This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft File: L9JLb9eYBEVzVDhmYs4w3aOyALU.mft (raw, json) Hash identifier: y9IYvYINjgDsjqYYKdbA/6DxCErl2w16ZplKa37SIgI= Subject key identifier: E9:E0:85:47:93:BD:B9:B8:B6:4F:D8:50:C4:85:B7:60:DA:37:C1:26 Authority key identifier: 2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 Certificate issuer: /CN=A91A29DA/serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Certificate serial: 0148 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft Manifest number: 0146 Signing time: Fri 05 Dec 2025 02:26:13 +0000 Manifest this update: Fri 05 Dec 2025 02:26:13 +0000 Manifest next update: Fri 12 Dec 2025 02:26:13 +0000 Files and hashes: 1: L9JLb9eYBEVzVDhmYs4w3aOyALU.crl (hash: i6lkzeYvtdku20ue0i6XPRyzBOuBFlYXiXR41VSclM8=) 2: AE2FD9C4DA5411EE83E9E67EC4F9AE02.roa (hash: tK5HTPbAj/ZNMX+j7tcaCGQxo/xqwq0UKtlHWscWUVg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:26:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 328 (0x148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A29DA, serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Validity Not Before: Dec 5 02:26:13 2025 GMT Not After : Dec 12 02:26:13 2025 GMT Subject: CN=693242c5-9da1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a8:a7:26:e8:2d:95:6f:43:cd:21:a7:32:d0: fa:bd:8f:cc:7d:13:85:0a:a2:13:de:db:4f:68:2f: 03:1c:75:32:8c:36:5f:bb:59:39:4e:ff:ee:bd:b9: 5f:75:c5:33:57:fa:f8:c8:35:6b:9f:b8:c0:da:c2: 0a:a6:59:25:e4:88:16:27:7a:a0:b1:00:2b:e7:26: cc:45:f9:b3:a3:60:e4:4d:de:59:97:92:15:c7:6c: 7d:ae:6e:93:f5:e7:30:dc:bc:5f:47:31:23:40:de: c2:cc:31:62:bb:97:36:8c:b2:59:01:aa:ec:cd:25: fe:20:dc:a7:22:b5:0e:91:e9:05:8e:8a:03:29:7c: 39:9c:74:b4:37:2e:bc:66:0c:10:72:60:e7:ac:18: 58:90:63:94:a1:d4:5b:58:d9:ce:43:51:72:34:8d: 51:05:3b:d1:6a:f9:13:c8:df:45:5a:f8:66:7b:2c: ee:9c:39:4b:9b:4b:1a:48:ff:d2:13:f8:e0:7a:a1: b6:ba:95:a2:a0:ca:50:37:68:4a:88:3e:47:3c:e8: 54:91:52:1c:d1:6a:8a:68:c0:53:90:a9:64:08:d2: 75:93:40:08:25:0a:29:85:b1:7a:ba:8e:b9:8e:ba: 38:ce:0f:56:e8:18:4a:72:5e:6d:12:f4:fa:70:4d: 51:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:E0:85:47:93:BD:B9:B8:B6:4F:D8:50:C4:85:B7:60:DA:37:C1:26 X509v3 Authority Key Identifier: keyid:2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:ea:bd:5f:6c:c7:00:62:47:85:0a:7c:6e:7f:ff:2e:4f:c6: e9:dd:54:00:99:fc:31:35:d3:27:04:8f:18:92:36:2d:37:dc: 88:95:ea:71:90:6a:f2:5e:a3:2f:eb:6b:f3:ab:16:6c:59:e8: ce:de:79:f2:91:cd:57:72:f7:7c:e2:28:71:60:bf:74:8d:7f: 6c:0a:5c:48:e3:e0:e4:bd:82:5d:f7:29:cd:a8:ce:3d:08:3c: 9b:91:2a:ca:7f:1d:86:61:b7:a1:b1:fe:7b:1a:dc:ee:1b:61: fb:40:50:0b:9d:4e:d5:86:6a:f8:7b:9f:fe:1e:dd:19:72:f6: 9f:8c:e2:c8:d1:e3:ae:67:f9:72:5d:1a:55:cf:f2:c0:81:7d: c4:30:e7:4d:c2:b8:21:98:1f:99:cf:ce:a6:b5:7e:2b:02:5b: 40:c4:a9:34:21:6b:5f:e0:1b:de:25:15:11:c7:f2:02:d8:db: f4:21:71:5d:90:8e:ef:69:f9:e5:ab:e3:49:33:79:c9:c8:24: a5:87:3e:56:1b:52:e6:f0:21:f0:a8:6d:14:78:32:9a:aa:c0: d8:22:7b:b0:1b:86:bc:69:bb:a4:0a:6f:3c:86:08:61:0f:06: b3:d7:63:9c:81:57:1a:62:95:22:83:9c:f4:6c:5c:46:5c:ad: 6b:c6:5a:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI5REExMTAvBgNVBAUTKDJGRDI0QjZGRDc5ODA0NDU3MzU0Mzg2NjYyQ0UzMERE QTNCMjAwQjUwHhcNMjUxMjA1MDIyNjEzWhcNMjUxMjEyMDIyNjEzWjAYMRYwFAYD VQQDEw02OTMyNDJjNS05ZGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqKinJugtlW9DzSGnMtD6vY/MfROFCqIT3ttPaC8DHHUyjDZfu1k5Tv/uvblf dcUzV/r4yDVrn7jA2sIKplkl5IgWJ3qgsQAr5ybMRfmzo2DkTd5Zl5IVx2x9rm6T 9ecw3LxfRzEjQN7CzDFiu5c2jLJZAarszSX+INynIrUOkekFjooDKXw5nHS0Ny68 ZgwQcmDnrBhYkGOUodRbWNnOQ1FyNI1RBTvRavkTyN9FWvhmeyzunDlLm0saSP/S E/jgeqG2upWioMpQN2hKiD5HPOhUkVIc0WqKaMBTkKlkCNJ1k0AIJQophbF6uo65 jro4zg9W6BhKcl5tEvT6cE1RnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOnghUeT vbm4tk/YUMSFt2DaN8EmMB8GA1UdIwQYMBaAFC/SS2/XmARFc1Q4ZmLOMN2jsgC1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjlEQS8zNEI1QjUxNERB NTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJFVnpWRGhtWXM0dzNhT3lB TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0w5SkxiOWVZQkVWelZEaG1ZczR3M2FPeUFMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjlEQS8zNEI1QjUxNERBNTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJF VnpWRGhtWXM0dzNhT3lBTFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAq6r1fbMcAYkeFCnxuf/8uT8bp3VQAmfwxNdMnBI8YkjYtN9yIlepx kGryXqMv62vzqxZsWejO3nnykc1Xcvd84ihxYL90jX9sClxI4+DkvYJd9ynNqM49 CDybkSrKfx2GYbehsf57GtzuG2H7QFALnU7Vhmr4e5/+Ht0ZcvafjOLI0eOuZ/ly XRpVz/LAgX3EMOdNwrghmB+Zz86mtX4rAltAxKk0IWtf4BveJRURx/IC2Nv0IXFd kI7vafnlq+NJM3nJyCSlhz5WG1Lm8CHwqG0UeDKaqsDYInuwG4a8abukCm88hghh Dwaz12OcgVcaYpUig5z0bFxGXK1rxlo9 -----END CERTIFICATE-----Generated at Sat Dec 6 12:22:31 2025 by rpki-client