This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft File: LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft (raw, json) Hash identifier: kG9IDO8Rp9Sf3eSoogZ/7W0SYwIkY5prmLSYZuBHE1o= Subject key identifier: 0C:DF:32:5A:DC:AD:80:BF:FF:81:FB:41:2A:6A:4C:EC:09:D9:73:66 Authority key identifier: 2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B Certificate issuer: /CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Certificate serial: 05A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft Manifest number: 0565 Signing time: Thu 18 Dec 2025 22:50:59 +0000 Manifest this update: Thu 18 Dec 2025 22:50:58 +0000 Manifest next update: Thu 25 Dec 2025 22:50:58 +0000 Files and hashes: 1: LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl (hash: jrXlXuxL7ppuai1RQTuWjqoo/Zl+kESkArajjklGOIo=) 2: F88F642285E411EEB951413BC4F9AE02.roa (hash: 5XS7gAJ1w57LGdHifEwdGpT41QuHVgx3tURmBIG/Ph0=) 3: BBDA9B429E6311ECA6EC8071C4F9AE02.roa (hash: WiSL38A4AfTZxujdbevnM0BHhlMtOQknr2QyeEfpbeg=) 4: 95C12B8E21A111EE8360C139C4F9AE02.roa (hash: ANarnw7th2betqTUJ1dSr/6kmM20Z4BPNu0RmkGVouY=) 5: 1CD7BEFC4D0E11EEA09FBF12C4F9AE02.roa (hash: ZVXIXb68LMeIyoHASYy5oVFyflHWdmoVD7FAYMUQOp4=) 6: CE988D80FB7311EC97CD7F85C4F9AE02.roa (hash: HJPBn4wWH9435slQdCcvd//C2eehlQjgPBpSjm2F4Lc=) 7: D6C060C27E1811EEB9B4FE4AC4F9AE02.roa (hash: H6lUECWs/LnmCnEJB/ye5BlXZoehdKlxdmR5+P/1VOY=) 8: BD4E85B09E6311ECA6EC8071C4F9AE02.roa (hash: 2jfJLAfv4sSmTjn+t4R2DbosLO6LZGV4JERzq1/IuT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:50:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1442 (0x5a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD72, serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Validity Not Before: Dec 18 22:50:58 2025 GMT Not After : Dec 25 22:50:58 2025 GMT Subject: CN=69448553-bccf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e7:38:d6:82:c8:d2:8b:3f:f2:93:4c:ba:4d: ee:25:87:e4:1b:d5:89:6b:1e:9d:77:54:f9:60:d5: 84:83:3a:9d:1a:62:cd:21:13:ad:85:2e:c2:1f:6e: 09:3e:04:6a:0f:48:da:dc:33:ee:7c:b2:10:60:2d: 63:86:b6:57:b9:97:71:4f:67:44:05:8b:90:e2:99: 2b:a2:13:87:0b:af:0e:12:e7:25:18:e9:cd:78:0f: e1:f7:d1:4f:61:ec:77:d2:04:5f:34:9c:37:35:21: 14:f2:3d:cf:b2:d9:ea:59:10:c4:05:2b:bb:42:cc: cd:a3:0a:33:9f:10:e0:13:d9:82:c7:53:60:93:35: d8:76:08:32:19:ca:b7:06:bc:19:e5:c7:b6:5d:71: 02:77:49:8a:a8:1b:4f:4e:e2:64:3a:ac:e9:21:10: 12:75:22:82:87:fe:6a:06:e6:23:e7:0e:19:0a:a6: bb:22:51:75:30:a8:f9:09:d3:2b:10:3d:81:12:3a: 04:2f:95:f7:fe:2a:41:4a:f4:c6:64:6e:17:a8:97: 36:11:ad:75:cd:08:c2:ca:9b:ce:b1:c8:e6:e6:1b: 10:6c:17:2b:e8:ef:9d:e7:d4:4e:89:03:a5:4c:54: d7:f2:16:a4:64:a1:bd:0b:ae:b2:af:0d:91:a5:0d: 33:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:DF:32:5A:DC:AD:80:BF:FF:81:FB:41:2A:6A:4C:EC:09:D9:73:66 X509v3 Authority Key Identifier: keyid:2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:08:9e:72:2f:29:38:55:d7:6c:bc:6f:00:23:e4:4e:a4:dc: 2d:74:79:a4:e3:37:6a:ba:6e:0a:15:2e:1f:19:2d:dd:42:7a: 13:ea:d7:0d:10:bf:db:79:45:78:d6:31:fc:36:e2:fe:28:ba: 4d:2b:9b:e9:df:b6:4c:73:37:77:79:dc:d7:bb:16:d5:26:d9: 04:a8:e1:c6:d6:4d:54:9e:59:4c:ec:40:8b:b7:32:44:92:ba: 72:e9:80:7e:19:7b:32:64:c8:d3:94:0a:33:92:75:d9:1c:a0: 96:0b:8d:70:7e:13:67:9c:85:aa:b1:ce:ba:fc:98:33:71:89: 30:52:42:e3:fc:8f:37:9f:12:00:48:28:d3:84:33:52:c4:b5: c6:39:8d:5c:9a:a4:fe:87:68:54:d6:d3:c5:ba:d1:75:8b:dc: 95:ec:d6:57:e6:d2:39:da:4f:a9:c0:ea:cf:96:2d:0c:65:cb: 21:51:54:81:0c:af:30:dc:f1:ef:7a:26:b6:2c:9b:b7:48:8f: 59:3c:be:f0:d8:19:de:71:2c:fe:77:bd:2d:41:5b:b7:58:d0: ee:78:94:ba:d6:7a:a4:19:d4:6a:f6:e0:92:db:17:ed:d3:83: 65:40:7a:12:d5:c1:25:4d:0e:3d:17:74:af:44:63:da:75:f2: 8f:88:6d:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENzIxMTAvBgNVBAUTKDJDMTkxNzUzMjVBNUYzNkMwQkI1OEY5MjExOUU2NTgy MEM4RkQ1N0IwHhcNMjUxMjE4MjI1MDU4WhcNMjUxMjI1MjI1MDU4WjAYMRYwFAYD VQQDDA02OTQ0ODU1My1iY2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAquc41oLI0os/8pNMuk3uJYfkG9WJax6dd1T5YNWEgzqdGmLNIROthS7CH24J PgRqD0ja3DPufLIQYC1jhrZXuZdxT2dEBYuQ4pkrohOHC68OEuclGOnNeA/h99FP Yex30gRfNJw3NSEU8j3PstnqWRDEBSu7QszNowoznxDgE9mCx1NgkzXYdggyGcq3 BrwZ5ce2XXECd0mKqBtPTuJkOqzpIRASdSKCh/5qBuYj5w4ZCqa7IlF1MKj5CdMr ED2BEjoEL5X3/ipBSvTGZG4XqJc2Ea11zQjCypvOscjm5hsQbBcr6O+d59ROiQOl TFTX8hakZKG9C66yrw2RpQ0zFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAzfMlrc rYC//4H7QSpqTOwJ2XNmMB8GA1UdIwQYMBaAFCwZF1MlpfNsC7WPkhGeZYIMj9V7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q3Mi80NTc2QTY3MjI2 MTIxMUVDQjkzMTk5NDJDNEY5QUUwMi9MQmtYVXlXbDgyd0x0WS1TRVo1bGdneVAx WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xCa1hVeVdsODJ3THRZLVNFWjVsZ2d5UDFYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0Q3Mi80NTc2QTY3MjI2MTIxMUVDQjkzMTk5NDJDNEY5QUUwMi9MQmtYVXlXbDgy d0x0WS1TRVo1bGdneVAxWHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvCJ5yLyk4VddsvG8AI+ROpNwtdHmk4zdqum4KFS4fGS3dQnoT6tcN EL/beUV41jH8NuL+KLpNK5vp37ZMczd3edzXuxbVJtkEqOHG1k1UnllM7ECLtzJE krpy6YB+GXsyZMjTlAozknXZHKCWC41wfhNnnIWqsc66/JgzcYkwUkLj/I83nxIA SCjThDNSxLXGOY1cmqT+h2hU1tPFutF1i9yV7NZX5tI52k+pwOrPli0MZcshUVSB DK8w3PHveia2LJu3SI9ZPL7w2BnecSz+d70tQVu3WNDueJS61nqkGdRq9uCS2xft 04NlQHoS1cElTQ49F3SvRGPadfKPiG0S -----END CERTIFICATE-----Generated at Fri Dec 19 12:58:49 2025 by rpki-client