This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft File: loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft (raw, json) Hash identifier: SqRDWTKvjf48DF/e6X6sDU3K7alavouSXOKrwRn4Za0= Subject key identifier: BE:5A:7B:33:0D:45:CA:11:39:64:3F:65:80:39:C2:7E:88:B1:25:25 Authority key identifier: 96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 Certificate issuer: /CN=A91514B1/serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Certificate serial: 05BE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft Manifest number: 05A3 Signing time: Sat 06 Dec 2025 22:02:07 +0000 Manifest this update: Sat 06 Dec 2025 22:02:07 +0000 Manifest next update: Sat 13 Dec 2025 22:02:07 +0000 Files and hashes: 1: loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl (hash: WzDSHpYvnJd0JbqlX54pELjT6a8Boi39tEPrOr7/cf4=) 2: AF0A3F14178911EC876F5F50C4F9AE02.roa (hash: KRiDfnMy2+pwD3zrIBOiDvY7T9O/jHD6MSYbIKfk0AY=) 3: F1C7A044D91E11EFAD3C7613C4F9AE02.roa (hash: cMsOBL01lB8MhNIvPe7EZWZhW2/NqYoBIP9IcsqTKSI=) 4: D3D36BE0271011ECA0D7D95AC4F9AE02.roa (hash: ToNYuKjsmNUrDjM3EopYow2kRZNQw6nwL7h9Ilwq2wI=) 5: AE8BB766178911EC876F5F50C4F9AE02.roa (hash: 9Xivq6s93mksbhu2p/H/z3gtS9/XmhNf3IMjTVy5pWY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1470 (0x5be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1, serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Validity Not Before: Dec 6 22:02:07 2025 GMT Not After : Dec 13 22:02:07 2025 GMT Subject: CN=6934a7df-6a92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:f6:88:66:63:55:78:5a:4a:96:48:08:ff:9c: 45:ca:09:bf:60:49:d3:a8:ab:e9:e5:f3:d4:49:7a: 97:cf:28:78:f5:67:b5:e0:20:a8:8e:41:a4:16:70: ab:f5:25:76:c4:fc:78:3e:63:e0:1e:c2:3f:55:7a: e1:3d:28:fa:1e:6a:05:b7:c2:d7:46:6c:a3:2c:77: cb:64:16:78:a2:6d:27:31:b8:ae:b4:a6:b6:03:47: 02:83:85:f7:34:0e:53:ab:ce:3c:47:0e:74:c2:b2: e4:cb:61:d3:af:2e:b0:d9:80:4f:72:a5:1e:54:5f: ee:2b:8f:e2:65:d6:ac:71:43:ae:4b:c4:ed:32:57: d5:53:ed:f0:2f:32:47:fc:be:68:87:74:78:3b:79: 12:d8:52:97:71:27:a0:5b:ee:b2:37:78:41:52:c9: d8:4c:f5:2d:87:f8:93:c9:8e:59:8a:da:41:88:80: 12:56:e0:e0:00:5f:7f:bb:9e:b9:ff:c8:aa:25:fc: aa:e9:76:40:08:1e:f6:f0:46:46:47:c8:3a:75:0c: 1c:98:fd:9d:7f:ad:3b:3b:ad:72:39:a8:7d:a5:f3: 55:60:45:f4:31:cc:ef:09:55:5e:bf:6e:dd:4c:5e: f7:c0:b1:f6:83:f9:9f:3e:97:35:36:50:3a:3c:c1: f3:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:5A:7B:33:0D:45:CA:11:39:64:3F:65:80:39:C2:7E:88:B1:25:25 X509v3 Authority Key Identifier: keyid:96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:bb:60:fd:b8:ca:df:b7:e6:c1:b8:39:d2:82:f0:d5:45:6a: dc:2f:bc:20:04:6e:f6:66:38:56:53:ce:da:ce:a8:01:81:2e: 79:ae:ce:60:27:c1:8f:66:1b:59:e6:7e:96:cd:e4:a8:af:1c: 93:26:e9:49:5b:83:09:53:2c:74:ca:c8:15:bc:92:32:8f:ed: cf:6d:c8:8c:7e:3c:82:2e:ee:a7:a4:fd:32:8b:03:7b:d6:ca: b3:74:5e:47:a8:55:30:3e:e4:02:b5:19:21:dd:38:34:f6:08: d7:49:5d:25:e5:e5:56:20:9e:74:5a:83:7b:75:50:9c:04:6d: a9:ff:4a:78:2c:ff:3a:e7:92:f7:00:4c:b0:8f:5b:61:6d:90: 03:a4:5b:c7:c4:61:cb:23:05:e7:e2:8f:f4:51:3d:c0:1f:a1: 01:2b:fd:eb:8f:e2:53:24:65:da:af:17:28:ff:1f:05:97:fd: 66:66:78:b0:37:46:7d:3f:12:05:cd:78:c3:8d:7b:3d:50:82: da:9b:05:7f:96:4b:66:49:5d:1e:19:ba:4c:97:f0:89:d7:bf: 2f:16:40:69:a6:9c:af:65:c5:d2:25:54:12:e7:c5:f9:0b:fe: 8a:d3:8c:bb:a4:12:d5:16:1f:ea:10:eb:f1:a7:b0:39:b6:d1: ac:29:ac:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDk2ODJDMkFCRTI1MzIzNTgwNzc2QjFEMEUyNzVEMkZE MkQ2OTdFQjYwHhcNMjUxMjA2MjIwMjA3WhcNMjUxMjEzMjIwMjA3WjAYMRYwFAYD VQQDEw02OTM0YTdkZi02YTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnPaIZmNVeFpKlkgI/5xFygm/YEnTqKvp5fPUSXqXzyh49We14CCojkGkFnCr 9SV2xPx4PmPgHsI/VXrhPSj6HmoFt8LXRmyjLHfLZBZ4om0nMbiutKa2A0cCg4X3 NA5Tq848Rw50wrLky2HTry6w2YBPcqUeVF/uK4/iZdascUOuS8TtMlfVU+3wLzJH /L5oh3R4O3kS2FKXcSegW+6yN3hBUsnYTPUth/iTyY5ZitpBiIASVuDgAF9/u565 /8iqJfyq6XZACB728EZGR8g6dQwcmP2df607O61yOah9pfNVYEX0MczvCVVev27d TF73wLH2g/mfPpc1NlA6PMHzowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL5aezMN RcoROWQ/ZYA5wn6IsSUlMB8GA1UdIwQYMBaAFJaCwqviUyNYB3ax0OJ10v0taX62 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS83QTg4NjRBQ0ZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9sb0xDcS1KVEkxZ0hkckhRNG5YU19TMXBm clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xvTENxLUpUSTFnSGRySFE0blhTX1MxcGZyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTRCMS83QTg4NjRBQ0ZCRTQxMUVCODJCNjI2NEZDNEY5QUUwMi9sb0xDcS1KVEkx Z0hkckhRNG5YU19TMXBmclkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPu2D9uMrft+bBuDnSgvDVRWrcL7wgBG72ZjhWU87azqgBgS55rs5g J8GPZhtZ5n6WzeSorxyTJulJW4MJUyx0ysgVvJIyj+3PbciMfjyCLu6npP0yiwN7 1sqzdF5HqFUwPuQCtRkh3Tg09gjXSV0l5eVWIJ50WoN7dVCcBG2p/0p4LP8655L3 AEywj1thbZADpFvHxGHLIwXn4o/0UT3AH6EBK/3rj+JTJGXarxco/x8Fl/1mZniw N0Z9PxIFzXjDjXs9UILamwV/lktmSV0eGbpMl/CJ178vFkBpppyvZcXSJVQS58X5 C/6K04y7pBLVFh/qEOvxp7A5ttGsKaxx -----END CERTIFICATE-----Generated at Sun Dec 7 00:01:57 2025 by rpki-client