This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.mft File: LgN_IhyajV_cyIxDyosl1ENrsDk.mft (raw, json) Hash identifier: kmKgWHEkFrtowBbE85+G2oqnc5cbpFADh/GHAzi2a0o= Subject key identifier: A4:23:62:C1:FA:B5:D2:3B:E0:F3:21:FD:EF:3A:B2:D2:2B:22:74:6F Authority key identifier: 2E:03:7F:22:1C:9A:8D:5F:DC:C8:8C:43:CA:8B:25:D4:43:6B:B0:39 Certificate issuer: /CN=A9196285/serialNumber=2E037F221C9A8D5FDCC88C43CA8B25D4436BB039 Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgN_IhyajV_cyIxDyosl1ENrsDk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.mft Manifest number: 88 Signing time: Fri 05 Dec 2025 04:33:53 +0000 Manifest this update: Fri 05 Dec 2025 04:33:52 +0000 Manifest next update: Fri 12 Dec 2025 04:33:52 +0000 Files and hashes: 1: LgN_IhyajV_cyIxDyosl1ENrsDk.crl (hash: /VGMdmM4xH8T0hpL/TbxvBC+k5dvXOj7sPMm6QwpSUk=) 2: D3E69766027B11F0ACFB0B53C4F9AE02.roa (hash: rAyLEuhdwnMPn+ymXVwfBwimmdxQ/627KOj67XHuGHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.crl rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgN_IhyajV_cyIxDyosl1ENrsDk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:33:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196285, serialNumber=2E037F221C9A8D5FDCC88C43CA8B25D4436BB039 Validity Not Before: Dec 5 04:33:52 2025 GMT Not After : Dec 12 04:33:52 2025 GMT Subject: CN=693260b1-6270 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:a1:14:a6:ec:04:8c:77:e9:55:d3:c1:b3:9b: c1:50:68:9f:5b:5f:ed:ba:ca:a0:03:01:f3:9a:5d: 2c:8e:0a:28:2f:98:8d:38:47:f8:b0:80:12:99:fa: d1:5d:5b:e9:51:36:1b:d7:50:0f:18:ed:77:14:65: 4f:d7:dd:b1:27:11:c8:b8:c2:1a:18:8d:b6:f7:f4: 76:17:3a:9b:36:66:11:5f:d9:5b:03:0b:90:ae:c2: 8c:90:d8:ce:ec:d3:90:a2:89:1b:a9:7c:8d:43:07: 9d:05:f4:30:cf:b7:e2:39:d7:ea:33:24:25:d8:10: 94:cc:3b:21:50:45:e4:41:d9:cc:f7:89:ea:cf:1e: fd:77:e7:fd:56:5f:5d:20:7a:88:b5:3e:7f:41:ab: 08:bb:a2:a0:ae:60:41:4f:f9:65:a0:d7:54:72:cd: fb:d0:d5:51:6a:a5:24:07:9b:d3:a7:a9:a7:f1:a6: bd:a4:db:d1:5e:38:37:e5:8e:d9:eb:18:d5:6e:23: ab:b5:2a:04:a3:d3:fe:1d:ec:4a:1d:99:8b:f7:a7: c6:ea:93:63:f4:19:5c:3f:ec:6a:e0:35:c6:42:0a: f5:38:d8:a2:19:05:f0:8c:99:2e:89:75:5f:a4:f2: 26:47:4b:44:cc:b0:f1:d3:92:aa:bc:0a:7a:dc:87: 81:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:23:62:C1:FA:B5:D2:3B:E0:F3:21:FD:EF:3A:B2:D2:2B:22:74:6F X509v3 Authority Key Identifier: keyid:2E:03:7F:22:1C:9A:8D:5F:DC:C8:8C:43:CA:8B:25:D4:43:6B:B0:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgN_IhyajV_cyIxDyosl1ENrsDk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:d0:a4:54:a3:17:d8:eb:2c:65:be:3e:f4:34:ad:8e:8e:89: 49:be:de:7a:1a:00:83:88:41:3e:eb:42:27:9b:8b:20:16:e0: c8:a0:56:41:42:9c:a1:18:68:ef:82:54:29:df:ef:b6:22:cb: e1:53:c7:ca:6b:43:16:3c:75:1a:69:38:0a:e5:7a:bf:fb:e4: af:f5:36:2a:a5:ba:b2:a5:5b:48:1c:3a:1b:ff:80:78:2f:fc: 83:d4:8d:39:18:c6:73:44:9c:5f:7f:8b:11:c1:0f:3f:92:a9: 10:86:c5:94:dd:07:11:65:4b:cf:0b:3d:1a:14:ae:fa:aa:e8: b4:34:00:2f:6b:9c:4d:c2:93:b3:e9:95:40:27:bb:28:8e:07: d2:84:b1:23:8f:88:99:17:f9:73:71:af:1d:b9:87:6e:e3:3b: 6a:2a:bb:24:7f:21:a4:c4:cf:de:21:4e:25:33:86:28:d2:00: a8:ab:26:3f:bd:97:b6:43:f6:35:76:e3:22:fe:57:58:b0:3d: e0:b1:d8:56:ff:90:14:81:b5:a9:c0:45:8a:8c:f8:ff:5e:d4: f2:0f:c1:c6:f5:ec:24:4f:60:bc:3b:e8:6a:eb:a9:4d:f1:14: dd:42:62:5b:c3:aa:7a:d7:8c:4d:c7:ba:b8:a1:06:27:bb:db: 89:b0:f2:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYyODUxMTAvBgNVBAUTKDJFMDM3RjIyMUM5QThENUZEQ0M4OEM0M0NBOEIyNUQ0 NDM2QkIwMzkwHhcNMjUxMjA1MDQzMzUyWhcNMjUxMjEyMDQzMzUyWjAYMRYwFAYD VQQDEw02OTMyNjBiMS02MjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6aEUpuwEjHfpVdPBs5vBUGifW1/tusqgAwHzml0sjgooL5iNOEf4sIASmfrR XVvpUTYb11APGO13FGVP192xJxHIuMIaGI229/R2FzqbNmYRX9lbAwuQrsKMkNjO 7NOQookbqXyNQwedBfQwz7fiOdfqMyQl2BCUzDshUEXkQdnM94nqzx79d+f9Vl9d IHqItT5/QasIu6KgrmBBT/lloNdUcs370NVRaqUkB5vTp6mn8aa9pNvRXjg35Y7Z 6xjVbiOrtSoEo9P+HexKHZmL96fG6pNj9BlcP+xq4DXGQgr1ONiiGQXwjJkuiXVf pPImR0tEzLDx05KqvAp63IeB8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKQjYsH6 tdI74PMh/e86stIrInRvMB8GA1UdIwQYMBaAFC4DfyIcmo1f3MiMQ8qLJdRDa7A5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjI4NS84QzI1OEIxMjAy N0IxMUYwQTk0NkVEMzRDNEY5QUUwMi9MZ05fSWh5YWpWX2N5SXhEeW9zbDFFTnJz RGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xnTl9JaHlhalZfY3lJeER5b3NsMUVOcnNEay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjI4NS84QzI1OEIxMjAyN0IxMUYwQTk0NkVEMzRDNEY5QUUwMi9MZ05fSWh5YWpW X2N5SXhEeW9zbDFFTnJzRGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCN0KRUoxfY6yxlvj70NK2OjolJvt56GgCDiEE+60Inm4sgFuDIoFZB QpyhGGjvglQp3++2IsvhU8fKa0MWPHUaaTgK5Xq/++Sv9TYqpbqypVtIHDob/4B4 L/yD1I05GMZzRJxff4sRwQ8/kqkQhsWU3QcRZUvPCz0aFK76qui0NAAva5xNwpOz 6ZVAJ7sojgfShLEjj4iZF/lzca8duYdu4ztqKrskfyGkxM/eIU4lM4Yo0gCoqyY/ vZe2Q/Y1duMi/ldYsD3gsdhW/5AUgbWpwEWKjPj/XtTyD8HG9ewkT2C8O+hq66lN 8RTdQmJbw6p614xNx7q4oQYnu9uJsPKD -----END CERTIFICATE-----Generated at Sat Dec 6 18:34:07 2025 by rpki-client