This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft File: 1lqglKUeKDl1O1khC2zyxUkVwB4.mft (raw, json) Hash identifier: IJsfH4exw/s2u2VzMmojDGXU0FjQo1n150QlmdNEnZg= Subject key identifier: 51:CB:4B:6B:05:E3:53:92:9C:D5:E3:B2:BF:F0:E4:0A:59:48:F9:5C Authority key identifier: D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E Certificate issuer: /CN=A915C1AA/serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Certificate serial: 0A38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft Manifest number: 0A31 Signing time: Thu 04 Dec 2025 19:00:37 +0000 Manifest this update: Thu 04 Dec 2025 19:00:36 +0000 Manifest next update: Thu 11 Dec 2025 19:00:36 +0000 Files and hashes: 1: 1lqglKUeKDl1O1khC2zyxUkVwB4.crl (hash: z8l0jv2oYcapuZ3I/YYT5PGnSsyfYLcXhGPN6plX1kM=) 2: 220853047F2211EA8E730F35C4F9AE02.roa (hash: GncSpKfRZkeGl3QwfrF2wdsfNONCmDmNLMd0bZEde3M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2616 (0xa38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C1AA, serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E Validity Not Before: Dec 4 19:00:36 2025 GMT Not After : Dec 11 19:00:36 2025 GMT Subject: CN=6931da54-7d14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ed:63:d2:cb:44:2e:0c:42:aa:1a:12:dc:c4: 85:b9:30:40:c2:5f:23:75:97:38:64:19:db:10:4e: 4d:ce:e7:a9:79:ee:93:02:f2:f6:60:a6:f0:82:92: cb:17:81:09:03:57:f1:fd:10:68:9f:d7:e5:f9:01: 7d:02:fc:e4:74:2b:0f:e4:fe:8f:73:30:04:24:11: 6d:a3:3d:07:fb:37:a9:ed:cb:cc:4b:73:b8:07:c2: d9:52:43:88:a3:d2:62:f3:78:ab:8e:5c:01:9d:99: 08:9c:04:a2:d1:f6:76:05:e1:e9:95:ce:d5:78:6d: 2c:33:24:21:f2:a2:80:a8:a8:0f:d1:54:75:2f:92: 92:fb:eb:eb:3f:e3:0b:49:b7:2a:0f:55:f4:31:f1: 16:6a:24:05:8a:a5:a6:35:d0:6c:59:63:00:75:10: 8d:51:aa:23:0e:81:94:47:91:f4:dc:dd:d9:0d:f4: 38:49:43:b7:21:bc:a5:55:b5:d7:6f:8e:35:e0:92: 15:10:9a:c0:88:57:bf:f2:c5:98:f8:68:2b:85:c8: 33:95:30:73:0f:ae:15:0e:a7:6c:59:5f:72:42:1d: f8:e8:45:b0:89:da:e8:7a:da:69:2d:70:0c:e1:b2: 48:06:94:f9:5e:5e:3e:39:15:df:83:14:2d:ac:31: ea:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:CB:4B:6B:05:E3:53:92:9C:D5:E3:B2:BF:F0:E4:0A:59:48:F9:5C X509v3 Authority Key Identifier: keyid:D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:64:8a:74:d3:dd:69:3f:df:c2:d4:42:7d:71:98:81:c1:37: e2:f4:db:e4:41:59:fb:c5:87:e3:c4:c0:2b:b9:84:61:fa:74: 91:07:ac:11:f3:39:7c:b0:8b:27:44:e4:f2:61:05:49:fd:9e: 5a:22:47:07:c6:2f:dc:1b:51:66:46:94:a3:44:ef:d1:26:d4: f3:2e:b2:f5:05:c7:eb:5b:d2:f6:93:bf:8e:e4:98:6e:10:6d: 5e:c2:59:e3:ab:c1:09:e3:d6:62:fc:0b:7a:e1:c6:9a:a4:98: 59:f1:7d:7a:48:28:1f:22:a2:ba:a0:ab:60:a8:cb:e9:9c:50: af:68:05:ba:cf:03:07:e3:14:25:ed:3d:36:07:2e:d1:01:9b: 1f:a1:3b:3a:6c:af:cf:41:9a:80:20:6e:02:e2:1a:40:e1:15: 5d:72:92:ab:57:c0:74:84:70:db:b1:ad:bc:5e:b4:3a:00:f7: a0:ac:4e:f9:44:12:d0:24:ae:ce:5d:aa:5d:c4:5f:7e:8f:b2: 1b:42:6a:78:89:bb:2c:3e:55:1c:f2:f0:3e:79:59:a1:c7:3c: cc:2b:89:cf:9b:be:37:6f:2c:92:62:77:14:ba:86:1a:53:4b: dd:fe:38:54:1d:76:ef:73:17:1b:73:aa:25:72:61:21:88:00: d9:2b:6f:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMxQUExMTAvBgNVBAUTKEQ2NUFBMDk0QTUxRTI4Mzk3NTNCNTkyMTBCNkNGMkM1 NDkxNUMwMUUwHhcNMjUxMjA0MTkwMDM2WhcNMjUxMjExMTkwMDM2WjAYMRYwFAYD VQQDEw02OTMxZGE1NC03ZDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAse1j0stELgxCqhoS3MSFuTBAwl8jdZc4ZBnbEE5Nzuepee6TAvL2YKbwgpLL F4EJA1fx/RBon9fl+QF9AvzkdCsP5P6PczAEJBFtoz0H+zep7cvMS3O4B8LZUkOI o9Ji83irjlwBnZkInASi0fZ2BeHplc7VeG0sMyQh8qKAqKgP0VR1L5KS++vrP+ML SbcqD1X0MfEWaiQFiqWmNdBsWWMAdRCNUaojDoGUR5H03N3ZDfQ4SUO3IbylVbXX b4414JIVEJrAiFe/8sWY+GgrhcgzlTBzD64VDqdsWV9yQh346EWwidroetppLXAM 4bJIBpT5Xl4+ORXfgxQtrDHqVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFHLS2sF 41OSnNXjsr/w5ApZSPlcMB8GA1UdIwQYMBaAFNZaoJSlHig5dTtZIQts8sVJFcAe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzFBQS82QzlEMjYzMDdG MjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtEbDFPMWtoQzJ6eXhVa1Z3 QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFscWdsS1VlS0RsMU8xa2hDMnp5eFVrVndCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzFBQS82QzlEMjYzMDdGMjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtVZUtE bDFPMWtoQzJ6eXhVa1Z3QjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwZIp0091pP9/C1EJ9cZiBwTfi9NvkQVn7xYfjxMAruYRh+nSRB6wR 8zl8sIsnROTyYQVJ/Z5aIkcHxi/cG1FmRpSjRO/RJtTzLrL1BcfrW9L2k7+O5Jhu EG1ewlnjq8EJ49Zi/At64caapJhZ8X16SCgfIqK6oKtgqMvpnFCvaAW6zwMH4xQl 7T02By7RAZsfoTs6bK/PQZqAIG4C4hpA4RVdcpKrV8B0hHDbsa28XrQ6APegrE75 RBLQJK7OXapdxF9+j7IbQmp4ibssPlUc8vA+eVmhxzzMK4nPm743byySYncUuoYa U0vd/jhUHXbvcxcbc6olcmEhiADZK28U -----END CERTIFICATE-----Generated at Sat Dec 6 20:08:07 2025 by rpki-client