This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft File: lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft (raw, json) Hash identifier: 30PwjZ4F58Wlx+bqKCg5JprcRCgO8yJ46xSZ9tBX9Ok= Subject key identifier: F9:CD:C1:61:65:42:1D:C6:11:7B:A5:72:85:31:5D:09:D6:62:04:C3 Authority key identifier: 94:70:E7:61:08:06:3E:4F:7C:64:AD:43:D0:76:BC:11:AE:1F:DB:5D Certificate issuer: /CN=A91E41C9/serialNumber=9470E76108063E4F7C64AD43D076BC11AE1FDB5D Certificate serial: 08ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft Manifest number: 08FF Signing time: Sat 06 Dec 2025 19:33:17 +0000 Manifest this update: Sat 06 Dec 2025 19:33:17 +0000 Manifest next update: Sat 13 Dec 2025 19:33:17 +0000 Files and hashes: 1: lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl (hash: UA5Fd6amdpV3vMftWGdrFiTtbSTXl0dciDQcwuKD4UU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:33:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2285 (0x8ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E41C9, serialNumber=9470E76108063E4F7C64AD43D076BC11AE1FDB5D Validity Not Before: Dec 6 19:33:17 2025 GMT Not After : Dec 13 19:33:17 2025 GMT Subject: CN=693484fd-dc61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c4:d9:9a:b9:e7:65:71:d0:e5:76:8a:eb:40: a1:d1:de:b5:05:9a:e0:f7:c7:7e:fe:99:9b:a2:98: 0f:b4:b4:36:22:59:ea:66:0d:b4:0d:50:f9:dc:a1: dd:f2:a3:36:d8:b1:15:c0:49:97:86:b3:13:4c:83: 1d:f8:bc:e3:8c:1c:87:15:de:c6:41:ee:a6:6a:eb: f7:9b:1c:7f:4f:80:f0:0e:03:05:fb:8e:b7:09:ad: 4c:88:96:44:28:b3:6b:d7:ae:ad:80:b1:30:6a:4a: 00:bd:e1:38:cb:31:8f:9a:0d:3a:1c:e7:5f:fb:c9: dc:ee:d3:56:c6:0a:cb:f3:5b:20:a8:df:c5:b0:3f: 78:68:58:e8:1d:d6:a0:b1:88:a3:a2:00:45:51:07: 1e:20:ea:77:c6:c8:c7:b2:16:48:4b:bd:4c:fe:d1: db:9a:25:58:fd:9b:a2:f9:87:0b:fb:a7:0e:a1:70: 80:e5:ad:60:d4:e6:64:16:b7:6e:74:0c:5a:e6:eb: 57:bd:e3:6e:38:6c:f5:d7:5d:4a:6b:c3:72:d8:8b: 59:58:8c:c4:59:d7:42:d7:54:21:f1:9b:81:b7:a6: 97:80:86:70:6f:0a:9b:ed:a6:40:01:6c:c4:3d:92: 10:5c:e5:cc:3b:77:be:ab:c5:ee:0b:67:67:d8:0a: df:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:CD:C1:61:65:42:1D:C6:11:7B:A5:72:85:31:5D:09:D6:62:04:C3 X509v3 Authority Key Identifier: keyid:94:70:E7:61:08:06:3E:4F:7C:64:AD:43:D0:76:BC:11:AE:1F:DB:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:e1:b4:eb:48:32:c7:da:e5:5a:e0:29:66:23:12:fc:67:1c: e4:04:ab:28:9f:9b:47:36:b5:a4:64:e5:cb:cd:ba:04:60:18: 83:56:93:77:b9:d9:6e:73:d9:0a:4d:4a:d4:51:fd:80:3d:31: d3:a7:90:99:f1:8e:7c:61:49:cf:20:2a:3e:bd:57:59:46:28: a5:7c:25:38:25:a3:9a:d5:96:92:c1:ce:79:fd:61:c6:98:34: 12:53:66:6d:82:e3:6b:4d:a0:94:98:6a:1e:85:79:aa:d0:dd: 4c:cf:23:40:8f:5a:4a:65:3e:05:74:ab:31:73:72:8c:b3:f0: 9c:d7:81:02:ee:95:59:14:16:ab:b7:d1:a9:5c:5d:96:50:83: 2c:52:2d:4d:71:7d:22:fc:3b:93:44:dc:dd:4b:28:b0:f1:2c: 9b:94:45:0a:13:7a:0e:d9:5b:a5:bc:cc:82:86:bb:ab:41:a7: f0:e4:09:4b:e4:e0:12:d0:d3:16:c5:fa:49:f2:14:8e:b8:39: 2e:d6:29:9b:73:4e:e3:e9:93:76:f2:cc:54:01:e0:dc:ce:b2: 55:6e:72:aa:e1:0d:51:64:9d:34:00:d8:cb:4b:a1:65:57:09: 99:cb:18:9d:38:b5:12:d8:e3:0c:c4:42:9d:15:cc:91:a8:30: 78:d6:eb:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQxQzkxMTAvBgNVBAUTKDk0NzBFNzYxMDgwNjNFNEY3QzY0QUQ0M0QwNzZCQzEx QUUxRkRCNUQwHhcNMjUxMjA2MTkzMzE3WhcNMjUxMjEzMTkzMzE3WjAYMRYwFAYD VQQDEw02OTM0ODRmZC1kYzYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8TZmrnnZXHQ5XaK60Ch0d61BZrg98d+/pmbopgPtLQ2IlnqZg20DVD53KHd 8qM22LEVwEmXhrMTTIMd+LzjjByHFd7GQe6mauv3mxx/T4DwDgMF+463Ca1MiJZE KLNr166tgLEwakoAveE4yzGPmg06HOdf+8nc7tNWxgrL81sgqN/FsD94aFjoHdag sYijogBFUQceIOp3xsjHshZIS71M/tHbmiVY/Zui+YcL+6cOoXCA5a1g1OZkFrdu dAxa5utXveNuOGz1111Ka8Ny2ItZWIzEWddC11Qh8ZuBt6aXgIZwbwqb7aZAAWzE PZIQXOXMO3e+q8XuC2dn2ArfrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPnNwWFl Qh3GEXulcoUxXQnWYgTDMB8GA1UdIwQYMBaAFJRw52EIBj5PfGStQ9B2vBGuH9td MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDFDOS80OUJEOURBNkMw RjgxMUVBOEFDNkM0NkNDNEY5QUUwMi9sSERuWVFnR1BrOThaSzFEMEhhOEVhNGYy MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIRG5ZUWdHUGs5OFpLMUQwSGE4RWE0ZjIxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDFDOS80OUJEOURBNkMwRjgxMUVBOEFDNkM0NkNDNEY5QUUwMi9sSERuWVFnR1Br OThaSzFEMEhhOEVhNGYyMTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAr4bTrSDLH2uVa4ClmIxL8ZxzkBKson5tHNrWkZOXLzboEYBiDVpN3 udluc9kKTUrUUf2APTHTp5CZ8Y58YUnPICo+vVdZRiilfCU4JaOa1ZaSwc55/WHG mDQSU2ZtguNrTaCUmGoehXmq0N1MzyNAj1pKZT4FdKsxc3KMs/Cc14EC7pVZFBar t9GpXF2WUIMsUi1NcX0i/DuTRNzdSyiw8SyblEUKE3oO2VulvMyChrurQafw5AlL 5OAS0NMWxfpJ8hSOuDku1imbc07j6ZN28sxUAeDczrJVbnKq4Q1RZJ00ANjLS6Fl VwmZyxidOLUS2OMMxEKdFcyRqDB41usn -----END CERTIFICATE-----Generated at Sun Dec 7 01:52:05 2025 by rpki-client