This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft File: lRKAntQ1o2QK-bdfCvspKNQWPDE.mft (raw, json) Hash identifier: n2IkntSF/4M28Yh3UGRXgaFj5AiKvcOplmL2z2LY3nI= Subject key identifier: 6A:7E:3C:B9:D3:9E:D2:B8:19:07:AD:29:6D:C6:DA:D8:AC:87:02:7B Authority key identifier: 95:12:80:9E:D4:35:A3:64:0A:F9:B7:5F:0A:FB:29:28:D4:16:3C:31 Certificate issuer: /CN=A91B45C0/serialNumber=9512809ED435A3640AF9B75F0AFB2928D4163C31 Certificate serial: 1253 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft Manifest number: 124E Signing time: Thu 04 Dec 2025 16:44:58 +0000 Manifest this update: Thu 04 Dec 2025 16:44:57 +0000 Manifest next update: Thu 11 Dec 2025 16:44:57 +0000 Files and hashes: 1: lRKAntQ1o2QK-bdfCvspKNQWPDE.crl (hash: +KughwW26dgC5gJysw2hpPj+GTAToz9AiuxTIfY3vgM=) 2: 9995A38CFADC11EF87E86958C4F9AE02.roa (hash: lPLi48Hcf9N1auMQ0fWenp3rORwIoz4fywb8Qz85E7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.crl rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 16:44:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4691 (0x1253) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B45C0, serialNumber=9512809ED435A3640AF9B75F0AFB2928D4163C31 Validity Not Before: Dec 4 16:44:57 2025 GMT Not After : Dec 11 16:44:57 2025 GMT Subject: CN=6931ba8a-d5ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:24:c6:f5:d0:09:89:34:54:9b:57:3c:8d:c8: 71:65:2e:dd:e6:cd:e9:76:ce:a0:61:f0:69:5f:64: 04:48:37:a3:36:f4:d8:aa:07:f3:08:a3:44:ed:bc: aa:26:be:5c:05:39:96:c5:ad:d0:5d:db:c7:f5:40: f6:1b:c7:2e:21:e8:72:35:ed:8b:73:21:93:c1:d9: aa:d9:d5:38:41:38:cc:40:b4:f8:89:17:7d:0d:15: ec:f4:8d:a7:54:49:f3:a0:16:25:59:4d:36:d1:1d: 10:6f:b8:72:22:02:ea:50:43:64:14:88:29:93:74: b1:6c:7e:bc:59:79:0d:95:66:a1:47:14:3f:1a:39: 95:14:d1:14:55:81:3c:e7:cb:1a:65:76:d0:40:bd: 93:24:c3:da:2b:cb:f1:1f:cf:4a:9b:1e:a8:f9:1e: 47:8e:7c:11:5d:c4:20:18:d8:12:4c:c7:41:fe:7e: 56:0b:f1:95:52:8c:1f:e4:ad:d0:9b:99:a6:64:35: 41:f9:a2:99:a2:f4:02:7e:44:c0:c6:ca:9d:a3:bf: e2:ab:da:b1:0d:d9:7e:4f:4e:a1:5b:25:43:88:f8: 76:94:aa:bc:fa:c1:79:bb:1a:3b:7f:f5:39:a4:ac: b9:58:89:d0:c2:15:fe:1c:07:1f:e8:63:18:27:c2: e4:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:7E:3C:B9:D3:9E:D2:B8:19:07:AD:29:6D:C6:DA:D8:AC:87:02:7B X509v3 Authority Key Identifier: keyid:95:12:80:9E:D4:35:A3:64:0A:F9:B7:5F:0A:FB:29:28:D4:16:3C:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:01:ed:8e:86:26:e9:b2:f4:9b:8d:e4:6a:d9:64:ba:d1:71: 22:1e:15:80:a2:3e:a8:f7:18:1e:80:fd:f5:f5:e9:7e:15:69: 87:9e:c8:28:9b:20:8e:37:fa:cd:fa:44:ac:56:9e:28:2f:38: cf:b3:52:a3:d9:35:28:2b:08:bc:31:23:53:98:a1:69:c7:3c: c5:65:83:a5:b8:98:1c:f2:93:58:67:56:cd:21:94:36:d0:ff: 2c:2b:c2:c8:03:4c:1f:66:6c:f0:3d:eb:f2:4c:0b:96:5b:59: ca:ec:ff:bc:85:93:e7:b0:06:72:d0:a6:68:19:a0:e8:6e:f0: 8c:45:f8:ac:55:09:5c:8a:f0:94:95:06:7a:49:30:a9:79:03: b4:ea:ba:82:b1:fc:f9:c9:13:3a:d8:fc:72:70:8d:88:55:97: 65:d6:2e:61:65:b0:da:82:11:73:59:f4:08:e3:90:2d:aa:ab: 9a:a6:ba:ea:90:1f:94:f8:96:8e:c1:3f:8b:c7:81:3c:4c:a6: 7a:a1:7b:74:a1:cc:05:81:21:f6:d1:e6:ab:50:3a:8f:45:9a: 20:75:f0:a9:03:6f:f2:cd:cf:22:51:f9:b0:27:99:8a:76:2b: dc:cf:83:eb:a4:b4:65:20:47:62:33:9d:43:2a:cb:a8:25:4f: fe:c1:0c:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICElMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ1QzAxMTAvBgNVBAUTKDk1MTI4MDlFRDQzNUEzNjQwQUY5Qjc1RjBBRkIyOTI4 RDQxNjNDMzEwHhcNMjUxMjA0MTY0NDU3WhcNMjUxMjExMTY0NDU3WjAYMRYwFAYD VQQDEw02OTMxYmE4YS1kNWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSTG9dAJiTRUm1c8jchxZS7d5s3pds6gYfBpX2QESDejNvTYqgfzCKNE7byq Jr5cBTmWxa3QXdvH9UD2G8cuIehyNe2LcyGTwdmq2dU4QTjMQLT4iRd9DRXs9I2n VEnzoBYlWU020R0Qb7hyIgLqUENkFIgpk3SxbH68WXkNlWahRxQ/GjmVFNEUVYE8 58saZXbQQL2TJMPaK8vxH89Kmx6o+R5HjnwRXcQgGNgSTMdB/n5WC/GVUowf5K3Q m5mmZDVB+aKZovQCfkTAxsqdo7/iq9qxDdl+T06hWyVDiPh2lKq8+sF5uxo7f/U5 pKy5WInQwhX+HAcf6GMYJ8LkOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGp+PLnT ntK4GQetKW3G2tishwJ7MB8GA1UdIwQYMBaAFJUSgJ7UNaNkCvm3Xwr7KSjUFjwx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDVDMC9CREVFNzI5QUU2 RDkxMUU4OEI4QkY3N0NDNEY5QUUwMi9sUktBbnRRMW8yUUstYmRmQ3ZzcEtOUVdQ REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xSS0FudFExbzJRSy1iZGZDdnNwS05RV1BERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDVDMC9CREVFNzI5QUU2RDkxMUU4OEI4QkY3N0NDNEY5QUUwMi9sUktBbnRRMW8y UUstYmRmQ3ZzcEtOUVdQREUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvAe2OhibpsvSbjeRq2WS60XEiHhWAoj6o9xgegP319el+FWmHnsgo myCON/rN+kSsVp4oLzjPs1Kj2TUoKwi8MSNTmKFpxzzFZYOluJgc8pNYZ1bNIZQ2 0P8sK8LIA0wfZmzwPevyTAuWW1nK7P+8hZPnsAZy0KZoGaDobvCMRfisVQlcivCU lQZ6STCpeQO06rqCsfz5yRM62PxycI2IVZdl1i5hZbDaghFzWfQI45Atqquaprrq kB+U+JaOwT+Lx4E8TKZ6oXt0ocwFgSH20earUDqPRZogdfCpA2/yzc8iUfmwJ5mK divcz4PrpLRlIEdiM51DKsuoJU/+wQzs -----END CERTIFICATE-----Generated at Sat Dec 6 16:43:20 2025 by rpki-client