This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft File: lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft (raw, json) Hash identifier: rJs2BZPOmhDSlLXxBRLw4Dnayf/BDIcabxox0RoL8RE= Subject key identifier: 29:63:11:6B:A2:62:8F:63:C9:79:2B:71:7D:69:A3:5D:11:36:66:E9 Authority key identifier: 95:06:8B:B3:0A:BC:7E:00:7F:D8:38:7E:4D:E0:A8:3E:FA:AD:D4:72 Certificate issuer: /CN=A91E9DF8/serialNumber=95068BB30ABC7E007FD8387E4DE0A83EFAADD472 Certificate serial: 0654 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft Manifest number: 064D Signing time: Wed 31 Dec 2025 22:10:49 +0000 Manifest this update: Wed 31 Dec 2025 22:10:49 +0000 Manifest next update: Wed 07 Jan 2026 22:10:49 +0000 Files and hashes: 1: lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl (hash: tev8HK8hcmlbXjRc6K71/VaDkl4KmJxhlGID+nJzyT4=) 2: A8086732B6DA11EBB7B67954C4F9AE02.roa (hash: Hu3KJZGMFU1oSrjsFOXx/j+TH9Vy+Garohr2Zg0l2Z0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 22:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1620 (0x654) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9DF8, serialNumber=95068BB30ABC7E007FD8387E4DE0A83EFAADD472 Validity Not Before: Dec 31 22:10:49 2025 GMT Not After : Jan 7 22:10:49 2026 GMT Subject: CN=69559f69-9b66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:43:d8:de:fb:35:20:c3:c2:c0:d4:4d:e3:42: 8c:8b:b8:1b:42:d3:00:e9:ed:c3:9f:6f:1b:c6:a9: cd:04:ef:d7:de:b6:06:cc:32:92:35:b8:0d:d4:92: d9:b7:91:06:03:97:0e:18:90:a2:f9:a8:fa:86:a3: ff:05:96:32:78:12:16:87:e9:38:1f:68:c8:ee:7b: ba:48:7a:13:64:07:4d:ca:19:14:48:81:15:c5:27: c7:83:62:4d:2b:9d:88:24:9b:33:ee:14:22:8b:31: df:a2:c8:fa:aa:0a:5c:25:8c:f4:8e:35:04:90:bb: 2d:6c:eb:32:98:24:b1:24:43:3d:55:a1:e0:6d:d0: 19:0e:16:cb:8c:4d:f0:8b:06:16:2c:4e:8b:6a:14: e9:aa:0e:f9:f8:f2:90:70:08:1d:79:57:33:d7:10: a6:44:c8:21:8c:70:17:68:78:ba:35:a0:9a:7d:ea: 2a:78:5d:63:50:d4:78:60:1d:9c:38:bd:07:df:2e: 8d:04:3a:e9:c6:1d:6d:43:c3:09:b9:69:d2:6e:b5: 3c:6f:f7:c6:eb:29:18:55:3c:ad:e6:c2:4a:23:13: 75:4e:d0:70:4a:11:63:39:28:d7:7e:e4:f4:fb:b0: 21:e2:c8:9c:64:a4:8f:35:0a:d9:b3:81:8d:91:4f: a3:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:63:11:6B:A2:62:8F:63:C9:79:2B:71:7D:69:A3:5D:11:36:66:E9 X509v3 Authority Key Identifier: keyid:95:06:8B:B3:0A:BC:7E:00:7F:D8:38:7E:4D:E0:A8:3E:FA:AD:D4:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:af:53:0a:48:f0:3a:cc:10:cd:49:96:1c:fc:ba:c5:fd:52: c5:a4:af:dd:09:53:78:54:8e:88:8c:08:11:2c:27:9c:31:28: 30:9e:2f:2c:3d:6f:e9:9b:8f:8d:67:73:d0:c2:65:4e:38:a9: 4c:d0:19:28:37:8b:1a:3f:7f:ca:d9:61:5d:78:ca:f0:e4:ac: 5b:4c:88:2b:21:c7:e6:72:e5:b8:91:eb:8f:36:83:be:06:97: e5:cf:1b:42:0a:a1:b5:85:0c:41:e8:33:6d:70:f9:6c:0e:c6: e3:b3:62:c9:4d:9d:52:a0:72:73:9c:39:5e:29:7f:11:ad:0a: 79:ad:91:4e:08:93:03:c9:f4:2f:10:08:24:41:39:c2:f0:e5: ff:b8:5d:47:88:ed:ac:d2:ff:b0:ce:16:13:9c:19:95:2b:5c: fe:75:1d:25:f5:4b:09:fe:11:48:fe:d5:56:d8:7d:6d:7f:68: 7b:85:a6:5e:37:17:ef:9f:67:ed:76:c6:11:f2:69:a5:35:d1: 67:0a:12:4d:34:e6:3f:18:e2:0a:69:25:ec:92:8e:45:20:08: 5d:04:54:3f:79:28:fa:2b:3a:13:b9:32:bb:ce:4c:2f:87:3b: 69:fe:c5:b6:d2:a6:62:1e:64:63:ac:d5:7f:fc:5a:72:06:96: e8:07:ff:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlERjgxMTAvBgNVBAUTKDk1MDY4QkIzMEFCQzdFMDA3RkQ4Mzg3RTRERTBBODNF RkFBREQ0NzIwHhcNMjUxMjMxMjIxMDQ5WhcNMjYwMTA3MjIxMDQ5WjAYMRYwFAYD VQQDDA02OTU1OWY2OS05YjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3kPY3vs1IMPCwNRN40KMi7gbQtMA6e3Dn28bxqnNBO/X3rYGzDKSNbgN1JLZ t5EGA5cOGJCi+aj6hqP/BZYyeBIWh+k4H2jI7nu6SHoTZAdNyhkUSIEVxSfHg2JN K52IJJsz7hQiizHfosj6qgpcJYz0jjUEkLstbOsymCSxJEM9VaHgbdAZDhbLjE3w iwYWLE6LahTpqg75+PKQcAgdeVcz1xCmRMghjHAXaHi6NaCafeoqeF1jUNR4YB2c OL0H3y6NBDrpxh1tQ8MJuWnSbrU8b/fG6ykYVTyt5sJKIxN1TtBwShFjOSjXfuT0 +7Ah4sicZKSPNQrZs4GNkU+jLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCljEWui Yo9jyXkrcX1po10RNmbpMB8GA1UdIwQYMBaAFJUGi7MKvH4Af9g4fk3gqD76rdRy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOURGOC80QjNCODgxRUI2 RDkxMUVCOEY4NjU1NTRDNEY5QUUwMi9sUWFMc3dxOGZnQl8yRGgtVGVDb1B2cXQx SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRYUxzd3E4ZmdCXzJEaC1UZUNvUHZxdDFISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OURGOC80QjNCODgxRUI2RDkxMUVCOEY4NjU1NTRDNEY5QUUwMi9sUWFMc3dxOGZn Ql8yRGgtVGVDb1B2cXQxSEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByr1MKSPA6zBDNSZYc/LrF/VLFpK/dCVN4VI6IjAgRLCecMSgwni8s PW/pm4+NZ3PQwmVOOKlM0BkoN4saP3/K2WFdeMrw5KxbTIgrIcfmcuW4keuPNoO+ BpflzxtCCqG1hQxB6DNtcPlsDsbjs2LJTZ1SoHJznDleKX8RrQp5rZFOCJMDyfQv EAgkQTnC8OX/uF1HiO2s0v+wzhYTnBmVK1z+dR0l9UsJ/hFI/tVW2H1tf2h7haZe Nxfvn2ftdsYR8mmlNdFnChJNNOY/GOIKaSXsko5FIAhdBFQ/eSj6KzoTuTK7zkwv hztp/sW20qZiHmRjrNV//FpyBpboB/+q -----END CERTIFICATE-----Generated at Thu Jan 1 19:39:19 2026 by rpki-client