This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.mft File: LT7zlg0opT_PYOmNAXAy6Sjqezk.mft (raw, json) Hash identifier: X4RVtTOjtIz8JhV03kyMuDzxP2hh9tllQUu2CwyMazE= Subject key identifier: 64:E5:C5:F3:3D:AA:D6:C1:5E:84:79:D6:83:39:5E:17:63:57:40:0A Authority key identifier: 2D:3E:F3:96:0D:28:A5:3F:CF:60:E9:8D:01:70:32:E9:28:EA:7B:39 Certificate issuer: /CN=A9167278/serialNumber=2D3EF3960D28A53FCF60E98D017032E928EA7B39 Certificate serial: 0789 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LT7zlg0opT_PYOmNAXAy6Sjqezk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.mft Manifest number: 0782 Signing time: Mon 22 Dec 2025 20:51:40 +0000 Manifest this update: Mon 22 Dec 2025 20:51:40 +0000 Manifest next update: Mon 29 Dec 2025 20:51:40 +0000 Files and hashes: 1: LT7zlg0opT_PYOmNAXAy6Sjqezk.crl (hash: 0QIbQnJIWgYEbYaz7igF1/RrkKdJAiSjpm4OS4jzw8A=) 2: 1C017B163B3811EBB3FC7A77C4F9AE02.roa (hash: if2Ty+xI9lsixRtkfYJ2DrsSLWOZeEaMUkbkKLpKeBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.crl rsync://rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LT7zlg0opT_PYOmNAXAy6Sjqezk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:51:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1929 (0x789) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167278, serialNumber=2D3EF3960D28A53FCF60E98D017032E928EA7B39 Validity Not Before: Dec 22 20:51:40 2025 GMT Not After : Dec 29 20:51:40 2025 GMT Subject: CN=6949af5c-2e57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2f:ed:36:1d:71:e1:10:98:11:e6:54:00:88: 59:38:5a:9e:ff:ad:34:3e:e1:00:73:00:b2:bf:f6: 07:d3:dd:3c:76:77:ec:4d:02:77:70:63:a3:11:35: 20:b9:7e:33:c0:aa:87:36:c5:c6:99:1d:d9:1e:47: f3:a8:dc:c3:17:4d:df:d3:ee:cc:94:67:61:27:68: 56:12:9a:ec:1b:eb:c0:d1:50:73:c4:bc:68:a6:fd: a2:f3:1f:62:84:a1:75:13:2a:b5:89:20:76:7a:66: ef:51:a8:b2:78:ea:cb:d6:b1:d2:88:a6:b8:09:98: cb:af:59:32:5b:5c:ed:fc:f6:b3:30:03:c7:c0:b7: 8a:34:99:ff:f1:82:63:81:d9:b2:f4:63:b3:3d:0e: 3b:c3:d8:20:47:18:c6:d6:38:a8:1e:2b:1c:a9:9c: 91:63:10:8e:19:2b:37:4a:67:67:32:b4:80:7a:2f: 2f:1c:0d:60:eb:54:0f:b3:f7:7b:34:3f:0f:8d:6e: 9f:81:67:0e:6d:67:f7:f6:ac:6c:a8:1f:f1:8d:31: a6:e9:c1:78:09:bb:69:13:29:ed:b8:46:b5:2f:87: 92:d1:2e:ac:1e:90:f9:be:21:5b:5c:aa:ca:37:17: a6:fd:7d:76:6a:c9:2d:ba:e1:cf:ae:d7:06:3c:be: 8c:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:E5:C5:F3:3D:AA:D6:C1:5E:84:79:D6:83:39:5E:17:63:57:40:0A X509v3 Authority Key Identifier: keyid:2D:3E:F3:96:0D:28:A5:3F:CF:60:E9:8D:01:70:32:E9:28:EA:7B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LT7zlg0opT_PYOmNAXAy6Sjqezk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:f2:1c:3e:f9:26:76:bc:25:35:a8:56:58:2f:60:6d:ea:a3: 46:59:36:23:31:a3:2a:ef:9b:12:f6:15:4d:a6:2d:53:ae:f9: cd:34:d4:b0:d2:64:12:8f:29:fe:26:1a:df:f4:fb:bb:ff:a1: 0c:16:10:2a:04:e5:40:b1:c6:78:40:f6:1f:42:a5:95:d3:2a: bc:12:cd:32:f2:e5:d5:12:a2:f3:40:40:a4:79:62:57:f9:4b: cc:1c:58:76:3e:d9:41:aa:44:f2:83:97:d8:7d:75:86:7a:ac: 1b:87:7e:74:7c:98:ab:b1:fb:d2:34:fe:a9:ec:6b:92:4a:0d: 3c:25:46:1c:01:94:0c:d8:04:1d:e4:36:9c:9d:ee:7b:64:0a: 34:07:08:3d:2d:6e:45:3e:fa:c5:3d:1b:b8:50:53:05:4c:d7: 1c:9b:0b:1e:67:b2:9d:28:27:2f:38:92:c0:d6:ea:f4:82:b0: 6e:7b:8d:00:05:b8:d4:27:53:4e:0c:9f:83:16:4f:0d:da:bc: 9a:27:de:03:69:18:86:79:5f:e4:c3:0c:d4:f5:df:0e:a8:43: 28:00:57:98:0d:95:fc:bc:50:ad:59:72:04:d4:46:ac:bb:3f: ac:b2:1b:3e:22:41:72:4c:9d:dc:d4:d8:13:ef:de:83:34:65: 02:72:04:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcyNzgxMTAvBgNVBAUTKDJEM0VGMzk2MEQyOEE1M0ZDRjYwRTk4RDAxNzAzMkU5 MjhFQTdCMzkwHhcNMjUxMjIyMjA1MTQwWhcNMjUxMjI5MjA1MTQwWjAYMRYwFAYD VQQDDA02OTQ5YWY1Yy0yZTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyC/tNh1x4RCYEeZUAIhZOFqe/600PuEAcwCyv/YH0908dnfsTQJ3cGOjETUg uX4zwKqHNsXGmR3ZHkfzqNzDF03f0+7MlGdhJ2hWEprsG+vA0VBzxLxopv2i8x9i hKF1Eyq1iSB2embvUaiyeOrL1rHSiKa4CZjLr1kyW1zt/PazMAPHwLeKNJn/8YJj gdmy9GOzPQ47w9ggRxjG1jioHiscqZyRYxCOGSs3SmdnMrSAei8vHA1g61QPs/d7 ND8PjW6fgWcObWf39qxsqB/xjTGm6cF4CbtpEyntuEa1L4eS0S6sHpD5viFbXKrK Nxem/X12asktuuHPrtcGPL6MdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGTlxfM9 qtbBXoR51oM5XhdjV0AKMB8GA1UdIwQYMBaAFC0+85YNKKU/z2DpjQFwMuko6ns5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzI3OC8yQUUwQUQ2MDNC MzcxMUVCQTc1QjRENzdDNEY5QUUwMi9MVDd6bGcwb3BUX1BZT21OQVhBeTZTanFl emsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xUN3psZzBvcFRfUFlPbU5BWEF5NlNqcWV6ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzI3OC8yQUUwQUQ2MDNCMzcxMUVCQTc1QjRENzdDNEY5QUUwMi9MVDd6bGcwb3BU X1BZT21OQVhBeTZTanFlemsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAS8hw++SZ2vCU1qFZYL2Bt6qNGWTYjMaMq75sS9hVNpi1TrvnNNNSw 0mQSjyn+Jhrf9Pu7/6EMFhAqBOVAscZ4QPYfQqWV0yq8Es0y8uXVEqLzQECkeWJX +UvMHFh2PtlBqkTyg5fYfXWGeqwbh350fJirsfvSNP6p7GuSSg08JUYcAZQM2AQd 5Dacne57ZAo0Bwg9LW5FPvrFPRu4UFMFTNccmwseZ7KdKCcvOJLA1ur0grBue40A BbjUJ1NODJ+DFk8N2ryaJ94DaRiGeV/kwwzU9d8OqEMoAFeYDZX8vFCtWXIE1Eas uz+sshs+IkFyTJ3c1NgT796DNGUCcgRk -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:23 2025 by rpki-client