This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A29D7/F23C4DF2AD7311F0AF650254C4F9AE02/-luvRrfLLI40Y4OqgMs5ayuBxkw.mft File: -luvRrfLLI40Y4OqgMs5ayuBxkw.mft (raw, json) Hash identifier: mKoW+OnKGguWeXeFHku0f+oQpAaxPK89mwboA9BlMbI= Subject key identifier: B8:2C:12:C2:C4:15:BE:86:E3:FF:B8:88:94:19:6D:D9:7D:9F:7C:A8 Authority key identifier: FA:5B:AF:46:B7:CB:2C:8E:34:63:83:AA:80:CB:39:6B:2B:81:C6:4C Certificate issuer: /CN=A91A29D7/serialNumber=FA5BAF46B7CB2C8E346383AA80CB396B2B81C64C Certificate serial: 23 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-luvRrfLLI40Y4OqgMs5ayuBxkw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A29D7/F23C4DF2AD7311F0AF650254C4F9AE02/-luvRrfLLI40Y4OqgMs5ayuBxkw.mft Manifest number: 1E Signing time: Fri 05 Dec 2025 05:39:20 +0000 Manifest this update: Fri 05 Dec 2025 05:39:19 +0000 Manifest next update: Fri 12 Dec 2025 05:39:19 +0000 Files and hashes: 1: -luvRrfLLI40Y4OqgMs5ayuBxkw.crl (hash: p5rhDzXBRLw478JuJv2Zc5JGJMsADcnKZMFyZqBRPhU=) 2: 603EEC5ED0F811F0A0F75447C4F9AE02.roa (hash: +CbZpgm+4vyB8fOl/TuKcq6Ycobk7P+jIHSjzgCG4eI=) 3: 753E1B20B1B311F0BD0C0785C4F9AE02.roa (hash: ZEgQ8tbj5F35NBxvxNkrasJNkBRbUBDhID22q1DgVs8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A29D7/F23C4DF2AD7311F0AF650254C4F9AE02/-luvRrfLLI40Y4OqgMs5ayuBxkw.crl rsync://rpki.apnic.net/member_repository/A91A29D7/F23C4DF2AD7311F0AF650254C4F9AE02/-luvRrfLLI40Y4OqgMs5ayuBxkw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-luvRrfLLI40Y4OqgMs5ayuBxkw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:39:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A29D7, serialNumber=FA5BAF46B7CB2C8E346383AA80CB396B2B81C64C Validity Not Before: Dec 5 05:39:19 2025 GMT Not After : Dec 12 05:39:19 2025 GMT Subject: CN=69327008-cf5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:04:f3:65:d9:91:27:bd:71:c7:c3:26:12:01: 05:00:56:2a:8d:58:86:14:cb:26:8d:43:a2:2a:b7: 7d:34:85:f9:38:ce:f6:ba:03:bc:51:7d:55:55:3d: 4e:95:d3:2c:8f:0c:82:22:4b:1a:6d:f2:94:38:06: 93:21:2c:9d:c8:84:f6:c9:fd:67:f6:d8:4a:4d:0d: 6f:bf:f7:dd:51:ba:22:2b:aa:16:f7:ec:43:80:28: 8d:8b:1d:57:9a:e6:5d:58:19:ed:52:07:5d:da:37: 67:b0:32:15:e7:68:32:0b:76:82:88:33:25:0a:8e: 51:a8:27:ce:dd:09:28:a2:c4:3a:cf:66:d3:fd:2b: db:16:e1:6c:c4:7b:47:2a:d7:fe:a1:63:59:c5:1c: 90:a7:c7:fa:0c:c2:f1:17:5d:2d:63:0c:28:c1:aa: e2:47:d6:8e:5a:48:3f:38:67:02:a2:55:88:5a:49: 9f:1b:2f:36:ad:62:02:b0:0e:a1:60:c6:a7:3a:63: 3a:bd:ae:99:92:75:e3:a0:df:21:60:5b:78:5d:43: 49:f7:e2:85:a6:73:87:aa:1b:8c:fe:0d:cc:5c:75: 48:1e:2c:9f:13:07:2c:24:2c:01:91:a8:8f:34:6a: 2c:4c:58:d3:99:f4:47:5c:be:fd:43:86:ee:3c:a6: 48:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:2C:12:C2:C4:15:BE:86:E3:FF:B8:88:94:19:6D:D9:7D:9F:7C:A8 X509v3 Authority Key Identifier: keyid:FA:5B:AF:46:B7:CB:2C:8E:34:63:83:AA:80:CB:39:6B:2B:81:C6:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A29D7/F23C4DF2AD7311F0AF650254C4F9AE02/-luvRrfLLI40Y4OqgMs5ayuBxkw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-luvRrfLLI40Y4OqgMs5ayuBxkw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A29D7/F23C4DF2AD7311F0AF650254C4F9AE02/-luvRrfLLI40Y4OqgMs5ayuBxkw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:44:ac:90:e0:c4:93:3b:11:b6:3b:46:85:31:bc:d9:23:df: bb:c7:c8:62:f2:18:ed:31:7c:c3:6c:57:04:47:99:a6:3a:b0: 66:c8:59:07:97:c3:14:37:58:c8:0b:3c:ca:f9:30:e2:6d:c7: 08:35:74:b3:61:6b:8d:bf:e4:f7:33:35:bb:36:da:ad:23:1e: 0f:fc:69:8e:c5:1c:ea:ce:3c:16:81:4c:9e:49:ed:3e:01:00: 1e:9b:47:f1:bb:04:1e:71:19:7c:d0:0c:4d:6a:e4:10:66:5f: 8b:e0:28:8a:36:6a:b4:80:4b:48:43:66:f6:5a:cb:9f:49:f3: db:3f:46:9f:8a:76:dc:9e:f8:d2:93:35:e5:c1:fc:f0:73:17: b4:a4:8e:fa:b6:31:ab:55:3c:63:e4:34:a6:32:ea:9e:c4:64: d8:99:38:44:e4:81:75:65:29:d0:18:5e:58:2d:8c:2c:39:31: e8:34:ba:57:20:62:ed:d7:6e:c5:34:cb:86:57:c8:d7:b7:b5: 3a:06:9b:c5:36:97:70:6a:4e:1e:6c:5e:f7:5d:05:1f:3a:f7: d1:90:2b:87:35:81:42:dc:c1:67:dd:27:e6:f2:3d:b1:d9:0b: d0:0d:78:4f:0f:5a:c6:80:40:05:86:89:ae:56:3f:30:52:d1: dd:22:d6:83 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MjlENzExMC8GA1UEBRMoRkE1QkFGNDZCN0NCMkM4RTM0NjM4M0FBODBDQjM5NkIy QjgxQzY0QzAeFw0yNTEyMDUwNTM5MTlaFw0yNTEyMTIwNTM5MTlaMBgxFjAUBgNV BAMTDTY5MzI3MDA4LWNmNWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDvBPNl2ZEnvXHHwyYSAQUAViqNWIYUyyaNQ6Iqt300hfk4zva6A7xRfVVVPU6V 0yyPDIIiSxpt8pQ4BpMhLJ3IhPbJ/Wf22EpNDW+/991RuiIrqhb37EOAKI2LHVea 5l1YGe1SB13aN2ewMhXnaDILdoKIMyUKjlGoJ87dCSiixDrPZtP9K9sW4WzEe0cq 1/6hY1nFHJCnx/oMwvEXXS1jDCjBquJH1o5aSD84ZwKiVYhaSZ8bLzatYgKwDqFg xqc6Yzq9rpmSdeOg3yFgW3hdQ0n34oWmc4eqG4z+DcxcdUgeLJ8TBywkLAGRqI80 aixMWNOZ9Edcvv1Dhu48pkiZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUuCwSwsQV vobj/7iIlBlt2X2ffKgwHwYDVR0jBBgwFoAU+luvRrfLLI40Y4OqgMs5ayuBxkww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEyOUQ3L0YyM0M0REYyQUQ3 MzExRjBBRjY1MDI1NEM0RjlBRTAyLy1sdXZScmZMTEk0MFk0T3FnTXM1YXl1Qnhr dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvLWx1dlJyZkxMSTQwWTRPcWdNczVheXVCeGt3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEy OUQ3L0YyM0M0REYyQUQ3MzExRjBBRjY1MDI1NEM0RjlBRTAyLy1sdXZScmZMTEk0 MFk0T3FnTXM1YXl1Qnhrdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAJErJDgxJM7EbY7RoUxvNkj37vHyGLyGO0xfMNsVwRHmaY6sGbIWQeX wxQ3WMgLPMr5MOJtxwg1dLNha42/5PczNbs22q0jHg/8aY7FHOrOPBaBTJ5J7T4B AB6bR/G7BB5xGXzQDE1q5BBmX4vgKIo2arSAS0hDZvZay59J89s/Rp+Kdtye+NKT NeXB/PBzF7Skjvq2MatVPGPkNKYy6p7EZNiZOETkgXVlKdAYXlgtjCw5Meg0ulcg Yu3XbsU0y4ZXyNe3tToGm8U2l3BqTh5sXvddBR8699GQK4c1gULcwWfdJ+byPbHZ C9ANeE8PWsaAQAWGia5WPzBS0d0i1oM= -----END CERTIFICATE-----Generated at Sun Dec 7 01:33:16 2025 by rpki-client