This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.mft File: ldziG17K3rBp3IG5JAXUdN5BwgY.mft (raw, json) Hash identifier: HxxC9uoyxZpK3tgeBdIu6CKfDXgNZsFaLAqSo4NSDRY= Subject key identifier: 1A:EA:81:80:97:E9:51:67:D4:FE:C4:95:EE:EA:A7:34:6C:98:82:04 Authority key identifier: 95:DC:E2:1B:5E:CA:DE:B0:69:DC:81:B9:24:05:D4:74:DE:41:C2:06 Certificate issuer: /CN=A91CD174/serialNumber=95DCE21B5ECADEB069DC81B92405D474DE41C206 Certificate serial: 0C96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldziG17K3rBp3IG5JAXUdN5BwgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.mft Manifest number: 0C8B Signing time: Thu 18 Dec 2025 18:12:00 +0000 Manifest this update: Thu 18 Dec 2025 18:12:00 +0000 Manifest next update: Thu 25 Dec 2025 18:12:00 +0000 Files and hashes: 1: ldziG17K3rBp3IG5JAXUdN5BwgY.crl (hash: LDoGSFf717OBlxoXF2WO6S06KzZFCarDSFHCi463pIY=) 2: 54AD60AE0C2E11EABBBFA158C4F9AE02.roa (hash: /1zN6Gwwi0zP2Xs45slEdMpw3TT72EUNYyQ6n/qRBPQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.crl rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldziG17K3rBp3IG5JAXUdN5BwgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:11:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3222 (0xc96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD174, serialNumber=95DCE21B5ECADEB069DC81B92405D474DE41C206 Validity Not Before: Dec 18 18:12:00 2025 GMT Not After : Dec 25 18:12:00 2025 GMT Subject: CN=694443f0-b61e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:6e:b1:c0:4d:95:4b:9d:43:0b:7d:41:61:ba: 9c:78:df:17:da:74:fe:5c:5b:96:b4:73:ff:8c:43: 08:fa:e8:3a:db:d3:d7:29:35:22:89:9c:92:f8:76: 80:cd:08:61:a2:2a:ce:15:5c:2e:70:64:09:05:64: 8d:6d:46:34:6f:81:c8:81:94:3e:f9:4d:e4:74:ac: 5a:54:55:a7:ea:3f:ea:78:79:37:36:63:80:78:3a: a1:ce:93:f2:90:a8:64:00:87:7a:f2:34:29:22:60: 5e:c8:d4:ee:3d:26:6a:05:6c:72:6b:ca:0a:3d:f4: 7d:73:1c:a8:2e:bc:28:d3:4f:90:fc:98:69:10:52: f0:5a:bb:e5:40:64:0a:21:0d:4a:df:03:ae:6c:d6: f7:8c:eb:7c:bb:ca:7f:06:7d:78:10:a6:e8:82:c6: e6:d2:30:e5:62:a9:8a:c1:41:f0:cf:bc:a3:35:8a: ca:8c:f2:10:80:d1:52:8c:d9:44:86:39:67:0f:ed: 90:9b:52:c2:21:c5:0a:f2:ee:69:14:91:46:16:e9: 53:90:94:4d:ed:c4:2f:c4:b5:61:a8:72:c1:b8:fb: 3a:59:58:8f:1d:da:d5:5c:70:a7:6b:dc:32:94:2e: bd:73:37:0b:9a:18:cc:39:25:50:3b:37:cc:a3:0b: 62:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:EA:81:80:97:E9:51:67:D4:FE:C4:95:EE:EA:A7:34:6C:98:82:04 X509v3 Authority Key Identifier: keyid:95:DC:E2:1B:5E:CA:DE:B0:69:DC:81:B9:24:05:D4:74:DE:41:C2:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldziG17K3rBp3IG5JAXUdN5BwgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD174/51C3E5480B4D11EA92C28F20C4F9AE02/ldziG17K3rBp3IG5JAXUdN5BwgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:36:f2:9f:e2:8a:db:6f:69:3d:63:2e:23:82:85:89:44:af: 5d:89:cf:45:6d:3e:f5:ac:1d:a0:c5:16:cb:31:61:93:96:bd: 8c:d8:07:bf:b6:46:82:7e:5f:22:6e:ba:a7:ed:71:da:1c:63: 8a:3a:04:5e:0d:89:6c:3f:fc:66:18:bc:41:1c:fa:b7:9b:12: 5e:b6:c0:fc:e9:37:a8:81:0a:84:16:31:2b:48:14:66:eb:71: bf:75:1d:0b:2d:c3:65:fb:e1:12:fa:c4:65:b6:48:8f:5f:07: e3:9d:4e:b9:51:0f:35:4f:3e:e5:7b:19:70:c4:a3:b6:fe:c6: 04:45:95:e5:c6:99:47:6f:a4:18:32:a6:65:68:e4:35:db:b5: 33:e8:1f:61:f5:d3:ac:23:54:8d:2b:c5:db:fa:85:f7:c3:4f: 63:80:1c:2f:4c:26:19:b0:c1:7d:a4:39:e6:d1:30:50:37:b2: 22:09:00:62:28:4b:55:06:6d:ce:a5:60:e1:e6:34:a1:ce:e6: 1e:a2:9a:9c:22:d0:e7:88:ea:d2:bb:a9:c1:ea:cd:aa:8e:11: 06:7d:ce:fc:ca:92:f0:35:50:67:40:d8:5f:0f:83:64:78:bc: 83:90:07:de:25:87:9a:ba:7e:5b:4f:b5:72:84:24:8e:99:07: 50:48:d8:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QxNzQxMTAvBgNVBAUTKDk1RENFMjFCNUVDQURFQjA2OURDODFCOTI0MDVENDc0 REU0MUMyMDYwHhcNMjUxMjE4MTgxMjAwWhcNMjUxMjI1MTgxMjAwWjAYMRYwFAYD VQQDDA02OTQ0NDNmMC1iNjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA126xwE2VS51DC31BYbqceN8X2nT+XFuWtHP/jEMI+ug629PXKTUiiZyS+HaA zQhhoirOFVwucGQJBWSNbUY0b4HIgZQ++U3kdKxaVFWn6j/qeHk3NmOAeDqhzpPy kKhkAId68jQpImBeyNTuPSZqBWxya8oKPfR9cxyoLrwo00+Q/JhpEFLwWrvlQGQK IQ1K3wOubNb3jOt8u8p/Bn14EKbogsbm0jDlYqmKwUHwz7yjNYrKjPIQgNFSjNlE hjlnD+2Qm1LCIcUK8u5pFJFGFulTkJRN7cQvxLVhqHLBuPs6WViPHdrVXHCna9wy lC69czcLmhjMOSVQOzfMowtijQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBrqgYCX 6VFn1P7Ele7qpzRsmIIEMB8GA1UdIwQYMBaAFJXc4hteyt6wadyBuSQF1HTeQcIG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDE3NC81MUMzRTU0ODBC NEQxMUVBOTJDMjhGMjBDNEY5QUUwMi9sZHppRzE3SzNyQnAzSUc1SkFYVWRONUJ3 Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xkemlHMTdLM3JCcDNJRzVKQVhVZE41QndnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDE3NC81MUMzRTU0ODBCNEQxMUVBOTJDMjhGMjBDNEY5QUUwMi9sZHppRzE3SzNy QnAzSUc1SkFYVWRONUJ3Z1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaNvKf4orbb2k9Yy4jgoWJRK9dic9FbT71rB2gxRbLMWGTlr2M2Ae/ tkaCfl8ibrqn7XHaHGOKOgReDYlsP/xmGLxBHPq3mxJetsD86TeogQqEFjErSBRm 63G/dR0LLcNl++ES+sRltkiPXwfjnU65UQ81Tz7lexlwxKO2/sYERZXlxplHb6QY MqZlaOQ127Uz6B9h9dOsI1SNK8Xb+oX3w09jgBwvTCYZsMF9pDnm0TBQN7IiCQBi KEtVBm3OpWDh5jShzuYeopqcItDniOrSu6nB6s2qjhEGfc78ypLwNVBnQNhfD4Nk eLyDkAfeJYeaun5bT7VyhCSOmQdQSNiH -----END CERTIFICATE-----Generated at Fri Dec 19 20:31:02 2025 by rpki-client