This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft File: lpDF1gn85ELDW5kW1WP58Ye2itQ.mft (raw, json) Hash identifier: zP3f3/2U7clLX62LrcPexsXGvw2arYu8AbZ8Eud2dpE= Subject key identifier: C3:8D:16:B4:CD:A1:3E:9C:B3:1C:C7:25:76:0D:3D:54:41:7B:22:73 Authority key identifier: 96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 Certificate issuer: /CN=A91D8E2C/serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Certificate serial: 0E9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft Manifest number: 0E96 Signing time: Sat 06 Dec 2025 17:09:22 +0000 Manifest this update: Sat 06 Dec 2025 17:09:22 +0000 Manifest next update: Sat 13 Dec 2025 17:09:21 +0000 Files and hashes: 1: lpDF1gn85ELDW5kW1WP58Ye2itQ.crl (hash: A8DSOjqcK5rhC4o3v30z1L7xtjqEwveVLYy54UUeyqw=) 2: 6C153768CE5511EB9DD80C30C4F9AE02.roa (hash: FB/I0gTgEb20qtL8a4Y3PnJsdj8cSocHpg/e5FisnJk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3743 (0xe9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8E2C, serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Validity Not Before: Dec 6 17:09:22 2025 GMT Not After : Dec 13 17:09:21 2025 GMT Subject: CN=69346342-37e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:6c:74:b7:ad:3e:b9:e2:72:6c:80:42:46:3c: 11:dc:23:14:31:c7:a6:78:44:34:f8:13:2c:ca:17: e9:e8:85:3e:d0:54:17:8e:49:c5:1d:08:81:5c:44: 80:10:dd:07:ff:9a:cd:41:07:67:78:06:10:a2:54: d1:d0:ba:30:cd:0c:d8:3a:77:ae:12:6a:37:51:a9: 04:1b:cc:15:af:e1:6b:25:c9:bd:0a:b5:eb:73:7d: 2c:0d:0b:47:25:b0:55:c2:fa:87:8b:12:93:52:f3: 18:bd:6a:cf:90:52:70:44:04:09:70:b0:a8:5b:61: 08:c0:d5:e6:7e:f7:fe:eb:85:bb:b7:00:52:9e:f3: 24:91:2e:1d:c0:1c:89:87:04:87:e1:84:29:91:a9: cc:d3:a8:bc:9d:e2:22:ed:0a:35:74:b4:c6:f2:fa: 64:cd:57:93:67:73:c1:bc:92:71:4e:c1:02:34:d6: 4e:7d:23:84:8e:d4:eb:89:c5:71:53:15:ac:ba:8a: a9:ca:fb:b9:1c:b9:c4:73:78:b8:67:44:61:78:76: 0d:a4:7b:ab:e7:a0:80:9f:4a:09:6e:38:22:74:e8: 43:3f:d6:c9:7f:4d:35:a9:c5:d1:f6:9b:22:4a:46: 78:03:cf:6e:f7:2c:b9:b0:d9:ae:7e:61:92:0c:b6: 7f:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:8D:16:B4:CD:A1:3E:9C:B3:1C:C7:25:76:0D:3D:54:41:7B:22:73 X509v3 Authority Key Identifier: keyid:96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:9d:86:fa:eb:13:17:14:cc:23:c8:d1:f4:09:89:1a:82:85: c2:97:de:35:cb:6d:5f:e9:b6:49:e5:21:45:a0:76:29:da:96: 3c:ed:c7:c1:58:4d:73:b4:bb:e2:f7:90:85:8d:25:13:be:ce: 69:8d:25:11:f9:5a:f7:39:bb:79:59:f3:1a:b0:8b:61:e6:da: fd:52:36:9e:63:27:36:f8:04:ab:55:0e:94:7f:61:6a:f2:53: a2:5d:a8:ca:a7:8b:70:38:86:a7:1c:a2:f7:77:20:96:c9:fc: 56:6a:b0:62:d6:a0:b5:4e:5f:f0:6f:88:4f:2a:b1:56:17:4f: 93:de:a6:e8:cf:a9:ad:8e:47:f0:0a:7c:9f:84:1c:88:92:43: b0:d8:86:ba:f1:1d:4c:08:7c:fe:d1:3c:29:6c:38:c5:8e:7e: bb:fc:d8:1c:fd:7e:4b:be:6e:42:5e:bc:53:8f:33:f1:08:45: 92:ff:78:fa:e6:b4:fd:95:9d:44:7b:e8:64:04:11:fa:23:38: f3:74:ba:a4:e0:81:ef:0e:7e:37:cc:9a:fd:e4:bc:ce:67:11: e7:41:9e:62:7d:0c:bf:5e:ac:c1:a7:38:53:41:9d:8a:f5:ee: 0e:e3:07:a1:c8:c3:3b:74:10:8f:1c:4d:58:1e:94:91:b2:51: cc:17:d1:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDp8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFMkMxMTAvBgNVBAUTKDk2OTBDNUQ2MDlGQ0U0NDJDMzVCOTkxNkQ1NjNGOUYx ODdCNjhBRDQwHhcNMjUxMjA2MTcwOTIyWhcNMjUxMjEzMTcwOTIxWjAYMRYwFAYD VQQDEw02OTM0NjM0Mi0zN2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Gx0t60+ueJybIBCRjwR3CMUMcemeEQ0+BMsyhfp6IU+0FQXjknFHQiBXESA EN0H/5rNQQdneAYQolTR0LowzQzYOneuEmo3UakEG8wVr+FrJcm9CrXrc30sDQtH JbBVwvqHixKTUvMYvWrPkFJwRAQJcLCoW2EIwNXmfvf+64W7twBSnvMkkS4dwByJ hwSH4YQpkanM06i8neIi7Qo1dLTG8vpkzVeTZ3PBvJJxTsECNNZOfSOEjtTricVx UxWsuoqpyvu5HLnEc3i4Z0RheHYNpHur56CAn0oJbjgidOhDP9bJf001qcXR9psi SkZ4A89u9yy5sNmufmGSDLZ/twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMONFrTN oT6csxzHJXYNPVRBeyJzMB8GA1UdIwQYMBaAFJaQxdYJ/ORCw1uZFtVj+fGHtorU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEUyQy8wRkUxRUQwNkEy RkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVFTERXNWtXMVdQNThZZTJp dFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xwREYxZ244NUVMRFc1a1cxV1A1OFllMml0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEUyQy8wRkUxRUQwNkEyRkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVF TERXNWtXMVdQNThZZTJpdFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBynYb66xMXFMwjyNH0CYkagoXCl941y21f6bZJ5SFFoHYp2pY87cfB WE1ztLvi95CFjSUTvs5pjSUR+Vr3Obt5WfMasIth5tr9UjaeYyc2+ASrVQ6Uf2Fq 8lOiXajKp4twOIanHKL3dyCWyfxWarBi1qC1Tl/wb4hPKrFWF0+T3qboz6mtjkfw CnyfhByIkkOw2Ia68R1MCHz+0TwpbDjFjn67/Ngc/X5Lvm5CXrxTjzPxCEWS/3j6 5rT9lZ1Ee+hkBBH6IzjzdLqk4IHvDn43zJr95LzOZxHnQZ5ifQy/XqzBpzhTQZ2K 9e4O4wehyMM7dBCPHE1YHpSRslHMF9GU -----END CERTIFICATE-----Generated at Sat Dec 6 19:14:04 2025 by rpki-client