This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft File: L4dzyVEFOxQ4vCfsxV45KvteK7I.mft (raw, json) Hash identifier: G2W3aCiJSMnr9nbIUbwzlFg0dwodibi6TbVXViuxpmM= Subject key identifier: 5A:41:54:7C:29:7F:5F:DB:63:A1:95:1E:EF:3C:8B:23:A7:E3:44:FF Authority key identifier: 2F:87:73:C9:51:05:3B:14:38:BC:27:EC:C5:5E:39:2A:FB:5E:2B:B2 Certificate issuer: /CN=A91B56F0/serialNumber=2F8773C951053B1438BC27ECC55E392AFB5E2BB2 Certificate serial: 0BC0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft Manifest number: 0BA6 Signing time: Thu 04 Dec 2025 18:21:57 +0000 Manifest this update: Thu 04 Dec 2025 18:21:57 +0000 Manifest next update: Thu 11 Dec 2025 18:21:57 +0000 Files and hashes: 1: L4dzyVEFOxQ4vCfsxV45KvteK7I.crl (hash: GKFlh7gGwbd63icQUdZbAcYNIWTYO0e1IUnOggi8Pgk=) 2: 60CAF672CAC211F08083F41BC4F9AE02.roa (hash: kiwqoX3h4ubEB/f3uAb3AdDh++JWYwrrl7T90TiKXzs=) 3: 84AC17989B0811EDB5FDAF75C4F9AE02.roa (hash: eX92U/H+ZCVecCeGgTVqWhOCqzFSaTsYmsLKYsy4M8s=) 4: 843804BE744C11F0B13EF277C4F9AE02.roa (hash: KVcRx1AIexKUEoEWUnnAhnjFkWCaA/g6jhGPzAyzQQ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.crl rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:21:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3008 (0xbc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B56F0, serialNumber=2F8773C951053B1438BC27ECC55E392AFB5E2BB2 Validity Not Before: Dec 4 18:21:57 2025 GMT Not After : Dec 11 18:21:57 2025 GMT Subject: CN=6931d145-341b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:8f:14:a0:b6:bd:17:d5:5d:89:84:ae:d3:b2: 64:fb:bd:35:29:49:9d:99:5f:9a:60:a7:ee:79:e5: 78:61:c9:fa:bd:af:c2:b2:f7:03:69:7a:8a:d9:f6: 6e:12:b1:06:32:e2:87:8b:4b:c4:2b:a4:f6:43:f7: d9:0e:23:ed:97:a7:93:74:41:57:70:c1:a3:a7:e1: 7f:e9:64:66:24:ab:fb:ae:5d:59:7c:a4:95:93:b2: 2a:97:da:14:76:14:6b:ce:06:ec:08:29:7f:e5:ba: cc:13:3c:b1:5e:e4:65:53:ad:57:32:74:2e:b5:d7: d1:74:51:9c:04:bb:0f:2e:db:04:3c:72:e2:98:e5: de:af:a7:2b:4e:46:4a:dc:55:ad:61:96:46:88:60: 67:0b:b8:1b:8c:63:a2:31:a0:fd:46:d6:8c:fd:ff: 4b:dd:cb:eb:b9:84:48:be:53:af:8c:a1:82:09:54: 17:a0:d6:c5:3c:f1:b9:b6:df:05:11:ad:e5:8e:17: a6:07:97:2f:2d:7a:2e:49:f6:68:55:3f:ae:46:9a: 6e:c9:ff:c6:1d:b9:2d:72:d1:88:c4:59:ab:6e:d0: fe:f5:7e:48:ef:5e:58:db:90:00:27:34:9f:10:4e: ec:1a:bf:28:a1:59:ef:e0:16:e3:db:61:b3:b5:81: 66:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:41:54:7C:29:7F:5F:DB:63:A1:95:1E:EF:3C:8B:23:A7:E3:44:FF X509v3 Authority Key Identifier: keyid:2F:87:73:C9:51:05:3B:14:38:BC:27:EC:C5:5E:39:2A:FB:5E:2B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:4e:3a:19:29:af:62:88:e1:17:39:f4:e4:31:19:18:34:17: da:6b:a2:af:5b:19:ac:44:18:da:90:c0:f0:44:95:bc:06:8f: 90:29:0f:f7:e1:ab:c0:19:9a:29:14:b1:56:a6:9d:cd:6e:f5: a3:74:b6:84:17:27:bd:ca:0f:b2:d7:2a:92:e0:c2:56:37:90: b4:8f:8b:1d:9c:0e:40:43:66:6a:c5:6d:d4:ce:9c:0d:04:85: e4:9f:12:02:2c:8b:5a:4c:7c:7e:7f:7f:01:ac:55:9c:51:ef: 32:c0:b2:e4:2a:ed:d1:8c:61:f4:90:1d:f3:0f:20:5e:18:01: fa:33:0a:b6:5f:7a:b2:07:cd:e0:e0:71:b2:2e:cf:34:5d:e2: ce:11:c1:f6:60:e7:5a:b7:9a:48:16:84:8a:7a:f1:fe:8d:11: 64:06:c7:07:30:58:46:44:a0:bf:be:79:89:0a:4c:db:f6:06: e2:ba:2f:29:59:84:1e:7c:a1:ff:67:d6:6d:6c:88:05:11:cf: 58:f9:d2:40:f1:de:ad:2b:3a:ba:6d:c6:21:9f:4d:5f:1c:1e: c3:65:cf:e3:25:94:4d:3f:10:e5:0f:8a:59:00:a6:e0:03:18: aa:4a:a5:28:0e:46:2f:6c:2f:d5:6f:d5:e0:91:de:84:43:4c: c3:55:3f:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU2RjAxMTAvBgNVBAUTKDJGODc3M0M5NTEwNTNCMTQzOEJDMjdFQ0M1NUUzOTJB RkI1RTJCQjIwHhcNMjUxMjA0MTgyMTU3WhcNMjUxMjExMTgyMTU3WjAYMRYwFAYD VQQDEw02OTMxZDE0NS0zNDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6o8UoLa9F9VdiYSu07Jk+701KUmdmV+aYKfueeV4Ycn6va/CsvcDaXqK2fZu ErEGMuKHi0vEK6T2Q/fZDiPtl6eTdEFXcMGjp+F/6WRmJKv7rl1ZfKSVk7Iql9oU dhRrzgbsCCl/5brMEzyxXuRlU61XMnQutdfRdFGcBLsPLtsEPHLimOXer6crTkZK 3FWtYZZGiGBnC7gbjGOiMaD9RtaM/f9L3cvruYRIvlOvjKGCCVQXoNbFPPG5tt8F Ea3ljhemB5cvLXouSfZoVT+uRppuyf/GHbktctGIxFmrbtD+9X5I715Y25AAJzSf EE7sGr8ooVnv4Bbj22GztYFmuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFpBVHwp f1/bY6GVHu88iyOn40T/MB8GA1UdIwQYMBaAFC+Hc8lRBTsUOLwn7MVeOSr7Xiuy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTZGMC83RDY3RTRENDM4 NEMxMUVBQkVBMkRCNzFDNEY5QUUwMi9MNGR6eVZFRk94UTR2Q2ZzeFY0NUt2dGVL N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w0ZHp5VkVGT3hRNHZDZnN4VjQ1S3Z0ZUs3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTZGMC83RDY3RTRENDM4NEMxMUVBQkVBMkRCNzFDNEY5QUUwMi9MNGR6eVZFRk94 UTR2Q2ZzeFY0NUt2dGVLN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiTjoZKa9iiOEXOfTkMRkYNBfaa6KvWxmsRBjakMDwRJW8Bo+QKQ/3 4avAGZopFLFWpp3NbvWjdLaEFye9yg+y1yqS4MJWN5C0j4sdnA5AQ2ZqxW3UzpwN BIXknxICLItaTHx+f38BrFWcUe8ywLLkKu3RjGH0kB3zDyBeGAH6Mwq2X3qyB83g 4HGyLs80XeLOEcH2YOdat5pIFoSKevH+jRFkBscHMFhGRKC/vnmJCkzb9gbiui8p WYQefKH/Z9ZtbIgFEc9Y+dJA8d6tKzq6bcYhn01fHB7DZc/jJZRNPxDlD4pZAKbg AxiqSqUoDkYvbC/Vb9Xgkd6EQ0zDVT8A -----END CERTIFICATE-----Generated at Sat Dec 6 12:24:47 2025 by rpki-client