This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E63E7/4ACB8BF0887111EFA708D17DC4F9AE02/ltMlORFGzztdo_4Uaf7BKLS2jEk.mft File: ltMlORFGzztdo_4Uaf7BKLS2jEk.mft (raw, json) Hash identifier: GeGTZ7aSUDdg8bkUPPMXLWeQVKLJj/cu3HdXm80qmlQ= Subject key identifier: F0:F0:8E:57:2F:5C:D3:D8:A9:6F:BD:1D:D8:A2:A3:C5:E2:9E:8F:F6 Authority key identifier: 96:D3:25:39:11:46:CF:3B:5D:A3:FE:14:69:FE:C1:28:B4:B6:8C:49 Certificate issuer: /CN=A91E63E7/serialNumber=96D325391146CF3B5DA3FE1469FEC128B4B68C49 Certificate serial: DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ltMlORFGzztdo_4Uaf7BKLS2jEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E63E7/4ACB8BF0887111EFA708D17DC4F9AE02/ltMlORFGzztdo_4Uaf7BKLS2jEk.mft Manifest number: DE Signing time: Fri 19 Dec 2025 04:39:14 +0000 Manifest this update: Fri 19 Dec 2025 04:39:14 +0000 Manifest next update: Fri 26 Dec 2025 04:39:14 +0000 Files and hashes: 1: ltMlORFGzztdo_4Uaf7BKLS2jEk.crl (hash: PBm/IwqXlNm/MT0pjqx3zqdSOa/Oj4Vd4aZpWUZGTxw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E63E7/4ACB8BF0887111EFA708D17DC4F9AE02/ltMlORFGzztdo_4Uaf7BKLS2jEk.crl rsync://rpki.apnic.net/member_repository/A91E63E7/4ACB8BF0887111EFA708D17DC4F9AE02/ltMlORFGzztdo_4Uaf7BKLS2jEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ltMlORFGzztdo_4Uaf7BKLS2jEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:39:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E63E7, serialNumber=96D325391146CF3B5DA3FE1469FEC128B4B68C49 Validity Not Before: Dec 19 04:39:14 2025 GMT Not After : Dec 26 04:39:14 2025 GMT Subject: CN=6944d6f2-9185 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:c2:ff:a9:f9:9a:8a:0f:fb:8f:4d:66:10:cf: f3:e0:47:d2:17:3d:f3:24:e9:90:56:41:67:90:bb: 97:26:9e:38:56:21:52:93:66:54:1b:48:32:2f:4b: 91:52:8c:89:49:c8:32:c6:05:05:fb:08:39:0e:cb: b2:6b:62:4a:74:ab:53:a9:d7:09:b1:83:fc:ae:f5: b7:20:df:b7:30:17:b0:82:86:b3:b9:32:a8:58:44: 0d:b3:2b:45:14:a5:55:86:6d:87:7d:20:cc:9d:25: 0e:8c:3a:ad:7d:28:b4:e7:01:ed:0d:32:80:d4:33: 26:f1:d2:44:d7:12:a3:d1:40:e9:b9:a9:cc:5f:ea: 12:16:70:69:4b:fd:46:0e:d3:fc:89:2a:ca:ff:03: 86:b1:c8:85:81:6c:a1:cd:67:13:88:40:ce:ab:7c: 8c:86:e3:57:2d:47:ba:b2:87:f9:48:e6:a5:68:44: bd:d7:62:78:cf:a8:ea:68:e6:55:f6:4c:69:28:12: 8e:73:1f:f8:7d:0b:ea:86:5f:1e:ef:90:e8:cd:53: 08:e9:e7:d8:ae:b9:6a:d5:32:c8:66:af:c3:0b:49: ae:42:9f:bf:b2:95:08:6d:6c:37:eb:87:50:e4:7c: 0f:1f:68:0b:b0:fd:0e:af:12:23:04:aa:12:45:a3: 19:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:F0:8E:57:2F:5C:D3:D8:A9:6F:BD:1D:D8:A2:A3:C5:E2:9E:8F:F6 X509v3 Authority Key Identifier: keyid:96:D3:25:39:11:46:CF:3B:5D:A3:FE:14:69:FE:C1:28:B4:B6:8C:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E63E7/4ACB8BF0887111EFA708D17DC4F9AE02/ltMlORFGzztdo_4Uaf7BKLS2jEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ltMlORFGzztdo_4Uaf7BKLS2jEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E63E7/4ACB8BF0887111EFA708D17DC4F9AE02/ltMlORFGzztdo_4Uaf7BKLS2jEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:5c:0f:2d:1e:cc:0e:21:e6:53:54:15:0d:4a:f5:f5:79:48: 7b:f0:87:4e:11:64:f1:79:4b:64:81:61:00:95:cd:43:e5:75: e4:07:cf:ec:9d:0d:2e:92:ca:72:7f:cd:63:25:e0:dc:b4:00: fc:a6:8e:a9:ce:fd:c9:66:b0:3d:9a:a0:4d:ac:a1:bc:3e:ac: 7f:95:90:ea:f8:e6:76:18:27:1c:18:67:b7:d6:4b:17:d7:15: bf:f9:e3:3c:d6:4a:e4:52:61:3f:27:c8:78:ba:c7:28:91:39: 2a:bf:58:6f:27:c9:94:62:b6:32:7d:47:fe:6a:7b:40:76:30: 9a:ba:ad:94:93:9f:e7:28:21:f1:bb:33:a6:78:5e:87:15:b3: 4c:3e:8e:e6:8d:0b:f8:8b:76:31:ee:b3:e3:8a:0a:fb:8f:7d: f9:09:8e:0e:b8:7d:d2:41:1f:f9:40:82:a1:ad:99:26:c8:f1: 76:67:ea:42:5f:b9:9f:53:b7:04:dd:96:e0:10:35:6a:7b:94: de:c9:6a:8f:18:64:6f:2d:ee:1f:8e:1e:ae:a1:7a:65:16:b8: 48:7f:7b:0c:02:eb:10:9a:36:22:1a:73:41:42:64:11:cf:f8: ce:71:e9:03:d6:fe:dd:e6:60:9c:fa:fe:3a:8b:5a:15:5d:ee: 45:f5:8b:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYzRTcxMTAvBgNVBAUTKDk2RDMyNTM5MTE0NkNGM0I1REEzRkUxNDY5RkVDMTI4 QjRCNjhDNDkwHhcNMjUxMjE5MDQzOTE0WhcNMjUxMjI2MDQzOTE0WjAYMRYwFAYD VQQDDA02OTQ0ZDZmMi05MTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAisL/qfmaig/7j01mEM/z4EfSFz3zJOmQVkFnkLuXJp44ViFSk2ZUG0gyL0uR UoyJScgyxgUF+wg5Dsuya2JKdKtTqdcJsYP8rvW3IN+3MBewgoazuTKoWEQNsytF FKVVhm2HfSDMnSUOjDqtfSi05wHtDTKA1DMm8dJE1xKj0UDpuanMX+oSFnBpS/1G DtP8iSrK/wOGsciFgWyhzWcTiEDOq3yMhuNXLUe6sof5SOalaES912J4z6jqaOZV 9kxpKBKOcx/4fQvqhl8e75DozVMI6efYrrlq1TLIZq/DC0muQp+/spUIbWw364dQ 5HwPH2gLsP0OrxIjBKoSRaMZ3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPDwjlcv XNPYqW+9Hdiio8Xino/2MB8GA1UdIwQYMBaAFJbTJTkRRs87XaP+FGn+wSi0toxJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjNFNy80QUNCOEJGMDg4 NzExMUVGQTcwOEQxN0RDNEY5QUUwMi9sdE1sT1JGR3p6dGRvXzRVYWY3QktMUzJq RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x0TWxPUkZHenp0ZG9fNFVhZjdCS0xTMmpFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjNFNy80QUNCOEJGMDg4NzExMUVGQTcwOEQxN0RDNEY5QUUwMi9sdE1sT1JGR3p6 dGRvXzRVYWY3QktMUzJqRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLXA8tHswOIeZTVBUNSvX1eUh78IdOEWTxeUtkgWEAlc1D5XXkB8/s nQ0ukspyf81jJeDctAD8po6pzv3JZrA9mqBNrKG8Pqx/lZDq+OZ2GCccGGe31ksX 1xW/+eM81krkUmE/J8h4uscokTkqv1hvJ8mUYrYyfUf+antAdjCauq2Uk5/nKCHx uzOmeF6HFbNMPo7mjQv4i3Yx7rPjigr7j335CY4OuH3SQR/5QIKhrZkmyPF2Z+pC X7mfU7cE3ZbgEDVqe5TeyWqPGGRvLe4fjh6uoXplFrhIf3sMAusQmjYiGnNBQmQR z/jOcekD1v7d5mCc+v46i1oVXe5F9YuE -----END CERTIFICATE-----Generated at Fri Dec 19 17:35:33 2025 by rpki-client