This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft File: LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft (raw, json) Hash identifier: 9voXPTPIkj1jxfAzD1mAoNNAKOole+su7E+0LcpAq7E= Subject key identifier: 68:46:39:E5:51:49:60:C6:01:ED:EB:42:94:E3:98:59:20:FE:C4:F0 Authority key identifier: 2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B Certificate issuer: /CN=A91ACD72/serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Certificate serial: 05C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft Manifest number: 057C Signing time: Sat 24 Jan 2026 22:41:15 +0000 Manifest this update: Sat 24 Jan 2026 22:41:14 +0000 Manifest next update: Sat 31 Jan 2026 22:41:14 +0000 Files and hashes: 1: LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl (hash: OdPtDX0tipKiKRgEfoZO90X0yAp6INECGLXCFQbl908=) 2: 1CD7BEFC4D0E11EEA09FBF12C4F9AE02.roa (hash: q9NaxFoh7uNUufd619+t7d7AzpZNB0LE/R3Fb4zOy54=) 3: CE988D80FB7311EC97CD7F85C4F9AE02.roa (hash: LU6z1pVOuXrNPzgnwfluQqu2bwjgft7G2Wo6z9gDgOM=) 4: F88F642285E411EEB951413BC4F9AE02.roa (hash: tcqZsfng/M4+baVzoynlhk7W0EaVfrL86TDaCFrmIZM=) 5: 95C12B8E21A111EE8360C139C4F9AE02.roa (hash: g3x52U00oN3V+TWAeqJl5SQhLAa1DPwj8KDGR9UscWQ=) 6: BD4E85B09E6311ECA6EC8071C4F9AE02.roa (hash: CAFve4rvYatsNzehY2RCV8H1unVCAfJuDUiqcO44mlc=) 7: D6C060C27E1811EEB9B4FE4AC4F9AE02.roa (hash: 4UszidGd64DKKax3KpdO17A1MmG7WH0sW9f2Su8r+rc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:41:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1472 (0x5c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD72, serialNumber=2C19175325A5F36C0BB58F92119E65820C8FD57B Validity Not Before: Jan 24 22:41:14 2026 GMT Not After : Jan 31 22:41:14 2026 GMT Subject: CN=69754a8b-931b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:9c:c5:d2:f1:3f:17:9a:a4:d9:bf:20:e2:a3: de:ca:0d:68:f5:1e:4e:95:64:23:0c:5e:82:d1:c5: 97:5e:5d:fd:39:ae:c7:01:6b:76:c7:92:ca:5a:84: d3:fb:11:66:5e:5e:cd:4a:c1:e3:ea:6c:78:e0:44: ec:f1:96:4b:47:2e:84:5c:4c:af:d5:bb:14:0c:03: ba:f8:ff:15:a3:a0:9c:4b:f5:1a:16:b8:cc:84:ea: 20:24:aa:63:bb:cd:8b:14:78:58:db:74:30:40:78: 60:c8:83:e4:76:c7:20:42:3c:84:bc:4d:d9:01:27: e1:26:24:2b:b9:ab:89:27:a1:b6:41:e2:a0:05:13: 56:8e:56:bf:b5:c9:bd:9c:4b:54:f7:80:b4:6e:d5: 55:2f:2d:c8:60:b0:f2:81:52:fa:b8:81:f5:b9:91: 8d:81:94:b5:3c:a9:10:f8:32:9e:25:00:90:be:c6: 03:17:d3:7a:01:f5:a2:8e:9d:b6:6f:fc:b5:1c:6d: 5d:1e:12:38:b4:71:ce:47:e7:74:64:88:85:d8:49: 83:9c:d7:98:43:bc:64:e2:7b:dd:e5:26:13:89:91: 72:b1:b6:1d:06:a4:95:3c:f8:0b:8f:c3:69:22:e7: 42:d8:88:a2:38:88:96:bf:7f:4a:89:94:0d:ca:af: 63:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:46:39:E5:51:49:60:C6:01:ED:EB:42:94:E3:98:59:20:FE:C4:F0 X509v3 Authority Key Identifier: keyid:2C:19:17:53:25:A5:F3:6C:0B:B5:8F:92:11:9E:65:82:0C:8F:D5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBkXUyWl82wLtY-SEZ5lggyP1Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD72/4576A672261211ECB9319942C4F9AE02/LBkXUyWl82wLtY-SEZ5lggyP1Xs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:e2:6a:a0:6b:0e:97:0b:fb:dc:01:03:ab:ad:86:36:96:33: c6:8c:f8:ff:94:d4:76:ec:60:7b:a6:ef:96:b1:b3:d1:8a:b6: 87:46:f0:73:7b:22:57:36:c1:ce:d7:a7:c4:46:9d:f7:71:c1: 16:08:0e:bb:e8:88:59:98:a0:73:ae:48:ed:81:1c:64:27:b0: 62:d2:a4:3f:94:50:bc:32:49:72:61:23:0c:e6:42:0c:de:a0: 3c:9d:2b:cc:8f:a7:35:f5:a5:c0:fd:fc:61:0b:8f:25:af:61: 06:67:e8:5c:37:22:c2:ce:14:48:f1:f6:2e:3e:2d:ee:92:00: dd:6f:77:9b:74:cb:04:e7:f4:41:0c:a2:a2:40:1f:48:d6:aa: a1:09:2d:99:41:5d:fe:58:87:5a:31:ac:57:16:3f:bc:9d:3c: 8b:5b:07:1d:3e:c8:95:a7:03:f1:eb:14:2f:a3:9d:48:64:59: fc:81:83:31:e5:1a:7b:6a:b9:4b:ef:1a:87:66:d2:93:b6:b3: 8d:03:58:60:8b:27:cc:7d:3e:eb:40:86:f7:b5:8d:9d:27:54: 44:a4:b2:65:a9:bc:aa:48:13:7e:79:ea:05:77:27:a2:9a:05: 47:2f:27:c5:52:dd:3f:56:4f:a8:ef:19:c4:05:89:d5:eb:0e: b6:3c:1c:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QUNENzIxMTAvBgNVBAUTKDJDMTkxNzUzMjVBNUYzNkMwQkI1OEY5MjExOUU2NTgy MEM4RkQ1N0IwHhcNMjYwMTI0MjI0MTE0WhcNMjYwMTMxMjI0MTE0WjAYMRYwFAYD VQQDDA02OTc1NGE4Yi05MzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr5zF0vE/F5qk2b8g4qPeyg1o9R5OlWQjDF6C0cWXXl39Oa7HAWt2x5LKWoTT +xFmXl7NSsHj6mx44ETs8ZZLRy6EXEyv1bsUDAO6+P8Vo6CcS/UaFrjMhOogJKpj u82LFHhY23QwQHhgyIPkdscgQjyEvE3ZASfhJiQruauJJ6G2QeKgBRNWjla/tcm9 nEtU94C0btVVLy3IYLDygVL6uIH1uZGNgZS1PKkQ+DKeJQCQvsYDF9N6AfWijp22 b/y1HG1dHhI4tHHOR+d0ZIiF2EmDnNeYQ7xk4nvd5SYTiZFysbYdBqSVPPgLj8Np IudC2IiiOIiWv39KiZQNyq9jpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGhGOeVR SWDGAe3rQpTjmFkg/sTwMB8GA1UdIwQYMBaAFCwZF1MlpfNsC7WPkhGeZYIMj9V7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q3Mi80NTc2QTY3MjI2 MTIxMUVDQjkzMTk5NDJDNEY5QUUwMi9MQmtYVXlXbDgyd0x0WS1TRVo1bGdneVAx WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xCa1hVeVdsODJ3THRZLVNFWjVsZ2d5UDFYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0Q3Mi80NTc2QTY3MjI2MTIxMUVDQjkzMTk5NDJDNEY5QUUwMi9MQmtYVXlXbDgy d0x0WS1TRVo1bGdneVAxWHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBY4mqgaw6XC/vcAQOrrYY2ljPGjPj/lNR27GB7pu+WsbPRiraHRvBz eyJXNsHO16fERp33ccEWCA676IhZmKBzrkjtgRxkJ7Bi0qQ/lFC8MklyYSMM5kIM 3qA8nSvMj6c19aXA/fxhC48lr2EGZ+hcNyLCzhRI8fYuPi3ukgDdb3ebdMsE5/RB DKKiQB9I1qqhCS2ZQV3+WIdaMaxXFj+8nTyLWwcdPsiVpwPx6xQvo51IZFn8gYMx 5Rp7arlL7xqHZtKTtrONA1hgiyfMfT7rQIb3tY2dJ1REpLJlqbyqSBN+eeoFdyei mgVHLyfFUt0/Vk+o7xnEBYnV6w62PBy3 -----END CERTIFICATE-----Generated at Sun Jan 25 04:36:52 2026 by rpki-client