This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft File: LRgGu3n37GppfLCmWiHlyxIv3nY.mft (raw, json) Hash identifier: 0sepgbUPmWYWuBaF8/mNcc14dI38kvTAie0oYbHq0nE= Subject key identifier: B3:DF:0E:D4:B5:D6:B1:4B:2E:A8:FC:88:CD:57:93:C9:C4:EC:84:E0 Authority key identifier: 2D:18:06:BB:79:F7:EC:6A:69:7C:B0:A6:5A:21:E5:CB:12:2F:DE:76 Certificate issuer: /CN=A9165A58/serialNumber=2D1806BB79F7EC6A697CB0A65A21E5CB122FDE76 Certificate serial: F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LRgGu3n37GppfLCmWiHlyxIv3nY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft Manifest number: EE Signing time: Thu 01 Jan 2026 04:53:40 +0000 Manifest this update: Thu 01 Jan 2026 04:53:40 +0000 Manifest next update: Thu 08 Jan 2026 04:53:40 +0000 Files and hashes: 1: LRgGu3n37GppfLCmWiHlyxIv3nY.crl (hash: f7BFSIpJvQR9jMfHElRTu9Z61xKy/eBeojiQ9ipVLyg=) 2: BDBEED967C0011EFB63C7076C4F9AE02.roa (hash: GquKmtZlMDJv9N8EiV5JY0q+tYOnvaRmJYnuHr77saU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.crl rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LRgGu3n37GppfLCmWiHlyxIv3nY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 Jan 2026 04:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 240 (0xf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A58, serialNumber=2D1806BB79F7EC6A697CB0A65A21E5CB122FDE76 Validity Not Before: Jan 1 04:53:40 2026 GMT Not After : Jan 8 04:53:40 2026 GMT Subject: CN=6955fdd4-03da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e9:08:51:4d:c7:63:9d:43:31:89:7c:d4:9e: 01:4d:d2:9f:11:2a:69:05:da:c7:4e:a4:2d:f3:93: 3d:93:95:0f:2c:27:e6:af:d5:17:db:0a:9c:10:cc: a3:56:0a:4e:89:f0:85:bc:89:b9:01:83:c3:24:a0: f6:25:38:21:03:ff:67:13:d8:47:3b:6f:96:00:7f: 82:da:9b:19:57:5d:a2:b1:1c:1e:45:54:f6:71:4c: ab:a6:1e:62:e1:51:c6:1b:47:4f:b5:73:9e:ba:a5: 42:6b:39:49:4c:a5:3e:78:74:54:f0:7f:20:5c:4a: 35:0d:5b:a8:f2:c6:a2:8a:bc:8f:2a:32:e1:47:ff: 25:c3:3c:6a:15:20:81:4c:d0:12:6c:da:ec:14:b0: bf:d8:4b:94:70:23:81:0b:79:bf:9a:9e:7b:02:75: 71:4f:24:3f:38:95:36:e0:5d:1e:28:16:7d:61:40: 17:f4:2a:36:9e:76:48:f0:33:f1:17:c0:27:40:7a: 75:7c:58:0d:63:d1:e1:04:b3:b4:19:36:cd:f2:d8: 59:28:c1:7b:28:41:c2:7f:45:fa:c3:6a:3f:e4:28: 8f:69:07:a8:e0:43:cd:ed:ed:68:2a:77:e5:80:38: 0d:ef:19:4d:30:a4:b2:17:5e:73:7e:ee:a5:bd:50: 0a:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:DF:0E:D4:B5:D6:B1:4B:2E:A8:FC:88:CD:57:93:C9:C4:EC:84:E0 X509v3 Authority Key Identifier: keyid:2D:18:06:BB:79:F7:EC:6A:69:7C:B0:A6:5A:21:E5:CB:12:2F:DE:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LRgGu3n37GppfLCmWiHlyxIv3nY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A58/DF694BA67BFD11EFA7B8EB5CC4F9AE02/LRgGu3n37GppfLCmWiHlyxIv3nY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:c3:fa:ec:19:69:f4:b3:b1:50:c7:5e:3e:9a:4d:d7:b6:02: b3:1e:e3:5a:6b:8e:6a:9b:5a:dc:b5:26:57:40:fe:2f:1a:45: ac:13:dd:ad:88:94:86:73:52:cf:02:5e:00:08:19:b3:3b:00: d6:74:b1:4d:1d:02:da:7d:18:63:d4:2e:76:ac:86:be:07:73: 13:2c:35:4e:ad:d1:a0:b3:c4:ad:96:67:92:ce:38:e7:b2:9f: 28:38:06:e3:78:c4:4e:5a:22:da:d9:17:42:11:78:97:7c:55: c8:ff:fa:aa:98:02:aa:2f:7a:03:72:6c:12:40:05:46:36:8a: ad:ae:a7:24:f7:77:4c:95:d8:a0:38:91:ec:5a:f4:52:a6:89: 24:a6:72:ef:da:87:3d:e2:d6:63:c3:35:cb:e1:ca:16:ae:0a: 86:11:fd:14:a3:a5:84:18:ca:84:b2:66:0e:89:dc:e7:42:5e: 9d:18:66:40:4b:32:b1:2c:78:ab:4a:84:23:e9:fa:ed:da:f3: 56:33:bc:61:a9:79:a2:8b:4c:80:53:ca:ce:df:73:fb:30:b5: f3:24:80:ed:af:39:4f:da:b9:0b:37:d4:c0:33:e5:74:d1:57: 5a:59:b5:ba:d0:97:a8:f5:fb:ac:73:4f:f3:43:da:99:f6:92: 0b:62:2a:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVBNTgxMTAvBgNVBAUTKDJEMTgwNkJCNzlGN0VDNkE2OTdDQjBBNjVBMjFFNUNC MTIyRkRFNzYwHhcNMjYwMTAxMDQ1MzQwWhcNMjYwMTA4MDQ1MzQwWjAYMRYwFAYD VQQDDA02OTU1ZmRkNC0wM2RhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuukIUU3HY51DMYl81J4BTdKfESppBdrHTqQt85M9k5UPLCfmr9UX2wqcEMyj VgpOifCFvIm5AYPDJKD2JTghA/9nE9hHO2+WAH+C2psZV12isRweRVT2cUyrph5i 4VHGG0dPtXOeuqVCazlJTKU+eHRU8H8gXEo1DVuo8saiiryPKjLhR/8lwzxqFSCB TNASbNrsFLC/2EuUcCOBC3m/mp57AnVxTyQ/OJU24F0eKBZ9YUAX9Co2nnZI8DPx F8AnQHp1fFgNY9HhBLO0GTbN8thZKMF7KEHCf0X6w2o/5CiPaQeo4EPN7e1oKnfl gDgN7xlNMKSyF15zfu6lvVAKSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLPfDtS1 1rFLLqj8iM1Xk8nE7ITgMB8GA1UdIwQYMBaAFC0YBrt59+xqaXywploh5csSL952 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUE1OC9ERjY5NEJBNjdC RkQxMUVGQTdCOEVCNUNDNEY5QUUwMi9MUmdHdTNuMzdHcHBmTENtV2lIbHl4SXYz blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xSZ0d1M24zN0dwcGZMQ21XaUhseXhJdjNuWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUE1OC9ERjY5NEJBNjdCRkQxMUVGQTdCOEVCNUNDNEY5QUUwMi9MUmdHdTNuMzdH cHBmTENtV2lIbHl4SXYzblkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIw/rsGWn0s7FQx14+mk3XtgKzHuNaa45qm1rctSZXQP4vGkWsE92t iJSGc1LPAl4ACBmzOwDWdLFNHQLafRhj1C52rIa+B3MTLDVOrdGgs8StlmeSzjjn sp8oOAbjeMROWiLa2RdCEXiXfFXI//qqmAKqL3oDcmwSQAVGNoqtrqck93dMldig OJHsWvRSpokkpnLv2oc94tZjwzXL4coWrgqGEf0Uo6WEGMqEsmYOidznQl6dGGZA SzKxLHirSoQj6frt2vNWM7xhqXmii0yAU8rO33P7MLXzJIDtrzlP2rkLN9TAM+V0 0VdaWbW60Jeo9fusc0/zQ9qZ9pILYiqM -----END CERTIFICATE-----Generated at Thu Jan 1 15:37:49 2026 by rpki-client