This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft File: LGfSFpazocG8LOSfy-CnpTo306Y.mft (raw, json) Hash identifier: DOURLNpLcr8h5xc4rdL70mwBYMcJOjWyPBG6xUgHEew= Subject key identifier: CF:22:83:30:49:BD:1E:36:0A:70:CB:2B:DE:46:A1:B9:9A:1E:91:72 Authority key identifier: 2C:67:D2:16:96:B3:A1:C1:BC:2C:E4:9F:CB:E0:A7:A5:3A:37:D3:A6 Certificate issuer: /CN=A9168221/serialNumber=2C67D21696B3A1C1BC2CE49FCBE0A7A53A37D3A6 Certificate serial: 4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LGfSFpazocG8LOSfy-CnpTo306Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft Manifest number: 4A Signing time: Fri 05 Dec 2025 05:13:35 +0000 Manifest this update: Fri 05 Dec 2025 05:13:34 +0000 Manifest next update: Fri 12 Dec 2025 05:13:34 +0000 Files and hashes: 1: LGfSFpazocG8LOSfy-CnpTo306Y.crl (hash: VkrSCH8hHs228sanTCp8pR5tk1ql0/SA5omCRKxm5kM=) 2: 6D182934654D11F0B7A2182FC4F9AE02.roa (hash: OJ6IQsjxs7hA2nKx8jaO6surZfcJ7KSw9HkQoBft87Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.crl rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LGfSFpazocG8LOSfy-CnpTo306Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:13:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168221, serialNumber=2C67D21696B3A1C1BC2CE49FCBE0A7A53A37D3A6 Validity Not Before: Dec 5 05:13:34 2025 GMT Not After : Dec 12 05:13:34 2025 GMT Subject: CN=693269ff-6d17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:22:f0:da:2e:75:c1:f9:09:cf:18:1b:0a:c5: 6e:0c:2c:c4:eb:dd:eb:50:bc:a8:0e:d0:7c:42:ec: f4:26:96:2d:08:8f:b2:f7:5b:b8:b5:8d:c7:5e:96: cf:10:81:0a:9e:1f:74:65:53:64:98:ed:2c:b4:ca: 0e:ae:08:4b:04:17:d0:af:0c:30:68:14:8f:c2:bf: 62:8c:75:72:ef:6b:87:13:b2:3d:63:75:be:ac:1d: 08:41:ea:1b:95:32:a2:9b:15:35:df:b6:7a:f3:3f: 35:59:66:7f:a8:5f:80:4c:7e:3d:88:b0:da:4c:b8: 01:cb:dd:31:03:2f:f5:d0:bf:f5:e7:c7:cd:44:4c: ca:20:6b:38:d6:d9:99:5d:d1:b5:60:fb:14:fb:33: f0:6c:cc:55:72:a5:74:11:2a:0e:b3:5b:ac:48:1e: cd:10:10:66:70:56:18:de:72:4c:5e:4b:5a:09:21: 40:33:64:95:30:25:5d:ec:f1:56:bd:fd:75:61:71: 07:6f:6a:68:ff:ca:bf:3d:84:c4:ab:4f:40:a6:a0: e0:82:cb:a3:e7:49:33:46:b0:04:8d:ea:7d:32:47: 05:bf:e6:bc:45:c1:4c:e7:bf:cc:6c:b0:04:0b:93: 36:56:4a:74:73:a4:43:4b:b6:76:67:de:2d:d3:bc: f9:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:22:83:30:49:BD:1E:36:0A:70:CB:2B:DE:46:A1:B9:9A:1E:91:72 X509v3 Authority Key Identifier: keyid:2C:67:D2:16:96:B3:A1:C1:BC:2C:E4:9F:CB:E0:A7:A5:3A:37:D3:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LGfSFpazocG8LOSfy-CnpTo306Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168221/33535CB0654C11F08B39E71CC4F9AE02/LGfSFpazocG8LOSfy-CnpTo306Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:24:ff:09:27:59:e9:48:0e:58:31:51:3d:2f:ff:ae:ee:82: ac:61:56:33:37:39:1b:db:94:70:c2:bf:53:7d:bf:42:8e:86: a2:bb:32:ed:58:e6:7f:f1:8e:f1:10:a4:07:9d:0d:c5:2a:16: bb:18:4d:39:73:a0:ad:13:12:16:f5:0a:ae:e4:b5:66:97:61: 11:64:d2:20:3f:89:13:31:7b:18:9a:69:3e:0b:22:50:63:20: 11:e2:f6:67:63:99:30:11:ac:3a:b8:b2:fc:d9:68:cc:6f:52: 92:0b:54:13:9d:17:5f:ed:4b:0a:1f:32:98:9d:16:a8:38:f1: fe:61:f1:4b:cd:af:b5:f1:67:8c:15:fb:26:90:d5:f0:87:c6: fd:f4:e6:ff:97:ee:72:a4:04:19:37:3e:d1:1f:41:8c:26:86: 61:4f:3b:32:28:50:c4:98:a6:50:4b:ec:04:61:12:cf:34:64: c5:6c:0b:cc:07:c6:82:53:99:07:32:cc:53:74:da:42:39:77: c2:bc:33:6a:fe:aa:ce:73:dd:cd:f3:d7:cb:02:d0:e9:43:d2: 31:c2:be:4b:73:b4:3a:cb:41:8c:09:07:1b:92:ef:09:7e:6f: bd:4d:43:8b:cf:03:1c:a1:b4:00:90:a2:ef:75:2f:bc:ce:c2: 2c:4a:a9:3f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 ODIyMTExMC8GA1UEBRMoMkM2N0QyMTY5NkIzQTFDMUJDMkNFNDlGQ0JFMEE3QTUz QTM3RDNBNjAeFw0yNTEyMDUwNTEzMzRaFw0yNTEyMTIwNTEzMzRaMBgxFjAUBgNV BAMTDTY5MzI2OWZmLTZkMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnIvDaLnXB+QnPGBsKxW4MLMTr3etQvKgO0HxC7PQmli0Ij7L3W7i1jcdels8Q gQqeH3RlU2SY7Sy0yg6uCEsEF9CvDDBoFI/Cv2KMdXLva4cTsj1jdb6sHQhB6huV MqKbFTXftnrzPzVZZn+oX4BMfj2IsNpMuAHL3TEDL/XQv/Xnx81ETMogazjW2Zld 0bVg+xT7M/BszFVypXQRKg6zW6xIHs0QEGZwVhjeckxeS1oJIUAzZJUwJV3s8Va9 /XVhcQdvamj/yr89hMSrT0CmoOCCy6PnSTNGsASN6n0yRwW/5rxFwUznv8xssAQL kzZWSnRzpENLtnZn3i3TvPkTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzyKDMEm9 HjYKcMsr3kahuZoekXIwHwYDVR0jBBgwFoAULGfSFpazocG8LOSfy+CnpTo306Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY4MjIxLzMzNTM1Q0IwNjU0 QzExRjA4QjM5RTcxQ0M0RjlBRTAyL0xHZlNGcGF6b2NHOExPU2Z5LUNucFRvMzA2 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTEdmU0ZwYXpvY0c4TE9TZnktQ25wVG8zMDZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY4 MjIxLzMzNTM1Q0IwNjU0QzExRjA4QjM5RTcxQ0M0RjlBRTAyL0xHZlNGcGF6b2NH OExPU2Z5LUNucFRvMzA2WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGgk/wknWelIDlgxUT0v/67ugqxhVjM3ORvblHDCv1N9v0KOhqK7Mu1Y 5n/xjvEQpAedDcUqFrsYTTlzoK0TEhb1Cq7ktWaXYRFk0iA/iRMxexiaaT4LIlBj IBHi9mdjmTARrDq4svzZaMxvUpILVBOdF1/tSwofMpidFqg48f5h8UvNr7XxZ4wV +yaQ1fCHxv305v+X7nKkBBk3PtEfQYwmhmFPOzIoUMSYplBL7ARhEs80ZMVsC8wH xoJTmQcyzFN02kI5d8K8M2r+qs5z3c3z18sC0OlD0jHCvktztDrLQYwJBxuS7wl+ b71NQ4vPAxyhtACQou91L7zOwixKqT8= -----END CERTIFICATE-----Generated at Sun Dec 7 03:32:23 2025 by rpki-client