This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft File: LD0jWhshn0FmEJALADuKv9wXAqI.mft (raw, json) Hash identifier: 9alM1pTrNocjDeBdgH0R2IyIloAkvxoN85hDILfhK4s= Subject key identifier: 55:56:0A:F7:17:2E:B9:25:AE:A1:75:BA:8D:C4:D9:97:4A:1C:36:29 Authority key identifier: 2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 Certificate issuer: /CN=A91CEA40/serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Certificate serial: 067D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft Manifest number: 0670 Signing time: Tue 30 Dec 2025 21:52:48 +0000 Manifest this update: Tue 30 Dec 2025 21:52:48 +0000 Manifest next update: Tue 06 Jan 2026 21:52:48 +0000 Files and hashes: 1: LD0jWhshn0FmEJALADuKv9wXAqI.crl (hash: PJPrFDENpkt/EMTlSykvm6s80YPWaFPNkYegjJPyYbA=) 2: 96F093D4BEA011EB8CAD965FC4F9AE02.roa (hash: NpLkQ/NypmNX/0X8ZR0aPK3YWZwmOShkZdvPXd4fivY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 Jan 2026 21:52:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1661 (0x67d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEA40, serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Validity Not Before: Dec 30 21:52:48 2025 GMT Not After : Jan 6 21:52:48 2026 GMT Subject: CN=695449b0-1f9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:21:ca:f0:20:24:ce:0f:c1:8f:06:38:eb:01: f9:88:2f:0f:95:e3:e2:0c:c1:6f:0a:6f:c3:28:9b: 89:0d:97:44:3f:80:c2:a1:d5:19:02:73:f4:ec:63: 3f:41:c2:d8:53:e8:24:4c:c5:c4:ef:32:76:50:dd: 52:66:39:53:6a:c2:33:a7:bb:e3:eb:43:64:a5:24: e9:90:82:6e:ba:de:1a:b8:17:9c:d3:f1:c8:b0:f7: 3d:60:20:b5:13:69:13:00:b2:14:0a:e2:48:78:d9: be:56:2d:26:dd:8a:65:2a:27:02:72:28:de:5a:d9: 5b:2a:ef:6a:6a:57:d1:3b:d5:1f:09:2f:85:02:af: cd:e7:89:7d:e3:c9:4a:8a:b6:10:2b:f1:66:7b:0c: f3:4d:27:5d:ac:22:4d:f3:c8:5d:d2:36:7f:da:b8: 73:5a:a8:e2:6f:63:33:0c:ef:08:a1:d8:60:ea:81: bd:ec:91:0b:0d:9b:03:0f:40:7c:eb:5b:79:a3:63: 3a:40:3a:ac:96:b1:e4:dc:56:2d:a8:55:f7:0b:fd: 0b:6e:e7:c7:4a:44:80:5b:32:74:37:d0:6e:c5:62: 52:fc:92:da:5c:0d:ec:d3:0f:48:33:b5:a9:d1:1c: 64:70:f1:bb:70:40:30:89:24:ec:21:45:70:d6:8b: d7:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:56:0A:F7:17:2E:B9:25:AE:A1:75:BA:8D:C4:D9:97:4A:1C:36:29 X509v3 Authority Key Identifier: keyid:2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:99:45:67:63:47:d4:23:7e:ee:2d:f9:0c:b7:da:9b:b2:dd: 1d:8d:64:7c:ab:3c:e0:03:2a:0e:38:d5:97:5c:98:fd:01:16: a6:81:67:14:14:12:79:e4:97:53:47:04:0a:3d:3f:54:87:38: 4d:0b:c8:4c:55:f1:5c:99:cd:9b:96:20:04:c3:d3:11:3c:78: cb:d5:b1:02:d9:a3:38:56:0b:3f:19:a1:74:9a:fd:27:78:51: 77:ad:b3:cb:ad:5d:84:11:7d:63:19:25:5b:af:16:6f:0c:e8: 6f:84:4f:ab:0f:75:83:d4:38:4b:25:0f:73:be:cb:09:eb:f1: 67:45:57:dc:2c:52:41:56:5f:f4:31:f4:e7:5b:83:86:d0:f0: f7:a4:ff:08:7c:ad:fa:87:42:84:fc:a1:68:73:d1:37:09:2e: 57:f7:10:8b:2f:f3:15:79:81:60:62:27:19:34:10:ae:8c:7d: 47:66:5e:18:40:83:f6:d9:ab:aa:19:80:b3:42:03:e2:d7:97: 40:d0:eb:4a:74:63:8d:db:99:92:f7:f5:6e:25:f2:ba:8f:5d: c7:43:4b:b3:43:bf:6f:9e:e2:83:c5:f5:a6:90:19:44:45:68: f0:6a:f4:be:15:3a:62:e7:e0:38:8d:99:1c:4d:19:80:a6:b4: 86:bc:1f:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBNDAxMTAvBgNVBAUTKDJDM0QyMzVBMUIyMTlGNDE2NjEwOTAwQjAwM0I4QUJG REMxNzAyQTIwHhcNMjUxMjMwMjE1MjQ4WhcNMjYwMTA2MjE1MjQ4WjAYMRYwFAYD VQQDDA02OTU0NDliMC0xZjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArSHK8CAkzg/BjwY46wH5iC8PlePiDMFvCm/DKJuJDZdEP4DCodUZAnP07GM/ QcLYU+gkTMXE7zJ2UN1SZjlTasIzp7vj60NkpSTpkIJuut4auBec0/HIsPc9YCC1 E2kTALIUCuJIeNm+Vi0m3YplKicCcijeWtlbKu9qalfRO9UfCS+FAq/N54l948lK irYQK/FmewzzTSddrCJN88hd0jZ/2rhzWqjib2MzDO8Iodhg6oG97JELDZsDD0B8 61t5o2M6QDqslrHk3FYtqFX3C/0LbufHSkSAWzJ0N9BuxWJS/JLaXA3s0w9IM7Wp 0RxkcPG7cEAwiSTsIUVw1ovXtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFVWCvcX LrklrqF1uo3E2ZdKHDYpMB8GA1UdIwQYMBaAFCw9I1obIZ9BZhCQCwA7ir/cFwKi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUE0MC84RTk2NEJDRUFG NzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4wRm1FSkFMQUR1S3Y5d1hB cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEMGpXaHNobjBGbUVKQUxBRHVLdjl3WEFxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUE0MC84RTk2NEJDRUFGNzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4w Rm1FSkFMQUR1S3Y5d1hBcUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6mUVnY0fUI37uLfkMt9qbst0djWR8qzzgAyoOONWXXJj9ARamgWcU FBJ55JdTRwQKPT9UhzhNC8hMVfFcmc2bliAEw9MRPHjL1bEC2aM4Vgs/GaF0mv0n eFF3rbPLrV2EEX1jGSVbrxZvDOhvhE+rD3WD1DhLJQ9zvssJ6/FnRVfcLFJBVl/0 MfTnW4OG0PD3pP8IfK36h0KE/KFoc9E3CS5X9xCLL/MVeYFgYicZNBCujH1HZl4Y QIP22auqGYCzQgPi15dA0OtKdGON25mS9/VuJfK6j13HQ0uzQ79vnuKDxfWmkBlE RWjwavS+FTpi5+A4jZkcTRmAprSGvB8Y -----END CERTIFICATE-----Generated at Wed Dec 31 21:06:47 2025 by rpki-client