This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft File: R-lr-DG7PMQ7TweEJj5ylYddVRY.mft (raw, json) Hash identifier: bQK3VwbEfQhd7dtEuQ5iqfgeXDIzdJ9EW4knjx7PM8o= Subject key identifier: C7:09:B8:87:64:BA:FB:5C:3C:5C:8B:13:55:D4:E3:D6:FE:EC:23:6B Authority key identifier: 47:E9:6B:F8:31:BB:3C:C4:3B:4F:07:84:26:3E:72:95:87:5D:55:16 Certificate issuer: /CN=A91C4204/serialNumber=47E96BF831BB3CC43B4F0784263E7295875D5516 Certificate serial: 75 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft Manifest number: 73 Signing time: Tue 23 Dec 2025 05:44:47 +0000 Manifest this update: Tue 23 Dec 2025 05:44:47 +0000 Manifest next update: Tue 30 Dec 2025 05:44:47 +0000 Files and hashes: 1: R-lr-DG7PMQ7TweEJj5ylYddVRY.crl (hash: 1uWsBv87Z59JbLcIRcgfNjkKhGELakJ7yHUeIfniT4g=) 2: CA2D4952300911F0AB675D3EC4F9AE02.roa (hash: wSACUp5c4PrWddzrJcvj1KCwEmCFzuB6DHldOTgXN4E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.crl rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:44:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4204, serialNumber=47E96BF831BB3CC43B4F0784263E7295875D5516 Validity Not Before: Dec 23 05:44:47 2025 GMT Not After : Dec 30 05:44:47 2025 GMT Subject: CN=694a2c4f-1cf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:2b:b4:48:6b:5a:60:1a:99:18:d9:c4:27:3e: e9:ca:86:0e:86:72:40:b2:26:b5:61:5a:77:93:f1: 58:ae:f7:24:53:90:cd:35:33:b7:e3:50:99:82:98: f5:ee:6a:91:51:f2:47:4a:6c:47:e0:5e:7d:03:fa: a0:b9:08:61:0e:6e:16:fb:f1:21:de:5e:10:0f:90: d2:3f:41:17:9f:90:59:8e:53:3a:46:01:61:43:86: d7:4e:3e:fe:68:bc:4e:05:92:98:f8:d8:19:d0:47: b2:18:15:62:04:18:c2:4a:cd:60:15:36:32:20:3e: d1:53:18:9f:5b:b4:cd:0a:62:01:f4:60:67:2c:be: e1:0b:42:61:86:25:e3:c8:dc:d2:b9:8d:70:d5:ab: 90:f0:f7:00:60:5d:19:f0:86:d3:da:20:a6:1c:fe: 7e:79:b3:bf:a1:ac:9e:9c:95:0b:e2:33:b1:95:d3: 67:5b:0a:67:a3:a4:67:03:bf:75:60:2c:a0:d9:29: 91:de:cd:a6:79:e8:b7:05:95:0c:06:a5:d6:15:30: 4f:f5:58:c0:ca:ed:a0:12:81:82:a0:f9:50:3d:cf: 1b:51:7d:15:67:08:cd:20:dd:12:85:48:08:6d:f1: de:49:f8:57:bf:4e:75:9b:cc:e4:a7:2e:3e:55:b4: 85:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:09:B8:87:64:BA:FB:5C:3C:5C:8B:13:55:D4:E3:D6:FE:EC:23:6B X509v3 Authority Key Identifier: keyid:47:E9:6B:F8:31:BB:3C:C4:3B:4F:07:84:26:3E:72:95:87:5D:55:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:7d:10:1a:fe:93:a4:99:bc:47:dc:5a:f1:ba:e5:54:8c:e7: e7:e9:94:b1:58:47:d4:f5:23:cd:91:97:1d:1b:3a:01:2d:07: 66:d0:73:a9:15:53:24:58:df:12:10:e2:4a:54:67:b8:7b:dc: 9c:44:e5:fd:11:68:2b:f9:e2:9a:6c:d9:89:3c:54:3d:3d:3d: 44:04:74:dc:1f:b9:10:6c:7d:1c:8e:44:c3:b7:9f:a8:cc:88: c4:93:d7:1f:8f:8a:55:31:7c:f1:52:f0:14:ff:3a:95:2f:d1: bf:4f:f0:32:ce:e2:d5:92:f1:5b:5e:61:03:93:2d:ed:32:fc: c0:d8:ec:83:ce:3f:58:d3:40:87:06:07:19:cb:05:85:60:5f: f7:ef:8d:0a:74:40:f4:4f:95:c9:b4:33:89:54:9d:aa:c2:cd: 79:c8:8e:f3:f9:bf:84:dd:15:6d:41:a3:e3:b2:cb:b4:0c:63: 86:fa:a4:9d:2e:54:d2:4b:93:ed:7d:b4:21:da:1a:2f:e9:0e: 3a:fb:ae:34:41:2c:f7:7f:bb:b6:e5:26:b3:8a:a6:3e:1e:03: 0e:bb:b0:82:64:05:3e:41:b0:2f:d7:d0:9d:f5:f9:54:44:d5: ff:e8:8b:7a:fa:23:5a:fb:33:41:c2:f0:c5:5e:43:23:37:78: 0c:b3:77:6d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NDIwNDExMC8GA1UEBRMoNDdFOTZCRjgzMUJCM0NDNDNCNEYwNzg0MjYzRTcyOTU4 NzVENTUxNjAeFw0yNTEyMjMwNTQ0NDdaFw0yNTEyMzAwNTQ0NDdaMBgxFjAUBgNV BAMMDTY5NGEyYzRmLTFjZjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDnK7RIa1pgGpkY2cQnPunKhg6GckCyJrVhWneT8Viu9yRTkM01M7fjUJmCmPXu apFR8kdKbEfgXn0D+qC5CGEObhb78SHeXhAPkNI/QRefkFmOUzpGAWFDhtdOPv5o vE4Fkpj42BnQR7IYFWIEGMJKzWAVNjIgPtFTGJ9btM0KYgH0YGcsvuELQmGGJePI 3NK5jXDVq5Dw9wBgXRnwhtPaIKYc/n55s7+hrJ6clQviM7GV02dbCmejpGcDv3Vg LKDZKZHezaZ56LcFlQwGpdYVME/1WMDK7aASgYKg+VA9zxtRfRVnCM0g3RKFSAht 8d5J+Fe/TnWbzOSnLj5VtIWFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxwm4h2S6 +1w8XIsTVdTj1v7sI2swHwYDVR0jBBgwFoAUR+lr+DG7PMQ7TweEJj5ylYddVRYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0MjA0LzQ0MUI1MDUyMzAw OTExRjBBMEFBN0QzREM0RjlBRTAyL1ItbHItREc3UE1RN1R3ZUVKajV5bFlkZFZS WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUi1sci1ERzdQTVE3VHdlRUpqNXlsWWRkVlJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0 MjA0LzQ0MUI1MDUyMzAwOTExRjBBMEFBN0QzREM0RjlBRTAyL1ItbHItREc3UE1R N1R3ZUVKajV5bFlkZFZSWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIB9EBr+k6SZvEfcWvG65VSM5+fplLFYR9T1I82Rlx0bOgEtB2bQc6kV UyRY3xIQ4kpUZ7h73JxE5f0RaCv54pps2Yk8VD09PUQEdNwfuRBsfRyORMO3n6jM iMST1x+PilUxfPFS8BT/OpUv0b9P8DLO4tWS8VteYQOTLe0y/MDY7IPOP1jTQIcG BxnLBYVgX/fvjQp0QPRPlcm0M4lUnarCzXnIjvP5v4TdFW1Bo+Oyy7QMY4b6pJ0u VNJLk+19tCHaGi/pDjr7rjRBLPd/u7blJrOKpj4eAw67sIJkBT5BsC/X0J31+VRE 1f/oi3r6I1r7M0HC8MVeQyM3eAyzd20= -----END CERTIFICATE-----Generated at Tue Dec 23 20:34:23 2025 by rpki-client