This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft File: LzabRI0hcVlrosk82-JY6vMxdZQ.mft (raw, json) Hash identifier: 5DluQI1R/Gdiac/UJrLwKEtiZycv1cF0gJYk/4Mb0xc= Subject key identifier: DE:98:8E:E9:85:1D:0B:AD:4F:14:DD:A3:60:96:E1:DA:23:D4:07:33 Authority key identifier: 2F:36:9B:44:8D:21:71:59:6B:A2:C9:3C:DB:E2:58:EA:F3:31:75:94 Certificate issuer: /CN=A9161A5A/serialNumber=2F369B448D2171596BA2C93CDBE258EAF3317594 Certificate serial: 0717 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft Manifest number: 070F Signing time: Sat 06 Dec 2025 20:52:26 +0000 Manifest this update: Sat 06 Dec 2025 20:52:25 +0000 Manifest next update: Sat 13 Dec 2025 20:52:25 +0000 Files and hashes: 1: LzabRI0hcVlrosk82-JY6vMxdZQ.crl (hash: cTzPH4fealvnSXq/VswJCrYZl5p5NHa7xnAqOzCl/Mc=) 2: 79D611D265E711EBB6FD8A0DC4F9AE02.roa (hash: 8jITrnqODr3hbw+6QboJeBK8U7SJ4xuwPGHj3X5tTD4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.crl rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 20:52:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1815 (0x717) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161A5A, serialNumber=2F369B448D2171596BA2C93CDBE258EAF3317594 Validity Not Before: Dec 6 20:52:25 2025 GMT Not After : Dec 13 20:52:25 2025 GMT Subject: CN=69349789-69f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:15:8e:8d:c7:cc:92:92:ed:5a:72:1b:fc:ed: 5c:34:56:74:64:6a:42:b7:4a:11:83:ca:0a:7d:f7: 67:7e:aa:d2:65:7b:9c:20:88:2a:8a:71:0c:91:0b: 1f:0b:a5:57:e8:7d:a7:15:51:36:26:3e:b6:28:87: 60:e3:a0:3b:01:9f:46:0d:b8:36:41:80:64:f7:df: 8a:6d:a4:f9:13:61:3e:1f:99:19:bd:88:bc:d9:bb: d3:26:98:da:a9:b4:dd:45:90:26:cf:ea:86:a1:d9: f6:20:18:2b:b3:4e:27:60:95:9c:49:e1:fc:47:b5: b6:8c:c5:a2:d0:18:c3:3d:99:32:74:94:d5:25:bd: c6:a2:bf:d7:35:22:6f:f6:05:c7:b7:68:70:9f:cc: 0e:c7:d0:33:7e:9a:0c:a5:23:e0:82:ac:4a:22:39: ba:d5:4e:7f:24:c4:a5:7a:d7:eb:d4:8f:21:75:da: a6:0e:2e:29:f4:3f:0b:42:b9:6c:48:6b:9b:c1:7c: b3:43:7b:d8:6b:27:9e:5d:9a:ca:a4:5e:6d:6d:37: 0b:98:50:0d:63:9b:6e:83:0f:cd:47:cc:d1:e7:1d: 9d:b4:37:4d:b6:24:7d:30:e6:67:46:59:6b:56:a1: 53:63:41:87:24:7a:3f:0b:65:d5:f7:5a:9b:fa:c8: 05:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:98:8E:E9:85:1D:0B:AD:4F:14:DD:A3:60:96:E1:DA:23:D4:07:33 X509v3 Authority Key Identifier: keyid:2F:36:9B:44:8D:21:71:59:6B:A2:C9:3C:DB:E2:58:EA:F3:31:75:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:7a:19:fe:c0:ec:0a:04:ff:dd:44:6e:a1:bb:af:c9:4c:92: ec:6a:3d:fe:bd:90:a0:20:5f:89:43:9a:1f:fe:ef:72:bc:dd: ed:a3:b8:f2:d6:d9:41:c5:ee:84:cf:b4:cb:77:65:6b:6b:3c: 02:98:6a:6c:e6:fb:ab:6d:d2:7f:ea:29:f5:0e:f0:8c:95:38: 41:02:bf:1f:ef:fe:c4:db:3d:76:6f:7f:6a:81:7b:c9:c1:a7: c7:a8:66:c8:8d:71:e3:98:fb:30:ea:ff:b3:08:19:c7:17:9a: ab:4a:43:37:15:df:97:2b:1a:3c:37:35:e0:2e:1a:35:8a:c7: 97:9c:36:15:49:99:66:4c:dd:a9:f7:d8:73:46:57:ea:d1:0d: 27:5d:6b:94:2a:bc:09:04:41:ee:39:ab:94:fe:70:77:d5:28: 4a:c8:5c:f2:1d:79:ac:f0:18:42:55:69:c1:ae:52:3d:bb:20: 3b:c2:ef:e5:7b:55:28:fb:51:14:b1:23:1d:64:0c:73:cd:d2: 4b:1b:53:d1:e7:ec:54:2b:77:56:08:7b:60:45:5c:82:4e:b0: 41:96:b9:2a:90:9f:be:41:1d:03:7d:f7:f6:66:3e:57:1a:60: 80:9a:38:78:1e:5a:53:bf:11:13:3e:aa:69:fd:99:ad:ff:0f: 73:27:59:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFBNUExMTAvBgNVBAUTKDJGMzY5QjQ0OEQyMTcxNTk2QkEyQzkzQ0RCRTI1OEVB RjMzMTc1OTQwHhcNMjUxMjA2MjA1MjI1WhcNMjUxMjEzMjA1MjI1WjAYMRYwFAYD VQQDEw02OTM0OTc4OS02OWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArxWOjcfMkpLtWnIb/O1cNFZ0ZGpCt0oRg8oKffdnfqrSZXucIIgqinEMkQsf C6VX6H2nFVE2Jj62KIdg46A7AZ9GDbg2QYBk99+KbaT5E2E+H5kZvYi82bvTJpja qbTdRZAmz+qGodn2IBgrs04nYJWcSeH8R7W2jMWi0BjDPZkydJTVJb3Gor/XNSJv 9gXHt2hwn8wOx9AzfpoMpSPggqxKIjm61U5/JMSletfr1I8hddqmDi4p9D8LQrls SGubwXyzQ3vYayeeXZrKpF5tbTcLmFANY5tugw/NR8zR5x2dtDdNtiR9MOZnRllr VqFTY0GHJHo/C2XV91qb+sgFpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN6YjumF HQutTxTdo2CW4doj1AczMB8GA1UdIwQYMBaAFC82m0SNIXFZa6LJPNviWOrzMXWU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUE1QS9COEJCNTY4RTY1 RTUxMUVCQTI1RjkyMEJDNEY5QUUwMi9MemFiUkkwaGNWbHJvc2s4Mi1KWTZ2TXhk WlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x6YWJSSTBoY1Zscm9zazgyLUpZNnZNeGRaUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUE1QS9COEJCNTY4RTY1RTUxMUVCQTI1RjkyMEJDNEY5QUUwMi9MemFiUkkwaGNW bHJvc2s4Mi1KWTZ2TXhkWlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWehn+wOwKBP/dRG6hu6/JTJLsaj3+vZCgIF+JQ5of/u9yvN3to7jy 1tlBxe6Ez7TLd2VrazwCmGps5vurbdJ/6in1DvCMlThBAr8f7/7E2z12b39qgXvJ wafHqGbIjXHjmPsw6v+zCBnHF5qrSkM3Fd+XKxo8NzXgLho1iseXnDYVSZlmTN2p 99hzRlfq0Q0nXWuUKrwJBEHuOauU/nB31ShKyFzyHXms8BhCVWnBrlI9uyA7wu/l e1Uo+1EUsSMdZAxzzdJLG1PR5+xUK3dWCHtgRVyCTrBBlrkqkJ++QR0Dfff2Zj5X GmCAmjh4HlpTvxETPqpp/Zmt/w9zJ1l6 -----END CERTIFICATE-----Generated at Mon Dec 8 06:11:36 2025 by rpki-client