This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft File: lpDF1gn85ELDW5kW1WP58Ye2itQ.mft (raw, json) Hash identifier: hgdhblfXPUi2+CmG8+y2GHx0Tu+7Cbj+fPq2lt+7JB4= Subject key identifier: 3A:AC:9A:D8:0E:F4:D9:DF:4C:54:D1:D3:B0:42:EF:6F:6E:9C:EE:E4 Authority key identifier: 96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 Certificate issuer: /CN=A91D8E2C/serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Certificate serial: 0EA5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft Manifest number: 0E9C Signing time: Thu 18 Dec 2025 17:30:22 +0000 Manifest this update: Thu 18 Dec 2025 17:30:21 +0000 Manifest next update: Thu 25 Dec 2025 17:30:21 +0000 Files and hashes: 1: lpDF1gn85ELDW5kW1WP58Ye2itQ.crl (hash: QX2Mlj2nbZne3gOt4WAdwigkkfnQVrcqGbASRZQTw4U=) 2: 6C153768CE5511EB9DD80C30C4F9AE02.roa (hash: FB/I0gTgEb20qtL8a4Y3PnJsdj8cSocHpg/e5FisnJk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:30:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3749 (0xea5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8E2C, serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Validity Not Before: Dec 18 17:30:21 2025 GMT Not After : Dec 25 17:30:21 2025 GMT Subject: CN=69443a2e-0245 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:5d:36:4b:69:1d:d4:7a:d7:15:6b:2b:a4:2d: 70:2c:d7:ad:b8:2c:11:7f:0e:66:97:e0:e8:4a:b1: c5:00:6e:bf:b8:c4:31:8c:cb:31:32:26:0b:55:a7: ef:ed:1b:24:6f:02:cf:4c:ab:b4:a6:07:0b:5a:95: 13:a5:a1:7e:79:59:8a:34:9b:1a:9d:87:04:ec:2f: 9b:54:46:98:a8:c4:a8:01:52:e1:8b:db:b5:6d:32: 6d:6d:4c:76:1e:b5:96:61:6c:30:d2:66:0a:85:85: dd:40:93:5b:7d:4f:c5:aa:e2:4f:bf:9b:2c:d6:6e: 0c:a0:e2:c8:72:3f:ff:04:a8:c6:95:dc:40:1b:2f: a4:85:39:54:51:fa:3d:87:93:4c:4c:35:d5:83:a6: af:fd:cb:be:79:02:df:3e:59:11:22:16:08:23:78: 7e:68:32:e2:7c:40:79:54:ea:c9:44:6e:85:40:1b: 49:08:4e:b1:2e:43:61:3f:57:33:75:b5:6b:7e:69: b4:14:b9:dd:a7:1d:1a:b6:3b:1e:11:e2:6c:33:12: e0:60:bf:c2:88:1b:8a:46:ff:cc:45:c5:51:3c:c0: 60:e6:a0:83:b8:00:b0:d4:e2:ad:6d:95:fa:f5:55: ce:9e:bb:66:db:f7:b6:5c:7a:64:40:b4:d8:ff:f3: 52:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:AC:9A:D8:0E:F4:D9:DF:4C:54:D1:D3:B0:42:EF:6F:6E:9C:EE:E4 X509v3 Authority Key Identifier: keyid:96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:ab:ae:4c:ce:46:66:f6:d2:17:86:c2:f0:95:fa:ca:21:63: b7:30:a0:89:f3:36:91:24:19:44:1e:98:99:62:b0:74:e3:0a: 7e:67:32:42:d7:b8:57:6f:92:34:33:a0:b5:c2:29:79:e2:7f: f4:aa:7f:c9:6d:31:26:ec:d9:9e:12:9d:93:63:7c:e0:8b:8e: 8f:b5:ac:c5:10:81:21:4a:c3:dc:3e:40:3c:b0:5a:34:89:4c: 38:2c:01:21:f0:47:17:90:2c:ce:0c:2e:7a:4a:68:a4:b8:1f: e0:7e:87:28:40:c6:f0:bc:d3:2c:6c:a2:b6:89:b4:bf:99:e1: b6:f0:0b:61:e8:79:84:2c:02:4d:8f:b9:1c:9c:c4:4d:e9:ee: f2:0f:39:54:76:6d:ca:33:c5:04:62:bf:0f:24:8a:43:fc:47: 1a:4f:f4:b2:86:56:9c:0b:0d:33:80:27:42:94:50:c8:13:1a: c1:9f:c3:8b:38:5d:37:31:48:3a:ab:12:de:02:f7:09:5e:e9: a2:42:f0:fc:31:3f:c5:bc:cc:db:45:5d:c1:52:1a:49:c4:1e: 2c:12:db:6f:79:84:c9:e9:c3:6c:da:d5:8b:0a:4d:5e:cd:48: c7:e5:e7:af:89:a2:8d:5a:d6:c9:60:fd:b1:33:8d:54:44:b1: 62:b4:80:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFMkMxMTAvBgNVBAUTKDk2OTBDNUQ2MDlGQ0U0NDJDMzVCOTkxNkQ1NjNGOUYx ODdCNjhBRDQwHhcNMjUxMjE4MTczMDIxWhcNMjUxMjI1MTczMDIxWjAYMRYwFAYD VQQDDA02OTQ0M2EyZS0wMjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz102S2kd1HrXFWsrpC1wLNetuCwRfw5ml+DoSrHFAG6/uMQxjMsxMiYLVafv 7RskbwLPTKu0pgcLWpUTpaF+eVmKNJsanYcE7C+bVEaYqMSoAVLhi9u1bTJtbUx2 HrWWYWww0mYKhYXdQJNbfU/FquJPv5ss1m4MoOLIcj//BKjGldxAGy+khTlUUfo9 h5NMTDXVg6av/cu+eQLfPlkRIhYII3h+aDLifEB5VOrJRG6FQBtJCE6xLkNhP1cz dbVrfmm0FLndpx0atjseEeJsMxLgYL/CiBuKRv/MRcVRPMBg5qCDuACw1OKtbZX6 9VXOnrtm2/e2XHpkQLTY//NSFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDqsmtgO 9NnfTFTR07BC729unO7kMB8GA1UdIwQYMBaAFJaQxdYJ/ORCw1uZFtVj+fGHtorU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEUyQy8wRkUxRUQwNkEy RkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVFTERXNWtXMVdQNThZZTJp dFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xwREYxZ244NUVMRFc1a1cxV1A1OFllMml0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEUyQy8wRkUxRUQwNkEyRkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVF TERXNWtXMVdQNThZZTJpdFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAq65MzkZm9tIXhsLwlfrKIWO3MKCJ8zaRJBlEHpiZYrB04wp+ZzJC 17hXb5I0M6C1wil54n/0qn/JbTEm7NmeEp2TY3zgi46PtazFEIEhSsPcPkA8sFo0 iUw4LAEh8EcXkCzODC56SmikuB/gfocoQMbwvNMsbKK2ibS/meG28Ath6HmELAJN j7kcnMRN6e7yDzlUdm3KM8UEYr8PJIpD/EcaT/SyhlacCw0zgCdClFDIExrBn8OL OF03MUg6qxLeAvcJXumiQvD8MT/FvMzbRV3BUhpJxB4sEttveYTJ6cNs2tWLCk1e zUjH5eeviaKNWtbJYP2xM41URLFitIBQ -----END CERTIFICATE-----Generated at Fri Dec 19 23:56:31 2025 by rpki-client