This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft File: Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft (raw, json) Hash identifier: jE49QMLatBSEud3MRVnzIJOLWMkWIhbk7M20VWLy05s= Subject key identifier: D6:69:9D:D2:06:2A:AE:B8:6A:01:1C:A5:9E:C7:5F:EF:2E:8B:3E:ED Authority key identifier: 2D:BE:DD:88:EB:2B:2D:C4:7C:B5:30:90:C3:A3:85:1F:C6:52:4E:CA Certificate issuer: /CN=A9118009/serialNumber=2DBEDD88EB2B2DC47CB53090C3A3851FC6524ECA Certificate serial: 01AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lb7diOsrLcR8tTCQw6OFH8ZSTso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft Manifest number: 01A8 Signing time: Fri 19 Dec 2025 02:24:37 +0000 Manifest this update: Fri 19 Dec 2025 02:24:37 +0000 Manifest next update: Fri 26 Dec 2025 02:24:37 +0000 Files and hashes: 1: Lb7diOsrLcR8tTCQw6OFH8ZSTso.crl (hash: M9mtMI2oigGLT2Z2V3UVPE1cM5bj8/lJFd2oZ4f7+e4=) 2: 7AE89AF4513511EE88C64E20C4F9AE02.roa (hash: 5LGDu0CCi6DfJNCRARsLcv5edhJaqrMRVu8YSoKbd1I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.crl rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lb7diOsrLcR8tTCQw6OFH8ZSTso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:24:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 427 (0x1ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118009, serialNumber=2DBEDD88EB2B2DC47CB53090C3A3851FC6524ECA Validity Not Before: Dec 19 02:24:37 2025 GMT Not After : Dec 26 02:24:37 2025 GMT Subject: CN=6944b765-cf9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:79:cf:20:b8:f7:7d:8d:bb:e6:5b:1d:5c:e8: 64:e6:4e:df:f0:e0:88:7e:fd:fb:a6:8a:31:c7:41: d8:fb:65:04:c2:6d:ce:6a:cb:c2:7c:ef:f6:da:24: ad:cf:ff:e0:da:4a:1c:dd:5b:20:76:21:cf:a1:9a: a7:8d:5c:00:d2:79:7e:88:af:40:2a:6d:a9:83:fb: 6f:71:f8:29:67:66:1a:83:43:e0:f1:d4:af:8b:68: 35:b4:2d:50:24:ea:2a:00:d2:04:25:b8:ed:19:bc: ee:00:e0:da:0c:4d:10:64:61:0e:cc:86:eb:a8:13: 10:d3:39:97:13:a5:74:17:ac:0d:16:e1:2f:a2:97: 7f:26:fc:60:2b:0d:4a:aa:ad:4a:97:80:c2:fb:84: 4a:f7:93:1b:89:35:95:94:2e:83:d5:2a:ef:11:b9: 6e:d1:5a:06:71:d9:25:8d:53:43:31:66:fd:18:7f: b1:b0:c4:21:f6:ab:78:39:60:e6:4c:4e:f6:f4:22: b0:a1:a7:97:87:89:01:29:13:33:49:01:83:f5:e6: 49:9f:fb:2a:36:b6:83:6b:f9:fb:ba:47:c1:93:9b: 28:1c:1c:23:5b:c1:16:d8:d4:43:67:06:e3:65:7b: 14:b7:1b:bc:72:ee:99:b9:49:69:4e:68:4b:51:68: 54:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:69:9D:D2:06:2A:AE:B8:6A:01:1C:A5:9E:C7:5F:EF:2E:8B:3E:ED X509v3 Authority Key Identifier: keyid:2D:BE:DD:88:EB:2B:2D:C4:7C:B5:30:90:C3:A3:85:1F:C6:52:4E:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lb7diOsrLcR8tTCQw6OFH8ZSTso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:2c:b8:5d:8f:e4:46:c3:fa:50:a6:80:c0:d4:f8:38:ae:55: f3:a5:1f:39:f9:60:0b:81:5f:4a:1d:f8:0c:ab:68:20:80:2c: 8e:0c:9e:f1:35:95:60:78:76:32:c4:28:aa:69:48:73:c1:7b: 99:50:3e:1a:bd:28:d1:86:70:7b:1b:07:4f:82:0e:e7:d1:1a: ae:2d:73:96:01:88:df:ac:45:77:99:e7:3b:62:1e:0d:d7:20: bf:5b:c4:9e:7f:68:4a:dc:2f:88:ab:77:2f:93:28:46:88:fb: d5:68:17:02:06:10:57:df:56:ce:0b:6c:4a:9a:85:4e:9d:49: b6:13:87:9e:83:dc:75:77:c0:79:38:37:a8:6e:96:34:f4:5d: 41:20:c7:78:43:58:86:d6:e6:ac:3c:be:32:44:07:21:d9:1a: 42:27:32:86:1e:f5:3b:56:d8:e2:55:d6:f6:11:32:05:b7:b6: d2:63:bf:48:d5:48:9e:9e:8f:bb:ef:1d:bd:b3:15:84:ef:a3: 6c:01:c9:77:34:21:59:1b:5c:0c:08:48:47:85:6d:85:10:bc: 76:b0:d4:82:35:f0:29:6f:7f:a3:e4:61:a1:98:1a:cb:6d:bb: 6e:fb:99:dd:d6:a1:18:ee:98:c5:b5:3c:12:dc:04:00:1b:c2: 63:5a:b8:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgwMDkxMTAvBgNVBAUTKDJEQkVERDg4RUIyQjJEQzQ3Q0I1MzA5MEMzQTM4NTFG QzY1MjRFQ0EwHhcNMjUxMjE5MDIyNDM3WhcNMjUxMjI2MDIyNDM3WjAYMRYwFAYD VQQDDA02OTQ0Yjc2NS1jZjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA23nPILj3fY275lsdXOhk5k7f8OCIfv37pooxx0HY+2UEwm3OasvCfO/22iSt z//g2koc3VsgdiHPoZqnjVwA0nl+iK9AKm2pg/tvcfgpZ2Yag0Pg8dSvi2g1tC1Q JOoqANIEJbjtGbzuAODaDE0QZGEOzIbrqBMQ0zmXE6V0F6wNFuEvopd/JvxgKw1K qq1Kl4DC+4RK95MbiTWVlC6D1SrvEblu0VoGcdkljVNDMWb9GH+xsMQh9qt4OWDm TE729CKwoaeXh4kBKRMzSQGD9eZJn/sqNraDa/n7ukfBk5soHBwjW8EW2NRDZwbj ZXsUtxu8cu6ZuUlpTmhLUWhUTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNZpndIG Kq64agEcpZ7HX+8uiz7tMB8GA1UdIwQYMBaAFC2+3YjrKy3EfLUwkMOjhR/GUk7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODAwOS9FMzVBQ0FGNDUx MzQxMUVFQTM5MjRFMUZDNEY5QUUwMi9MYjdkaU9zckxjUjh0VENRdzZPRkg4WlNU c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xiN2RpT3NyTGNSOHRUQ1F3Nk9GSDhaU1Rzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODAwOS9FMzVBQ0FGNDUxMzQxMUVFQTM5MjRFMUZDNEY5QUUwMi9MYjdkaU9zckxj Ujh0VENRdzZPRkg4WlNUc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTLLhdj+RGw/pQpoDA1Pg4rlXzpR85+WALgV9KHfgMq2gggCyODJ7x NZVgeHYyxCiqaUhzwXuZUD4avSjRhnB7GwdPgg7n0RquLXOWAYjfrEV3mec7Yh4N 1yC/W8Sef2hK3C+Iq3cvkyhGiPvVaBcCBhBX31bOC2xKmoVOnUm2E4eeg9x1d8B5 ODeobpY09F1BIMd4Q1iG1uasPL4yRAch2RpCJzKGHvU7VtjiVdb2ETIFt7bSY79I 1Uieno+77x29sxWE76NsAcl3NCFZG1wMCEhHhW2FELx2sNSCNfApb3+j5GGhmBrL bbtu+5nd1qEY7pjFtTwS3AQAG8JjWrjn -----END CERTIFICATE-----Generated at Fri Dec 19 20:15:56 2025 by rpki-client