This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft File: LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft (raw, json) Hash identifier: ShvEkl6hv2daJHpnbGNUIFsmG+ImXDlmTngvsLVFzyI= Subject key identifier: A2:BA:16:4D:2E:0F:54:F6:4A:08:67:69:3F:FE:8C:79:E7:51:FE:FE Authority key identifier: 2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7 Certificate issuer: /CN=A9123D28/serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7 Certificate serial: 029D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft Manifest number: 0299 Signing time: Fri 19 Dec 2025 00:44:44 +0000 Manifest this update: Fri 19 Dec 2025 00:44:43 +0000 Manifest next update: Fri 26 Dec 2025 00:44:43 +0000 Files and hashes: 1: LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl (hash: Yi0vE/n1wqXC843+yJJ3tXPo03XnYoklwpNuxID046g=) 2: 49CEB44A28D111EDB364C870C4F9AE02.roa (hash: v8A7o/rziUd18ChafwKVVQdaKCqkH9AmkhbIbCG9hCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:44:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 669 (0x29d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123D28, serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7 Validity Not Before: Dec 19 00:44:43 2025 GMT Not After : Dec 26 00:44:43 2025 GMT Subject: CN=69449ffb-9421 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:54:5d:64:00:bf:e7:47:b7:d4:b0:9f:4a:d5: 5b:45:c9:cb:82:d8:d4:08:84:4f:48:df:de:57:b7: 23:ec:fe:a7:41:d5:50:af:f4:8e:d4:5f:2e:e9:16: 8d:7c:c5:fa:11:57:71:4d:b8:b9:28:df:f0:55:05: 42:bb:b2:70:23:99:ae:bb:96:02:46:38:b4:cc:b3: 8d:38:c1:a8:5f:d7:57:ff:a9:62:a2:a1:78:af:ec: d3:57:0c:0a:4e:56:cd:e8:6b:c6:8d:79:08:59:92: 5b:f8:0f:57:7d:22:e9:85:ae:b6:5e:ec:b6:97:e5: 75:2d:65:20:f7:65:65:02:ed:79:bb:31:98:b9:aa: 6a:00:04:f7:24:67:9d:f0:b4:9b:7a:86:63:79:de: 82:77:97:1e:22:4d:6e:ff:7a:64:c5:4c:1c:39:10: 6b:5d:e3:a0:2b:7d:11:a3:53:c4:52:1c:fa:7b:19: 5a:75:d9:12:1f:67:ee:ce:6a:07:53:a5:2c:e6:30: a4:cd:28:64:74:fb:0a:7a:95:14:ba:9e:b9:79:38: 87:d2:6b:51:37:4f:a7:2f:10:88:09:eb:7b:e3:51: 36:55:26:41:12:f8:ff:26:11:44:69:4e:2b:61:a0: 20:77:70:47:b2:85:c4:fa:f5:b2:ee:dd:5a:62:a4: f2:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:BA:16:4D:2E:0F:54:F6:4A:08:67:69:3F:FE:8C:79:E7:51:FE:FE X509v3 Authority Key Identifier: keyid:2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:3f:3a:6c:07:2f:d0:ad:9a:d5:35:5a:9e:3b:91:4e:dd:db: 6d:5f:00:6f:e5:4d:d4:8d:e1:2f:e8:38:aa:6b:57:67:65:47: 8e:94:6f:8d:80:00:89:12:aa:2f:fe:d3:e7:89:fa:27:ca:48: e1:02:f0:a2:48:49:5d:6e:3c:75:11:c6:3f:f9:91:d6:00:6a: 70:7b:fc:9d:fb:e5:bb:9b:55:6b:82:a3:70:ae:e9:c0:6b:b4: ff:8d:31:79:ca:c5:7b:92:f2:00:6e:9e:bd:7a:6e:c3:ec:5f: d8:af:0f:46:77:c0:28:58:be:fc:90:d2:2c:a8:27:53:3e:35: 73:57:fa:a4:7f:da:be:1c:87:07:93:36:5a:19:de:aa:9a:b9: 44:b0:1b:ad:61:96:6c:22:62:c8:81:ca:cb:95:aa:af:ba:c5: 8e:ad:ad:72:5d:1f:e7:e4:bb:d2:be:a8:0e:54:fd:d4:8e:dc: 3e:86:e5:b2:d9:23:69:b6:34:ce:73:69:7d:c4:2d:2c:01:74: 13:9a:63:e1:4c:93:39:71:7c:40:1a:fe:57:4f:4e:54:0d:f6: ce:67:cd:46:09:9e:41:b0:21:81:a2:25:11:0c:48:56:e5:f1: 3b:e6:5e:44:a1:62:2e:0f:07:c0:3d:b7:ca:de:96:39:6e:2b: d4:d3:5f:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAp0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNEMjgxMTAvBgNVBAUTKDJFMDZGMzA5MUFENThFRDA2MzNGRjk4OUIxRkQzMjk3 NzNFQzNBQTcwHhcNMjUxMjE5MDA0NDQzWhcNMjUxMjI2MDA0NDQzWjAYMRYwFAYD VQQDDA02OTQ0OWZmYi05NDIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFRdZAC/50e31LCfStVbRcnLgtjUCIRPSN/eV7cj7P6nQdVQr/SO1F8u6RaN fMX6EVdxTbi5KN/wVQVCu7JwI5muu5YCRji0zLONOMGoX9dX/6lioqF4r+zTVwwK TlbN6GvGjXkIWZJb+A9XfSLpha62Xuy2l+V1LWUg92VlAu15uzGYuapqAAT3JGed 8LSbeoZjed6Cd5ceIk1u/3pkxUwcORBrXeOgK30Ro1PEUhz6exladdkSH2fuzmoH U6Us5jCkzShkdPsKepUUup65eTiH0mtRN0+nLxCICet741E2VSZBEvj/JhFEaU4r YaAgd3BHsoXE+vWy7t1aYqTyJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKK6Fk0u D1T2SghnaT/+jHnnUf7+MB8GA1UdIwQYMBaAFC4G8wka1Y7QYz/5ibH9Mpdz7Dqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0QyOC80QkRBRUVEQzI4 Q0UxMUVEQjY4MzM5NkVDNEY5QUUwMi9MZ2J6Q1JyVmp0QmpQX21Kc2YweWwzUHNP cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xnYnpDUnJWanRCalBfbUpzZjB5bDNQc09xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0QyOC80QkRBRUVEQzI4Q0UxMUVEQjY4MzM5NkVDNEY5QUUwMi9MZ2J6Q1JyVmp0 QmpQX21Kc2YweWwzUHNPcWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjPzpsBy/QrZrVNVqeO5FO3dttXwBv5U3UjeEv6Diqa1dnZUeOlG+N gACJEqov/tPnifonykjhAvCiSEldbjx1EcY/+ZHWAGpwe/yd++W7m1VrgqNwrunA a7T/jTF5ysV7kvIAbp69em7D7F/Yrw9Gd8AoWL78kNIsqCdTPjVzV/qkf9q+HIcH kzZaGd6qmrlEsButYZZsImLIgcrLlaqvusWOra1yXR/n5LvSvqgOVP3Ujtw+huWy 2SNptjTOc2l9xC0sAXQTmmPhTJM5cXxAGv5XT05UDfbOZ81GCZ5BsCGBoiURDEhW 5fE75l5EoWIuDwfAPbfK3pY5bivU018a -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:20 2025 by rpki-client