This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft File: ldQuwvRot-OPlYyPupMYARfcJuA.mft (raw, json) Hash identifier: AYqfwPt6KyGa7ZPmcTnE+1Ps7r3HVae/tnzn6Y45QDM= Subject key identifier: 89:56:2E:59:FE:15:A2:25:F7:22:F4:EC:3E:08:52:6E:0B:F1:E3:86 Authority key identifier: 95:D4:2E:C2:F4:68:B7:E3:8F:95:8C:8F:BA:93:18:01:17:DC:26:E0 Certificate issuer: /CN=A91A7F6A/serialNumber=95D42EC2F468B7E38F958C8FBA93180117DC26E0 Certificate serial: 9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft Manifest number: 94 Signing time: Sun 21 Dec 2025 05:40:52 +0000 Manifest this update: Sun 21 Dec 2025 05:40:52 +0000 Manifest next update: Sun 28 Dec 2025 05:40:52 +0000 Files and hashes: 1: ldQuwvRot-OPlYyPupMYARfcJuA.crl (hash: u9wgi9g2Lw7S1zGO+6ULALtZzy863DZt48NzB46BcSM=) 2: 4210D4508CD711F0A2DFAA45C4F9AE02.roa (hash: 2JnfU/Mgp4zZ19X7p0k0eCs4HoUbNZM1uROYF0brrz8=) 3: B3849A9A359311F09B54926FC4F9AE02.roa (hash: Y+aC1xM6nmmoKwU/+TkwylgFTc7TBvkghCXTXAy84ng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.crl rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 05:40:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7F6A, serialNumber=95D42EC2F468B7E38F958C8FBA93180117DC26E0 Validity Not Before: Dec 21 05:40:52 2025 GMT Not After : Dec 28 05:40:52 2025 GMT Subject: CN=69478864-3324 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:3a:55:81:2e:71:60:08:3c:00:44:dd:87:f2: e1:3f:8a:a4:f6:b0:fb:82:c7:9c:9d:d9:95:1c:d8: 96:32:cc:a2:98:c9:23:9a:f3:fb:90:fb:30:52:b6: 30:ba:3f:80:0c:35:de:65:00:a3:b5:09:3c:a7:86: dc:ff:d2:ba:e7:f3:d0:fb:e6:b6:42:c6:e3:98:67: c2:3b:25:db:01:89:13:48:5b:cc:6a:cd:c3:53:a6: 9b:ca:52:f0:bf:0e:09:71:1b:c8:22:e3:f7:d0:a8: 37:ad:ac:af:d9:49:6c:35:2a:fc:ce:58:2e:fd:14: 72:6a:d5:d9:8d:5c:c1:fa:b6:6a:3c:7d:da:d7:a0: 00:a7:51:0f:50:85:5c:3b:a8:2d:50:cc:05:e9:a0: df:28:70:b8:3e:b7:a7:fa:85:31:f8:71:23:5c:68: 0c:2b:92:b5:46:44:d7:48:10:4b:63:53:c7:f1:60: e7:d6:19:a1:af:87:9f:65:6f:2e:43:62:70:f1:f0: 5d:55:5f:ee:80:3c:3f:45:3d:ce:7c:dd:e6:01:61: bb:55:6d:80:1f:94:82:d5:ee:e9:aa:3b:57:35:d0: 7d:7e:71:1d:f5:e9:e9:8d:7e:b8:3d:5e:df:78:fb: 0d:bb:c5:0d:6a:6a:1d:6a:47:12:ad:39:54:f4:ad: 5e:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:56:2E:59:FE:15:A2:25:F7:22:F4:EC:3E:08:52:6E:0B:F1:E3:86 X509v3 Authority Key Identifier: keyid:95:D4:2E:C2:F4:68:B7:E3:8F:95:8C:8F:BA:93:18:01:17:DC:26:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:d1:71:ef:3e:b4:a7:25:22:f1:5e:d9:b6:37:75:db:37:9b: 65:9e:35:1f:b3:2c:03:01:75:41:06:ff:5b:5b:0b:8d:5d:5a: 32:8a:a8:fe:27:18:f5:41:76:ad:62:ad:f1:e5:2f:7a:62:4d: b0:11:a8:68:c3:15:f0:6a:d4:5d:fa:a3:57:f7:20:24:81:2a: 0b:c0:5a:13:e0:9c:57:14:44:ad:b7:6d:01:9f:16:1d:cb:4c: a8:d2:29:02:ef:74:3a:a4:71:c3:e3:41:aa:14:e5:69:fb:c6: ec:8c:a6:c7:49:45:a1:b8:65:43:99:d5:5e:91:4b:b5:bc:08: 59:1b:dc:f6:6f:71:65:70:6f:80:ac:30:de:55:66:01:c1:09: 5a:3a:a4:c3:5e:48:44:f2:43:1a:c6:43:5e:5a:81:50:14:55: 71:f8:94:0f:74:d9:9c:92:41:0f:37:c0:60:e5:2c:0b:37:8d: 44:58:f9:13:af:9b:00:ce:31:cb:c0:16:9e:67:25:4e:1f:d3: 1e:09:c5:a3:9f:13:68:e7:2b:d7:f1:5b:66:c8:f3:ca:c0:a2: e0:ae:f8:ad:26:4f:a4:b9:b2:ee:32:b7:d8:59:32:f3:be:86: c6:c3:b1:2d:2e:32:bc:88:a9:ff:ec:26:73:75:a4:2e:65:90: ca:8f:47:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdGNkExMTAvBgNVBAUTKDk1RDQyRUMyRjQ2OEI3RTM4Rjk1OEM4RkJBOTMxODAx MTdEQzI2RTAwHhcNMjUxMjIxMDU0MDUyWhcNMjUxMjI4MDU0MDUyWjAYMRYwFAYD VQQDDA02OTQ3ODg2NC0zMzI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwTpVgS5xYAg8AETdh/LhP4qk9rD7gsecndmVHNiWMsyimMkjmvP7kPswUrYw uj+ADDXeZQCjtQk8p4bc/9K65/PQ++a2QsbjmGfCOyXbAYkTSFvMas3DU6abylLw vw4JcRvIIuP30Kg3rayv2UlsNSr8zlgu/RRyatXZjVzB+rZqPH3a16AAp1EPUIVc O6gtUMwF6aDfKHC4Pren+oUx+HEjXGgMK5K1RkTXSBBLY1PH8WDn1hmhr4efZW8u Q2Jw8fBdVV/ugDw/RT3OfN3mAWG7VW2AH5SC1e7pqjtXNdB9fnEd9enpjX64PV7f ePsNu8UNamodakcSrTlU9K1euQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIlWLln+ FaIl9yL07D4IUm4L8eOGMB8GA1UdIwQYMBaAFJXULsL0aLfjj5WMj7qTGAEX3Cbg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0Y2QS83QTUyOTg3NjBB RjAxMUYwODUzMUQ0M0NDNEY5QUUwMi9sZFF1d3ZSb3QtT1BsWXlQdXBNWUFSZmNK dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xkUXV3dlJvdC1PUGxZeVB1cE1ZQVJmY0p1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0Y2QS83QTUyOTg3NjBBRjAxMUYwODUzMUQ0M0NDNEY5QUUwMi9sZFF1d3ZSb3Qt T1BsWXlQdXBNWUFSZmNKdUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDM0XHvPrSnJSLxXtm2N3XbN5tlnjUfsywDAXVBBv9bWwuNXVoyiqj+ Jxj1QXatYq3x5S96Yk2wEahowxXwatRd+qNX9yAkgSoLwFoT4JxXFEStt20BnxYd y0yo0ikC73Q6pHHD40GqFOVp+8bsjKbHSUWhuGVDmdVekUu1vAhZG9z2b3FlcG+A rDDeVWYBwQlaOqTDXkhE8kMaxkNeWoFQFFVx+JQPdNmckkEPN8Bg5SwLN41EWPkT r5sAzjHLwBaeZyVOH9MeCcWjnxNo5yvX8VtmyPPKwKLgrvitJk+kubLuMrfYWTLz vobGw7EtLjK8iKn/7CZzdaQuZZDKj0eH -----END CERTIFICATE-----Generated at Sun Dec 21 07:43:02 2025 by rpki-client