This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft File: lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft (raw, json) Hash identifier: z32ctuYBtfsBMn2/oZenZ9VGm3XcSnsg9gGjBpEEoIM= Subject key identifier: 37:A2:B0:8E:4C:6F:DE:D9:AC:C7:DF:5A:C5:39:41:E6:85:F0:21:E2 Authority key identifier: 95:35:D7:61:10:B3:C0:29:C5:85:5B:4C:17:45:05:AF:61:19:F3:0C Certificate issuer: /CN=A91D0C8E/serialNumber=9535D76110B3C029C5855B4C174505AF6119F30C Certificate serial: 0497 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft Manifest number: 0476 Signing time: Sat 06 Dec 2025 22:50:39 +0000 Manifest this update: Sat 06 Dec 2025 22:50:38 +0000 Manifest next update: Sat 13 Dec 2025 22:50:38 +0000 Files and hashes: 1: lTXXYRCzwCnFhVtMF0UFr2EZ8ww.crl (hash: xXnpYZejvphRzz0TEQu/DiOuV8pKgde/Cb0jc5YzTnE=) 2: A8827568116911EEBB241C32C4F9AE02.roa (hash: ePscgiftvgu3AgZJRcwiRUYhc5l5akEknNm+3bxCM0A=) 3: A6FA9A4A116911EEBB241C32C4F9AE02.roa (hash: RgkBiig85GBTWo6hrTV95O/BhHQIjrp9qKOVuIGC96Q=) 4: E248BDA63C5211EF94184A20C4F9AE02.roa (hash: uCKPAwy0X3Z4CL+hlBr0CZ+w6vMoqyCthCGEPEwyTxY=) 5: F4D295243FDA11EFAF5E676AC4F9AE02.roa (hash: aj4Q4SeRE+NI4REEKNFbR+3ayDuDtlipzDAl7u7My1E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.crl rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 22:50:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1175 (0x497) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C8E, serialNumber=9535D76110B3C029C5855B4C174505AF6119F30C Validity Not Before: Dec 6 22:50:38 2025 GMT Not After : Dec 13 22:50:38 2025 GMT Subject: CN=6934b33e-fa80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5b:d2:bb:a7:85:58:54:f5:ac:cc:67:17:e5: d3:43:eb:1c:bf:2b:fa:f3:93:58:d3:28:a1:28:dd: 24:1d:c1:29:6b:ee:6e:0e:fa:ff:1f:32:96:26:bf: 18:b4:be:6f:3c:f9:07:db:2d:d2:40:79:6b:f7:c7: 64:bb:94:99:b9:01:0b:ba:29:72:85:69:b3:f8:eb: dc:6d:7b:53:d9:d3:84:17:cb:4a:1b:f1:a9:88:2b: 9f:2f:92:9f:8a:c1:dc:d6:ab:01:78:03:56:f3:3c: 0d:22:9e:48:97:b0:6b:e8:bf:72:fb:f6:fd:6e:ab: a3:a9:0e:53:76:04:8f:97:c2:15:50:5a:47:ec:ec: 80:cd:d4:7f:76:51:01:0e:17:a5:ff:dc:52:a9:cb: 07:44:48:e8:2b:8c:22:75:96:12:15:89:b3:73:0d: 3d:e5:99:46:23:11:56:85:13:b4:ed:5d:62:f4:2d: cf:59:a7:80:c4:cb:dd:66:86:91:bc:75:b6:90:e6: 93:89:63:6a:90:05:30:66:3e:21:74:6c:94:2b:3b: 59:cf:d3:35:bf:65:e9:5f:de:70:87:7c:6e:bc:5f: 43:11:59:cc:1e:b5:1a:a6:41:62:30:2d:98:2e:5c: 87:77:c2:66:d0:9b:54:da:e9:fa:29:19:d0:a4:c7: a4:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:A2:B0:8E:4C:6F:DE:D9:AC:C7:DF:5A:C5:39:41:E6:85:F0:21:E2 X509v3 Authority Key Identifier: keyid:95:35:D7:61:10:B3:C0:29:C5:85:5B:4C:17:45:05:AF:61:19:F3:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C8E/032E57B8743911ECB557236FC4F9AE02/lTXXYRCzwCnFhVtMF0UFr2EZ8ww.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:3b:8c:15:56:09:49:b8:d1:34:f1:68:e9:d8:d1:dd:d5:2a: 03:5c:e3:17:a3:fd:c3:8a:b2:f9:4e:ce:97:38:e7:3e:f9:ec: fe:e9:6b:f9:e5:a7:43:b2:16:9b:85:bd:65:fe:a2:69:e5:68: 34:ac:97:0e:b1:06:fb:15:6d:56:06:16:4c:b1:a6:fd:a2:5b: 75:5c:e3:e6:14:a3:75:3e:28:c5:90:d4:f2:a7:3a:db:8a:20: fc:bf:3c:a5:7a:c1:bf:de:14:68:a1:35:05:d5:97:7a:74:4c: 88:c4:1c:f7:bc:7f:28:80:02:60:d2:93:61:9c:30:83:d4:4e: a0:38:3e:5b:37:fa:89:f8:d6:da:cd:9c:59:c8:5d:5b:47:e5: 33:de:ae:9c:b8:a0:62:64:e7:66:11:04:87:97:8d:f4:1c:1d: 97:b3:e2:78:97:19:ac:96:45:2d:34:c7:58:3c:82:ba:44:b7: 59:17:d6:08:dd:31:5d:7a:4b:7a:8b:39:ea:b5:c3:1e:0e:73: 1b:8d:b3:3e:a3:d6:f2:72:19:56:a3:e1:b5:3e:e3:9e:c7:5e: 9f:e8:64:68:f8:c3:a5:af:72:b6:e2:55:6e:32:76:af:1c:f0: 12:bd:f2:b2:87:c2:c6:51:ee:24:70:48:17:e4:e2:56:f8:68: 3d:03:bd:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBDOEUxMTAvBgNVBAUTKDk1MzVENzYxMTBCM0MwMjlDNTg1NUI0QzE3NDUwNUFG NjExOUYzMEMwHhcNMjUxMjA2MjI1MDM4WhcNMjUxMjEzMjI1MDM4WjAYMRYwFAYD VQQDEw02OTM0YjMzZS1mYTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt1vSu6eFWFT1rMxnF+XTQ+scvyv685NY0yihKN0kHcEpa+5uDvr/HzKWJr8Y tL5vPPkH2y3SQHlr98dku5SZuQELuilyhWmz+OvcbXtT2dOEF8tKG/GpiCufL5Kf isHc1qsBeANW8zwNIp5Il7Br6L9y+/b9bqujqQ5TdgSPl8IVUFpH7OyAzdR/dlEB Dhel/9xSqcsHREjoK4widZYSFYmzcw095ZlGIxFWhRO07V1i9C3PWaeAxMvdZoaR vHW2kOaTiWNqkAUwZj4hdGyUKztZz9M1v2XpX95wh3xuvF9DEVnMHrUapkFiMC2Y LlyHd8Jm0JtU2un6KRnQpMeklQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDeisI5M b97ZrMffWsU5QeaF8CHiMB8GA1UdIwQYMBaAFJU112EQs8ApxYVbTBdFBa9hGfMM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEM4RS8wMzJFNTdCODc0 MzkxMUVDQjU1NzIzNkZDNEY5QUUwMi9sVFhYWVJDendDbkZoVnRNRjBVRnIyRVo4 d3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xUWFhZUkN6d0NuRmhWdE1GMFVGcjJFWjh3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEM4RS8wMzJFNTdCODc0MzkxMUVDQjU1NzIzNkZDNEY5QUUwMi9sVFhYWVJDendD bkZoVnRNRjBVRnIyRVo4d3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMO4wVVglJuNE08Wjp2NHd1SoDXOMXo/3DirL5Ts6XOOc++ez+6Wv5 5adDshabhb1l/qJp5Wg0rJcOsQb7FW1WBhZMsab9olt1XOPmFKN1PijFkNTypzrb iiD8vzylesG/3hRooTUF1Zd6dEyIxBz3vH8ogAJg0pNhnDCD1E6gOD5bN/qJ+Nba zZxZyF1bR+Uz3q6cuKBiZOdmEQSHl430HB2Xs+J4lxmslkUtNMdYPIK6RLdZF9YI 3TFdekt6iznqtcMeDnMbjbM+o9bychlWo+G1PuOex16f6GRo+MOlr3K24lVuMnav HPASvfKyh8LGUe4kcEgX5OJW+Gg9A718 -----END CERTIFICATE-----Generated at Sun Dec 7 03:09:29 2025 by rpki-client