This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft File: lFlKrsbtZqaAoVv-tc2leC1MLYg.mft (raw, json) Hash identifier: 2KzUBPcml+XNv1MUDlDowhfr6t2CAODA1PV0uPQIlVI= Subject key identifier: C8:EF:7F:4F:1A:51:2E:6B:D2:49:35:9D:CB:14:CC:F4:04:5B:5B:91 Authority key identifier: 94:59:4A:AE:C6:ED:66:A6:80:A1:5B:FE:B5:CD:A5:78:2D:4C:2D:88 Certificate issuer: /CN=A91E2EF9/serialNumber=94594AAEC6ED66A680A15BFEB5CDA5782D4C2D88 Certificate serial: FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft Manifest number: F6 Signing time: Fri 05 Dec 2025 03:19:59 +0000 Manifest this update: Fri 05 Dec 2025 03:19:58 +0000 Manifest next update: Fri 12 Dec 2025 03:19:58 +0000 Files and hashes: 1: lFlKrsbtZqaAoVv-tc2leC1MLYg.crl (hash: 7B6XYec9edZmVIJ7K64AfLVQqoj+sYqn0grOcudY1+U=) 2: D926DBDA605211EF90C2C621C4F9AE02.roa (hash: Cl2PJo7826qehYKKSG2/VdHV6kV/QSQl5KdRQS87oS0=) 3: E7C7DBF8A0E411EF98A7340EC4F9AE02.roa (hash: 7jEw+cOkWTAknu5PcBj2MNehVkDO0rbITl2EdNIaO7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.crl rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:19:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 250 (0xfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2EF9, serialNumber=94594AAEC6ED66A680A15BFEB5CDA5782D4C2D88 Validity Not Before: Dec 5 03:19:58 2025 GMT Not After : Dec 12 03:19:58 2025 GMT Subject: CN=69324f5e-a4c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:5e:33:e2:9c:7a:f3:86:ef:81:67:bd:1e:90: c2:b3:cd:d9:41:5a:f2:c5:ff:99:c6:2f:b0:25:a2: a1:58:21:ef:58:8d:02:15:77:7e:44:b0:c2:52:df: 9f:9d:55:97:86:b8:d8:29:81:ff:34:d2:97:61:f2: 76:a2:ef:4e:5a:96:34:4e:f0:ef:f5:26:0a:9b:e1: 20:24:b9:be:33:e2:c5:e9:e3:10:34:a2:a2:06:14: f2:4e:6c:f2:83:39:93:9b:ef:0b:89:31:22:7f:55: 8b:e2:de:08:4a:31:f2:55:dd:f1:c2:5a:97:7c:42: b2:c2:62:a9:c7:c2:c6:1b:63:dd:7f:2e:f9:b0:6f: 54:ab:28:08:77:42:52:45:c1:49:f5:fc:68:8c:0d: fb:97:ba:53:eb:3f:85:8b:0d:f2:4f:72:ca:d3:ad: f6:2f:db:a0:7b:ef:14:33:08:a8:1e:c3:7d:a2:65: 3c:dc:0c:e3:0d:f6:01:ad:d9:c6:a3:93:7a:4b:85: 49:32:bb:2b:26:07:48:a6:11:2b:93:0c:ca:da:0f: 72:c4:3e:da:33:c1:99:76:80:37:64:a0:4d:2f:51: fb:6a:f3:70:a7:60:c0:1a:b4:47:a0:fe:9d:b8:8c: 02:c9:77:fe:86:25:0f:ea:8a:39:9f:7e:84:63:b8: 8a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:EF:7F:4F:1A:51:2E:6B:D2:49:35:9D:CB:14:CC:F4:04:5B:5B:91 X509v3 Authority Key Identifier: keyid:94:59:4A:AE:C6:ED:66:A6:80:A1:5B:FE:B5:CD:A5:78:2D:4C:2D:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:a8:15:a6:4c:73:04:c1:3a:44:9b:3a:9b:b0:2e:fa:50:05: 63:8c:a0:81:2d:3c:b6:c2:f8:f5:e7:1b:b3:6e:08:58:9b:be: 95:21:8e:73:5e:00:f9:fa:07:02:11:6a:db:31:51:e8:b5:e7: ea:6a:e4:34:9e:1f:c9:2c:b7:c2:27:73:f2:f5:6f:35:f6:76: 14:39:81:36:6d:cd:ce:36:d5:a6:91:2e:d2:ca:c3:e6:85:d4: 27:0b:3c:9b:05:16:17:96:91:d7:5b:52:4a:26:7f:aa:bf:0d: 8d:37:78:11:9a:db:30:b5:5d:d6:eb:54:98:49:f4:3d:33:3a: a8:00:ec:d3:0d:eb:c4:68:76:64:e1:e4:67:86:44:20:92:3b: 38:36:28:4a:73:83:4a:99:78:9b:e3:93:fd:dd:9a:d0:13:2f: c1:9a:2d:76:0b:a5:78:79:ca:ac:36:80:48:84:b4:26:e7:1a: 64:d2:70:8b:f3:fc:74:25:d6:10:29:93:b3:9d:4b:b8:8e:f2: d6:a7:98:1e:74:cd:a0:54:d3:c0:66:63:9a:90:f6:20:46:ae: 4c:84:49:3b:8b:d8:a9:d8:32:79:ed:26:25:b2:6c:cc:07:7d: 16:5e:04:9b:21:d2:0d:78:46:fb:13:27:a7:d3:ad:18:b4:27: 9b:38:68:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJFRjkxMTAvBgNVBAUTKDk0NTk0QUFFQzZFRDY2QTY4MEExNUJGRUI1Q0RBNTc4 MkQ0QzJEODgwHhcNMjUxMjA1MDMxOTU4WhcNMjUxMjEyMDMxOTU4WjAYMRYwFAYD VQQDEw02OTMyNGY1ZS1hNGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmF4z4px684bvgWe9HpDCs83ZQVryxf+Zxi+wJaKhWCHvWI0CFXd+RLDCUt+f nVWXhrjYKYH/NNKXYfJ2ou9OWpY0TvDv9SYKm+EgJLm+M+LF6eMQNKKiBhTyTmzy gzmTm+8LiTEif1WL4t4ISjHyVd3xwlqXfEKywmKpx8LGG2Pdfy75sG9UqygId0JS RcFJ9fxojA37l7pT6z+Fiw3yT3LK0632L9uge+8UMwioHsN9omU83AzjDfYBrdnG o5N6S4VJMrsrJgdIphErkwzK2g9yxD7aM8GZdoA3ZKBNL1H7avNwp2DAGrRHoP6d uIwCyXf+hiUP6oo5n36EY7iKAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMjvf08a US5r0kk1ncsUzPQEW1uRMB8GA1UdIwQYMBaAFJRZSq7G7WamgKFb/rXNpXgtTC2I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkVGOS84MDRENkJGMDYw NTIxMUVGQjI4NkZEMjBDNEY5QUUwMi9sRmxLcnNidFpxYUFvVnYtdGMybGVDMU1M WWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xGbEtyc2J0WnFhQW9Wdi10YzJsZUMxTUxZZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkVGOS84MDRENkJGMDYwNTIxMUVGQjI4NkZEMjBDNEY5QUUwMi9sRmxLcnNidFpx YUFvVnYtdGMybGVDMU1MWWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgqBWmTHMEwTpEmzqbsC76UAVjjKCBLTy2wvj15xuzbghYm76VIY5z XgD5+gcCEWrbMVHotefqauQ0nh/JLLfCJ3Py9W819nYUOYE2bc3ONtWmkS7SysPm hdQnCzybBRYXlpHXW1JKJn+qvw2NN3gRmtswtV3W61SYSfQ9MzqoAOzTDevEaHZk 4eRnhkQgkjs4NihKc4NKmXib45P93ZrQEy/Bmi12C6V4ecqsNoBIhLQm5xpk0nCL 8/x0JdYQKZOznUu4jvLWp5gedM2gVNPAZmOakPYgRq5MhEk7i9ip2DJ57SYlsmzM B30WXgSbIdINeEb7Eyen060YtCebOGh8 -----END CERTIFICATE-----Generated at Sat Dec 6 13:56:03 2025 by rpki-client