This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft File: lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft (raw, json) Hash identifier: wjNUiiLrCIaWuBCwaKmxqAA/bhpWsRDQHCm7kLG+/Wo= Subject key identifier: 6E:7C:43:9D:61:08:70:1A:AF:14:A9:E2:B3:42:B7:B9:1D:D8:51:58 Authority key identifier: 95:06:8B:B3:0A:BC:7E:00:7F:D8:38:7E:4D:E0:A8:3E:FA:AD:D4:72 Certificate issuer: /CN=A91E9DF8/serialNumber=95068BB30ABC7E007FD8387E4DE0A83EFAADD472 Certificate serial: 064D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft Manifest number: 0646 Signing time: Thu 18 Dec 2025 22:02:36 +0000 Manifest this update: Thu 18 Dec 2025 22:02:35 +0000 Manifest next update: Thu 25 Dec 2025 22:02:35 +0000 Files and hashes: 1: lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl (hash: qh7NYVjxCcmX6FBsRDLHQhhIoSGSbtAsDUkj/yKhSLs=) 2: A8086732B6DA11EBB7B67954C4F9AE02.roa (hash: Hu3KJZGMFU1oSrjsFOXx/j+TH9Vy+Garohr2Zg0l2Z0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:02:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1613 (0x64d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9DF8, serialNumber=95068BB30ABC7E007FD8387E4DE0A83EFAADD472 Validity Not Before: Dec 18 22:02:35 2025 GMT Not After : Dec 25 22:02:35 2025 GMT Subject: CN=694479fc-e40a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a6:47:83:99:70:54:44:f5:2f:3a:08:ba:90: 90:5e:9d:6a:f8:9f:6e:bc:aa:3e:40:a3:f8:ba:eb: 57:9c:cd:16:be:ea:0d:f3:1c:a2:3a:de:c8:b5:7a: f8:c7:20:07:85:62:d4:af:0f:db:5f:00:09:f0:15: 9e:bd:e8:71:9e:86:ea:d5:1c:dd:18:52:7e:13:19: 4b:4f:7f:9a:ee:3a:29:dd:3c:cd:78:33:b7:2f:47: b4:16:69:1c:7e:ed:86:93:fb:41:c0:a9:bc:02:ab: 48:c2:31:18:76:fc:6e:41:9b:d4:91:ab:0b:0c:1c: cc:18:43:44:80:4d:8d:ef:a0:a9:32:fd:5c:61:ee: 77:2b:67:14:3b:a0:7f:b3:31:ba:5c:96:c2:0c:42: 62:6c:ab:58:d8:13:ed:10:b1:a7:21:cc:15:0c:8f: c9:1e:de:69:13:6b:d2:56:5a:49:9d:5e:40:d0:01: d1:21:ab:a7:99:a4:a8:6c:84:15:9a:f6:14:7d:f2: 37:16:74:83:9a:06:22:5b:a9:f0:fe:3e:40:f0:6f: 71:a0:25:d2:40:90:89:a1:08:be:d2:84:84:81:4d: bd:25:d6:b0:db:c2:dd:28:77:3b:6f:af:67:b0:3c: bc:f6:7d:30:f1:7a:3f:be:a5:1b:4d:9d:ed:57:99: f9:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:7C:43:9D:61:08:70:1A:AF:14:A9:E2:B3:42:B7:B9:1D:D8:51:58 X509v3 Authority Key Identifier: keyid:95:06:8B:B3:0A:BC:7E:00:7F:D8:38:7E:4D:E0:A8:3E:FA:AD:D4:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:a3:35:4a:de:eb:6a:06:07:b0:90:b3:78:60:0e:90:ab:fd: ee:0b:46:f3:f4:c6:ff:de:2b:4a:c0:f8:d8:7a:48:0e:9c:41: 35:00:83:6b:18:1d:7d:ae:d3:26:8a:36:1e:b4:07:0a:cd:c9: f4:eb:96:50:06:5c:7f:9e:82:9d:e0:2d:e3:79:cd:af:8b:de: d6:18:17:4c:74:82:2b:0d:e8:04:27:56:93:ea:46:21:57:f7: 82:e5:d1:7d:9d:9f:38:31:d8:e7:85:90:70:f3:03:df:5b:9a: 60:a0:22:32:68:57:d7:f6:e9:be:ef:76:4a:bf:e4:2e:98:f5: 3b:8b:7f:31:9a:83:d3:a8:62:bc:28:6a:f2:92:95:e4:79:27: 3b:23:13:83:6f:d0:b0:1b:f1:ea:2b:df:b6:14:21:7a:41:96: 38:67:72:ed:9a:28:c7:64:13:31:64:c7:28:0e:7f:0f:aa:7c: b0:46:7e:82:d9:69:76:7c:50:71:72:f2:50:9d:d4:6b:2f:1f: d1:99:56:a1:cb:db:c5:f6:9c:07:48:8b:e5:91:90:1d:38:91: 6a:ae:e2:8f:63:91:82:09:e3:15:64:07:23:29:ea:e3:db:12: 4f:dd:8f:41:07:2f:e6:ae:2c:f7:28:9a:1d:2f:4a:57:5f:16: 8d:90:1a:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBk0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlERjgxMTAvBgNVBAUTKDk1MDY4QkIzMEFCQzdFMDA3RkQ4Mzg3RTRERTBBODNF RkFBREQ0NzIwHhcNMjUxMjE4MjIwMjM1WhcNMjUxMjI1MjIwMjM1WjAYMRYwFAYD VQQDDA02OTQ0NzlmYy1lNDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApaZHg5lwVET1LzoIupCQXp1q+J9uvKo+QKP4uutXnM0WvuoN8xyiOt7ItXr4 xyAHhWLUrw/bXwAJ8BWevehxnobq1RzdGFJ+ExlLT3+a7jop3TzNeDO3L0e0Fmkc fu2Gk/tBwKm8AqtIwjEYdvxuQZvUkasLDBzMGENEgE2N76CpMv1cYe53K2cUO6B/ szG6XJbCDEJibKtY2BPtELGnIcwVDI/JHt5pE2vSVlpJnV5A0AHRIaunmaSobIQV mvYUffI3FnSDmgYiW6nw/j5A8G9xoCXSQJCJoQi+0oSEgU29Jdaw28LdKHc7b69n sDy89n0w8Xo/vqUbTZ3tV5n5/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG58Q51h CHAarxSp4rNCt7kd2FFYMB8GA1UdIwQYMBaAFJUGi7MKvH4Af9g4fk3gqD76rdRy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOURGOC80QjNCODgxRUI2 RDkxMUVCOEY4NjU1NTRDNEY5QUUwMi9sUWFMc3dxOGZnQl8yRGgtVGVDb1B2cXQx SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRYUxzd3E4ZmdCXzJEaC1UZUNvUHZxdDFISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OURGOC80QjNCODgxRUI2RDkxMUVCOEY4NjU1NTRDNEY5QUUwMi9sUWFMc3dxOGZn Ql8yRGgtVGVDb1B2cXQxSEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZozVK3utqBgewkLN4YA6Qq/3uC0bz9Mb/3itKwPjYekgOnEE1AINr GB19rtMmijYetAcKzcn065ZQBlx/noKd4C3jec2vi97WGBdMdIIrDegEJ1aT6kYh V/eC5dF9nZ84MdjnhZBw8wPfW5pgoCIyaFfX9um+73ZKv+QumPU7i38xmoPTqGK8 KGrykpXkeSc7IxODb9CwG/HqK9+2FCF6QZY4Z3LtmijHZBMxZMcoDn8PqnywRn6C 2Wl2fFBxcvJQndRrLx/RmVahy9vF9pwHSIvlkZAdOJFqruKPY5GCCeMVZAcjKerj 2xJP3Y9BBy/mriz3KJodL0pXXxaNkBrh -----END CERTIFICATE-----Generated at Fri Dec 19 17:47:56 2025 by rpki-client