This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft File: lQfxHRNjrFs5Lzb17zgixc_NaPk.mft (raw, json) Hash identifier: A5wMFsOerKGBpd5/0N01e3KgRJhjS30a30ZtiyXhotw= Subject key identifier: E2:05:06:59:F7:E0:C1:B9:41:54:8D:B3:38:C4:C8:9E:D8:AA:A2:81 Authority key identifier: 95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9 Certificate issuer: /CN=A91EE8AC/serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9 Certificate serial: 023A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft Manifest number: 037E Signing time: Fri 19 Dec 2025 01:13:39 +0000 Manifest this update: Fri 19 Dec 2025 01:13:39 +0000 Manifest next update: Fri 26 Dec 2025 01:13:39 +0000 Files and hashes: 1: lQfxHRNjrFs5Lzb17zgixc_NaPk.crl (hash: ygkqhnEbSv/JlBAUWpn3Ida176yevTF9ahrlLq5WggE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:13:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 570 (0x23a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE8AC, serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9 Validity Not Before: Dec 19 01:13:39 2025 GMT Not After : Dec 26 01:13:39 2025 GMT Subject: CN=6944a6c3-99a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:89:ca:ac:96:b7:b6:2f:e8:d0:c5:dc:ef:87: 52:b9:2b:e5:ea:fe:82:b8:e3:35:00:50:2c:fe:ee: 2c:1d:3d:f1:2a:a5:cf:88:b4:1a:c0:c7:a5:98:17: c1:56:ad:8b:b6:7b:06:21:8c:51:91:f9:33:d8:a7: 0e:78:5d:78:ae:ee:89:98:36:b5:5f:54:e5:a5:cc: 5f:02:f7:d2:65:a1:ce:ca:d3:57:29:16:9d:39:1c: 1a:f9:8e:d7:e9:f1:72:2a:a4:53:e9:33:e7:56:db: cf:b1:10:72:39:c6:68:ff:9c:4c:35:95:d0:81:29: 69:88:f0:ac:8a:e8:0c:64:c5:38:ed:fc:45:7e:d3: 0d:09:a9:e3:62:1e:6d:12:bf:f1:57:6f:2a:91:39: 90:f9:a5:e5:f6:f6:bc:ed:89:89:12:02:be:be:b2: 1a:57:5d:b8:d3:de:11:ad:85:76:dd:58:3b:97:91: 56:d6:0b:2e:4d:52:1c:f8:77:dc:54:76:23:bc:46: 31:90:7e:ff:20:a5:3c:dc:37:3c:25:b2:04:84:7d: a3:c1:5b:00:c1:8b:80:c0:0f:24:d3:9a:3f:9a:cd: bd:6e:77:c5:68:f7:4e:37:6d:dd:7a:d7:9f:09:d7: aa:7e:21:94:47:80:b9:42:70:46:37:56:18:df:d3: 99:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:05:06:59:F7:E0:C1:B9:41:54:8D:B3:38:C4:C8:9E:D8:AA:A2:81 X509v3 Authority Key Identifier: keyid:95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:d8:1b:8d:ad:68:7b:63:9a:f5:4c:9a:b2:6a:43:94:e5:24: 96:e1:41:9b:05:ff:be:b3:36:aa:2a:29:9b:6c:4b:33:5f:a0: a5:e4:52:5c:95:49:3b:00:eb:26:74:a8:5b:bd:f3:05:8f:31: b8:8e:24:61:1a:7b:fc:20:bf:96:34:b6:70:92:d8:8a:57:e5: 19:dc:ab:80:19:5e:1e:4f:da:33:b2:22:a5:42:e2:28:83:69: c2:40:18:ac:27:55:3c:a1:2c:94:03:81:b4:c7:52:ec:e6:90: c2:b0:ef:0d:19:91:76:ec:34:2f:3a:66:dc:c0:43:7a:63:06: ad:5d:72:ae:1c:a1:30:82:4b:6c:a2:07:ac:8c:33:ac:a9:f8: 85:4b:f5:17:4c:d1:a1:14:a8:ec:3b:cd:ff:e2:9b:46:8e:9b: a1:ad:65:87:09:2e:5a:62:97:29:ec:42:5b:08:55:e7:ed:91: 1d:71:eb:47:d4:53:ce:4c:99:92:67:13:ae:ff:0e:80:b6:3b: f3:88:63:6f:ca:b6:e6:0a:e4:6a:73:84:17:dd:ee:ad:b3:22: a2:6d:6c:c1:36:35:96:86:2b:01:95:eb:67:05:26:80:6b:21: 76:8b:ca:54:c1:6c:34:99:a9:84:a3:c2:0a:e0:84:a7:a2:09: e7:3d:6c:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU4QUMxMTAvBgNVBAUTKDk1MDdGMTFEMTM2M0FDNUIzOTJGMzZGNUVGMzgyMkM1 Q0ZDRDY4RjkwHhcNMjUxMjE5MDExMzM5WhcNMjUxMjI2MDExMzM5WjAYMRYwFAYD VQQDDA02OTQ0YTZjMy05OWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr4nKrJa3ti/o0MXc74dSuSvl6v6CuOM1AFAs/u4sHT3xKqXPiLQawMelmBfB Vq2LtnsGIYxRkfkz2KcOeF14ru6JmDa1X1TlpcxfAvfSZaHOytNXKRadORwa+Y7X 6fFyKqRT6TPnVtvPsRByOcZo/5xMNZXQgSlpiPCsiugMZMU47fxFftMNCanjYh5t Er/xV28qkTmQ+aXl9va87YmJEgK+vrIaV124094RrYV23Vg7l5FW1gsuTVIc+Hfc VHYjvEYxkH7/IKU83Dc8JbIEhH2jwVsAwYuAwA8k05o/ms29bnfFaPdON23detef CdeqfiGUR4C5QnBGN1YY39OZvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOIFBln3 4MG5QVSNszjEyJ7YqqKBMB8GA1UdIwQYMBaAFJUH8R0TY6xbOS829e84IsXPzWj5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRThBQy81MDM4RUM4QzdE RUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJGczVMemIxN3pnaXhjX05h UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRZnhIUk5qckZzNUx6YjE3emdpeGNfTmFQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RThBQy81MDM4RUM4QzdERUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJG czVMemIxN3pnaXhjX05hUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBj2BuNrWh7Y5r1TJqyakOU5SSW4UGbBf++szaqKimbbEszX6Cl5FJc lUk7AOsmdKhbvfMFjzG4jiRhGnv8IL+WNLZwktiKV+UZ3KuAGV4eT9ozsiKlQuIo g2nCQBisJ1U8oSyUA4G0x1Ls5pDCsO8NGZF27DQvOmbcwEN6YwatXXKuHKEwgkts ogesjDOsqfiFS/UXTNGhFKjsO83/4ptGjpuhrWWHCS5aYpcp7EJbCFXn7ZEdcetH 1FPOTJmSZxOu/w6AtjvziGNvyrbmCuRqc4QX3e6tsyKibWzBNjWWhisBletnBSaA ayF2i8pUwWw0mamEo8IK4ISnognnPWxA -----END CERTIFICATE-----Generated at Fri Dec 19 19:03:13 2025 by rpki-client