This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft File: lfCdXluLzW9LTWm1yTbJEvd9LP0.mft (raw, json) Hash identifier: d4ltWZJBv+e0IJ2NDpcIb0Q8ncg3WhJF+x9i1b5zmsM= Subject key identifier: 64:84:70:35:F9:CB:B8:35:00:80:CB:BD:B5:BD:D5:AF:F6:E6:AC:63 Authority key identifier: 95:F0:9D:5E:5B:8B:CD:6F:4B:4D:69:B5:C9:36:C9:12:F7:7D:2C:FD Certificate issuer: /CN=A91D44BE/serialNumber=95F09D5E5B8BCD6F4B4D69B5C936C912F77D2CFD Certificate serial: FA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft Manifest number: F5 Signing time: Fri 05 Dec 2025 03:23:33 +0000 Manifest this update: Fri 05 Dec 2025 03:23:33 +0000 Manifest next update: Fri 12 Dec 2025 03:23:33 +0000 Files and hashes: 1: lfCdXluLzW9LTWm1yTbJEvd9LP0.crl (hash: zgc1vorCRx+RAeoNtXtR0iOO4NoGG78Ox+CAWpFrvJg=) 2: B23569E2756511EFB018F20DC4F9AE02.roa (hash: 5VNZ8rNXbQQKdKelf/v7rMupqWLx2zXfYFtsUljtzac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.crl rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:23:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 250 (0xfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D44BE, serialNumber=95F09D5E5B8BCD6F4B4D69B5C936C912F77D2CFD Validity Not Before: Dec 5 03:23:33 2025 GMT Not After : Dec 12 03:23:33 2025 GMT Subject: CN=69325035-ca6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c0:29:64:4a:49:d0:fd:dd:db:a9:07:ee:c4: dd:fc:3e:a3:de:35:b7:d1:e5:8f:10:64:e4:b1:29: f4:23:29:8c:5a:35:eb:fa:e6:9a:58:0c:6a:9d:7e: 2c:d0:a0:42:59:c2:ba:58:0f:4f:ce:e8:56:15:77: ce:86:1a:56:b8:6e:30:33:e7:5b:46:71:e6:44:f9: 78:0b:cf:42:e8:03:ba:7a:a4:08:a8:53:df:f1:81: 49:d0:29:5d:f4:b8:48:33:e7:b3:e4:42:a0:de:2d: 30:f1:0d:40:15:ce:18:a9:0d:fb:43:93:c3:17:69: e3:0a:7d:12:24:85:50:90:c4:b2:a3:7e:7a:8d:2d: 48:e6:50:6e:b5:43:b6:0f:45:91:11:ee:41:3e:5c: 89:24:4f:54:9d:56:60:37:ba:ad:fc:38:69:19:72: 69:0f:79:8e:b7:6f:9a:ca:60:b8:b2:c7:b9:f5:bf: 30:e3:47:97:ff:66:83:c9:66:90:e6:25:a9:12:e9: c0:64:d6:28:d7:65:44:64:bf:1d:a3:ba:a9:08:ee: 47:25:8d:69:1e:7c:57:77:f7:e5:c1:51:aa:b4:ce: 6d:b5:15:35:bd:87:8a:c6:73:c0:65:4e:fd:14:23: 0c:c3:13:58:a5:8d:87:e1:d3:e9:05:59:b9:ec:e0: 93:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:84:70:35:F9:CB:B8:35:00:80:CB:BD:B5:BD:D5:AF:F6:E6:AC:63 X509v3 Authority Key Identifier: keyid:95:F0:9D:5E:5B:8B:CD:6F:4B:4D:69:B5:C9:36:C9:12:F7:7D:2C:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lfCdXluLzW9LTWm1yTbJEvd9LP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D44BE/028ABE42692211EFBF87BB0EC4F9AE02/lfCdXluLzW9LTWm1yTbJEvd9LP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:b4:41:2c:98:a5:e2:fe:ce:71:56:2f:b2:14:f5:93:40:70: 73:49:63:b2:dd:eb:d3:f8:5a:a8:88:b1:e1:d9:86:f9:2e:5d: 41:91:28:d2:bc:13:ae:b5:0e:45:2b:1a:33:67:32:e2:5e:f1: 79:d4:90:af:1c:55:88:47:1f:34:66:b3:0e:d5:db:13:1b:f4: f0:a2:52:38:0e:1a:fd:8d:ab:9f:78:0b:a1:8b:a8:fa:dd:3d: e9:09:97:e6:4f:65:e8:d0:36:87:04:4a:e1:b0:c9:8f:ad:34: b5:8a:fb:b4:86:c3:a4:c0:b6:f1:10:65:4a:4b:4b:5a:02:d7: d4:c3:3a:0f:9c:0f:53:0d:10:43:d0:41:85:fb:79:54:9f:a4: ff:ab:2a:23:4f:60:7d:f4:43:11:0d:84:dc:28:c1:34:f1:08: 29:54:85:5b:24:2a:a9:fa:57:a7:c8:ed:52:02:70:a6:6e:08: 11:8d:b5:8a:f0:60:e3:9f:c6:dc:22:b2:4a:17:e6:7f:8e:91: d3:06:0e:b4:97:97:e2:be:85:18:40:ae:6b:1c:bd:a1:04:43: b2:cb:75:08:5b:7a:22:a6:69:c8:98:39:a2:ad:3a:cf:29:68: c5:95:b7:2a:71:3b:c7:33:97:70:c5:8f:2e:c0:90:b7:0b:71: 7d:fb:67:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ0QkUxMTAvBgNVBAUTKDk1RjA5RDVFNUI4QkNENkY0QjRENjlCNUM5MzZDOTEy Rjc3RDJDRkQwHhcNMjUxMjA1MDMyMzMzWhcNMjUxMjEyMDMyMzMzWjAYMRYwFAYD VQQDEw02OTMyNTAzNS1jYTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8ApZEpJ0P3d26kH7sTd/D6j3jW30eWPEGTksSn0IymMWjXr+uaaWAxqnX4s 0KBCWcK6WA9PzuhWFXfOhhpWuG4wM+dbRnHmRPl4C89C6AO6eqQIqFPf8YFJ0Cld 9LhIM+ez5EKg3i0w8Q1AFc4YqQ37Q5PDF2njCn0SJIVQkMSyo356jS1I5lButUO2 D0WREe5BPlyJJE9UnVZgN7qt/DhpGXJpD3mOt2+aymC4sse59b8w40eX/2aDyWaQ 5iWpEunAZNYo12VEZL8do7qpCO5HJY1pHnxXd/flwVGqtM5ttRU1vYeKxnPAZU79 FCMMwxNYpY2H4dPpBVm57OCTSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGSEcDX5 y7g1AIDLvbW91a/25qxjMB8GA1UdIwQYMBaAFJXwnV5bi81vS01ptck2yRL3fSz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDRCRS8wMjhBQkU0MjY5 MjIxMUVGQkY4N0JCMEVDNEY5QUUwMi9sZkNkWGx1THpXOUxUV20xeVRiSkV2ZDlM UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmQ2RYbHVMelc5TFRXbTF5VGJKRXZkOUxQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDRCRS8wMjhBQkU0MjY5MjIxMUVGQkY4N0JCMEVDNEY5QUUwMi9sZkNkWGx1THpX OUxUV20xeVRiSkV2ZDlMUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBftEEsmKXi/s5xVi+yFPWTQHBzSWOy3evT+FqoiLHh2Yb5Ll1BkSjS vBOutQ5FKxozZzLiXvF51JCvHFWIRx80ZrMO1dsTG/TwolI4Dhr9jaufeAuhi6j6 3T3pCZfmT2Xo0DaHBErhsMmPrTS1ivu0hsOkwLbxEGVKS0taAtfUwzoPnA9TDRBD 0EGF+3lUn6T/qyojT2B99EMRDYTcKME08QgpVIVbJCqp+lenyO1SAnCmbggRjbWK 8GDjn8bcIrJKF+Z/jpHTBg60l5fivoUYQK5rHL2hBEOyy3UIW3oipmnImDmirTrP KWjFlbcqcTvHM5dwxY8uwJC3C3F9+2dN -----END CERTIFICATE-----Generated at Sat Dec 6 20:28:35 2025 by rpki-client