This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft File: LFTOW3Q5yME3PII5T2B5FwVy9_0.mft (raw, json) Hash identifier: rgoKY+mKkzVETZzoxgG+Tsq9iQoShNWTYzx3BBomv24= Subject key identifier: 75:39:52:48:4D:CE:D9:A7:E6:F5:65:DC:2B:CF:F7:F5:9C:C3:C6:1C Authority key identifier: 2C:54:CE:5B:74:39:C8:C1:37:3C:82:39:4F:60:79:17:05:72:F7:FD Certificate issuer: /CN=A91DC271/serialNumber=2C54CE5B7439C8C1373C82394F6079170572F7FD Certificate serial: 05F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LFTOW3Q5yME3PII5T2B5FwVy9_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft Manifest number: 05ED Signing time: Thu 04 Dec 2025 21:39:27 +0000 Manifest this update: Thu 04 Dec 2025 21:39:26 +0000 Manifest next update: Thu 11 Dec 2025 21:39:26 +0000 Files and hashes: 1: LFTOW3Q5yME3PII5T2B5FwVy9_0.crl (hash: jpID7fQT83UWHeGBcGdBtaZfqu37/ssSolWFTNcYJO8=) 2: 26DDF9C4D59311EB9DBD350EC4F9AE02.roa (hash: r1nvlMobRn7ox8IKXb1KWmQHrNC+PsGByKMD0/kqGOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.crl rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LFTOW3Q5yME3PII5T2B5FwVy9_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 21:39:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1522 (0x5f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC271, serialNumber=2C54CE5B7439C8C1373C82394F6079170572F7FD Validity Not Before: Dec 4 21:39:26 2025 GMT Not After : Dec 11 21:39:26 2025 GMT Subject: CN=6931ff8e-0aa2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d2:94:86:c8:2a:86:d1:d2:4f:bb:78:18:95: 32:06:43:6b:1d:1c:31:d3:72:32:82:aa:4f:77:d1: e5:50:47:47:57:68:af:53:6e:36:fb:21:42:68:f7: 97:e4:23:30:90:d6:1f:70:bf:7e:db:21:af:ce:6c: 72:1d:f3:69:6c:fc:ed:4e:58:ce:cc:45:c0:1d:d2: 70:66:c5:e8:ec:b2:f4:b1:9a:cb:5c:54:28:42:57: a6:b3:4a:99:77:05:5f:68:07:7f:31:1d:bf:65:a5: b7:6f:0b:08:d9:0b:01:86:08:18:a9:cb:90:4b:2e: 3a:08:df:36:b7:a8:81:be:83:b7:ae:e6:fc:5c:ec: 6f:15:f3:cb:59:15:d3:4a:11:74:fc:cd:cd:0e:69: 6d:f6:06:95:90:d1:1d:28:17:cf:87:01:af:58:ec: eb:bf:ae:a1:5a:86:13:13:e2:25:85:3a:9d:44:cc: b8:e7:ad:22:24:a4:13:77:d2:d7:cf:6b:9a:42:a2: 12:8b:09:30:59:88:69:1c:7e:48:ab:ee:a6:a1:06: 37:cc:68:9b:75:14:ec:cd:1a:e9:1c:9f:de:e3:eb: 1d:ec:93:67:eb:92:1e:5f:0b:97:97:e8:52:cf:ae: 0b:b4:73:7a:74:8a:a1:af:fb:10:d0:c4:06:f9:03: bb:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:39:52:48:4D:CE:D9:A7:E6:F5:65:DC:2B:CF:F7:F5:9C:C3:C6:1C X509v3 Authority Key Identifier: keyid:2C:54:CE:5B:74:39:C8:C1:37:3C:82:39:4F:60:79:17:05:72:F7:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LFTOW3Q5yME3PII5T2B5FwVy9_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:b9:c9:12:11:0c:cc:72:13:61:5d:ca:ad:1c:38:dd:f0:1f: fd:c8:81:21:2e:05:8a:bf:0d:2d:0c:7b:18:21:be:6d:ec:c8: a3:68:6c:4a:b9:ca:bc:80:2d:de:37:18:36:1c:de:19:34:f1: 7c:17:d1:15:f8:7d:50:6b:99:af:3c:5e:2f:14:a8:b3:df:3d: 04:51:10:a9:ad:81:ac:a0:d9:d6:8a:04:91:37:c0:1e:33:e4: 36:d3:87:8d:7e:99:28:e4:37:85:db:ac:7c:2f:20:33:ef:e9: dc:5e:ff:ef:e8:95:c3:f6:5b:fd:03:81:70:21:7e:30:e7:dd: fa:17:6d:f0:e1:de:26:2e:fb:54:86:71:ac:b1:e7:d8:a5:c3: e6:2e:db:32:63:c2:d0:f6:e0:30:63:78:60:52:8c:a5:06:f6: b0:d7:c0:4c:76:b9:88:28:41:c5:36:49:4f:82:06:e0:f6:99: ed:4b:13:9c:a0:f1:9d:88:ac:a6:b1:27:49:b2:16:27:6c:c7: 7e:12:49:05:eb:7f:fa:d5:5b:87:40:13:19:cc:e1:37:71:9e: 4d:44:0a:ce:e9:17:c5:ef:30:10:20:9f:ac:8b:eb:e5:6b:de: 7b:31:26:d4:21:4c:b1:69:36:0b:a5:ed:31:e1:23:6e:a6:55: b7:63:bb:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMyNzExMTAvBgNVBAUTKDJDNTRDRTVCNzQzOUM4QzEzNzNDODIzOTRGNjA3OTE3 MDU3MkY3RkQwHhcNMjUxMjA0MjEzOTI2WhcNMjUxMjExMjEzOTI2WjAYMRYwFAYD VQQDEw02OTMxZmY4ZS0wYWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAudKUhsgqhtHST7t4GJUyBkNrHRwx03IygqpPd9HlUEdHV2ivU242+yFCaPeX 5CMwkNYfcL9+2yGvzmxyHfNpbPztTljOzEXAHdJwZsXo7LL0sZrLXFQoQlems0qZ dwVfaAd/MR2/ZaW3bwsI2QsBhggYqcuQSy46CN82t6iBvoO3rub8XOxvFfPLWRXT ShF0/M3NDmlt9gaVkNEdKBfPhwGvWOzrv66hWoYTE+IlhTqdRMy4560iJKQTd9LX z2uaQqISiwkwWYhpHH5Iq+6moQY3zGibdRTszRrpHJ/e4+sd7JNn65IeXwuXl+hS z64LtHN6dIqhr/sQ0MQG+QO7yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHU5UkhN ztmn5vVl3CvP9/Wcw8YcMB8GA1UdIwQYMBaAFCxUzlt0OcjBNzyCOU9geRcFcvf9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzI3MS83MjRCREFBMkQ1 OEUxMUVCQjc5RDM5ODRDNEY5QUUwMi9MRlRPVzNRNXlNRTNQSUk1VDJCNUZ3Vnk5 XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xGVE9XM1E1eU1FM1BJSTVUMkI1RndWeTlfMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzI3MS83MjRCREFBMkQ1OEUxMUVCQjc5RDM5ODRDNEY5QUUwMi9MRlRPVzNRNXlN RTNQSUk1VDJCNUZ3Vnk5XzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfuckSEQzMchNhXcqtHDjd8B/9yIEhLgWKvw0tDHsYIb5t7MijaGxK ucq8gC3eNxg2HN4ZNPF8F9EV+H1Qa5mvPF4vFKiz3z0EURCprYGsoNnWigSRN8Ae M+Q204eNfpko5DeF26x8LyAz7+ncXv/v6JXD9lv9A4FwIX4w5936F23w4d4mLvtU hnGssefYpcPmLtsyY8LQ9uAwY3hgUoylBvaw18BMdrmIKEHFNklPggbg9pntSxOc oPGdiKymsSdJshYnbMd+EkkF63/61VuHQBMZzOE3cZ5NRArO6RfF7zAQIJ+si+vl a957MSbUIUyxaTYLpe0x4SNuplW3Y7s7 -----END CERTIFICATE-----Generated at Sat Dec 6 17:13:40 2025 by rpki-client