This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft File: dQ-le1kVZTnLFuVKYKbO21sQ654.mft (raw, json) Hash identifier: czxO54dOPF/3vBGpOtR+Xet5Z5UlRBQ0bPLsBq1s2JI= Subject key identifier: B7:5F:79:EB:73:95:0F:78:21:F3:E0:C8:CC:77:31:42:53:70:D0:B7 Authority key identifier: 75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E Certificate issuer: /CN=A91BB1F3/serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Certificate serial: 010B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft Manifest number: 0109 Signing time: Fri 19 Dec 2025 04:07:36 +0000 Manifest this update: Fri 19 Dec 2025 04:07:35 +0000 Manifest next update: Fri 26 Dec 2025 04:07:35 +0000 Files and hashes: 1: dQ-le1kVZTnLFuVKYKbO21sQ654.crl (hash: RFTMeUDRp9kn9HwqpCNKUPc3HMYU1hSC4KRSAsEKXsg=) 2: F9E4E14645AE11EF8870C771C4F9AE02.roa (hash: R0ve1rGoHZXsOYQBScXwsDxNaaTbtMNOWotF4DpFkvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:07:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB1F3, serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Validity Not Before: Dec 19 04:07:35 2025 GMT Not After : Dec 26 04:07:35 2025 GMT Subject: CN=6944cf87-2af5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ee:23:16:8b:08:6f:33:47:1d:20:dd:0e:fb: 20:c3:13:4f:42:5e:b7:64:cb:6d:17:d1:06:e0:f9: 71:aa:7f:f5:4e:36:8e:0e:0d:d7:62:4c:64:74:79: 5f:a4:71:90:c2:2e:53:35:30:60:67:09:8f:0a:00: b7:1c:3f:33:b0:14:ee:13:69:de:da:d2:a0:1d:ab: 53:08:ed:da:8b:45:c7:d7:98:da:ba:20:4d:48:c0: e5:37:81:fa:74:e8:05:ec:e3:47:a8:e3:a6:52:9e: 31:5e:fe:c1:07:27:62:f7:a8:ce:e9:0c:43:8b:f1: 49:50:d4:08:b7:9e:01:02:aa:67:df:bd:c6:ad:2d: 62:44:35:4e:64:b8:36:71:9e:26:eb:23:21:5e:b2: 52:5e:3c:f7:cc:9d:41:a9:be:da:56:57:35:58:35: 20:90:32:c2:4a:b6:45:de:5a:0f:41:dd:32:4b:fb: ed:8e:f0:37:f8:40:46:af:a6:b3:d1:de:44:e9:bf: 27:89:40:bc:b8:a6:a6:9c:3b:61:d4:69:2b:90:49: 92:86:32:4b:f1:50:9e:75:de:d3:13:86:b2:d3:f5: af:95:83:58:8d:99:cf:d4:36:11:0b:e2:92:95:5f: 37:ac:a6:58:cf:17:ee:6e:59:d3:61:31:6b:f5:ca: 29:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:5F:79:EB:73:95:0F:78:21:F3:E0:C8:CC:77:31:42:53:70:D0:B7 X509v3 Authority Key Identifier: keyid:75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:68:5e:92:26:12:80:f8:fb:68:8e:a6:a0:06:19:fb:24:5b: 75:bc:eb:4a:27:6e:2c:6f:72:67:66:84:1d:9d:02:11:4c:75: 80:d5:f9:7d:ed:54:46:ff:e9:3c:2f:69:f5:f0:6f:08:37:69: 14:92:74:82:60:8f:3b:3e:fc:ca:04:cc:24:0d:5e:d4:c3:69: 4f:7f:e4:54:00:f9:b2:3b:56:72:5b:06:2e:50:c0:a6:78:d2: e7:55:2f:89:6d:71:f6:26:a0:b4:4d:cd:20:c2:85:58:f9:51: 74:0a:b7:ba:6a:16:94:84:98:45:2c:a4:b1:45:36:c6:58:3c: eb:bb:f5:bc:bb:a7:ef:1d:db:78:c2:98:c7:80:78:98:45:9d: ad:19:03:37:e1:9f:76:5b:0a:8f:eb:3b:c7:f5:c0:4c:0c:fb: 4a:a0:a8:58:52:4d:3f:a2:35:b9:30:ea:8d:72:cf:6b:77:65: 3b:0a:5e:a2:35:1e:7c:19:17:9f:24:c1:7a:c3:e0:60:5f:f1: b8:ab:e9:21:37:5e:9d:d4:f1:fa:73:f0:4b:95:aa:54:bd:4d: 6b:f6:f5:9f:92:c9:eb:af:17:8b:1f:81:4c:41:a7:5e:2d:74: 33:41:07:f2:8b:16:4f:e4:f8:47:c9:1b:33:c0:57:1d:7d:f7: 45:3c:5c:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIxRjMxMTAvBgNVBAUTKDc1MEZBNTdCNTkxNTY1MzlDQjE2RTU0QTYwQTZDRURC NUIxMEVCOUUwHhcNMjUxMjE5MDQwNzM1WhcNMjUxMjI2MDQwNzM1WjAYMRYwFAYD VQQDDA02OTQ0Y2Y4Ny0yYWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4O4jFosIbzNHHSDdDvsgwxNPQl63ZMttF9EG4Plxqn/1TjaODg3XYkxkdHlf pHGQwi5TNTBgZwmPCgC3HD8zsBTuE2ne2tKgHatTCO3ai0XH15jauiBNSMDlN4H6 dOgF7ONHqOOmUp4xXv7BBydi96jO6QxDi/FJUNQIt54BAqpn373GrS1iRDVOZLg2 cZ4m6yMhXrJSXjz3zJ1Bqb7aVlc1WDUgkDLCSrZF3loPQd0yS/vtjvA3+EBGr6az 0d5E6b8niUC8uKamnDth1GkrkEmShjJL8VCedd7TE4ay0/WvlYNYjZnP1DYRC+KS lV83rKZYzxfublnTYTFr9copxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLdfeetz lQ94IfPgyMx3MUJTcNC3MB8GA1UdIwQYMBaAFHUPpXtZFWU5yxblSmCmzttbEOue MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjFGMy80Mjk3RDA1MjQ1 QUUxMUVGQjYyMzc4NzBDNEY5QUUwMi9kUS1sZTFrVlpUbkxGdVZLWUtiTzIxc1E2 NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RRLWxlMWtWWlRuTEZ1VktZS2JPMjFzUTY1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjFGMy80Mjk3RDA1MjQ1QUUxMUVGQjYyMzc4NzBDNEY5QUUwMi9kUS1sZTFrVlpU bkxGdVZLWUtiTzIxc1E2NTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSaF6SJhKA+PtojqagBhn7JFt1vOtKJ24sb3JnZoQdnQIRTHWA1fl9 7VRG/+k8L2n18G8IN2kUknSCYI87PvzKBMwkDV7Uw2lPf+RUAPmyO1ZyWwYuUMCm eNLnVS+JbXH2JqC0Tc0gwoVY+VF0Cre6ahaUhJhFLKSxRTbGWDzru/W8u6fvHdt4 wpjHgHiYRZ2tGQM34Z92WwqP6zvH9cBMDPtKoKhYUk0/ojW5MOqNcs9rd2U7Cl6i NR58GRefJMF6w+BgX/G4q+khN16d1PH6c/BLlapUvU1r9vWfksnrrxeLH4FMQade LXQzQQfyixZP5PhHyRszwFcdffdFPFyU -----END CERTIFICATE-----Generated at Fri Dec 19 17:46:59 2025 by rpki-client