This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft File: LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft (raw, json) Hash identifier: 5UDDHGF/cH6UO1BNkd+/9yALIchnLC6ve0QxqiYVtg4= Subject key identifier: 78:70:53:1E:0E:AC:4A:26:56:1B:BC:3E:BD:AB:67:8B:6B:AC:B8:09 Authority key identifier: 2D:BC:46:5D:A6:81:B5:B3:11:89:7A:B6:C4:68:C2:54:70:6E:5D:2F Certificate issuer: /CN=A9153D75/serialNumber=2DBC465DA681B5B311897AB6C468C254706E5D2F Certificate serial: 023E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft Manifest number: 023A Signing time: Fri 05 Dec 2025 00:11:48 +0000 Manifest this update: Fri 05 Dec 2025 00:11:47 +0000 Manifest next update: Fri 12 Dec 2025 00:11:47 +0000 Files and hashes: 1: LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl (hash: SMdp7x3/ZqJuNA10cJVnGnG3X50y6y/Vw9vFulNYSE0=) 2: 552D155464A711ED99D40117C4F9AE02.roa (hash: 23rCyoR4WnNChFU7ymH391h0HiIrF4JQy1l5v2pbquM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:11:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 574 (0x23e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153D75, serialNumber=2DBC465DA681B5B311897AB6C468C254706E5D2F Validity Not Before: Dec 5 00:11:47 2025 GMT Not After : Dec 12 00:11:47 2025 GMT Subject: CN=69322343-22f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:99:76:93:51:57:5d:2c:f6:f0:db:57:7c:f0: 41:64:96:ad:53:e9:e0:ce:75:fc:33:45:a0:fb:49: 48:da:8a:7b:aa:27:11:16:8f:09:b8:18:89:91:8c: 45:52:19:8d:39:10:a1:86:18:32:cd:5f:b8:75:c9: b2:a6:95:b2:7c:3b:53:c9:f4:92:87:33:6a:c9:a6: 48:a5:a9:23:bd:de:79:c6:5d:f2:b0:a7:34:f3:f3: d8:12:1e:c2:b3:81:78:ec:f5:f3:7d:25:66:86:7f: 0d:28:3a:eb:97:80:31:5f:93:68:25:31:3d:75:d1: 8c:8d:f2:08:a6:dc:42:b5:d0:23:ce:50:d7:5a:4b: 7e:c1:10:2d:9d:00:80:9b:06:93:46:57:8d:12:38: e2:7f:d4:1a:8c:3c:36:16:0e:12:94:54:e6:73:b5: a8:a1:e2:0c:cb:57:4d:5b:ee:3a:33:3c:ce:08:bc: 41:6a:c1:fc:24:34:c3:3e:c0:da:1b:e1:7e:69:b7: 29:e2:99:1e:97:1c:49:74:1b:06:e8:f1:12:1f:b4: 97:a5:50:b0:3b:ba:7c:95:ad:5c:5e:e7:0d:87:4c: 81:c5:62:1a:c9:77:2d:48:e9:46:4b:55:e2:ad:e1: 70:cf:b5:04:d9:d3:37:36:f2:dd:59:df:56:89:88: ab:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:70:53:1E:0E:AC:4A:26:56:1B:BC:3E:BD:AB:67:8B:6B:AC:B8:09 X509v3 Authority Key Identifier: keyid:2D:BC:46:5D:A6:81:B5:B3:11:89:7A:B6:C4:68:C2:54:70:6E:5D:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:c3:eb:81:27:b1:e7:15:10:1c:5e:aa:87:92:98:a5:62:09: 8a:c6:3c:d0:61:0e:0c:4b:17:f0:ea:27:27:45:e6:cc:bd:dc: a1:03:ba:3d:9e:39:c4:b8:18:6f:8a:70:93:8d:b8:20:9d:68: 1f:66:2f:4f:a2:a7:4f:e1:d0:94:36:12:9c:b6:3e:ff:88:c1: 0e:b9:e3:53:16:dd:5e:fc:af:96:a9:8d:c8:3c:c3:28:02:03: 81:80:c3:ef:ae:cf:01:a4:69:f8:93:8c:bd:8f:e1:fd:71:6e: bb:0a:af:57:23:70:ec:f0:1f:0f:a9:13:33:ac:ba:b7:4c:2f: 0c:93:bf:dc:4b:ed:30:23:06:17:a2:55:bc:5b:11:13:77:72: ad:f4:f0:b3:50:22:ef:b1:1d:c6:5f:92:a1:6f:49:45:d0:31: b2:0d:fc:85:96:b7:d3:33:f2:38:51:8d:e6:95:14:bf:0d:6c: 5b:02:ab:58:d5:8a:7d:0c:cd:31:ee:8c:12:ac:db:65:a0:52: b8:88:c4:e8:dd:b0:18:37:62:14:aa:cf:b6:c3:ff:d8:7b:4f: 15:f1:4c:a0:6d:bc:e7:f8:09:64:a6:91:a0:03:4f:3d:bb:87: 51:ec:1e:38:c8:ec:5b:5f:94:0c:4d:a5:59:c9:98:84:78:62: 87:8e:00:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNENzUxMTAvBgNVBAUTKDJEQkM0NjVEQTY4MUI1QjMxMTg5N0FCNkM0NjhDMjU0 NzA2RTVEMkYwHhcNMjUxMjA1MDAxMTQ3WhcNMjUxMjEyMDAxMTQ3WjAYMRYwFAYD VQQDEw02OTMyMjM0My0yMmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZl2k1FXXSz28NtXfPBBZJatU+ngznX8M0Wg+0lI2op7qicRFo8JuBiJkYxF UhmNORChhhgyzV+4dcmyppWyfDtTyfSShzNqyaZIpakjvd55xl3ysKc08/PYEh7C s4F47PXzfSVmhn8NKDrrl4AxX5NoJTE9ddGMjfIIptxCtdAjzlDXWkt+wRAtnQCA mwaTRleNEjjif9QajDw2Fg4SlFTmc7WooeIMy1dNW+46MzzOCLxBasH8JDTDPsDa G+F+abcp4pkelxxJdBsG6PESH7SXpVCwO7p8la1cXucNh0yBxWIayXctSOlGS1Xi reFwz7UE2dM3NvLdWd9WiYiriwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHhwUx4O rEomVhu8Pr2rZ4trrLgJMB8GA1UdIwQYMBaAFC28Rl2mgbWzEYl6tsRowlRwbl0v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0Q3NS81MkRFNEM0QTY0 QTMxMUVEODIyMDI0MTJDNEY5QUUwMi9MYnhHWGFhQnRiTVJpWHEyeEdqQ1ZIQnVY UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xieEdYYWFCdGJNUmlYcTJ4R2pDVkhCdVhTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0Q3NS81MkRFNEM0QTY0QTMxMUVEODIyMDI0MTJDNEY5QUUwMi9MYnhHWGFhQnRi TVJpWHEyeEdqQ1ZIQnVYUzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5w+uBJ7HnFRAcXqqHkpilYgmKxjzQYQ4MSxfw6icnRebMvdyhA7o9 njnEuBhvinCTjbggnWgfZi9PoqdP4dCUNhKctj7/iMEOueNTFt1e/K+WqY3IPMMo AgOBgMPvrs8BpGn4k4y9j+H9cW67Cq9XI3Ds8B8PqRMzrLq3TC8Mk7/cS+0wIwYX olW8WxETd3Kt9PCzUCLvsR3GX5Khb0lF0DGyDfyFlrfTM/I4UY3mlRS/DWxbAqtY 1Yp9DM0x7owSrNtloFK4iMTo3bAYN2IUqs+2w//Ye08V8Uygbbzn+AlkppGgA089 u4dR7B44yOxbX5QMTaVZyZiEeGKHjgCW -----END CERTIFICATE-----Generated at Sat Dec 6 21:08:20 2025 by rpki-client