9c:0e:f9:68:75:74:80:6a:03:c7:a3:f4:ae:10:e8: cd:bc:74:3e:c2:66:6d:7a:2a:1d:42:49:7e:4c:58:48:d6:ac: 0d:34:87:7a:cb:99:33:6b:99:9d:b1:bc:35:df:a2:5b:8c:e4: 8c:49:ed:72:d0:45:91:59:46:75:c4:9a:34:a4:7c:a0:9a:e1: 2c:ac:35:57:e9:74:85:f4:d6:07:ab:32:59:1e:98:36:04:14: 3d:4f:19:57:cb:41:53:19:a4:6e:15:e3:ee:5f:5d:0a:27:69: ba:6a:47:30:48:73:5d:1f:e9:06:7a:46:c0:d8:9c:4e:1d:05: 79:a8:42:a9:1d:38:fb:50:fc:ba:7c:76:6f:7c:36:44:d1:37: 12:30:61:8f:68:d2:34:4e:b4:58:b6:be:3a:cc:10:d6:a9:ea: fe:ed:7e:e8:5b:b5:a5:2f:d2:d1:bc:94:47:ec:0e:bc:ac:31: 06:f1:40:8c:5e:a9:e0:00:6d:07:f2:2f:fa:f8:76:82:08:ff: 23:f8:7b:9c:57:b2:30:16:3a:d0:a6:1c:b0:5d:c7:8d:a7:6c: 34:87:97:5f:d7:d8:de:e5:1a:25:43:ab:f9:e9:6c:fd:33:a5: 27:7b:a2:07:6b:c9:a8:4f:cf:f7:33:9d:50:3a:f4:80:f2:a7: 61:d2:9d:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI5REExMTAvBgNVBAUTKDJGRDI0QjZGRDc5ODA0NDU3MzU0Mzg2NjYyQ0UzMERE QTNCMjAwQjUwHhcNMjUxMjI5MDMxNzUzWhcNMjYwMTA1MDMxNzUzWjAYMRYwFAYD VQQDDA02OTUxZjJlMi1lY2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3cDIex+U0jlg+Tda38JyyuxfWE1DVmL4r9CAzgK4JD4szcL570rJ3uskwwq Lm+cd/QYBW5oJfAXdZYZ/pu8QKL/90U/P7dxyDJ5rvAxtZqlt/bgLh1WZl7CEePo W37SmmOeD7K26YI9+E8mDhGlQaJ3/9pbjVUetAZRnufkf8/y3oabw/D9fH2cwxJU EQ9xpXprhToZjQJTo+IJUMcnPaBUBtFIgaMjyDt7P61izCwQMsG0VkIKdtAHbfJl 5hOWNaSKat443RFnQyv/C0tSss+dwewhYdmcJjzHTmhfnXaU8mxEmfD3qLSh8JXb RxwpGSgPAEFjN8PwcUBHbKb91QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEuz8FYG Bo/BDr8tA2C7Y2p1AfXGMB8GA1UdIwQYMBaAFC/SS2/XmARFc1Q4ZmLOMN2jsgC1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjlEQS8zNEI1QjUxNERB NTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJFVnpWRGhtWXM0dzNhT3lB TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0w5SkxiOWVZQkVWelZEaG1ZczR3M2FPeUFMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjlEQS8zNEI1QjUxNERBNTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJF VnpWRGhtWXM0dzNhT3lBTFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBB0aecDvlodXSAagPHo/SuEOjNvHQ+wmZteiodQkl+TFhI1qwNNId6 y5kza5mdsbw136JbjOSMSe1y0EWRWUZ1xJo0pHygmuEsrDVX6XSF9NYHqzJZHpg2 BBQ9TxlXy0FTGaRuFePuX10KJ2m6akcwSHNdH+kGekbA2JxOHQV5qEKpHTj7UPy6 fHZvfDZE0TcSMGGPaNI0TrRYtr46zBDWqer+7X7oW7WlL9LRvJRH7A68rDEG8UCM XqngAG0H8i/6+HaCCP8j+HucV7IwFjrQphywXceNp2w0h5df19je5RolQ6v56Wz9 M6Une6IHa8moT8/3M51QOvSA8qdh0p3h -----END CERTIFICATE-----Generated at Tue Dec 30 01:31:12 2025 by rpki-client