This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft File: tU-K0c7KwTb8r0eS6_0A5o6h02g.mft (raw, json) Hash identifier: +VpzvAMIEY11aXH0Jcefti2LmnOf4eS25/fS3cs0s60= Subject key identifier: 59:56:E7:9D:6F:67:EB:48:93:75:38:5F:B9:5A:E4:E6:9A:4A:76:2F Authority key identifier: B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 Certificate issuer: /CN=A91B7DCB/serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Certificate serial: 8B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft Manifest number: 89 Signing time: Sun 25 Jan 2026 05:43:51 +0000 Manifest this update: Sun 25 Jan 2026 05:43:50 +0000 Manifest next update: Sun 01 Feb 2026 05:43:50 +0000 Files and hashes: 1: tU-K0c7KwTb8r0eS6_0A5o6h02g.crl (hash: hbc0N7OSxfv57hvAlt0lj0ejgR5bM/2szgkgCCYmar8=) 2: D470A60E294511F0B1412377C4F9AE02.roa (hash: dnglupRc0R2zIWcExiSZW53v/ZY4KCjZvNiRoKCjyNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:58:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7DCB, serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Validity Not Before: Jan 25 05:43:50 2026 GMT Not After : Feb 1 05:43:50 2026 GMT Subject: CN=6975ad96-aa93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:6f:e1:fa:fc:9e:10:71:74:65:be:f2:59:19: 6a:ee:7f:6d:a4:6a:8f:bc:f0:b2:81:2d:0b:88:9d: 2b:f2:d3:d3:f3:82:18:98:f9:2a:93:bb:7a:ac:20: 73:4e:f4:2d:a4:f4:44:cc:d2:d2:8e:1f:24:f8:83: 13:f2:1b:48:60:87:a9:86:09:38:d3:53:97:65:76: 79:d4:ae:5a:80:5a:14:9d:ab:51:23:78:40:a7:96: c1:f9:48:10:36:86:f3:37:19:0b:1c:21:20:82:87: 41:91:5f:56:3c:99:71:06:1a:92:e1:bb:a2:dc:f1: b1:52:7d:8c:6d:2e:cc:ef:bd:df:ae:18:65:13:6a: 41:98:54:44:dd:d9:1a:bf:d9:9e:92:7d:09:99:f7: 38:b3:59:52:77:3d:34:9b:82:b7:1a:9b:fe:31:6b: 4d:cb:aa:43:a7:30:43:58:d0:ba:aa:40:cc:3f:e1: 1b:e2:15:02:c7:25:06:5c:91:bf:39:f2:6e:f9:4b: 53:00:2c:44:69:97:03:5d:55:d3:eb:c3:b7:64:00: bf:06:41:f5:2d:a1:8c:ab:ec:d3:47:62:6b:e9:16: 95:c3:99:64:31:c5:3a:80:38:70:bb:cc:c5:3b:d3: 3b:c7:77:eb:2d:15:47:6e:f6:81:5f:d0:12:48:32: 4b:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:56:E7:9D:6F:67:EB:48:93:75:38:5F:B9:5A:E4:E6:9A:4A:76:2F X509v3 Authority Key Identifier: keyid:B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:f2:b9:fb:ad:49:0f:f3:fa:bc:55:01:25:65:a9:1d:9c:12: e5:55:c1:32:fc:37:ce:26:6c:a0:b0:b1:a1:d8:8a:c6:80:84: 9a:22:44:03:3e:f6:20:42:9c:8a:27:76:1f:92:d4:38:17:fa: c3:ca:04:a6:e2:ab:03:f0:b0:2a:ea:3f:95:99:03:41:78:e0: 5b:a6:10:81:1b:9e:f0:53:f8:99:1a:a3:c2:09:91:39:87:f1: 90:80:04:0b:51:48:7a:8f:48:e6:b8:47:04:2d:3c:0c:fb:ca: 6c:51:73:db:24:6a:36:72:67:03:55:38:1c:63:d9:29:df:6c: c8:81:5f:34:d7:d9:e1:5c:83:bb:ce:a6:05:76:1c:31:56:80: dc:e4:c0:27:fb:36:16:ff:31:92:ab:26:17:eb:ec:c0:33:3b: 6a:fa:ac:b2:8d:54:43:cf:f5:db:fc:a9:ed:fb:f4:51:e9:00: c2:f0:90:ad:51:e6:fe:f0:f8:6c:98:76:c5:2e:40:a0:53:04: e4:fc:da:e2:7e:a4:96:71:d1:8e:99:ca:35:41:e1:5a:60:b6: e9:30:80:18:90:07:ef:d3:fa:17:bd:35:90:57:93:dd:be:9c: 1e:e8:d5:23:8a:95:41:69:e2:ae:b1:0c:79:58:b4:51:9b:f9: df:63:03:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QjdEQ0IxMTAvBgNVBAUTKEI1NEY4QUQxQ0VDQUMxMzZGQ0FGNDc5MkVCRkQwMEU2 OEVBMUQzNjgwHhcNMjYwMTI1MDU0MzUwWhcNMjYwMjAxMDU0MzUwWjAYMRYwFAYD VQQDDA02OTc1YWQ5Ni1hYTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqm/h+vyeEHF0Zb7yWRlq7n9tpGqPvPCygS0LiJ0r8tPT84IYmPkqk7t6rCBz TvQtpPREzNLSjh8k+IMT8htIYIephgk401OXZXZ51K5agFoUnatRI3hAp5bB+UgQ NobzNxkLHCEggodBkV9WPJlxBhqS4bui3PGxUn2MbS7M773frhhlE2pBmFRE3dka v9mekn0Jmfc4s1lSdz00m4K3Gpv+MWtNy6pDpzBDWNC6qkDMP+Eb4hUCxyUGXJG/ OfJu+UtTACxEaZcDXVXT68O3ZAC/BkH1LaGMq+zTR2Jr6RaVw5lkMcU6gDhwu8zF O9M7x3frLRVHbvaBX9ASSDJLFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFlW551v Z+tIk3U4X7la5OaaSnYvMB8GA1UdIwQYMBaAFLVPitHOysE2/K9Hkuv9AOaOodNo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0RDQi9GODNBQzQ5NDI5 NDQxMUYwQUUxQUJDNzRDNEY5QUUwMi90VS1LMGM3S3dUYjhyMGVTNl8wQTVvNmgw MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RVLUswYzdLd1RiOHIwZVM2XzBBNW82aDAyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0RDQi9GODNBQzQ5NDI5NDQxMUYwQUUxQUJDNzRDNEY5QUUwMi90VS1LMGM3S3dU YjhyMGVTNl8wQTVvNmgwMmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA98rn7rUkP8/q8VQElZakdnBLlVcEy/DfOJmygsLGh2IrGgISaIkQD PvYgQpyKJ3YfktQ4F/rDygSm4qsD8LAq6j+VmQNBeOBbphCBG57wU/iZGqPCCZE5 h/GQgAQLUUh6j0jmuEcELTwM+8psUXPbJGo2cmcDVTgcY9kp32zIgV8019nhXIO7 zqYFdhwxVoDc5MAn+zYW/zGSqyYX6+zAMztq+qyyjVRDz/Xb/Knt+/RR6QDC8JCt Ueb+8PhsmHbFLkCgUwTk/NrifqSWcdGOmco1QeFaYLbpMIAYkAfv0/oXvTWQV5Pd vpwe6NUjipVBaeKusQx5WLRRm/nfYwMD -----END CERTIFICATE-----Generated at Sun Jan 25 08:58:07 2026 by rpki-client