This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft File: lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft (raw, json) Hash identifier: 8r5ZB/3oMN2LBZrfFEPNEpdzBDF8CqohBWEvTOhehIM= Subject key identifier: E5:05:9A:44:D3:15:D1:E7:15:90:B6:85:4C:6A:F5:C9:35:25:5D:28 Authority key identifier: 95:06:8B:B3:0A:BC:7E:00:7F:D8:38:7E:4D:E0:A8:3E:FA:AD:D4:72 Certificate issuer: /CN=A91E9DF8/serialNumber=95068BB30ABC7E007FD8387E4DE0A83EFAADD472 Certificate serial: 0647 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft Manifest number: 0640 Signing time: Sat 06 Dec 2025 21:33:52 +0000 Manifest this update: Sat 06 Dec 2025 21:33:51 +0000 Manifest next update: Sat 13 Dec 2025 21:33:51 +0000 Files and hashes: 1: lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl (hash: 6kUOicEmbVUO9GkNFrSVOotiwOV5ShlaeYnPJ9QYihA=) 2: A8086732B6DA11EBB7B67954C4F9AE02.roa (hash: Hu3KJZGMFU1oSrjsFOXx/j+TH9Vy+Garohr2Zg0l2Z0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:33:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1607 (0x647) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9DF8, serialNumber=95068BB30ABC7E007FD8387E4DE0A83EFAADD472 Validity Not Before: Dec 6 21:33:51 2025 GMT Not After : Dec 13 21:33:51 2025 GMT Subject: CN=6934a13f-b708 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:9a:95:30:9d:33:e2:82:86:57:0e:b7:f3:89: 21:be:b2:7a:60:d4:79:53:af:18:c6:02:22:c5:52: fd:c1:d7:05:42:d0:b1:8b:d4:a9:0b:5b:1f:91:36: d4:44:10:9e:6d:1c:48:a2:bd:d9:cc:c9:6b:78:d3: 4c:c6:09:97:d8:82:c5:18:78:f5:40:71:68:d4:34: a3:94:22:3c:02:24:b0:98:8a:0e:85:d4:85:e8:ba: c9:df:50:37:85:ac:0a:d9:32:fe:bd:f5:44:06:2a: 4d:32:5d:7b:36:cb:bd:e9:f2:9b:31:c1:4c:df:0c: e8:28:bc:89:0f:07:66:6b:31:95:65:36:16:e3:0b: be:c1:4f:b6:f3:9c:df:f9:78:ba:6e:7e:83:cf:db: 98:07:5f:c4:7b:d5:2a:c7:8e:ca:cd:0b:b9:1b:1b: e6:8c:38:70:5d:cb:54:4a:c6:e7:c0:ad:b8:75:23: 35:68:27:0e:d8:9f:15:c1:77:f1:29:45:15:19:57: 3f:21:b5:4c:27:ca:de:af:e7:ce:1a:d1:59:8e:b2: ce:90:28:d6:4a:b6:48:03:07:22:0b:26:20:c2:85: 86:18:c4:ea:07:48:82:e3:3c:16:46:68:af:af:4f: f0:8b:45:ed:8b:b1:08:e6:a6:b7:39:af:ef:6e:13: dc:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:05:9A:44:D3:15:D1:E7:15:90:B6:85:4C:6A:F5:C9:35:25:5D:28 X509v3 Authority Key Identifier: keyid:95:06:8B:B3:0A:BC:7E:00:7F:D8:38:7E:4D:E0:A8:3E:FA:AD:D4:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:d2:f3:ba:c5:b9:b4:45:c2:14:f6:4b:a6:d6:9c:86:2e:39: 07:c6:09:a0:0c:03:e1:4f:ff:eb:0c:b4:ec:4f:0c:9f:b5:fc: 1c:7e:86:9d:df:89:ef:92:ba:2f:e5:26:21:c4:ac:f0:d6:26: 02:6c:e8:ee:81:8a:35:c7:3e:91:b3:6d:d0:34:ee:ba:f6:0f: 20:d7:fc:dd:66:58:71:e4:a9:fc:d5:8e:d9:54:7c:9b:fe:11: 16:85:b0:87:c4:09:55:d4:6a:52:44:41:45:50:56:c1:dd:86: 85:ae:72:dc:3e:26:fb:8e:57:59:49:5c:de:58:1f:72:0b:05: ac:ee:20:21:e5:bd:e4:6f:79:78:19:cb:1f:97:b5:57:c5:a3: 63:a0:e6:26:ee:9d:78:c7:6a:92:9d:40:2a:7a:f8:65:a6:fc: 71:ce:8e:1a:dd:f1:37:c0:63:22:ea:70:a8:96:d1:9e:fe:f2: 2d:86:6f:ac:b2:81:65:b0:85:6a:81:79:57:4d:78:ed:9d:3b: 91:99:64:31:02:9c:46:c0:b6:b9:27:58:bb:65:78:4c:10:e3: b7:49:c8:7f:6f:66:ed:f7:a7:87:86:dd:0f:8b:3a:11:d6:71: 8c:e0:16:1a:e2:09:5b:00:7f:63:02:4f:fa:c0:ad:3f:b1:8f: 75:67:c3:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlERjgxMTAvBgNVBAUTKDk1MDY4QkIzMEFCQzdFMDA3RkQ4Mzg3RTRERTBBODNF RkFBREQ0NzIwHhcNMjUxMjA2MjEzMzUxWhcNMjUxMjEzMjEzMzUxWjAYMRYwFAYD VQQDEw02OTM0YTEzZi1iNzA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0pqVMJ0z4oKGVw6384khvrJ6YNR5U68YxgIixVL9wdcFQtCxi9SpC1sfkTbU RBCebRxIor3ZzMlreNNMxgmX2ILFGHj1QHFo1DSjlCI8AiSwmIoOhdSF6LrJ31A3 hawK2TL+vfVEBipNMl17Nsu96fKbMcFM3wzoKLyJDwdmazGVZTYW4wu+wU+285zf +Xi6bn6Dz9uYB1/Ee9Uqx47KzQu5GxvmjDhwXctUSsbnwK24dSM1aCcO2J8VwXfx KUUVGVc/IbVMJ8rer+fOGtFZjrLOkCjWSrZIAwciCyYgwoWGGMTqB0iC4zwWRmiv r0/wi0Xti7EI5qa3Oa/vbhPcJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOUFmkTT FdHnFZC2hUxq9ck1JV0oMB8GA1UdIwQYMBaAFJUGi7MKvH4Af9g4fk3gqD76rdRy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOURGOC80QjNCODgxRUI2 RDkxMUVCOEY4NjU1NTRDNEY5QUUwMi9sUWFMc3dxOGZnQl8yRGgtVGVDb1B2cXQx SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRYUxzd3E4ZmdCXzJEaC1UZUNvUHZxdDFISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OURGOC80QjNCODgxRUI2RDkxMUVCOEY4NjU1NTRDNEY5QUUwMi9sUWFMc3dxOGZn Ql8yRGgtVGVDb1B2cXQxSEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBu0vO6xbm0RcIU9kum1pyGLjkHxgmgDAPhT//rDLTsTwyftfwcfoad 34nvkrov5SYhxKzw1iYCbOjugYo1xz6Rs23QNO669g8g1/zdZlhx5Kn81Y7ZVHyb /hEWhbCHxAlV1GpSREFFUFbB3YaFrnLcPib7jldZSVzeWB9yCwWs7iAh5b3kb3l4 Gcsfl7VXxaNjoOYm7p14x2qSnUAqevhlpvxxzo4a3fE3wGMi6nColtGe/vIthm+s soFlsIVqgXlXTXjtnTuRmWQxApxGwLa5J1i7ZXhMEOO3Sch/b2bt96eHht0PizoR 1nGM4BYa4glbAH9jAk/6wK0/sY91Z8Pa -----END CERTIFICATE-----Generated at Mon Dec 8 09:31:35 2025 by rpki-client