This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft File: LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft (raw, json) Hash identifier: 4wDJTyhPSnyK5p40YtqzIaMcG9dJIAiipu/NB+CT/BY= Subject key identifier: 0D:1F:56:0C:C1:22:26:E5:2E:5F:2B:A3:E7:2B:87:69:08:31:E6:0B Authority key identifier: 2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7 Certificate issuer: /CN=A9123D28/serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7 Certificate serial: 029F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft Manifest number: 029B Signing time: Tue 23 Dec 2025 00:31:08 +0000 Manifest this update: Tue 23 Dec 2025 00:31:07 +0000 Manifest next update: Tue 30 Dec 2025 00:31:07 +0000 Files and hashes: 1: LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl (hash: E6dzkX9UfH9+LeTT//lV+/f6ZBC1AD2nC/WDkZLs/zo=) 2: 49CEB44A28D111EDB364C870C4F9AE02.roa (hash: v8A7o/rziUd18ChafwKVVQdaKCqkH9AmkhbIbCG9hCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:31:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 671 (0x29f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123D28, serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7 Validity Not Before: Dec 23 00:31:07 2025 GMT Not After : Dec 30 00:31:07 2025 GMT Subject: CN=6949e2cb-ecb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:62:59:c5:24:f5:23:5a:d2:f4:00:43:ac:81: 81:46:22:49:25:f4:47:79:0c:db:a6:16:95:6c:e6: ba:2e:5e:58:82:b5:0e:83:4d:ed:a7:ec:8b:2f:74: 7f:e9:2e:0f:c4:30:ce:7b:08:60:f7:53:5b:06:fe: 42:3e:c4:9a:28:ac:6f:1c:18:f3:38:ec:2c:b5:69: e6:f1:36:8e:48:66:0b:ab:64:9a:4b:6a:83:28:94: 91:0d:f1:b0:56:ed:b9:f4:8c:a1:a6:4d:e9:b2:47: 5c:08:19:6d:59:83:9f:08:8b:79:f6:46:55:1c:22: e5:d1:cf:13:93:70:14:b9:1e:4f:bd:50:26:e7:ea: b6:d7:91:aa:ca:87:82:dc:8e:27:35:d5:a5:e1:16: 9c:0e:a7:e6:17:3b:9c:71:4d:66:e6:a6:d0:55:1c: a9:fc:b8:11:78:dd:fd:14:9b:eb:90:de:d6:92:67: ca:54:2c:cd:f9:2e:22:76:06:a2:c4:6c:64:5e:51: 82:e9:7e:f6:28:e4:92:09:c2:41:a8:88:b2:a8:bc: be:2c:c2:89:b6:36:40:03:74:ea:d0:2f:7a:35:39: b5:fb:42:55:3b:ec:14:03:cd:7f:89:bb:b1:49:77: e0:81:19:fc:59:eb:cc:0d:06:30:2b:ba:a9:9f:15: e2:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:1F:56:0C:C1:22:26:E5:2E:5F:2B:A3:E7:2B:87:69:08:31:E6:0B X509v3 Authority Key Identifier: keyid:2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:ed:e9:02:f3:99:f2:2b:06:f4:12:79:26:76:16:0c:a0:76: 8e:bd:62:64:4e:57:4b:ee:c7:04:9a:d9:39:e9:65:d5:4d:ba: f2:8b:cd:2e:b4:a4:16:ec:8b:06:06:d0:90:0d:65:1f:7f:d4: 8d:0b:09:6d:94:16:56:cf:4a:51:b3:4b:24:76:d6:08:f3:8b: ec:ad:01:d0:c3:9d:af:03:02:82:bf:81:92:52:b5:ff:52:00: 56:25:09:a8:e9:59:24:b6:cd:0a:7a:e8:a7:af:bf:29:1d:3d: cb:7c:7d:08:48:21:38:2f:28:ad:08:68:e7:b2:1f:25:c7:49: ae:5c:f2:ba:58:8e:50:e9:d2:ba:bd:b4:72:c6:75:ff:d3:bb: 60:83:e5:c4:2a:15:64:20:69:70:38:68:6a:52:71:52:84:92: c4:47:a2:6d:4f:3e:b3:80:0f:b6:9a:0b:b0:fa:05:69:58:88: 44:d4:08:c6:fd:6d:b7:0f:9c:d9:22:e2:21:97:d0:c7:2c:f7: 7b:08:94:2c:6f:3a:9b:8f:b3:0d:d2:29:60:6f:c0:bb:fe:b5: 8b:10:68:ef:bb:22:2f:18:35:f4:dd:e0:b3:f9:8a:ad:55:e5: 51:19:d8:f3:a3:d8:2d:34:8e:22:59:bc:5c:0a:72:d7:28:0b: ad:f4:0f:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAp8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNEMjgxMTAvBgNVBAUTKDJFMDZGMzA5MUFENThFRDA2MzNGRjk4OUIxRkQzMjk3 NzNFQzNBQTcwHhcNMjUxMjIzMDAzMTA3WhcNMjUxMjMwMDAzMTA3WjAYMRYwFAYD VQQDDA02OTQ5ZTJjYi1lY2IwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyGJZxST1I1rS9ABDrIGBRiJJJfRHeQzbphaVbOa6Ll5YgrUOg03tp+yLL3R/ 6S4PxDDOewhg91NbBv5CPsSaKKxvHBjzOOwstWnm8TaOSGYLq2SaS2qDKJSRDfGw Vu259Iyhpk3pskdcCBltWYOfCIt59kZVHCLl0c8Tk3AUuR5PvVAm5+q215GqyoeC 3I4nNdWl4RacDqfmFzuccU1m5qbQVRyp/LgReN39FJvrkN7WkmfKVCzN+S4idgai xGxkXlGC6X72KOSSCcJBqIiyqLy+LMKJtjZAA3Tq0C96NTm1+0JVO+wUA81/ibux SXfggRn8WevMDQYwK7qpnxXigwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA0fVgzB IiblLl8ro+crh2kIMeYLMB8GA1UdIwQYMBaAFC4G8wka1Y7QYz/5ibH9Mpdz7Dqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0QyOC80QkRBRUVEQzI4 Q0UxMUVEQjY4MzM5NkVDNEY5QUUwMi9MZ2J6Q1JyVmp0QmpQX21Kc2YweWwzUHNP cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xnYnpDUnJWanRCalBfbUpzZjB5bDNQc09xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0QyOC80QkRBRUVEQzI4Q0UxMUVEQjY4MzM5NkVDNEY5QUUwMi9MZ2J6Q1JyVmp0 QmpQX21Kc2YweWwzUHNPcWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAp7ekC85nyKwb0EnkmdhYMoHaOvWJkTldL7scEmtk56WXVTbryi80u tKQW7IsGBtCQDWUff9SNCwltlBZWz0pRs0skdtYI84vsrQHQw52vAwKCv4GSUrX/ UgBWJQmo6Vkkts0Keuinr78pHT3LfH0ISCE4LyitCGjnsh8lx0muXPK6WI5Q6dK6 vbRyxnX/07tgg+XEKhVkIGlwOGhqUnFShJLER6JtTz6zgA+2mguw+gVpWIhE1AjG /W23D5zZIuIhl9DHLPd7CJQsbzqbj7MN0ilgb8C7/rWLEGjvuyIvGDX03eCz+Yqt VeVRGdjzo9gtNI4iWbxcCnLXKAut9A+2 -----END CERTIFICATE-----Generated at Tue Dec 23 05:06:25 2025 by rpki-client