This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5A9F/6736F334E33A11E886117780C4F9AE02/lQJWKPFDQQRhRqwgujJGFEYanMM.mft File: lQJWKPFDQQRhRqwgujJGFEYanMM.mft (raw, json) Hash identifier: 2mvMbTF/VoRdvEjU8b+RWdC6etYG6hWVadCQrH5qb2s= Subject key identifier: 07:0F:F5:6A:66:CB:85:46:3A:51:21:5D:64:46:F2:77:C5:D4:F7:A5 Authority key identifier: 95:02:56:28:F1:43:41:04:61:46:AC:20:BA:32:46:14:46:1A:9C:C3 Certificate issuer: /CN=A91E5A9F/serialNumber=95025628F14341046146AC20BA324614461A9CC3 Certificate serial: 06F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQJWKPFDQQRhRqwgujJGFEYanMM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5A9F/6736F334E33A11E886117780C4F9AE02/lQJWKPFDQQRhRqwgujJGFEYanMM.mft Manifest number: 1230 Signing time: Sat 06 Dec 2025 16:38:11 +0000 Manifest this update: Sat 06 Dec 2025 16:38:10 +0000 Manifest next update: Sat 13 Dec 2025 16:38:10 +0000 Files and hashes: 1: lQJWKPFDQQRhRqwgujJGFEYanMM.crl (hash: EnP8tmPcLtqHHlyuCAgq34PZD941guTVDNFk8Mtw/oM=) 2: 9CA45412A6AB11F0AA6B453DC4F9AE02.roa (hash: I6yaNkZqYAt8Jpa9Std2h3sbw7vhedMgDPqUNgmop20=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5A9F/6736F334E33A11E886117780C4F9AE02/lQJWKPFDQQRhRqwgujJGFEYanMM.crl rsync://rpki.apnic.net/member_repository/A91E5A9F/6736F334E33A11E886117780C4F9AE02/lQJWKPFDQQRhRqwgujJGFEYanMM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQJWKPFDQQRhRqwgujJGFEYanMM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 16:38:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1781 (0x6f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5A9F, serialNumber=95025628F14341046146AC20BA324614461A9CC3 Validity Not Before: Dec 6 16:38:10 2025 GMT Not After : Dec 13 16:38:10 2025 GMT Subject: CN=69345bf2-4541 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:5a:d5:80:bb:5a:3a:dc:65:0c:35:f9:de:c6: bf:c6:7d:ab:2f:d2:d5:2e:77:ae:5a:c4:a8:36:8b: e2:bf:ee:27:8e:b4:3b:7e:0e:eb:f2:74:db:36:21: dd:39:3f:d6:80:8a:fa:ee:7d:dc:89:b2:a7:13:4e: 65:27:00:e5:2a:3f:45:57:e9:a3:d1:af:fc:4f:c7: 58:79:99:de:07:60:54:dc:5f:d0:b8:14:2c:e1:a4: 03:81:6b:cc:69:fa:cc:1f:31:92:5b:84:27:24:0a: 75:7b:66:f0:6d:4d:dd:78:01:4b:4d:ac:81:d4:96: f6:94:53:67:5a:08:a1:4f:09:90:b3:98:ad:1b:a7: 84:44:cf:f5:44:dc:db:f0:0f:27:c4:5f:72:e0:ba: ab:a7:80:02:9f:5e:9e:5e:ef:00:63:2b:d3:d6:94: 12:79:e5:67:14:20:2c:d5:f6:a9:2d:b9:fb:19:7e: ee:de:8f:87:28:9d:df:af:ec:b8:7f:12:62:e2:af: 41:e0:2c:c5:03:a3:c9:7e:1f:7d:f9:4f:32:9c:b4: 0d:d8:60:c1:78:ac:67:4e:de:fa:73:d1:47:9f:5a: 13:31:7f:2d:00:d8:ff:83:a1:ac:0a:f8:54:ad:47: 4d:96:82:a7:53:b7:cc:51:49:5b:d9:dd:4d:bd:ed: 3e:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:0F:F5:6A:66:CB:85:46:3A:51:21:5D:64:46:F2:77:C5:D4:F7:A5 X509v3 Authority Key Identifier: keyid:95:02:56:28:F1:43:41:04:61:46:AC:20:BA:32:46:14:46:1A:9C:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5A9F/6736F334E33A11E886117780C4F9AE02/lQJWKPFDQQRhRqwgujJGFEYanMM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQJWKPFDQQRhRqwgujJGFEYanMM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5A9F/6736F334E33A11E886117780C4F9AE02/lQJWKPFDQQRhRqwgujJGFEYanMM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d7:5b:26:87:1f:9a:c3:fd:e7:98:84:b0:d5:da:ad:02:d3:32: 57:28:12:ff:ce:e7:75:6b:57:6e:6b:7c:68:f3:07:24:49:0a: 03:63:5c:6c:ac:5e:85:41:6d:d1:cb:a4:4b:03:ff:89:8c:c2: 51:4e:63:0d:99:22:11:e2:5c:e0:79:b7:b8:91:7d:6a:92:32: 88:9b:68:7b:3c:a0:cb:1f:fa:f6:af:91:5c:ef:f9:f6:6a:a7: e1:b6:67:ed:3a:80:fc:f5:43:0c:6c:01:9e:12:3f:53:d7:80: 01:99:1c:37:c7:79:f3:d3:07:8e:e0:11:3c:35:bd:72:3f:c1: 04:7d:7f:db:54:44:fb:d9:cd:29:c7:c7:08:e5:b9:2f:46:67: 74:91:6d:a0:47:99:72:d9:5b:08:ae:66:37:d2:0d:85:78:3a: e1:10:4d:11:79:74:de:f5:0d:55:01:79:49:ec:9e:e9:db:41: 5b:c7:fa:97:dd:f3:89:39:a6:eb:22:1e:e6:cc:90:2f:4c:60: a6:d4:95:9d:f8:84:01:35:49:e3:9d:9b:80:d2:2e:c3:35:4b: 4a:4c:e8:6a:57:50:b4:fd:fa:19:8b:a6:54:db:f6:6e:c4:ce: 57:0a:02:9f:e2:ae:84:d1:d8:86:f5:9b:38:cb:21:a4:46:b3: 87:e7:63:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVBOUYxMTAvBgNVBAUTKDk1MDI1NjI4RjE0MzQxMDQ2MTQ2QUMyMEJBMzI0NjE0 NDYxQTlDQzMwHhcNMjUxMjA2MTYzODEwWhcNMjUxMjEzMTYzODEwWjAYMRYwFAYD VQQDEw02OTM0NWJmMi00NTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz1rVgLtaOtxlDDX53sa/xn2rL9LVLneuWsSoNoviv+4njrQ7fg7r8nTbNiHd OT/WgIr67n3cibKnE05lJwDlKj9FV+mj0a/8T8dYeZneB2BU3F/QuBQs4aQDgWvM afrMHzGSW4QnJAp1e2bwbU3deAFLTayB1Jb2lFNnWgihTwmQs5itG6eERM/1RNzb 8A8nxF9y4Lqrp4ACn16eXu8AYyvT1pQSeeVnFCAs1fapLbn7GX7u3o+HKJ3fr+y4 fxJi4q9B4CzFA6PJfh99+U8ynLQN2GDBeKxnTt76c9FHn1oTMX8tANj/g6GsCvhU rUdNloKnU7fMUUlb2d1Nve0+VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAcP9Wpm y4VGOlEhXWRG8nfF1PelMB8GA1UdIwQYMBaAFJUCVijxQ0EEYUasILoyRhRGGpzD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUE5Ri82NzM2RjMzNEUz M0ExMUU4ODYxMTc3ODBDNEY5QUUwMi9sUUpXS1BGRFFRUmhScXdndWpKR0ZFWWFu TU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRSldLUEZEUVFSaFJxd2d1akpHRkVZYW5NTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUE5Ri82NzM2RjMzNEUzM0ExMUU4ODYxMTc3ODBDNEY5QUUwMi9sUUpXS1BGRFFR UmhScXdndWpKR0ZFWWFuTU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDXWyaHH5rD/eeYhLDV2q0C0zJXKBL/zud1a1dua3xo8wckSQoDY1xs rF6FQW3Ry6RLA/+JjMJRTmMNmSIR4lzgebe4kX1qkjKIm2h7PKDLH/r2r5Fc7/n2 aqfhtmftOoD89UMMbAGeEj9T14ABmRw3x3nz0weO4BE8Nb1yP8EEfX/bVET72c0p x8cI5bkvRmd0kW2gR5ly2VsIrmY30g2FeDrhEE0ReXTe9Q1VAXlJ7J7p20Fbx/qX 3fOJOabrIh7mzJAvTGCm1JWd+IQBNUnjnZuA0i7DNUtKTOhqV1C0/foZi6ZU2/Zu xM5XCgKf4q6E0diG9Zs4yyGkRrOH52Na -----END CERTIFICATE-----Generated at Sat Dec 6 23:33:12 2025 by rpki-client