This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft File: R-lr-DG7PMQ7TweEJj5ylYddVRY.mft (raw, json) Hash identifier: fv7/kYam/9z6hchtQ9RGkuopBCjsV4pGtF22o9F2oFc= Subject key identifier: 8B:70:E8:A6:1B:12:F4:00:BF:73:0C:EF:05:9D:EF:43:75:A3:E3:03 Authority key identifier: 47:E9:6B:F8:31:BB:3C:C4:3B:4F:07:84:26:3E:72:95:87:5D:55:16 Certificate issuer: /CN=A91C4204/serialNumber=47E96BF831BB3CC43B4F0784263E7295875D5516 Certificate serial: 6C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft Manifest number: 6A Signing time: Fri 05 Dec 2025 04:50:51 +0000 Manifest this update: Fri 05 Dec 2025 04:50:51 +0000 Manifest next update: Fri 12 Dec 2025 04:50:51 +0000 Files and hashes: 1: R-lr-DG7PMQ7TweEJj5ylYddVRY.crl (hash: 0hxODAQKgnauaHX/vsxNsT/ZXKmh3Cyd4XyaF7wtCt4=) 2: CA2D4952300911F0AB675D3EC4F9AE02.roa (hash: wSACUp5c4PrWddzrJcvj1KCwEmCFzuB6DHldOTgXN4E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.crl rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:50:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4204, serialNumber=47E96BF831BB3CC43B4F0784263E7295875D5516 Validity Not Before: Dec 5 04:50:51 2025 GMT Not After : Dec 12 04:50:51 2025 GMT Subject: CN=693264ab-e0e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2c:8e:db:52:9c:0f:91:ba:07:c3:b4:f2:ca: 11:0a:93:ad:6d:1f:f2:d1:d4:92:49:27:29:5b:61: de:9f:88:15:e7:4b:46:06:b2:40:dd:59:a1:4d:5f: 6b:a6:e8:d7:83:26:be:76:30:ac:57:3f:2f:7b:c6: 17:9a:27:d1:34:ca:1e:32:e9:ad:2a:a9:4d:f8:9e: 7b:68:78:17:94:da:c4:11:d5:9f:71:a6:e3:39:5c: 61:cd:b8:15:12:b9:b9:d2:56:63:b7:f7:9e:1c:a7: a9:59:f8:da:59:dd:b3:28:a5:d5:0c:74:3b:67:b9: ac:ff:bf:c4:09:f0:4a:0f:31:ac:3f:02:e1:2d:05: 0f:2b:73:30:3d:a9:8f:bd:f9:f6:6d:3b:e3:ad:1b: e5:23:c9:6f:87:14:0d:31:2c:c4:f0:f3:c0:e1:83: a7:cd:8e:f7:83:0c:0c:84:fa:44:9d:50:0c:37:6d: 30:09:0f:6f:d3:d0:88:5f:73:7d:ec:fd:08:c7:c0: ff:d8:5f:8a:cc:71:43:4b:12:30:6c:ad:01:b6:92: 05:45:a6:dd:7e:b3:31:e8:a3:11:b0:1b:84:89:88: 9d:3a:d0:5b:05:eb:00:19:8c:c3:78:66:86:60:0d: 68:c1:36:a7:75:f1:39:4b:4a:ac:5b:da:f7:8e:7d: e1:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:70:E8:A6:1B:12:F4:00:BF:73:0C:EF:05:9D:EF:43:75:A3:E3:03 X509v3 Authority Key Identifier: keyid:47:E9:6B:F8:31:BB:3C:C4:3B:4F:07:84:26:3E:72:95:87:5D:55:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R-lr-DG7PMQ7TweEJj5ylYddVRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4204/441B5052300911F0A0AA7D3DC4F9AE02/R-lr-DG7PMQ7TweEJj5ylYddVRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:a3:b4:90:1f:21:f8:0b:b5:c0:42:ca:a3:1f:e5:0c:e9:90: 24:af:7f:37:93:9a:e6:e7:14:65:cb:a8:82:bc:e0:54:66:ee: 4d:fc:86:a9:f4:51:b6:09:57:31:3d:20:ab:f4:d0:19:2c:b9: a0:b3:74:f5:3c:90:96:78:41:9b:e7:b3:d3:ce:cd:bf:f8:cd: af:42:00:48:29:cc:87:7c:2f:18:d6:aa:36:c6:e5:fb:92:10: 41:fe:89:f6:f8:a0:56:62:42:af:90:5a:5f:50:6b:b6:99:c6: 1a:9a:d2:c7:4f:fe:0e:36:70:07:1f:7c:39:45:b5:88:04:d8: 96:e4:31:23:75:5d:51:b0:5d:cb:2d:d9:c6:64:0d:70:db:5e: 7f:ee:95:71:07:0d:31:b7:52:43:85:e7:0d:d0:fb:b5:b7:66: 11:63:b9:f3:af:d3:95:ed:9e:69:32:ec:8b:4d:f9:bb:11:63: ec:55:d7:56:f4:55:8f:88:93:a2:13:ce:dc:57:7b:da:f6:21: 61:4c:60:04:98:62:9a:6c:61:cf:c6:2e:3f:2e:f7:88:41:3c: 6e:d6:07:88:a4:d4:1f:91:88:3b:bb:b8:ef:71:af:e5:bb:7a: ba:2a:e6:3b:3c:51:32:b0:6a:45:38:6b:a4:0c:01:45:ff:05: a2:ca:a3:be -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NDIwNDExMC8GA1UEBRMoNDdFOTZCRjgzMUJCM0NDNDNCNEYwNzg0MjYzRTcyOTU4 NzVENTUxNjAeFw0yNTEyMDUwNDUwNTFaFw0yNTEyMTIwNDUwNTFaMBgxFjAUBgNV BAMTDTY5MzI2NGFiLWUwZTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7LI7bUpwPkboHw7TyyhEKk61tH/LR1JJJJylbYd6fiBXnS0YGskDdWaFNX2um 6NeDJr52MKxXPy97xheaJ9E0yh4y6a0qqU34nntoeBeU2sQR1Z9xpuM5XGHNuBUS ubnSVmO3954cp6lZ+NpZ3bMopdUMdDtnuaz/v8QJ8EoPMaw/AuEtBQ8rczA9qY+9 +fZtO+OtG+UjyW+HFA0xLMTw88Dhg6fNjveDDAyE+kSdUAw3bTAJD2/T0Ihfc33s /QjHwP/YX4rMcUNLEjBsrQG2kgVFpt1+szHooxGwG4SJiJ060FsF6wAZjMN4ZoZg DWjBNqd18TlLSqxb2veOfeHVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUi3DophsS 9AC/cwzvBZ3vQ3Wj4wMwHwYDVR0jBBgwFoAUR+lr+DG7PMQ7TweEJj5ylYddVRYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0MjA0LzQ0MUI1MDUyMzAw OTExRjBBMEFBN0QzREM0RjlBRTAyL1ItbHItREc3UE1RN1R3ZUVKajV5bFlkZFZS WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUi1sci1ERzdQTVE3VHdlRUpqNXlsWWRkVlJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0 MjA0LzQ0MUI1MDUyMzAwOTExRjBBMEFBN0QzREM0RjlBRTAyL1ItbHItREc3UE1R N1R3ZUVKajV5bFlkZFZSWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAICjtJAfIfgLtcBCyqMf5QzpkCSvfzeTmubnFGXLqIK84FRm7k38hqn0 UbYJVzE9IKv00BksuaCzdPU8kJZ4QZvns9POzb/4za9CAEgpzId8LxjWqjbG5fuS EEH+ifb4oFZiQq+QWl9Qa7aZxhqa0sdP/g42cAcffDlFtYgE2JbkMSN1XVGwXcst 2cZkDXDbXn/ulXEHDTG3UkOF5w3Q+7W3ZhFjufOv05Xtnmky7ItN+bsRY+xV11b0 VY+Ik6ITztxXe9r2IWFMYASYYppsYc/GLj8u94hBPG7WB4ik1B+RiDu7uO9xr+W7 eroq5js8UTKwakU4a6QMAUX/BaLKo74= -----END CERTIFICATE-----Generated at Sat Dec 6 13:54:14 2025 by rpki-client