This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5A9F/6736F334E33A11E886117780C4F9AE02/lQJWKPFDQQRhRqwgujJGFEYanMM.mft File: lQJWKPFDQQRhRqwgujJGFEYanMM.mft (raw, json) Hash identifier: MKek66IP+hw1hErHNnth+4cclSL3QyTroQ+3lvMVlsQ= Subject key identifier: 95:62:9D:24:3C:D8:92:2A:35:D5:C1:AE:FA:BD:1D:B9:D5:59:63:FF Authority key identifier: 95:02:56:28:F1:43:41:04:61:46:AC:20:BA:32:46:14:46:1A:9C:C3 Certificate issuer: /CN=A91E5A9F/serialNumber=95025628F14341046146AC20BA324614461A9CC3 Certificate serial: 06F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQJWKPFDQQRhRqwgujJGFEYanMM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5A9F/6736F334E33A11E886117780C4F9AE02/lQJWKPFDQQRhRqwgujJGFEYanMM.mft Manifest number: 1234 Signing time: Sun 14 Dec 2025 16:55:11 +0000 Manifest this update: Sun 14 Dec 2025 16:55:11 +0000 Manifest next update: Sun 21 Dec 2025 16:55:11 +0000 Files and hashes: 1: lQJWKPFDQQRhRqwgujJGFEYanMM.crl (hash: sbadfw6fPBLZGdM4lUNPvwMDWoDZgLq6qof8CwxXb68=) 2: 9CA45412A6AB11F0AA6B453DC4F9AE02.roa (hash: I6yaNkZqYAt8Jpa9Std2h3sbw7vhedMgDPqUNgmop20=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5A9F/6736F334E33A11E886117780C4F9AE02/lQJWKPFDQQRhRqwgujJGFEYanMM.crl rsync://rpki.apnic.net/member_repository/A91E5A9F/6736F334E33A11E886117780C4F9AE02/lQJWKPFDQQRhRqwgujJGFEYanMM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQJWKPFDQQRhRqwgujJGFEYanMM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 16:55:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1785 (0x6f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5A9F, serialNumber=95025628F14341046146AC20BA324614461A9CC3 Validity Not Before: Dec 14 16:55:11 2025 GMT Not After : Dec 21 16:55:11 2025 GMT Subject: CN=693eebef-9906 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:27:43:d4:3b:af:93:fd:de:98:25:e8:8a:1c: e9:d6:76:2b:ae:f5:68:34:0e:09:6c:b2:b1:cc:1e: fb:2c:a9:23:d7:1b:01:8e:5b:2b:2e:8a:62:52:c5: fe:a2:6a:5a:a7:9e:e7:b5:48:a3:8e:76:4f:27:b7: 90:74:93:8a:3d:13:32:27:67:50:ea:6f:5f:90:c7: 81:78:9e:c4:1f:84:95:b4:f6:49:ae:2a:b5:d3:5f: 9c:0c:04:4e:f4:91:b9:71:f1:ec:7c:c9:98:e3:60: 40:d8:ed:91:1d:5d:8a:62:96:49:d1:6e:a5:16:04: f3:d4:26:89:41:74:91:77:e8:8b:7e:c4:59:8d:f4: 8c:e8:94:07:b2:d1:28:1b:e0:25:0d:e3:91:c8:94: 37:00:d5:d3:26:13:ee:d7:d4:07:f4:b1:02:58:5f: b3:be:f7:eb:3b:d9:a8:03:b1:b0:a8:6f:55:c0:43: 43:34:81:9e:89:ca:ba:cf:b5:cf:ed:52:f7:9a:78: d7:59:3d:3f:8c:47:e0:2e:e7:cd:12:59:f2:46:2d: 50:63:ce:37:a8:28:c7:c6:25:9b:e6:ab:8e:c0:fb: 2c:83:b4:19:5c:1c:ae:ec:8f:6b:80:52:2e:0b:9c: 3b:6d:c4:4b:4b:1e:51:4b:e7:6d:bd:25:69:22:96: 85:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:62:9D:24:3C:D8:92:2A:35:D5:C1:AE:FA:BD:1D:B9:D5:59:63:FF X509v3 Authority Key Identifier: keyid:95:02:56:28:F1:43:41:04:61:46:AC:20:BA:32:46:14:46:1A:9C:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5A9F/6736F334E33A11E886117780C4F9AE02/lQJWKPFDQQRhRqwgujJGFEYanMM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQJWKPFDQQRhRqwgujJGFEYanMM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5A9F/6736F334E33A11E886117780C4F9AE02/lQJWKPFDQQRhRqwgujJGFEYanMM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:e8:8e:60:d2:56:8d:46:69:46:52:93:33:d3:4c:b0:9e:3d: bf:fc:69:58:b9:8d:21:a5:d0:61:68:79:c0:ae:cf:61:9a:a8: 60:0d:47:88:36:c2:9e:87:13:ca:9c:93:d8:ec:c7:be:f9:05: a6:33:05:dd:6e:bd:38:60:9a:fd:f0:05:1b:7d:fb:88:b5:4a: c1:cf:f4:02:91:46:4a:98:7e:e8:89:63:25:f3:ea:b5:04:2a: 9b:b4:ed:75:d9:99:3f:67:8d:d7:86:ac:56:c7:a7:bc:94:39: cc:a5:d8:a9:4e:1a:bf:c9:d6:a8:23:23:5d:ff:48:9c:ad:0f: da:4d:a9:e4:9f:e2:a3:a1:f5:3c:e6:df:e7:09:db:7c:9c:79: 8e:51:fb:43:76:60:ee:6b:26:c0:3b:ba:3d:98:d7:90:3f:d2: eb:f7:64:5e:ea:2f:85:19:a6:3f:b2:04:2f:cc:64:f4:f1:e4: fe:90:c3:ce:fe:23:26:5b:e8:44:9d:12:0b:ef:c0:6d:94:9c: e6:5f:1d:05:68:59:1f:50:1a:78:81:3b:26:bf:70:f4:de:29: 02:f8:33:a8:ea:e4:b0:fb:31:d9:5c:34:83:3e:8c:ec:8d:57: 9e:20:65:f9:17:7b:de:4d:cd:2c:02:f4:14:49:20:1e:ef:e5: 0c:fd:2d:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVBOUYxMTAvBgNVBAUTKDk1MDI1NjI4RjE0MzQxMDQ2MTQ2QUMyMEJBMzI0NjE0 NDYxQTlDQzMwHhcNMjUxMjE0MTY1NTExWhcNMjUxMjIxMTY1NTExWjAYMRYwFAYD VQQDDA02OTNlZWJlZi05OTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuidD1Duvk/3emCXoihzp1nYrrvVoNA4JbLKxzB77LKkj1xsBjlsrLopiUsX+ ompap57ntUijjnZPJ7eQdJOKPRMyJ2dQ6m9fkMeBeJ7EH4SVtPZJriq101+cDARO 9JG5cfHsfMmY42BA2O2RHV2KYpZJ0W6lFgTz1CaJQXSRd+iLfsRZjfSM6JQHstEo G+AlDeORyJQ3ANXTJhPu19QH9LECWF+zvvfrO9moA7GwqG9VwENDNIGeicq6z7XP 7VL3mnjXWT0/jEfgLufNElnyRi1QY843qCjHxiWb5quOwPssg7QZXByu7I9rgFIu C5w7bcRLSx5RS+dtvSVpIpaF7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJVinSQ8 2JIqNdXBrvq9HbnVWWP/MB8GA1UdIwQYMBaAFJUCVijxQ0EEYUasILoyRhRGGpzD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUE5Ri82NzM2RjMzNEUz M0ExMUU4ODYxMTc3ODBDNEY5QUUwMi9sUUpXS1BGRFFRUmhScXdndWpKR0ZFWWFu TU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRSldLUEZEUVFSaFJxd2d1akpHRkVZYW5NTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUE5Ri82NzM2RjMzNEUzM0ExMUU4ODYxMTc3ODBDNEY5QUUwMi9sUUpXS1BGRFFR UmhScXdndWpKR0ZFWWFuTU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBy6I5g0laNRmlGUpMz00ywnj2//GlYuY0hpdBhaHnArs9hmqhgDUeI NsKehxPKnJPY7Me++QWmMwXdbr04YJr98AUbffuItUrBz/QCkUZKmH7oiWMl8+q1 BCqbtO112Zk/Z43XhqxWx6e8lDnMpdipThq/ydaoIyNd/0icrQ/aTankn+KjofU8 5t/nCdt8nHmOUftDdmDuaybAO7o9mNeQP9Lr92Re6i+FGaY/sgQvzGT08eT+kMPO /iMmW+hEnRIL78BtlJzmXx0FaFkfUBp4gTsmv3D03ikC+DOo6uSw+zHZXDSDPozs jVeeIGX5F3veTc0sAvQUSSAe7+UM/S2E -----END CERTIFICATE-----Generated at Mon Dec 15 20:21:16 2025 by rpki-client