This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft File: US2b3oE8t7x3GQqE-bGNuOtOIl8.mft (raw, json) Hash identifier: 7PVx8YpAPcgwXwjFmanAQ2VqijFmUOdLRQcTQ1vxjXk= Subject key identifier: BF:43:EE:5D:94:15:BF:68:AA:41:00:64:42:E0:46:86:78:3A:B6:6C Authority key identifier: 51:2D:9B:DE:81:3C:B7:BC:77:19:0A:84:F9:B1:8D:B8:EB:4E:22:5F Certificate issuer: /CN=A91C956C/serialNumber=512D9BDE813CB7BC77190A84F9B18DB8EB4E225F Certificate serial: 0580 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft Manifest number: 0570 Signing time: Sat 06 Dec 2025 22:09:37 +0000 Manifest this update: Sat 06 Dec 2025 22:09:36 +0000 Manifest next update: Sat 13 Dec 2025 22:09:36 +0000 Files and hashes: 1: US2b3oE8t7x3GQqE-bGNuOtOIl8.crl (hash: eQFbUs2Y8tl0dId1VD0SI2DGxdgDv/ckXybW4zIZXdo=) 2: 2F3F56C42BB411EF8D887F3AC4F9AE02.roa (hash: +Mi7BZoKW+xr25lpsKkabZrOyuilHhAO129Cyy+dlGI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.crl rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:31:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1408 (0x580) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C956C, serialNumber=512D9BDE813CB7BC77190A84F9B18DB8EB4E225F Validity Not Before: Dec 6 22:09:36 2025 GMT Not After : Dec 13 22:09:36 2025 GMT Subject: CN=6934a9a1-bc84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:28:2a:4c:57:9e:7c:03:9e:36:ba:9b:65:05: 7c:f8:6f:3a:59:2a:b0:66:e3:ca:b2:b1:f9:41:55: 8f:1b:4e:27:d9:c1:5a:04:6c:4d:94:7b:48:9b:b5: ee:aa:b2:29:85:c6:e8:eb:66:18:aa:80:a6:11:6c: 62:34:dd:27:83:30:d4:7c:85:10:70:6c:42:e5:97: af:22:ef:1f:40:39:59:dc:5b:1f:52:05:fd:27:aa: 91:0d:31:44:0f:09:c3:b5:38:be:c6:31:a8:59:1b: 60:22:40:44:a3:93:10:ff:59:1e:77:c2:2f:d7:8d: 6b:da:6a:61:9a:bc:29:49:e8:2c:6a:87:9e:48:6e: 67:cc:77:e5:fc:5f:71:f2:03:5a:e5:d9:10:95:f8: 92:74:ca:37:d9:5e:aa:3e:e2:c5:b9:48:be:eb:bb: 58:fe:c3:bf:4d:c4:b8:64:a0:2e:cc:86:cc:02:a0: 3d:7b:98:bf:dc:64:7c:29:7a:ff:03:6d:12:c2:cf: 7b:6e:f9:6c:b3:68:23:f2:05:66:96:c8:b8:aa:aa: 15:00:c1:dc:17:6f:62:8f:d6:16:1c:32:ed:16:8f: d0:2b:ea:9f:a2:71:b4:a7:92:30:1d:fa:12:a0:ae: 0f:6a:9b:9c:a9:3d:dc:6e:c8:98:d0:85:7f:4e:47: 0e:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:43:EE:5D:94:15:BF:68:AA:41:00:64:42:E0:46:86:78:3A:B6:6C X509v3 Authority Key Identifier: keyid:51:2D:9B:DE:81:3C:B7:BC:77:19:0A:84:F9:B1:8D:B8:EB:4E:22:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:a6:b0:b1:cf:95:14:92:f6:66:93:c6:c4:0e:07:be:ad:83: 6e:a3:72:fd:47:f6:c5:7f:e0:ee:2f:ab:e4:f5:16:c4:f4:d5: 01:06:0e:c2:c9:4c:dd:82:b1:b5:19:70:2a:b1:34:1d:e2:03: 44:13:04:31:f8:99:2c:0a:74:f2:f7:e8:ba:1b:be:b6:47:a1: 2d:b3:a5:d5:4b:e3:f4:34:38:bd:1c:ab:c5:f2:7e:71:a8:b4: e8:79:40:35:66:12:e7:26:b3:07:e0:68:61:22:61:b2:de:c3: 21:fc:f0:f5:d6:12:eb:ae:20:da:0b:42:82:03:5b:e7:45:b2: 84:37:d8:91:51:20:b5:e3:59:7b:1b:38:3b:43:6b:45:a1:47: ed:75:6a:51:2a:ae:12:4c:2a:ba:0c:bd:ea:44:1f:aa:23:a1: a6:8c:4d:08:85:86:70:05:32:b7:98:53:55:38:11:9e:3e:01: ae:ec:13:78:11:34:8b:2e:f2:55:6c:36:fe:32:88:b6:04:dc: 5b:ce:1b:1c:30:4f:33:05:0a:3e:12:f3:ea:fc:fe:db:38:a9: 57:00:08:39:21:0e:b9:1d:da:b3:3f:db:f0:b5:bd:7e:9e:62: 6c:30:c4:25:89:3b:e4:24:3b:05:08:f4:0d:73:c0:a7:2e:70: 7a:a8:2a:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1NkMxMTAvBgNVBAUTKDUxMkQ5QkRFODEzQ0I3QkM3NzE5MEE4NEY5QjE4REI4 RUI0RTIyNUYwHhcNMjUxMjA2MjIwOTM2WhcNMjUxMjEzMjIwOTM2WjAYMRYwFAYD VQQDEw02OTM0YTlhMS1iYzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsigqTFeefAOeNrqbZQV8+G86WSqwZuPKsrH5QVWPG04n2cFaBGxNlHtIm7Xu qrIphcbo62YYqoCmEWxiNN0ngzDUfIUQcGxC5ZevIu8fQDlZ3FsfUgX9J6qRDTFE DwnDtTi+xjGoWRtgIkBEo5MQ/1ked8Iv141r2mphmrwpSegsaoeeSG5nzHfl/F9x 8gNa5dkQlfiSdMo32V6qPuLFuUi+67tY/sO/TcS4ZKAuzIbMAqA9e5i/3GR8KXr/ A20Sws97bvlss2gj8gVmlsi4qqoVAMHcF29ij9YWHDLtFo/QK+qfonG0p5IwHfoS oK4PapucqT3cbsiY0IV/TkcO/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL9D7l2U Fb9oqkEAZELgRoZ4OrZsMB8GA1UdIwQYMBaAFFEtm96BPLe8dxkKhPmxjbjrTiJf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTU2Qy9GQjMwNUE1RTBD OEExMUVDQTMxOTFCMENDNEY5QUUwMi9VUzJiM29FOHQ3eDNHUXFFLWJHTnVPdE9J bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTMmIzb0U4dDd4M0dRcUUtYkdOdU90T0lsOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTU2Qy9GQjMwNUE1RTBDOEExMUVDQTMxOTFCMENDNEY5QUUwMi9VUzJiM29FOHQ3 eDNHUXFFLWJHTnVPdE9JbDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFprCxz5UUkvZmk8bEDge+rYNuo3L9R/bFf+DuL6vk9RbE9NUBBg7C yUzdgrG1GXAqsTQd4gNEEwQx+JksCnTy9+i6G762R6Ets6XVS+P0NDi9HKvF8n5x qLToeUA1ZhLnJrMH4GhhImGy3sMh/PD11hLrriDaC0KCA1vnRbKEN9iRUSC141l7 Gzg7Q2tFoUftdWpRKq4STCq6DL3qRB+qI6GmjE0IhYZwBTK3mFNVOBGePgGu7BN4 ETSLLvJVbDb+Moi2BNxbzhscME8zBQo+EvPq/P7bOKlXAAg5IQ65HdqzP9vwtb1+ nmJsMMQliTvkJDsFCPQNc8CnLnB6qCp4 -----END CERTIFICATE-----Generated at Sun Dec 7 01:55:17 2025 by rpki-client