This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft File: R-lr-DG7PMQ7TweEJj5ylYddVRY.mft (raw, json) Hash identifier: d1FpLYK2QtgSUj8CPA5ayD6zLG57z9jdR8r1tY4no94= Subject key identifier: C8:75:9D:66:BC:2C:B0:54:82:A4:4F:17:D4:4C:83:7E:CD:5B:0F:2F Authority key identifier: 47:E9:6B:F8:31:BB:3C:C4:3B:4F:07:84:26:3E:72:95:87:5D:55:16 Certificate issuer: /CN=A91C4204/serialNumber=47E96BF831BB3CC43B4F0784263E7295875D5516 Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft Manifest number: 74 Signing time: Thu 25 Dec 2025 05:47:04 +0000 Manifest this update: Thu 25 Dec 2025 05:47:03 +0000 Manifest next update: Thu 01 Jan 2026 05:47:03 +0000 Files and hashes: 1: R-lr-DG7PMQ7TweEJj5ylYddVRY.crl (hash: d+F5W21W8PJCniW4K6vR9ZGTEja0+z2BupWObmZvamE=) 2: CA2D4952300911F0AB675D3EC4F9AE02.roa (hash: wSACUp5c4PrWddzrJcvj1KCwEmCFzuB6DHldOTgXN4E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.crl rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 Jan 2026 05:47:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4204, serialNumber=47E96BF831BB3CC43B4F0784263E7295875D5516 Validity Not Before: Dec 25 05:47:03 2025 GMT Not After : Jan 1 05:47:03 2026 GMT Subject: CN=694ccfd8-c4c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:c7:fe:30:3b:96:6b:49:9e:ef:8c:6f:68:51: cc:e7:86:c6:d1:94:0a:71:83:41:47:98:90:f2:e8: 11:a8:a7:75:66:e6:d4:36:fe:ec:e3:7a:fa:3e:9a: a1:2b:c5:fe:26:f1:2b:d4:2b:a6:a4:06:55:0e:bb: 87:45:2b:6c:02:e8:de:ce:f5:0a:2e:e0:74:f7:7f: 16:b5:8f:ee:53:c7:ed:7e:df:d4:4c:f2:8f:11:94: 7a:db:87:ab:46:11:65:31:df:00:21:4b:fc:f1:0f: 81:7d:f4:98:c4:45:98:3f:83:b7:0c:77:e0:4d:ec: 1c:c5:fc:04:32:e1:0f:f0:64:f8:49:73:86:84:27: 06:6e:d9:9d:43:ad:06:25:7e:cc:67:94:31:e7:a7: e5:cd:c1:5d:1d:dc:e8:ca:0a:a0:cf:3f:f6:58:d8: 39:a0:1a:50:5c:e3:a7:e2:52:60:a7:b0:6e:c4:3f: bf:ef:68:53:a5:44:63:16:99:ff:0a:28:e9:5d:f6: 8f:ca:b1:cd:73:0a:05:70:aa:5a:2c:23:7d:8d:dd: 0e:6e:b4:1f:85:30:96:ce:2d:26:fd:c2:3f:da:bd: 34:e7:f6:7c:86:ae:6c:52:83:94:45:e3:84:97:d7: 3e:e2:91:b7:3f:71:ec:f5:90:94:ba:c9:66:4b:a7: 88:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:75:9D:66:BC:2C:B0:54:82:A4:4F:17:D4:4C:83:7E:CD:5B:0F:2F X509v3 Authority Key Identifier: keyid:47:E9:6B:F8:31:BB:3C:C4:3B:4F:07:84:26:3E:72:95:87:5D:55:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:27:b6:13:6b:97:06:9d:cc:fd:ba:31:84:9d:94:ab:c7:36: b4:7f:ef:9d:28:5f:94:3c:b5:79:b9:27:b5:77:5f:5c:bf:9f: 3b:75:2d:c4:da:24:ef:b1:5d:0e:37:e9:3b:f8:29:d6:35:d9: 39:ba:12:1e:56:15:a4:24:59:80:48:dd:a3:64:27:fd:f4:34: f9:44:a1:e2:c9:59:a9:e9:1c:25:c0:80:78:0f:03:a2:e2:81: b3:40:94:38:d8:6c:2e:56:0d:e8:3b:0b:b3:29:f3:1b:48:cd: 56:d4:d9:18:54:48:46:b1:70:0c:92:bb:1f:4d:1d:d3:fb:8a: c4:90:b9:4d:b9:f9:0f:58:14:dd:16:70:7e:f8:a8:09:c8:0b: a2:42:d6:4e:68:85:87:a4:14:70:2f:35:18:d0:64:1e:75:e6: 62:f8:2a:9d:39:2f:7d:46:d6:87:72:7e:eb:c0:54:49:35:76: 97:ea:6d:3e:97:52:5a:51:33:91:5e:ba:e9:bd:5b:28:9f:52: 83:7c:bf:60:a4:e9:f3:91:46:d6:76:72:8a:1f:df:1f:2c:79: da:94:25:0d:9f:3b:b1:40:35:b7:46:ff:0e:29:5f:1a:23:99: d2:1b:49:70:5a:99:e4:24:67:e2:06:7a:4f:3e:13:7c:a3:b4: d8:50:4e:8f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NDIwNDExMC8GA1UEBRMoNDdFOTZCRjgzMUJCM0NDNDNCNEYwNzg0MjYzRTcyOTU4 NzVENTUxNjAeFw0yNTEyMjUwNTQ3MDNaFw0yNjAxMDEwNTQ3MDNaMBgxFjAUBgNV BAMMDTY5NGNjZmQ4LWM0YzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZx/4wO5ZrSZ7vjG9oUcznhsbRlApxg0FHmJDy6BGop3Vm5tQ2/uzjevo+mqEr xf4m8SvUK6akBlUOu4dFK2wC6N7O9Qou4HT3fxa1j+5Tx+1+39RM8o8RlHrbh6tG EWUx3wAhS/zxD4F99JjERZg/g7cMd+BN7BzF/AQy4Q/wZPhJc4aEJwZu2Z1DrQYl fsxnlDHnp+XNwV0d3OjKCqDPP/ZY2DmgGlBc46fiUmCnsG7EP7/vaFOlRGMWmf8K KOld9o/Ksc1zCgVwqlosI32N3Q5utB+FMJbOLSb9wj/avTTn9nyGrmxSg5RF44SX 1z7ikbc/cez1kJS6yWZLp4j5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyHWdZrws sFSCpE8X1EyDfs1bDy8wHwYDVR0jBBgwFoAUR+lr+DG7PMQ7TweEJj5ylYddVRYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0MjA0LzQ0MUI1MDUyMzAw OTExRjBBMEFBN0QzREM0RjlBRTAyL1ItbHItREc3UE1RN1R3ZUVKajV5bFlkZFZS WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUi1sci1ERzdQTVE3VHdlRUpqNXlsWWRkVlJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0 MjA0LzQ0MUI1MDUyMzAwOTExRjBBMEFBN0QzREM0RjlBRTAyL1ItbHItREc3UE1R N1R3ZUVKajV5bFlkZFZSWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJsnthNrlwadzP26MYSdlKvHNrR/750oX5Q8tXm5J7V3X1y/nzt1LcTa JO+xXQ436Tv4KdY12Tm6Eh5WFaQkWYBI3aNkJ/30NPlEoeLJWanpHCXAgHgPA6Li gbNAlDjYbC5WDeg7C7Mp8xtIzVbU2RhUSEaxcAySux9NHdP7isSQuU25+Q9YFN0W cH74qAnIC6JC1k5ohYekFHAvNRjQZB515mL4Kp05L31G1odyfuvAVEk1dpfqbT6X UlpRM5Feuum9WyifUoN8v2Ck6fORRtZ2coof3x8sedqUJQ2fO7FANbdG/w4pXxoj mdIbSXBameQkZ+IGek8+E3yjtNhQTo8= -----END CERTIFICATE-----Generated at Sat Dec 27 03:55:15 2025 by rpki-client