This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft File: lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft (raw, json) Hash identifier: Mj/jeqAXhlh90vAy6HEwVfROLDwmC9JrOw/AjRBZXiM= Subject key identifier: E8:FA:EB:62:40:79:A2:70:1B:E8:2C:B5:61:9A:9E:92:6D:B7:8E:0D Authority key identifier: 96:B8:0C:37:C6:61:3D:14:A9:2C:DB:EC:66:28:21:64:3E:8A:F1:1B Certificate issuer: /CN=A91818BD/serialNumber=96B80C37C6613D14A92CDBEC662821643E8AF11B Certificate serial: 030D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft Manifest number: 0304 Signing time: Thu 04 Dec 2025 23:34:00 +0000 Manifest this update: Thu 04 Dec 2025 23:33:59 +0000 Manifest next update: Thu 11 Dec 2025 23:33:59 +0000 Files and hashes: 1: lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl (hash: GbvRBfnrWEfdnc66Yp92eZb67suwzhIh/NXaJFHPlAg=) 2: B83B7E0C065511EDB3E94E54C4F9AE02.roa (hash: 64ZDXa38kdxwzfpX7eFWZ9w6C5i8LC3RH5BIc5A3wCU=) 3: 481545DEFE8211ECBAB0E13FC4F9AE02.roa (hash: jEKlncyC+64UETCLm2u7esM8VX+/1LjWilEvooOzMxI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 781 (0x30d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91818BD, serialNumber=96B80C37C6613D14A92CDBEC662821643E8AF11B Validity Not Before: Dec 4 23:33:59 2025 GMT Not After : Dec 11 23:33:59 2025 GMT Subject: CN=69321a68-93d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:fe:3c:20:8c:4e:33:6b:83:5a:7a:8f:9b:24: ec:f9:39:86:dd:27:ec:96:f3:af:b3:e2:d7:46:7a: 6c:7c:e3:ee:e5:43:a2:29:05:f6:a8:4b:46:e2:65: b5:81:83:3b:09:11:36:61:ee:f4:59:01:ae:1c:36: 57:5a:e3:f5:36:51:dc:0b:05:f4:6f:fd:cb:9e:db: 1d:77:14:3c:80:d6:31:04:b7:51:79:17:67:17:e1: c1:e1:5a:01:f9:18:24:68:b6:3a:b5:4c:f2:b7:b0: 49:b2:aa:ca:7a:ad:e4:43:11:a1:21:ce:1d:c9:c7: 38:3e:ac:7a:2e:2a:f0:ff:be:78:6d:43:ec:b6:f1: 48:ea:6e:97:5d:66:35:77:ca:df:17:6a:37:c8:89: 53:e2:64:d9:7d:0f:92:6a:59:c8:11:dd:fd:f7:30: 9b:0a:f2:9e:96:96:c5:fc:7f:9d:40:16:eb:8f:fb: 64:bb:9e:b8:99:d8:76:2a:35:44:b5:ca:ad:d1:6a: fa:18:68:df:83:60:04:c0:8c:5d:1d:4a:f9:19:ee: 08:96:fc:65:ca:7d:a9:b5:d8:ba:14:64:e9:fb:41: f6:18:ff:44:3a:13:66:40:26:a3:85:ab:2f:d8:57: 83:6b:b7:ca:7a:91:da:be:ad:a3:f9:fb:c1:0a:e5: 5d:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:FA:EB:62:40:79:A2:70:1B:E8:2C:B5:61:9A:9E:92:6D:B7:8E:0D X509v3 Authority Key Identifier: keyid:96:B8:0C:37:C6:61:3D:14:A9:2C:DB:EC:66:28:21:64:3E:8A:F1:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lrgMN8ZhPRSpLNvsZighZD6K8Rs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91818BD/414D5BDAFE8011EC9F317A3FC4F9AE02/lrgMN8ZhPRSpLNvsZighZD6K8Rs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:a9:c2:f0:50:c4:b2:c4:10:29:74:a3:8a:b6:71:90:13:3e: 17:d6:4e:32:37:56:29:9c:28:00:2c:34:e1:31:51:27:2a:d4: 52:1b:e6:d8:94:ad:bb:ed:95:d4:4b:52:27:63:23:f8:ee:65: 4c:42:b9:a6:89:7f:a6:05:29:2a:e5:29:19:5c:31:22:b6:f4: 31:57:d1:bb:5f:21:b4:73:e4:fa:bc:92:28:a8:b7:15:0c:b2: de:7c:ca:86:62:48:6b:8b:dc:9a:2a:88:20:66:94:4f:43:2e: 62:3a:78:8b:b3:19:9e:a0:cb:e8:e9:e1:ab:35:b3:9e:70:6d: 19:b2:ad:50:7b:58:a4:58:21:c2:ac:f0:ea:2f:d5:12:df:a8: ff:85:f6:f8:5f:9a:4a:f5:f8:22:f3:f3:e4:25:cc:27:ec:13: c6:d0:62:1e:f9:87:71:b4:7f:49:2c:82:b5:d6:a5:14:87:34: 9e:5a:77:f7:95:64:e9:11:f2:72:95:15:27:5e:46:d4:81:a9: 76:56:92:84:7a:20:bc:ee:48:96:f1:cb:2a:24:f7:58:ad:cd: 3c:b8:3e:9c:98:06:5b:9c:b6:d2:c6:8e:97:b3:47:29:cc:98: 56:fb:76:07:76:46:d3:46:72:33:0e:85:ce:57:8e:aa:a8:6f: d0:03:b0:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE4QkQxMTAvBgNVBAUTKDk2QjgwQzM3QzY2MTNEMTRBOTJDREJFQzY2MjgyMTY0 M0U4QUYxMUIwHhcNMjUxMjA0MjMzMzU5WhcNMjUxMjExMjMzMzU5WjAYMRYwFAYD VQQDEw02OTMyMWE2OC05M2QzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApf48IIxOM2uDWnqPmyTs+TmG3SfslvOvs+LXRnpsfOPu5UOiKQX2qEtG4mW1 gYM7CRE2Ye70WQGuHDZXWuP1NlHcCwX0b/3LntsddxQ8gNYxBLdReRdnF+HB4VoB +RgkaLY6tUzyt7BJsqrKeq3kQxGhIc4dycc4Pqx6Lirw/754bUPstvFI6m6XXWY1 d8rfF2o3yIlT4mTZfQ+SalnIEd399zCbCvKelpbF/H+dQBbrj/tku564mdh2KjVE tcqt0Wr6GGjfg2AEwIxdHUr5Ge4Ilvxlyn2ptdi6FGTp+0H2GP9EOhNmQCajhasv 2FeDa7fKepHavq2j+fvBCuVdhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOj662JA eaJwG+gstWGanpJtt44NMB8GA1UdIwQYMBaAFJa4DDfGYT0UqSzb7GYoIWQ+ivEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MThCRC80MTRENUJEQUZF ODAxMUVDOUYzMTdBM0ZDNEY5QUUwMi9scmdNTjhaaFBSU3BMTnZzWmlnaFpENks4 UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xyZ01OOFpoUFJTcExOdnNaaWdoWkQ2SzhScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MThCRC80MTRENUJEQUZFODAxMUVDOUYzMTdBM0ZDNEY5QUUwMi9scmdNTjhaaFBS U3BMTnZzWmlnaFpENks4UnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFqcLwUMSyxBApdKOKtnGQEz4X1k4yN1YpnCgALDThMVEnKtRSG+bY lK277ZXUS1InYyP47mVMQrmmiX+mBSkq5SkZXDEitvQxV9G7XyG0c+T6vJIoqLcV DLLefMqGYkhri9yaKoggZpRPQy5iOniLsxmeoMvo6eGrNbOecG0Zsq1Qe1ikWCHC rPDqL9US36j/hfb4X5pK9fgi8/PkJcwn7BPG0GIe+YdxtH9JLIK11qUUhzSeWnf3 lWTpEfJylRUnXkbUgal2VpKEeiC87kiW8csqJPdYrc08uD6cmAZbnLbSxo6Xs0cp zJhW+3YHdkbTRnIzDoXOV46qqG/QA7Dy -----END CERTIFICATE-----Generated at Sat Dec 6 19:12:28 2025 by rpki-client