This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E63E7/4ACB8BF0887111EFA708D17DC4F9AE02/ltMlORFGzztdo_4Uaf7BKLS2jEk.mft File: ltMlORFGzztdo_4Uaf7BKLS2jEk.mft (raw, json) Hash identifier: +kPPc9J/onDFRTzGfBNUCFW4HZsE0Diqf+LhWtsmmzY= Subject key identifier: DC:83:A6:EC:18:E6:54:DB:7C:3D:BC:80:B4:AE:40:7D:DE:03:7B:B6 Authority key identifier: 96:D3:25:39:11:46:CF:3B:5D:A3:FE:14:69:FE:C1:28:B4:B6:8C:49 Certificate issuer: /CN=A91E63E7/serialNumber=96D325391146CF3B5DA3FE1469FEC128B4B68C49 Certificate serial: E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ltMlORFGzztdo_4Uaf7BKLS2jEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E63E7/4ACB8BF0887111EFA708D17DC4F9AE02/ltMlORFGzztdo_4Uaf7BKLS2jEk.mft Manifest number: E0 Signing time: Tue 23 Dec 2025 04:28:43 +0000 Manifest this update: Tue 23 Dec 2025 04:28:42 +0000 Manifest next update: Tue 30 Dec 2025 04:28:42 +0000 Files and hashes: 1: ltMlORFGzztdo_4Uaf7BKLS2jEk.crl (hash: iaEX6YIN6G24NZ62E6KXKoZZrDImuktRfsENGqEfLQU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E63E7/4ACB8BF0887111EFA708D17DC4F9AE02/ltMlORFGzztdo_4Uaf7BKLS2jEk.crl rsync://rpki.apnic.net/member_repository/A91E63E7/4ACB8BF0887111EFA708D17DC4F9AE02/ltMlORFGzztdo_4Uaf7BKLS2jEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ltMlORFGzztdo_4Uaf7BKLS2jEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:28:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 224 (0xe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E63E7, serialNumber=96D325391146CF3B5DA3FE1469FEC128B4B68C49 Validity Not Before: Dec 23 04:28:42 2025 GMT Not After : Dec 30 04:28:42 2025 GMT Subject: CN=694a1a7b-090e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:0e:74:ac:e9:96:c5:5d:d7:b7:a8:54:0e:0e: 1b:7d:27:ba:2d:09:08:fe:c2:77:42:58:49:0a:06: 68:ac:4f:e8:db:8e:72:d7:38:15:d7:fb:ff:c5:50: 13:ca:ec:44:af:6c:ab:30:93:6f:90:82:60:17:65: b2:88:64:f1:c9:9f:21:cf:41:93:2d:d1:57:a1:4d: bc:b9:01:63:17:5a:be:d4:ba:c4:6d:e3:7e:13:45: 1d:32:42:fb:d2:af:62:29:e3:d7:bf:be:a8:41:ca: b4:42:06:01:ac:4b:0e:9c:b6:2c:db:c2:0d:d2:08: 5c:9e:fc:7b:27:8e:b0:97:42:7d:04:fa:6d:ad:04: 2e:d6:4e:3e:07:c9:56:0a:4d:8f:dc:6c:f3:0c:99: 84:87:01:dc:2e:da:a5:b5:e5:87:59:29:37:e0:3a: 26:fe:16:32:15:25:89:2d:5c:0f:e2:94:53:10:fd: 6d:62:63:ef:24:44:9c:c3:1c:76:08:c3:49:62:75: 5c:ce:55:14:64:ea:d3:4f:7e:03:06:92:a7:de:a6: 06:b3:e6:9d:6e:51:62:14:c1:3b:24:8a:08:19:d2: 50:6e:fb:71:9a:42:5f:14:ff:03:67:36:0d:f3:79: 39:b7:b4:08:e6:9a:ee:2a:a9:0a:04:b6:fc:9a:cc: 03:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:83:A6:EC:18:E6:54:DB:7C:3D:BC:80:B4:AE:40:7D:DE:03:7B:B6 X509v3 Authority Key Identifier: keyid:96:D3:25:39:11:46:CF:3B:5D:A3:FE:14:69:FE:C1:28:B4:B6:8C:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E63E7/4ACB8BF0887111EFA708D17DC4F9AE02/ltMlORFGzztdo_4Uaf7BKLS2jEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ltMlORFGzztdo_4Uaf7BKLS2jEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E63E7/4ACB8BF0887111EFA708D17DC4F9AE02/ltMlORFGzztdo_4Uaf7BKLS2jEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:15:ac:d6:17:2d:36:b1:df:9f:2e:0d:b8:fa:84:77:bf:de: 87:26:fa:30:62:a0:b0:06:ad:20:b8:f4:0e:1b:57:e6:7c:42: c1:31:95:50:45:82:44:f7:77:a8:87:4f:41:2d:6f:6c:2d:aa: 96:0e:a9:3b:56:4b:43:3d:ec:d5:fd:00:40:77:b0:e7:0e:ad: f1:6a:0d:a8:0c:0d:99:b6:e1:1c:94:98:0f:b2:c6:d8:c7:a2: 50:2c:bc:ac:ab:1b:6c:67:31:87:01:8c:d7:3a:df:e5:6b:92: d4:bc:26:0a:71:13:1b:9c:ba:30:88:81:10:1d:d9:3f:9f:23: cc:2d:82:81:7c:80:a2:d5:39:92:48:c2:48:f1:c7:ea:69:f5: af:ba:6d:1d:ba:12:0d:9e:39:15:31:0c:ef:f7:d1:9a:c0:25: 76:32:07:04:ed:12:9d:91:50:d9:ec:a9:fc:9d:7a:6a:6f:3b: 11:54:94:cd:f4:5b:19:db:7d:3e:4d:a8:fc:e6:9c:14:68:b7: b2:97:3a:e7:d1:7a:8e:9d:00:69:79:c5:53:fc:52:1c:68:a5: 29:80:19:e3:9d:1f:3a:d4:0f:4e:cf:7f:95:d5:fa:3f:05:d8: a3:3e:8a:9c:92:ef:48:90:cd:9e:86:5c:81:5c:e3:13:a6:9b: 85:d7:d1:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYzRTcxMTAvBgNVBAUTKDk2RDMyNTM5MTE0NkNGM0I1REEzRkUxNDY5RkVDMTI4 QjRCNjhDNDkwHhcNMjUxMjIzMDQyODQyWhcNMjUxMjMwMDQyODQyWjAYMRYwFAYD VQQDDA02OTRhMWE3Yi0wOTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyA50rOmWxV3Xt6hUDg4bfSe6LQkI/sJ3QlhJCgZorE/o245y1zgV1/v/xVAT yuxEr2yrMJNvkIJgF2WyiGTxyZ8hz0GTLdFXoU28uQFjF1q+1LrEbeN+E0UdMkL7 0q9iKePXv76oQcq0QgYBrEsOnLYs28IN0ghcnvx7J46wl0J9BPptrQQu1k4+B8lW Ck2P3GzzDJmEhwHcLtqlteWHWSk34Dom/hYyFSWJLVwP4pRTEP1tYmPvJEScwxx2 CMNJYnVczlUUZOrTT34DBpKn3qYGs+adblFiFME7JIoIGdJQbvtxmkJfFP8DZzYN 83k5t7QI5pruKqkKBLb8mswDmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNyDpuwY 5lTbfD28gLSuQH3eA3u2MB8GA1UdIwQYMBaAFJbTJTkRRs87XaP+FGn+wSi0toxJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjNFNy80QUNCOEJGMDg4 NzExMUVGQTcwOEQxN0RDNEY5QUUwMi9sdE1sT1JGR3p6dGRvXzRVYWY3QktMUzJq RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x0TWxPUkZHenp0ZG9fNFVhZjdCS0xTMmpFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjNFNy80QUNCOEJGMDg4NzExMUVGQTcwOEQxN0RDNEY5QUUwMi9sdE1sT1JGR3p6 dGRvXzRVYWY3QktMUzJqRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTFazWFy02sd+fLg24+oR3v96HJvowYqCwBq0guPQOG1fmfELBMZVQ RYJE93eoh09BLW9sLaqWDqk7VktDPezV/QBAd7DnDq3xag2oDA2ZtuEclJgPssbY x6JQLLysqxtsZzGHAYzXOt/la5LUvCYKcRMbnLowiIEQHdk/nyPMLYKBfICi1TmS SMJI8cfqafWvum0duhINnjkVMQzv99GawCV2MgcE7RKdkVDZ7Kn8nXpqbzsRVJTN 9FsZ230+Taj85pwUaLeylzrn0XqOnQBpecVT/FIcaKUpgBnjnR861A9Oz3+V1fo/ BdijPoqcku9IkM2ehlyBXOMTppuF19Ef -----END CERTIFICATE-----Generated at Wed Dec 24 02:56:23 2025 by rpki-client