This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft File: LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft (raw, json) Hash identifier: j2bJaEvqz4Nq5IlY0VORjfcrmCeFh2RJxouozqpcjs4= Subject key identifier: 5A:F0:3E:51:EA:73:C4:66:1F:A2:8A:59:29:B8:84:5A:E4:78:24:02 Authority key identifier: 2D:BC:46:5D:A6:81:B5:B3:11:89:7A:B6:C4:68:C2:54:70:6E:5D:2F Certificate issuer: /CN=A9153D75/serialNumber=2DBC465DA681B5B311897AB6C468C254706E5D2F Certificate serial: 0258 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft Manifest number: 0254 Signing time: Sun 25 Jan 2026 00:56:46 +0000 Manifest this update: Sun 25 Jan 2026 00:56:46 +0000 Manifest next update: Sun 01 Feb 2026 00:56:46 +0000 Files and hashes: 1: LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl (hash: ZpUtq17mPCavQdXYTeopmKBXy8x+yCg08lOVvTIMIog=) 2: 552D155464A711ED99D40117C4F9AE02.roa (hash: 23rCyoR4WnNChFU7ymH391h0HiIrF4JQy1l5v2pbquM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 00:56:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 600 (0x258) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153D75, serialNumber=2DBC465DA681B5B311897AB6C468C254706E5D2F Validity Not Before: Jan 25 00:56:46 2026 GMT Not After : Feb 1 00:56:46 2026 GMT Subject: CN=69756a4e-3213 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:2b:35:99:d9:ad:49:15:0d:23:74:7a:9a:01: 6a:89:8f:aa:87:bf:1f:56:17:e1:2f:04:ab:04:36: 7f:0d:52:f5:3d:9b:59:52:c4:09:8f:bc:57:70:18: 14:02:60:6f:6e:a4:24:7e:35:80:0d:c3:38:6a:7b: d4:9c:69:8e:11:99:cd:2b:ae:10:1c:65:32:ca:8e: 53:c4:0d:1c:2e:0d:55:a9:79:43:e5:bc:6b:e4:2e: 50:5b:f2:d0:24:47:2d:fc:ff:30:4f:39:f9:f7:aa: aa:8d:09:6b:c0:02:f1:96:87:42:47:ee:a9:77:8a: 0a:82:73:09:fa:2d:39:3a:66:a9:4a:9f:a0:91:b6: f2:10:45:35:76:22:da:e8:e7:67:bd:43:d7:03:d5: a1:c4:c9:9e:cb:fa:6d:84:43:55:9a:cb:fc:f1:d8: 31:23:20:ae:82:35:c1:12:3d:2a:b3:1a:e4:46:de: ee:3a:07:83:79:56:96:50:df:1e:b4:e4:a9:34:2b: 81:af:ff:28:6d:b6:2f:82:a2:7f:64:4f:69:fd:23: 6e:b0:96:49:ad:be:73:cb:55:29:16:85:8f:eb:b9: b6:51:e7:bf:ef:12:78:9e:2d:3f:11:22:19:cc:2a: cf:d8:7f:e3:7a:1e:41:fb:2f:e9:40:e5:aa:6b:26: 26:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:F0:3E:51:EA:73:C4:66:1F:A2:8A:59:29:B8:84:5A:E4:78:24:02 X509v3 Authority Key Identifier: keyid:2D:BC:46:5D:A6:81:B5:B3:11:89:7A:B6:C4:68:C2:54:70:6E:5D:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:31:9a:0d:99:09:0b:69:39:c9:42:25:23:01:e8:f7:b9:ca: c5:c7:6f:79:8d:d8:ea:27:6c:51:47:bb:b1:69:ff:65:ba:52: ef:5c:a2:81:dc:c7:85:cf:ae:2a:fd:d5:f7:b8:09:26:6d:29: 86:83:46:4d:16:e8:b6:97:eb:8f:da:59:60:58:31:68:6e:eb: 5d:90:31:ab:bd:57:19:30:72:b1:f4:48:9a:65:7e:8f:30:7b: 8f:bf:38:a7:06:07:57:3c:1f:50:89:a3:a3:08:fc:8c:36:55: 2e:31:45:b0:24:af:0f:46:9b:a6:54:81:7a:30:98:5a:26:3c: 95:e8:79:80:c5:cd:6d:02:46:fe:01:a5:91:b3:70:1a:8d:de: e0:5d:d4:da:5a:85:4c:2d:4f:83:9c:84:7e:d1:15:10:dc:7b: 0e:f2:a1:b8:a1:57:0b:81:87:ee:b0:27:c1:c0:25:29:09:b8: d6:03:6b:2e:d4:09:ce:4b:59:77:18:01:8b:90:9c:85:d7:15: 5d:e0:41:e2:30:fe:cf:c1:23:0d:92:30:41:1a:bd:58:ec:df: 38:d0:1a:a0:16:17:bb:86:9b:94:87:5b:ee:b3:b5:bd:ed:49: f9:15:a7:f4:d6:e6:c2:e9:5b:41:33:50:69:72:eb:9b:db:20: dd:a5:68:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNENzUxMTAvBgNVBAUTKDJEQkM0NjVEQTY4MUI1QjMxMTg5N0FCNkM0NjhDMjU0 NzA2RTVEMkYwHhcNMjYwMTI1MDA1NjQ2WhcNMjYwMjAxMDA1NjQ2WjAYMRYwFAYD VQQDDA02OTc1NmE0ZS0zMjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlSs1mdmtSRUNI3R6mgFqiY+qh78fVhfhLwSrBDZ/DVL1PZtZUsQJj7xXcBgU AmBvbqQkfjWADcM4anvUnGmOEZnNK64QHGUyyo5TxA0cLg1VqXlD5bxr5C5QW/LQ JEct/P8wTzn596qqjQlrwALxlodCR+6pd4oKgnMJ+i05OmapSp+gkbbyEEU1diLa 6OdnvUPXA9WhxMmey/pthENVmsv88dgxIyCugjXBEj0qsxrkRt7uOgeDeVaWUN8e tOSpNCuBr/8obbYvgqJ/ZE9p/SNusJZJrb5zy1UpFoWP67m2Uee/7xJ4ni0/ESIZ zCrP2H/jeh5B+y/pQOWqayYmdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFrwPlHq c8RmH6KKWSm4hFrkeCQCMB8GA1UdIwQYMBaAFC28Rl2mgbWzEYl6tsRowlRwbl0v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0Q3NS81MkRFNEM0QTY0 QTMxMUVEODIyMDI0MTJDNEY5QUUwMi9MYnhHWGFhQnRiTVJpWHEyeEdqQ1ZIQnVY UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xieEdYYWFCdGJNUmlYcTJ4R2pDVkhCdVhTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0Q3NS81MkRFNEM0QTY0QTMxMUVEODIyMDI0MTJDNEY5QUUwMi9MYnhHWGFhQnRi TVJpWHEyeEdqQ1ZIQnVYUzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNMZoNmQkLaTnJQiUjAej3ucrFx295jdjqJ2xRR7uxaf9lulLvXKKB 3MeFz64q/dX3uAkmbSmGg0ZNFui2l+uP2llgWDFobutdkDGrvVcZMHKx9EiaZX6P MHuPvzinBgdXPB9QiaOjCPyMNlUuMUWwJK8PRpumVIF6MJhaJjyV6HmAxc1tAkb+ AaWRs3Aajd7gXdTaWoVMLU+DnIR+0RUQ3HsO8qG4oVcLgYfusCfBwCUpCbjWA2su 1AnOS1l3GAGLkJyF1xVd4EHiMP7PwSMNkjBBGr1Y7N840BqgFhe7hpuUh1vus7W9 7Un5Faf01ubC6VtBM1Bpcuub2yDdpWjS -----END CERTIFICATE-----Generated at Sun Jan 25 06:19:53 2026 by rpki-client