This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.mft File: LhZNtFuEa7rmjCd9Q_iC9kCSKB4.mft (raw, json) Hash identifier: IqaTjMheYYe24Cu2igYaALUvDZmOre2rsf2YYveg++c= Subject key identifier: D0:C0:C4:F8:05:CE:E3:36:EC:56:F6:F1:41:72:5A:58:FB:42:E8:3A Authority key identifier: 2E:16:4D:B4:5B:84:6B:BA:E6:8C:27:7D:43:F8:82:F6:40:92:28:1E Certificate issuer: /CN=A91A9467/serialNumber=2E164DB45B846BBAE68C277D43F882F64092281E Certificate serial: 194F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.mft Manifest number: 193A Signing time: Sat 20 Dec 2025 16:13:52 +0000 Manifest this update: Sat 20 Dec 2025 16:13:51 +0000 Manifest next update: Sat 27 Dec 2025 16:13:51 +0000 Files and hashes: 1: LhZNtFuEa7rmjCd9Q_iC9kCSKB4.crl (hash: VpVJ51bHzq9/C5+Kpv6FjAnUV4vVUSE9yuBgrmW4Z/M=) 2: 0EDA10A4A9A011EE96DCBB4FC4F9AE02.roa (hash: psURfyPJMxxR2CGBpJlzsnwoEyc78Mv6OwXOUqaExNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.crl rsync://rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 16:13:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6479 (0x194f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9467, serialNumber=2E164DB45B846BBAE68C277D43F882F64092281E Validity Not Before: Dec 20 16:13:51 2025 GMT Not After : Dec 27 16:13:51 2025 GMT Subject: CN=6946cb40-0070 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:af:84:2f:69:18:5b:06:ea:d7:f2:ce:d8:cb: b1:21:6a:e8:92:52:3c:04:34:8d:f6:69:87:a9:4c: d7:94:8f:a7:2c:fb:3c:42:c3:63:0e:80:ef:61:d2: c7:61:c9:0d:87:23:05:77:22:44:fd:91:ad:90:a7: b8:e0:05:eb:13:43:5b:a5:69:08:dc:d3:1f:80:8e: 56:1a:4d:68:84:33:a1:0d:e4:f6:68:32:57:bb:3b: c1:24:37:ba:d0:dd:44:43:86:e2:0d:4f:32:41:aa: 8e:2b:b6:9f:fd:05:2b:58:72:6d:60:fc:46:28:d1: 22:60:ff:c9:2e:b6:48:2e:cd:5f:f4:37:67:c2:d2: 62:15:1b:7a:98:e5:44:9a:ad:68:a5:c1:fe:bf:d6: 78:06:b3:ef:b8:c9:fa:e6:dc:9a:48:93:ec:7c:36: bc:4f:5d:98:96:db:c7:36:5a:15:38:2d:29:cb:37: b5:bd:cf:3a:26:85:cd:02:4e:54:38:7f:17:09:e5: 1e:34:ff:e9:6b:0a:3e:9e:9b:c2:42:65:ea:4b:1a: 9f:4f:f0:47:de:e2:07:e2:3d:b5:af:6e:ac:07:63: 14:a6:d5:d7:78:b7:99:93:04:2b:b5:8b:d1:de:21: d4:ef:5d:b3:97:d5:d6:7e:da:3b:6e:17:19:76:19: c5:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:C0:C4:F8:05:CE:E3:36:EC:56:F6:F1:41:72:5A:58:FB:42:E8:3A X509v3 Authority Key Identifier: keyid:2E:16:4D:B4:5B:84:6B:BA:E6:8C:27:7D:43:F8:82:F6:40:92:28:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9467/915C07E691EA11E79D0D0A2BC4F9AE02/LhZNtFuEa7rmjCd9Q_iC9kCSKB4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:57:00:fe:b6:39:c9:86:c4:f7:11:40:0c:c4:27:f8:10:ef: 1b:9e:e4:b4:ae:0b:a4:bf:80:e3:a5:64:c4:e7:a6:6c:c6:3d: fc:23:ab:f1:a6:0a:73:97:b9:e5:c9:8a:cb:3e:37:b4:5e:2c: 6f:0c:80:19:12:33:36:b4:6b:6b:17:6d:0a:a5:09:27:bf:5a: 73:9b:56:8f:63:3d:d4:32:4d:99:0f:dc:62:62:ee:31:d4:f7: 91:20:87:0f:c2:26:3f:11:b9:8c:11:5a:c7:89:73:92:83:0a: c3:5b:0f:b3:9c:16:c5:9f:9c:de:d5:6b:26:4e:d6:73:4b:7c: 21:b2:e3:5f:e4:5b:41:6b:0a:38:9f:53:6f:2a:06:8d:5e:92: 0b:9c:b8:41:ea:2f:62:84:75:fe:c0:cb:35:83:dd:de:f8:9b: ff:6e:d3:4a:58:4e:dd:b4:00:07:99:0c:26:03:62:51:40:f1: af:e8:fd:b6:ac:d9:16:7a:d4:50:e2:29:87:9d:f9:ff:8e:0d: 4e:55:38:91:1a:7e:09:7a:60:0e:73:a6:5d:d4:f8:25:20:de: 00:86:60:df:24:d7:00:67:f4:2b:4d:4e:47:9f:a7:0f:a0:02: e1:7e:7a:64:45:08:9a:60:41:2e:39:7b:ba:79:b6:43:65:f0: 3f:9c:8c:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk0NjcxMTAvBgNVBAUTKDJFMTY0REI0NUI4NDZCQkFFNjhDMjc3RDQzRjg4MkY2 NDA5MjI4MUUwHhcNMjUxMjIwMTYxMzUxWhcNMjUxMjI3MTYxMzUxWjAYMRYwFAYD VQQDDA02OTQ2Y2I0MC0wMDcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn6+EL2kYWwbq1/LO2MuxIWroklI8BDSN9mmHqUzXlI+nLPs8QsNjDoDvYdLH YckNhyMFdyJE/ZGtkKe44AXrE0NbpWkI3NMfgI5WGk1ohDOhDeT2aDJXuzvBJDe6 0N1EQ4biDU8yQaqOK7af/QUrWHJtYPxGKNEiYP/JLrZILs1f9DdnwtJiFRt6mOVE mq1opcH+v9Z4BrPvuMn65tyaSJPsfDa8T12YltvHNloVOC0pyze1vc86JoXNAk5U OH8XCeUeNP/pawo+npvCQmXqSxqfT/BH3uIH4j21r26sB2MUptXXeLeZkwQrtYvR 3iHU712zl9XWfto7bhcZdhnFDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNDAxPgF zuM27Fb28UFyWlj7Qug6MB8GA1UdIwQYMBaAFC4WTbRbhGu65ownfUP4gvZAkige MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTQ2Ny85MTVDMDdFNjkx RUExMUU3OUQwRDBBMkJDNEY5QUUwMi9MaFpOdEZ1RWE3cm1qQ2Q5UV9pQzlrQ1NL QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xoWk50RnVFYTdybWpDZDlRX2lDOWtDU0tCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTQ2Ny85MTVDMDdFNjkxRUExMUU3OUQwRDBBMkJDNEY5QUUwMi9MaFpOdEZ1RWE3 cm1qQ2Q5UV9pQzlrQ1NLQjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdVwD+tjnJhsT3EUAMxCf4EO8bnuS0rgukv4DjpWTE56Zsxj38I6vx pgpzl7nlyYrLPje0XixvDIAZEjM2tGtrF20KpQknv1pzm1aPYz3UMk2ZD9xiYu4x 1PeRIIcPwiY/EbmMEVrHiXOSgwrDWw+znBbFn5ze1WsmTtZzS3whsuNf5FtBawo4 n1NvKgaNXpILnLhB6i9ihHX+wMs1g93e+Jv/btNKWE7dtAAHmQwmA2JRQPGv6P22 rNkWetRQ4imHnfn/jg1OVTiRGn4JemAOc6Zd1PglIN4AhmDfJNcAZ/QrTU5Hn6cP oALhfnpkRQiaYEEuOXu6ebZDZfA/nIym -----END CERTIFICATE-----Generated at Sun Dec 21 08:17:10 2025 by rpki-client