This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft File: lKlQswO0aQDdWjBhAwyJpIloA68.mft (raw, json) Hash identifier: 2mKJVOKGhCNMNCAPX9kXYAHG5wErjg9X0SaZgElWPpg= Subject key identifier: D0:85:0E:6C:A8:3B:DE:89:39:AC:11:33:36:9E:5B:4E:43:EC:6E:A4 Authority key identifier: 94:A9:50:B3:03:B4:69:00:DD:5A:30:61:03:0C:89:A4:89:68:03:AF Certificate issuer: /CN=A91BAD2D/serialNumber=94A950B303B46900DD5A3061030C89A4896803AF Certificate serial: 0160 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft Manifest number: 0154 Signing time: Sun 21 Dec 2025 03:31:15 +0000 Manifest this update: Sun 21 Dec 2025 03:31:14 +0000 Manifest next update: Sun 28 Dec 2025 03:31:14 +0000 Files and hashes: 1: lKlQswO0aQDdWjBhAwyJpIloA68.crl (hash: GZVGLHGht2HH3xvqfzKHmsXjX6Fg6TQ83F3h69tsZP0=) 2: 10771E5497C211F0A9D40817C4F9AE02.roa (hash: v/Xxd5gw24bVPmwugefsnZRtykzRBUwrtrP5k40Invw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.crl rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 03:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 352 (0x160) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAD2D, serialNumber=94A950B303B46900DD5A3061030C89A4896803AF Validity Not Before: Dec 21 03:31:14 2025 GMT Not After : Dec 28 03:31:14 2025 GMT Subject: CN=69476a03-f23a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e1:05:e5:59:da:df:80:ad:0f:18:83:83:04: da:01:e3:11:34:ab:24:f6:51:5d:9f:4b:a3:64:c7: 74:0a:d4:eb:73:40:00:05:53:3e:70:a9:01:ec:ce: 2b:87:bc:32:a9:82:69:ba:80:15:4a:b5:6f:e3:17: 1f:64:a2:a4:90:8f:e2:d7:35:10:9a:2e:b5:75:37: e0:91:1f:a2:d8:6c:e8:8f:44:96:b7:5c:48:6f:f4: fb:75:a2:e7:39:7b:b0:6b:f0:ec:a2:4d:74:b0:ce: d7:43:61:ac:7f:c3:2b:11:51:e0:1a:f4:58:0b:81: 86:7f:be:4c:b9:b4:d5:80:b2:e3:74:4a:92:2f:92: d3:3a:c0:c3:86:00:a7:b7:01:59:f9:4d:ce:8d:53: 23:6d:3c:d1:72:0b:f9:83:61:ac:b7:c1:c5:59:fd: 2f:eb:0b:f0:f5:fa:82:a1:0b:83:7b:e1:29:53:77: 13:9f:68:a6:25:a2:2d:94:9d:f4:cd:28:54:36:9c: 73:c6:53:c8:8d:46:f0:10:2a:da:72:4c:88:fc:d2: 1a:2b:ce:4a:57:4c:fc:f9:86:a7:50:79:23:42:54: 94:aa:15:3f:f5:41:d4:c1:b2:9f:bb:d1:09:b9:b7: e0:ad:cc:88:54:ca:2c:70:4a:5f:7b:82:be:0b:80: 4f:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:85:0E:6C:A8:3B:DE:89:39:AC:11:33:36:9E:5B:4E:43:EC:6E:A4 X509v3 Authority Key Identifier: keyid:94:A9:50:B3:03:B4:69:00:DD:5A:30:61:03:0C:89:A4:89:68:03:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKlQswO0aQDdWjBhAwyJpIloA68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAD2D/9088EE5AE80111EEAD6C5030C4F9AE02/lKlQswO0aQDdWjBhAwyJpIloA68.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:27:f3:20:80:fc:d6:5b:1f:51:0c:18:a0:2a:27:15:7d:b4: 64:e9:4c:56:a6:78:98:42:c9:f5:e2:8e:95:fb:0f:4f:b9:7b: 12:c7:a5:e4:ea:98:97:8f:5e:35:04:d6:90:77:50:f8:76:ac: 32:7e:9b:6b:9b:32:0c:d7:c9:5e:bb:1d:ae:67:0f:ac:ac:70: fd:1c:5d:27:33:c1:72:22:55:94:f4:77:29:a2:3e:50:a2:f3: 5a:ea:75:9d:24:2e:8f:14:88:db:2d:e9:13:37:f2:17:3e:8f: 62:73:73:2d:6b:4e:81:98:77:27:e2:db:29:e5:a2:aa:f4:b4: fb:e3:93:70:71:66:6f:a7:c4:05:e9:7d:42:1d:01:fa:c6:74: 40:aa:db:86:b2:6a:12:6b:1e:d6:1b:ff:e3:92:61:5f:78:7f: 90:27:72:88:0b:f8:7d:b8:ce:12:37:48:2b:24:96:14:cb:62: 0d:88:2a:1e:56:7c:ba:5a:cb:80:33:f4:b7:b6:2d:7e:3d:3f: 24:a7:ba:d3:ed:f5:2a:9d:41:f4:75:e5:58:d1:57:cc:03:45: 1d:9c:59:81:8f:c8:c1:d1:47:65:2c:ab:36:e6:00:0d:c5:b1: e5:cb:3c:09:be:b9:c2:8a:fc:f4:ec:57:7b:b9:a9:da:10:e7: cb:a6:54:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFEMkQxMTAvBgNVBAUTKDk0QTk1MEIzMDNCNDY5MDBERDVBMzA2MTAzMEM4OUE0 ODk2ODAzQUYwHhcNMjUxMjIxMDMzMTE0WhcNMjUxMjI4MDMzMTE0WjAYMRYwFAYD VQQDDA02OTQ3NmEwMy1mMjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtuEF5Vna34CtDxiDgwTaAeMRNKsk9lFdn0ujZMd0CtTrc0AABVM+cKkB7M4r h7wyqYJpuoAVSrVv4xcfZKKkkI/i1zUQmi61dTfgkR+i2Gzoj0SWt1xIb/T7daLn OXuwa/Dsok10sM7XQ2Gsf8MrEVHgGvRYC4GGf75MubTVgLLjdEqSL5LTOsDDhgCn twFZ+U3OjVMjbTzRcgv5g2Gst8HFWf0v6wvw9fqCoQuDe+EpU3cTn2imJaItlJ30 zShUNpxzxlPIjUbwECrackyI/NIaK85KV0z8+YanUHkjQlSUqhU/9UHUwbKfu9EJ ubfgrcyIVMoscEpfe4K+C4BPhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNCFDmyo O96JOawRMzaeW05D7G6kMB8GA1UdIwQYMBaAFJSpULMDtGkA3VowYQMMiaSJaAOv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUQyRC85MDg4RUU1QUU4 MDExMUVFQUQ2QzUwMzBDNEY5QUUwMi9sS2xRc3dPMGFRRGRXakJoQXd5SnBJbG9B NjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xLbFFzd08wYVFEZFdqQmhBd3lKcElsb0E2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUQyRC85MDg4RUU1QUU4MDExMUVFQUQ2QzUwMzBDNEY5QUUwMi9sS2xRc3dPMGFR RGRXakJoQXd5SnBJbG9BNjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMJ/MggPzWWx9RDBigKicVfbRk6UxWpniYQsn14o6V+w9PuXsSx6Xk 6piXj141BNaQd1D4dqwyfptrmzIM18leux2uZw+srHD9HF0nM8FyIlWU9Hcpoj5Q ovNa6nWdJC6PFIjbLekTN/IXPo9ic3Mta06BmHcn4tsp5aKq9LT745NwcWZvp8QF 6X1CHQH6xnRAqtuGsmoSax7WG//jkmFfeH+QJ3KIC/h9uM4SN0grJJYUy2INiCoe Vny6WsuAM/S3ti1+PT8kp7rT7fUqnUH0deVY0VfMA0UdnFmBj8jB0UdlLKs25gAN xbHlyzwJvrnCivz07Fd7uanaEOfLplT5 -----END CERTIFICATE-----Generated at Mon Dec 22 19:31:24 2025 by rpki-client