This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft File: lHy2dKhYzZGupVJro2aKEeSey5M.mft (raw, json) Hash identifier: P1uAlESYtnoTbPyFhMWDR5inYVLeQsNJh0LmiUZGfxM= Subject key identifier: 5D:8A:A7:1F:BF:6D:52:96:0A:5A:D2:7D:58:A8:39:01:72:B8:32:07 Authority key identifier: 94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 Certificate issuer: /CN=A91DFC30/serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Certificate serial: 0440 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft Manifest number: 0437 Signing time: Thu 04 Dec 2025 22:47:29 +0000 Manifest this update: Thu 04 Dec 2025 22:47:29 +0000 Manifest next update: Thu 11 Dec 2025 22:47:29 +0000 Files and hashes: 1: lHy2dKhYzZGupVJro2aKEeSey5M.crl (hash: a32pTikTKuCZVudrN8rXiJ8OZYjNHl4ebIjqdd3S6sg=) 2: 13F5D28685B111ECB675B552C4F9AE02.roa (hash: wg979tEV/edC9z/60lEEUA1wH6+Atveb0Z20mtMK9/g=) 3: 147D51CA85B111ECB675B552C4F9AE02.roa (hash: e9cwg8d7bC8r2DHgx/kL7/A4+KHztZ7rWF6Yv+XqYD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:47:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1088 (0x440) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFC30, serialNumber=947CB674A858CD91AEA5526BA3668A11E49ECB93 Validity Not Before: Dec 4 22:47:29 2025 GMT Not After : Dec 11 22:47:29 2025 GMT Subject: CN=69320f81-275c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:52:18:a8:69:73:3f:10:5a:33:f0:08:37:d4: 04:b2:2d:6d:d3:44:1a:0d:24:7e:df:7e:47:c1:5a: da:2c:93:cd:66:34:2a:8c:0c:96:c8:3f:90:c0:79: 94:63:14:e7:43:0c:95:6c:5b:30:a1:06:32:3c:3e: 76:02:07:08:03:22:d0:c7:57:c7:a8:30:36:a1:75: 4c:f4:60:15:8c:2e:6d:a5:eb:8b:1e:34:0a:a1:05: 6f:76:fe:69:fd:22:f0:d1:c1:b7:97:f1:11:82:6e: 05:28:1e:cf:ef:dc:76:f3:87:03:12:80:da:45:12: 45:b1:a0:36:5b:d2:10:4d:4e:6c:50:a2:3c:d3:7f: c2:41:08:03:33:5d:8a:c6:17:01:c1:f5:84:2b:9f: be:50:ae:2c:71:e1:5b:95:9e:43:1b:9e:69:f0:8f: 00:c8:dd:88:48:e9:c3:7f:26:b0:fd:6c:2b:44:39: 43:aa:39:94:23:bb:f9:07:02:fa:52:b4:5f:a0:ed: b4:b7:1e:86:18:f4:b5:25:6f:22:9c:8d:7a:af:a7: 9c:c9:06:e6:00:5b:93:36:c1:8c:ab:73:08:44:58: b0:bb:67:6d:82:c0:4e:0f:9a:5a:e1:3f:1b:e0:11: b1:09:74:0d:af:27:4f:e0:ce:1e:dc:ed:d5:f1:42: df:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:8A:A7:1F:BF:6D:52:96:0A:5A:D2:7D:58:A8:39:01:72:B8:32:07 X509v3 Authority Key Identifier: keyid:94:7C:B6:74:A8:58:CD:91:AE:A5:52:6B:A3:66:8A:11:E4:9E:CB:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHy2dKhYzZGupVJro2aKEeSey5M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFC30/112AF1AC85AD11ECB36F414DC4F9AE02/lHy2dKhYzZGupVJro2aKEeSey5M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:df:64:14:bf:70:fe:21:f5:ea:f4:84:b1:7f:8c:bf:48:cd: d4:f1:09:93:e7:71:62:73:d0:8e:ea:c5:43:4d:15:bb:77:a0: 55:90:b0:95:ec:f6:a6:62:bf:cb:93:8f:c0:d6:97:39:c9:fa: 17:70:7b:8d:63:15:32:58:28:89:14:4b:0c:8a:23:d2:09:2c: 48:82:a2:86:25:b6:86:87:93:9e:c3:f3:fa:2b:94:2d:43:5e: e1:a1:8b:76:5f:5d:28:da:2e:fb:58:b8:7f:ed:40:3f:c1:61: 4c:ae:41:9f:1b:81:a8:96:3e:8e:5b:2c:ca:60:04:4b:c4:b3: 82:ce:e1:53:03:4e:40:4a:60:79:e8:90:42:e2:a4:96:99:6f: 2a:3c:50:bd:3f:68:da:b5:c6:de:c9:a8:30:4d:df:9e:e7:64: a5:79:12:3a:0f:24:1d:19:0e:8f:a3:c2:5c:7c:8c:ab:99:fd: da:a4:e9:01:9a:76:7c:5d:7c:cc:ab:33:41:5f:9c:c8:2e:d3: ff:9b:3e:ff:f3:a6:c7:a2:84:68:97:7b:d2:d5:27:21:5f:e7: 69:76:79:91:c7:1f:a9:65:38:33:56:d5:64:fc:2d:50:fe:ed: b5:3d:86:8e:4a:3e:f4:dd:d4:f4:6d:3d:42:9b:6c:d8:42:0f: 30:2a:ea:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZDMzAxMTAvBgNVBAUTKDk0N0NCNjc0QTg1OENEOTFBRUE1NTI2QkEzNjY4QTEx RTQ5RUNCOTMwHhcNMjUxMjA0MjI0NzI5WhcNMjUxMjExMjI0NzI5WjAYMRYwFAYD VQQDEw02OTMyMGY4MS0yNzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5VIYqGlzPxBaM/AIN9QEsi1t00QaDSR+335HwVraLJPNZjQqjAyWyD+QwHmU YxTnQwyVbFswoQYyPD52AgcIAyLQx1fHqDA2oXVM9GAVjC5tpeuLHjQKoQVvdv5p /SLw0cG3l/ERgm4FKB7P79x284cDEoDaRRJFsaA2W9IQTU5sUKI803/CQQgDM12K xhcBwfWEK5++UK4sceFblZ5DG55p8I8AyN2ISOnDfyaw/WwrRDlDqjmUI7v5BwL6 UrRfoO20tx6GGPS1JW8inI16r6ecyQbmAFuTNsGMq3MIRFiwu2dtgsBOD5pa4T8b 4BGxCXQNrydP4M4e3O3V8ULf8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF2Kpx+/ bVKWClrSfVioOQFyuDIHMB8GA1UdIwQYMBaAFJR8tnSoWM2RrqVSa6NmihHknsuT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkMzMC8xMTJBRjFBQzg1 QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpaR3VwVkpybzJhS0VlU2V5 NU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIeTJkS2hZelpHdXBWSnJvMmFLRWVTZXk1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RkMzMC8xMTJBRjFBQzg1QUQxMUVDQjM2RjQxNERDNEY5QUUwMi9sSHkyZEtoWXpa R3VwVkpybzJhS0VlU2V5NU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAO32QUv3D+IfXq9ISxf4y/SM3U8QmT53Fic9CO6sVDTRW7d6BVkLCV 7PamYr/Lk4/A1pc5yfoXcHuNYxUyWCiJFEsMiiPSCSxIgqKGJbaGh5Oew/P6K5Qt Q17hoYt2X10o2i77WLh/7UA/wWFMrkGfG4Golj6OWyzKYARLxLOCzuFTA05ASmB5 6JBC4qSWmW8qPFC9P2jatcbeyagwTd+e52SleRI6DyQdGQ6Po8JcfIyrmf3apOkB mnZ8XXzMqzNBX5zILtP/mz7/86bHooRol3vS1SchX+dpdnmRxx+pZTgzVtVk/C1Q /u21PYaOSj703dT0bT1Cm2zYQg8wKup4 -----END CERTIFICATE-----Generated at Sat Dec 6 16:45:29 2025 by rpki-client