This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft File: lHy2dKhYzZGupVJro2aKEeSey5M.mft (raw, json) Hash identifier: 7etG8vl7fBnf/pOH4Ij99HvY+ymCN527W1QXYJ61VWw= Subject key identifier: 47:7A:E8:13:23:56:34:AB:96:32:63:C3:D0:59:7F:0A:21:7F:03:C5 Authority key identifier: 94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 Certificate issuer: /CN=A91DFC30/serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Certificate serial: 0448 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft Manifest number: 043F Signing time: Sat 20 Dec 2025 23:32:10 +0000 Manifest this update: Sat 20 Dec 2025 23:32:09 +0000 Manifest next update: Sat 27 Dec 2025 23:32:09 +0000 Files and hashes: 1: lHy2dKhYzZGupVJro2aKEeSey5M.crl (hash: 8Fnkv3tsj8lmfCGXTy/+3bZ+V65lELr5AXJZ2uVYVaI=) 2: 13F5D28685B111ECB675B552C4F9AE02.roa (hash: wg979tEV/edC9z/60lEEUA1wH6+Atveb0Z20mtMK9/g=) 3: 147D51CA85B111ECB675B552C4F9AE02.roa (hash: e9cwg8d7bC8r2DHgx/kL7/A4+KHztZ7rWF6Yv+XqYD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 23:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1096 (0x448) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFC30, serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Validity Not Before: Dec 20 23:32:09 2025 GMT Not After : Dec 27 23:32:09 2025 GMT Subject: CN=694731f9-bc1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:32:44:31:3b:92:d2:ae:fc:2c:9a:83:90:6b: 6c:49:8d:14:77:8b:c4:d6:63:ec:29:50:f7:e6:ef: 9b:91:80:f4:cc:d4:cf:73:e5:45:86:02:99:04:58: d6:d6:34:35:d8:50:92:c8:bc:eb:91:2f:fd:cd:c3: 05:10:11:8e:18:ad:3e:ca:b9:70:61:cf:eb:0d:46: 81:99:17:80:19:5e:45:04:f0:33:97:08:98:31:27: 50:21:c9:75:72:e1:c3:97:03:d5:db:c8:3a:69:e9: 28:17:8c:11:2b:5f:06:04:4f:64:f7:fd:ef:aa:91: d2:5e:30:ae:03:ca:2b:14:07:7f:95:f2:55:c3:1c: 61:d5:b7:8c:45:09:f1:9d:67:84:b3:df:f2:a1:b2: 7d:b6:4d:a1:0c:24:3c:57:5e:be:70:ba:82:f6:c6: 74:a5:1e:d7:1e:19:8c:10:d5:e3:dd:48:69:97:b0: 6e:91:2f:31:c2:24:c9:9a:ce:82:40:09:82:c2:ee: c9:ab:29:ee:45:f3:e7:9e:8f:6b:a5:57:41:4e:73: 2b:03:e4:29:02:1f:05:db:12:fa:1d:62:53:57:b3: d8:da:14:a3:91:ba:8b:a2:46:28:c9:e6:48:40:e1: ab:53:7a:fb:0f:08:2e:6f:f0:08:d7:51:f0:e1:a4: 72:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:7A:E8:13:23:56:34:AB:96:32:63:C3:D0:59:7F:0A:21:7F:03:C5 X509v3 Authority Key Identifier: keyid:94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:25:7f:7f:78:f5:d1:59:71:b2:ea:b2:c3:63:a7:7c:1f:a6: 97:1b:56:39:ee:c5:49:9b:72:22:0c:99:12:3e:3d:23:30:c4: 87:c6:26:ea:23:f6:c5:87:59:f3:26:2c:ee:1a:3c:a7:7f:af: 19:56:fe:a5:c2:ee:5e:98:fc:01:9a:63:1d:f7:9f:bf:30:10: bc:e3:82:60:09:56:89:70:09:42:14:8b:08:64:f6:b1:82:5a: 60:07:36:b3:59:26:a2:09:7a:73:b3:f6:9f:36:39:74:1f:dc: 77:1d:95:98:8e:78:f5:e5:1b:c7:4c:65:6d:c7:61:df:a1:60: 98:d7:79:37:b8:38:8f:01:f1:54:5a:95:00:cc:7b:c1:98:b5: de:45:66:42:0a:19:d0:7f:08:3f:50:16:09:12:a5:e6:30:ee: e6:77:76:be:b4:b7:77:d3:26:af:9d:50:28:24:97:7a:88:6a: 63:30:d7:f2:a9:62:df:96:2e:5f:41:7b:be:55:88:0c:91:82: 12:32:a8:d2:5f:1e:3a:9b:e6:a8:52:f7:8d:bf:48:bc:03:0e: 5f:45:90:ca:e7:e5:05:1c:a1:8c:3e:00:6a:cc:dc:91:c6:2c: 8f:df:7c:fb:29:df:b4:e8:98:7b:43:fe:30:37:95:b9:dc:16: 11:b6:53:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZDMzAxMTAvBgNVBAUTKDk0N0NCNjc0QTg1OENEOTFBRUE1NTI2QkEzNjY4QTEx RTQ5RUNCOTMwHhcNMjUxMjIwMjMzMjA5WhcNMjUxMjI3MjMzMjA5WjAYMRYwFAYD VQQDDA02OTQ3MzFmOS1iYzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApDJEMTuS0q78LJqDkGtsSY0Ud4vE1mPsKVD35u+bkYD0zNTPc+VFhgKZBFjW 1jQ12FCSyLzrkS/9zcMFEBGOGK0+yrlwYc/rDUaBmReAGV5FBPAzlwiYMSdQIcl1 cuHDlwPV28g6aekoF4wRK18GBE9k9/3vqpHSXjCuA8orFAd/lfJVwxxh1beMRQnx nWeEs9/yobJ9tk2hDCQ8V16+cLqC9sZ0pR7XHhmMENXj3Uhpl7BukS8xwiTJms6C QAmCwu7JqynuRfPnno9rpVdBTnMrA+QpAh8F2xL6HWJTV7PY2hSjkbqLokYoyeZI QOGrU3r7Dwgub/AI11Hw4aRyNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEd66BMj VjSrljJjw9BZfwohfwPFMB8GA1UdIwQYMBaAFJR8tnSoWM2RrqVSa6NmihHknsuT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkMzMC8xMTJBRjFBQzg1 QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpaR3VwVkpybzJhS0VlU2V5 NU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIeTJkS2hZelpHdXBWSnJvMmFLRWVTZXk1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RkMzMC8xMTJBRjFBQzg1QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpa R3VwVkpybzJhS0VlU2V5NU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvJX9/ePXRWXGy6rLDY6d8H6aXG1Y57sVJm3IiDJkSPj0jMMSHxibq I/bFh1nzJizuGjynf68ZVv6lwu5emPwBmmMd95+/MBC844JgCVaJcAlCFIsIZPax glpgBzazWSaiCXpzs/afNjl0H9x3HZWYjnj15RvHTGVtx2HfoWCY13k3uDiPAfFU WpUAzHvBmLXeRWZCChnQfwg/UBYJEqXmMO7md3a+tLd30yavnVAoJJd6iGpjMNfy qWLfli5fQXu+VYgMkYISMqjSXx46m+aoUveNv0i8Aw5fRZDK5+UFHKGMPgBqzNyR xiyP33z7Kd+06Jh7Q/4wN5W53BYRtlO9 -----END CERTIFICATE-----Generated at Mon Dec 22 22:21:39 2025 by rpki-client