This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft File: L2rfQq_RZAgOox4PO4M4vtbaHlk.mft (raw, json) Hash identifier: 2RJ7QxmxeJPw0EBy413tfFEVaVgyeMf8R/KFugVnkuI= Subject key identifier: 08:EB:74:9C:8D:C4:1F:7F:74:AB:23:BE:D9:1F:BE:DA:0F:89:8F:C4 Authority key identifier: 2F:6A:DF:42:AF:D1:64:08:0E:A3:1E:0F:3B:83:38:BE:D6:DA:1E:59 Certificate issuer: /CN=A91E7164/serialNumber=2F6ADF42AFD164080EA31E0F3B8338BED6DA1E59 Certificate serial: 0A02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft Manifest number: 09FB Signing time: Thu 04 Dec 2025 19:07:37 +0000 Manifest this update: Thu 04 Dec 2025 19:07:36 +0000 Manifest next update: Thu 11 Dec 2025 19:07:36 +0000 Files and hashes: 1: L2rfQq_RZAgOox4PO4M4vtbaHlk.crl (hash: d3mb6GugOkX86iniSO5+yohOE6s8iuy9By5j7Mkol3Q=) 2: F3173EDC898C11EA97286262C4F9AE02.roa (hash: BtxRntrFd2gslQewNiqZhW9mWCF+vgLPC26me/9r2bU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.crl rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:07:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2562 (0xa02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7164, serialNumber=2F6ADF42AFD164080EA31E0F3B8338BED6DA1E59 Validity Not Before: Dec 4 19:07:36 2025 GMT Not After : Dec 11 19:07:36 2025 GMT Subject: CN=6931dbf9-1bfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:80:9f:2f:4e:d6:cb:40:5d:3f:4c:99:15:72: fa:ae:bc:a2:b6:81:5b:7e:b5:69:d7:0d:0e:e5:54: 46:bc:4a:d0:16:d1:6b:7d:fc:b2:63:0c:f3:e1:a3: 9d:55:79:00:aa:2e:a4:e2:12:5d:67:b3:26:56:71: 58:27:a5:06:66:53:e5:52:54:fb:20:97:81:ad:31: 76:9b:09:1a:3e:47:0d:63:b4:3b:b9:4e:fa:69:11: 72:9c:c8:21:b5:09:8a:67:dc:4e:03:f2:55:db:d0: 4a:5c:aa:56:81:47:51:40:c0:42:22:a8:20:45:37: f0:d2:e4:52:63:72:57:2e:3a:57:dd:b5:f0:43:0a: 02:3c:e9:73:6b:06:69:3a:9f:1b:a3:30:e0:51:92: ec:4d:6d:9f:68:76:75:70:9c:bf:b6:62:39:57:6e: 69:80:24:b3:ef:5e:08:b9:d6:25:36:c9:bf:c0:b8: 53:92:cd:fe:1f:5e:27:2c:8a:86:8f:db:79:fc:58: e7:b6:7d:7f:da:dd:56:57:5f:eb:1a:c6:82:45:02: b1:fe:50:ba:18:84:b3:46:d4:86:c1:38:ca:fb:aa: 50:af:1d:2d:e7:f2:1b:49:69:69:b0:8d:49:85:96: ac:e6:f7:16:85:4d:19:ca:f3:49:ad:11:c3:de:ee: 9c:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:EB:74:9C:8D:C4:1F:7F:74:AB:23:BE:D9:1F:BE:DA:0F:89:8F:C4 X509v3 Authority Key Identifier: keyid:2F:6A:DF:42:AF:D1:64:08:0E:A3:1E:0F:3B:83:38:BE:D6:DA:1E:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:d2:c1:e3:eb:8f:07:df:1b:72:05:7c:52:71:d8:bf:2c:12: 70:10:92:75:01:35:19:3d:9e:17:65:ed:e7:b2:0f:96:5c:e6: ff:5b:cb:c2:07:ed:84:c8:f3:19:cd:d1:7b:ee:07:87:e5:a7: 61:a5:5b:4d:1c:c7:c3:c7:f4:b7:85:43:a6:02:06:17:5c:ed: b1:0e:db:f2:ec:d5:fe:45:2a:4b:bf:2e:0b:70:54:8c:91:29: 08:8d:4f:73:7d:68:36:a3:5a:ed:7c:93:12:1f:44:03:0d:9c: 1a:14:66:f3:68:fd:e6:ac:1b:14:77:d8:08:d9:c9:a1:7e:87: 36:5c:85:a5:85:6d:a9:23:6f:5b:24:61:39:ea:e5:4e:1f:ce: 22:36:b8:3e:96:39:6c:83:8d:62:a4:a7:b5:a4:af:3d:8c:48: 60:7f:5f:18:ce:a0:ff:40:99:e7:d0:c5:39:da:e5:82:72:a3: ee:4a:1a:4f:4d:db:d5:3a:65:ae:ed:03:20:22:e9:b0:cc:fd: ec:a5:7f:b1:c3:8a:4a:81:74:b9:e3:c2:18:d4:9a:72:88:2d: 9c:57:85:53:ec:84:29:27:c0:7a:b6:6a:68:de:16:a5:0b:29: a5:dd:2f:0e:e9:e5:68:b4:60:e2:5b:4f:51:e7:08:c1:22:be: f1:76:64:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTcxNjQxMTAvBgNVBAUTKDJGNkFERjQyQUZEMTY0MDgwRUEzMUUwRjNCODMzOEJF RDZEQTFFNTkwHhcNMjUxMjA0MTkwNzM2WhcNMjUxMjExMTkwNzM2WjAYMRYwFAYD VQQDEw02OTMxZGJmOS0xYmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ICfL07Wy0BdP0yZFXL6rryitoFbfrVp1w0O5VRGvErQFtFrffyyYwzz4aOd VXkAqi6k4hJdZ7MmVnFYJ6UGZlPlUlT7IJeBrTF2mwkaPkcNY7Q7uU76aRFynMgh tQmKZ9xOA/JV29BKXKpWgUdRQMBCIqggRTfw0uRSY3JXLjpX3bXwQwoCPOlzawZp Op8bozDgUZLsTW2faHZ1cJy/tmI5V25pgCSz714IudYlNsm/wLhTks3+H14nLIqG j9t5/Fjntn1/2t1WV1/rGsaCRQKx/lC6GISzRtSGwTjK+6pQrx0t5/IbSWlpsI1J hZas5vcWhU0ZyvNJrRHD3u6ccQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAjrdJyN xB9/dKsjvtkfvtoPiY/EMB8GA1UdIwQYMBaAFC9q30Kv0WQIDqMeDzuDOL7W2h5Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzE2NC8yMjhBQkY3NDg5 OEIxMUVBOTI3NTlBNUNDNEY5QUUwMi9MMnJmUXFfUlpBZ09veDRQTzRNNHZ0YmFI bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wycmZRcV9SWkFnT294NFBPNE00dnRiYUhsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzE2NC8yMjhBQkY3NDg5OEIxMUVBOTI3NTlBNUNDNEY5QUUwMi9MMnJmUXFfUlpB Z09veDRQTzRNNHZ0YmFIbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAv0sHj648H3xtyBXxScdi/LBJwEJJ1ATUZPZ4XZe3nsg+WXOb/W8vC B+2EyPMZzdF77geH5adhpVtNHMfDx/S3hUOmAgYXXO2xDtvy7NX+RSpLvy4LcFSM kSkIjU9zfWg2o1rtfJMSH0QDDZwaFGbzaP3mrBsUd9gI2cmhfoc2XIWlhW2pI29b JGE56uVOH84iNrg+ljlsg41ipKe1pK89jEhgf18YzqD/QJnn0MU52uWCcqPuShpP TdvVOmWu7QMgIumwzP3spX+xw4pKgXS548IY1JpyiC2cV4VT7IQpJ8B6tmpo3hal Cyml3S8O6eVotGDiW09R5wjBIr7xdmTv -----END CERTIFICATE-----Generated at Sat Dec 6 17:26:46 2025 by rpki-client