This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft File: Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft (raw, json) Hash identifier: xxjl5k5uQAUvYG48eNW6WPQ+s1no5MpnXczn5duwAts= Subject key identifier: 57:E8:17:D6:9D:2F:78:1B:5E:F4:9C:74:C5:71:03:01:44:D3:E6:58 Authority key identifier: 2D:BE:DD:88:EB:2B:2D:C4:7C:B5:30:90:C3:A3:85:1F:C6:52:4E:CA Certificate issuer: /CN=A9118009/serialNumber=2DBEDD88EB2B2DC47CB53090C3A3851FC6524ECA Certificate serial: 01AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lb7diOsrLcR8tTCQw6OFH8ZSTso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft Manifest number: 01AA Signing time: Tue 23 Dec 2025 02:13:10 +0000 Manifest this update: Tue 23 Dec 2025 02:13:10 +0000 Manifest next update: Tue 30 Dec 2025 02:13:10 +0000 Files and hashes: 1: Lb7diOsrLcR8tTCQw6OFH8ZSTso.crl (hash: ZaJvUTOtzdQ1FxaqQHhRDEyTAy713Si3qEhkKvshYTg=) 2: 7AE89AF4513511EE88C64E20C4F9AE02.roa (hash: 5LGDu0CCi6DfJNCRARsLcv5edhJaqrMRVu8YSoKbd1I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.crl rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lb7diOsrLcR8tTCQw6OFH8ZSTso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:13:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 429 (0x1ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118009, serialNumber=2DBEDD88EB2B2DC47CB53090C3A3851FC6524ECA Validity Not Before: Dec 23 02:13:10 2025 GMT Not After : Dec 30 02:13:10 2025 GMT Subject: CN=6949fab6-54ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:45:68:f2:a9:95:d6:39:ee:92:50:53:5c:cc: 87:83:c3:d0:75:ea:4a:76:45:81:05:6d:53:be:53: 72:c9:0c:8d:56:2d:38:cb:81:21:06:e0:dc:d5:6a: 56:e5:04:c3:28:98:e3:0e:e8:d8:b0:ef:34:46:3d: 03:3e:05:96:02:dd:bc:89:80:9d:4c:2e:f7:7b:a7: a1:3e:dd:7f:57:e6:99:af:5a:5c:25:42:aa:04:e7: 32:2b:b4:eb:82:52:cd:35:85:a5:07:c7:bb:55:12: 6e:4e:73:f1:39:04:76:47:42:57:e4:e5:d7:5e:06: fd:89:19:a6:af:20:09:40:b6:ff:1b:aa:1c:4b:22: da:d3:e8:b9:99:b9:82:83:bd:aa:63:2e:ab:2e:a8: 87:a2:ac:fc:ff:80:15:8e:89:fe:80:98:6b:32:60: a2:89:61:c5:4f:86:ab:e9:00:4f:a7:db:ad:36:4c: 14:d0:6d:98:4e:04:9b:6f:d5:cb:9e:d7:c6:92:28: f5:0e:9c:62:d1:a0:5b:a5:7a:a9:e8:f5:39:cf:83: 8a:f5:89:2e:ca:8b:1b:ec:38:f5:34:9e:8d:86:5b: 21:e2:4b:db:44:80:25:76:20:8a:8e:b2:fc:88:12: da:11:19:b8:a6:99:09:91:74:76:96:81:7e:c6:8c: e0:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:E8:17:D6:9D:2F:78:1B:5E:F4:9C:74:C5:71:03:01:44:D3:E6:58 X509v3 Authority Key Identifier: keyid:2D:BE:DD:88:EB:2B:2D:C4:7C:B5:30:90:C3:A3:85:1F:C6:52:4E:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lb7diOsrLcR8tTCQw6OFH8ZSTso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:9a:97:7e:1c:f3:d9:e9:9c:81:7a:37:2d:68:c4:da:c3:8e: c8:15:bc:e9:eb:63:da:7e:43:9b:c5:bd:76:d3:db:ca:94:75: 1c:1a:a9:f1:24:39:ca:b3:35:10:79:f9:92:9f:57:fb:fe:fa: e7:aa:c6:ee:e1:d6:4e:f5:ce:b3:06:0f:0a:3d:28:0c:95:28: dc:84:60:26:62:2c:a7:c7:cc:ea:65:bf:f7:bf:3f:aa:af:60: d1:56:f3:38:f6:41:61:4e:9d:94:c3:88:b3:4d:17:f5:2a:c7: 56:73:43:b9:4f:b8:73:26:c5:ce:f3:f9:bb:81:cb:fe:9e:bb: c3:79:47:1d:7a:29:64:9f:d7:12:24:f4:96:91:0c:ab:45:55: 8e:53:49:52:f9:bc:52:55:4a:e1:c5:15:72:de:f4:60:14:e1: 20:43:c8:36:03:5b:ce:67:73:8d:9e:1d:6f:1b:51:e1:62:a4: 1b:16:1c:96:72:05:b1:97:a2:c5:e9:f8:e3:bc:80:e3:cd:fa: 9f:dc:1c:67:ed:38:47:63:15:c9:7a:01:c7:2b:f5:6b:d4:dd: 6d:50:7f:8f:f5:3d:d6:25:a0:a4:8d:87:de:f1:24:c6:a6:00: ff:db:93:cb:f6:58:f1:8c:15:da:5d:93:2b:98:25:7b:10:1e: 15:bd:eb:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgwMDkxMTAvBgNVBAUTKDJEQkVERDg4RUIyQjJEQzQ3Q0I1MzA5MEMzQTM4NTFG QzY1MjRFQ0EwHhcNMjUxMjIzMDIxMzEwWhcNMjUxMjMwMDIxMzEwWjAYMRYwFAYD VQQDDA02OTQ5ZmFiNi01NGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoEVo8qmV1jnuklBTXMyHg8PQdepKdkWBBW1TvlNyyQyNVi04y4EhBuDc1WpW 5QTDKJjjDujYsO80Rj0DPgWWAt28iYCdTC73e6ehPt1/V+aZr1pcJUKqBOcyK7Tr glLNNYWlB8e7VRJuTnPxOQR2R0JX5OXXXgb9iRmmryAJQLb/G6ocSyLa0+i5mbmC g72qYy6rLqiHoqz8/4AVjon+gJhrMmCiiWHFT4ar6QBPp9utNkwU0G2YTgSbb9XL ntfGkij1Dpxi0aBbpXqp6PU5z4OK9Ykuyosb7Dj1NJ6Nhlsh4kvbRIAldiCKjrL8 iBLaERm4ppkJkXR2loF+xozg3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFfoF9ad L3gbXvScdMVxAwFE0+ZYMB8GA1UdIwQYMBaAFC2+3YjrKy3EfLUwkMOjhR/GUk7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODAwOS9FMzVBQ0FGNDUx MzQxMUVFQTM5MjRFMUZDNEY5QUUwMi9MYjdkaU9zckxjUjh0VENRdzZPRkg4WlNU c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xiN2RpT3NyTGNSOHRUQ1F3Nk9GSDhaU1Rzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODAwOS9FMzVBQ0FGNDUxMzQxMUVFQTM5MjRFMUZDNEY5QUUwMi9MYjdkaU9zckxj Ujh0VENRdzZPRkg4WlNUc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPmpd+HPPZ6ZyBejctaMTaw47IFbzp62PafkObxb1209vKlHUcGqnx JDnKszUQefmSn1f7/vrnqsbu4dZO9c6zBg8KPSgMlSjchGAmYiynx8zqZb/3vz+q r2DRVvM49kFhTp2Uw4izTRf1KsdWc0O5T7hzJsXO8/m7gcv+nrvDeUcdeilkn9cS JPSWkQyrRVWOU0lS+bxSVUrhxRVy3vRgFOEgQ8g2A1vOZ3ONnh1vG1HhYqQbFhyW cgWxl6LF6fjjvIDjzfqf3Bxn7ThHYxXJegHHK/Vr1N1tUH+P9T3WJaCkjYfe8STG pgD/25PL9ljxjBXaXZMrmCV7EB4VvetM -----END CERTIFICATE-----Generated at Tue Dec 23 09:43:10 2025 by rpki-client