This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft File: lAiiAfAOWP6SWY7gOTkHi673d5U.mft (raw, json) Hash identifier: il/XQGtEECxZaVfz5A3akPRuX3Le4NY+BRFVUz5dUdY= Subject key identifier: E1:32:A2:84:37:8D:10:21:73:B5:E3:1A:91:BC:A5:2C:41:14:4A:E0 Authority key identifier: 94:08:A2:01:F0:0E:58:FE:92:59:8E:E0:39:39:07:8B:AE:F7:77:95 Certificate issuer: /CN=A91A6F68/serialNumber=9408A201F00E58FE92598EE03939078BAEF77795 Certificate serial: A1 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft Manifest number: A1 Signing time: Sun 07 Dec 2025 04:29:04 +0000 Manifest this update: Sun 07 Dec 2025 04:29:03 +0000 Manifest next update: Sun 14 Dec 2025 04:29:03 +0000 Files and hashes: 1: lAiiAfAOWP6SWY7gOTkHi673d5U.crl (hash: 76s8hTuD+0/G3Fn0zt1BuHfHlQYF5fDcbwh6ma2Nlsc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.crl rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 02:50:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F68, serialNumber=9408A201F00E58FE92598EE03939078BAEF77795 Validity Not Before: Dec 7 04:29:03 2025 GMT Not After : Dec 14 04:29:03 2025 GMT Subject: CN=69350290-29f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5d:1f:3f:54:59:44:df:8b:ba:9b:47:c2:f4: c5:1c:5d:42:4f:ac:00:8c:50:10:96:e4:88:c4:a7: 7d:e8:2c:8a:42:a2:90:8b:28:d2:89:20:60:78:90: e8:d9:19:52:02:96:28:29:b4:ac:fc:79:c4:b0:de: 71:f4:2f:e9:34:da:cf:e7:f0:11:84:8b:72:51:a8: a1:38:c7:b4:68:b7:a1:c1:dc:58:25:48:5e:e9:3c: 86:60:2b:53:02:11:75:b1:bf:34:bb:46:dc:64:93: 9b:de:10:2e:c1:e4:00:92:e7:cc:5a:59:2b:5c:f5: 73:ec:99:aa:1b:f6:5c:27:43:48:ef:c3:9d:cc:3a: 1d:ad:0f:bc:2d:19:72:fb:20:ac:25:99:64:78:77: 9f:d8:a4:24:0a:e9:ac:47:1a:2b:32:8d:07:b0:10: 75:e0:12:d3:db:36:81:8d:b2:5f:97:1b:15:39:d7: ac:8b:52:b5:c5:bd:54:e4:37:1d:68:3d:6d:85:82: f1:b6:5a:eb:1b:bd:82:45:01:85:01:76:0c:2f:28: 34:3f:42:63:bf:e3:8b:18:aa:8e:dd:df:2e:0f:71: df:a3:cb:ee:c7:58:5d:c2:2e:e9:c2:37:20:4e:76: 85:2e:ec:3e:9c:2e:cc:5b:7d:2b:87:8b:c0:67:64: 4d:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:32:A2:84:37:8D:10:21:73:B5:E3:1A:91:BC:A5:2C:41:14:4A:E0 X509v3 Authority Key Identifier: keyid:94:08:A2:01:F0:0E:58:FE:92:59:8E:E0:39:39:07:8B:AE:F7:77:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:c8:af:07:1e:44:87:39:0a:29:52:53:f6:2f:aa:a3:3b:6f: a9:08:5b:c9:8a:9a:0d:68:f8:05:89:85:c9:e5:ad:8b:0e:c7: 22:1d:8b:22:57:94:a1:b2:03:e9:bd:a8:18:73:e4:6a:75:b4: a4:7e:51:8f:8f:25:2b:ca:28:2e:7c:38:eb:2e:61:c3:cd:c6: d9:58:c2:ae:0a:ce:54:28:b4:72:87:d5:6e:55:16:b1:83:22: 71:0e:ce:a9:cf:8e:b8:03:7e:8f:07:a4:99:e3:00:57:06:2e: 70:46:b7:67:2c:37:5f:c3:24:53:8d:4b:19:d6:f1:3a:be:29: e3:3d:86:4b:57:5f:af:d0:3a:06:cd:69:2d:97:ca:0a:7d:e4: ac:c1:19:7d:cd:c7:c3:53:01:25:20:56:40:07:24:72:28:dc: eb:c1:72:a6:d4:98:a2:2f:8c:43:8f:a2:3d:27:a5:84:a3:91: 3c:af:23:ef:68:34:aa:a1:c2:8b:9c:c9:9d:58:f0:1b:d2:b2: ec:f0:c8:23:99:44:b2:a8:9b:b0:f3:b6:96:32:e1:51:e3:ff: a6:88:c3:ea:a7:56:fe:a2:f9:1f:0e:af:c6:3c:9c:d3:82:c2: 76:5e:a2:57:ba:a3:d2:3a:72:74:a0:a7:b1:31:24:e3:95:25: 49:2a:bb:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZGNjgxMTAvBgNVBAUTKDk0MDhBMjAxRjAwRTU4RkU5MjU5OEVFMDM5MzkwNzhC QUVGNzc3OTUwHhcNMjUxMjA3MDQyOTAzWhcNMjUxMjE0MDQyOTAzWjAYMRYwFAYD VQQDEw02OTM1MDI5MC0yOWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvF0fP1RZRN+LuptHwvTFHF1CT6wAjFAQluSIxKd96CyKQqKQiyjSiSBgeJDo 2RlSApYoKbSs/HnEsN5x9C/pNNrP5/ARhItyUaihOMe0aLehwdxYJUhe6TyGYCtT AhF1sb80u0bcZJOb3hAuweQAkufMWlkrXPVz7JmqG/ZcJ0NI78OdzDodrQ+8LRly +yCsJZlkeHef2KQkCumsRxorMo0HsBB14BLT2zaBjbJflxsVOdesi1K1xb1U5Dcd aD1thYLxtlrrG72CRQGFAXYMLyg0P0Jjv+OLGKqO3d8uD3Hfo8vux1hdwi7pwjcg TnaFLuw+nC7MW30rh4vAZ2RN+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOEyooQ3 jRAhc7XjGpG8pSxBFErgMB8GA1UdIwQYMBaAFJQIogHwDlj+klmO4Dk5B4uu93eV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkY2OC9CQTU2NUY1Q0RG MjExMUVGODMzRjRGMkNDNEY5QUUwMi9sQWlpQWZBT1dQNlNXWTdnT1RrSGk2NzNk NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xBaWlBZkFPV1A2U1dZN2dPVGtIaTY3M2Q1VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkY2OC9CQTU2NUY1Q0RGMjExMUVGODMzRjRGMkNDNEY5QUUwMi9sQWlpQWZBT1dQ NlNXWTdnT1RrSGk2NzNkNVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALyK8HHkSHOQopUlP2L6qjO2+pCFvJipoNaPgFiYXJ5a2LDsciHYsi V5ShsgPpvagYc+RqdbSkflGPjyUryigufDjrLmHDzcbZWMKuCs5UKLRyh9VuVRax gyJxDs6pz464A36PB6SZ4wBXBi5wRrdnLDdfwyRTjUsZ1vE6vinjPYZLV1+v0DoG zWktl8oKfeSswRl9zcfDUwElIFZAByRyKNzrwXKm1JiiL4xDj6I9J6WEo5E8ryPv aDSqocKLnMmdWPAb0rLs8MgjmUSyqJuw87aWMuFR4/+miMPqp1b+ovkfDq/GPJzT gsJ2XqJXuqPSOnJ0oKexMSTjlSVJKrtJ -----END CERTIFICATE-----Generated at Sun Dec 7 12:43:25 2025 by rpki-client