This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft File: US2b3oE8t7x3GQqE-bGNuOtOIl8.mft (raw, json) Hash identifier: 67KDQgtD+rqDMOff6/E11LZbFN65WGA8hk4TP+NZ5lM= Subject key identifier: 8F:2A:67:13:95:85:C0:EA:8E:97:01:AD:35:ED:1E:4E:57:E6:24:75 Authority key identifier: 51:2D:9B:DE:81:3C:B7:BC:77:19:0A:84:F9:B1:8D:B8:EB:4E:22:5F Certificate issuer: /CN=A91C956C/serialNumber=512D9BDE813CB7BC77190A84F9B18DB8EB4E225F Certificate serial: 0599 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft Manifest number: 0589 Signing time: Sat 24 Jan 2026 22:32:11 +0000 Manifest this update: Sat 24 Jan 2026 22:32:10 +0000 Manifest next update: Sat 31 Jan 2026 22:32:10 +0000 Files and hashes: 1: US2b3oE8t7x3GQqE-bGNuOtOIl8.crl (hash: xpMMrqWqWyHWwkINHJ4jM1POmId1ilfvkwdJXJGoFpI=) 2: 2F3F56C42BB411EF8D887F3AC4F9AE02.roa (hash: +Mi7BZoKW+xr25lpsKkabZrOyuilHhAO129Cyy+dlGI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.crl rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 22:32:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1433 (0x599) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C956C, serialNumber=512D9BDE813CB7BC77190A84F9B18DB8EB4E225F Validity Not Before: Jan 24 22:32:10 2026 GMT Not After : Jan 31 22:32:10 2026 GMT Subject: CN=6975486a-e04d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:b8:a5:37:09:00:8e:33:18:fa:7d:cb:34:3e: 72:b4:6e:a3:84:a8:37:e6:e6:60:8c:b9:bb:c1:1b: 30:06:c4:a7:66:95:16:fe:a4:38:c7:a4:aa:f7:2e: 53:00:4e:bc:82:a5:24:58:ec:ae:ae:ea:59:dd:90: 60:9e:14:6e:cb:67:02:f4:7d:23:91:ae:a1:d6:bd: 23:86:1b:39:8b:e4:7b:95:07:12:bb:15:42:34:8d: 2f:2b:49:52:45:8f:59:67:07:b5:61:c0:2a:45:2d: 8e:e4:9d:2f:01:54:35:7f:2e:1c:da:ee:7d:12:bf: 92:6a:38:e3:11:67:6f:02:22:e0:19:4b:0e:e8:49: c2:44:f4:94:e7:07:0e:0d:c8:48:3e:01:a9:08:a3: 8d:50:00:04:9b:64:a7:0c:b3:6a:9e:c9:ef:cf:34: 7a:e8:40:38:c0:31:73:ef:11:10:00:5e:5a:4f:82: 80:07:68:a5:85:dd:3d:20:74:ce:0b:e2:01:d1:3e: 8f:bf:77:6c:cf:58:bf:d9:6f:45:62:ba:f5:8b:c9: 62:dc:8a:75:ac:c2:ca:c8:fb:ea:14:f3:87:bc:a1: ad:31:7d:96:14:23:c4:17:82:20:bb:85:b6:95:7b: 2b:b3:f4:5e:11:e5:c2:7e:ee:d0:c7:c9:f5:2c:8f: 1e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:2A:67:13:95:85:C0:EA:8E:97:01:AD:35:ED:1E:4E:57:E6:24:75 X509v3 Authority Key Identifier: keyid:51:2D:9B:DE:81:3C:B7:BC:77:19:0A:84:F9:B1:8D:B8:EB:4E:22:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:47:40:23:25:93:ba:27:32:be:5e:1b:f3:3a:58:44:d8:fe: dd:9c:5f:48:c5:aa:48:43:c5:4f:55:c4:e5:3d:75:3e:ca:00: 27:9a:8a:df:a8:0d:00:77:7a:7a:ee:cc:5d:7a:2b:d6:dc:0c: 61:12:df:ac:86:5a:9d:5a:48:4c:da:85:19:3c:fb:08:b1:25: f6:b9:33:83:a6:e4:a6:0a:52:28:44:08:d8:a9:31:6f:e2:55: af:c6:8c:03:ad:4c:55:53:13:3d:74:b0:61:5c:00:e3:3a:a7: 5d:c2:32:79:28:0f:c0:21:42:98:e1:02:74:a4:b8:09:4c:af: 51:77:4d:6c:e7:e5:8d:4f:83:3b:32:cc:a7:3b:e8:25:73:22: c9:84:b7:5b:8b:87:1d:77:fb:2a:e0:b0:6e:97:d0:16:0d:05: 9f:9b:bf:ab:de:8e:36:76:41:9c:ab:12:56:71:c2:1e:05:f9: da:5b:e7:9c:87:f5:4d:e9:7f:3c:f1:8b:17:2e:0d:0a:ba:fb: 5e:56:78:60:a8:60:cc:7e:32:d3:4a:bf:28:f3:44:f9:df:ab: 5d:1a:e2:d0:36:54:19:8a:c0:01:32:fe:de:4e:94:aa:65:f0: 71:00:de:c9:3a:8d:f2:91:5c:44:c8:59:c0:04:a6:d6:1a:f9: 26:96:3f:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1NkMxMTAvBgNVBAUTKDUxMkQ5QkRFODEzQ0I3QkM3NzE5MEE4NEY5QjE4REI4 RUI0RTIyNUYwHhcNMjYwMTI0MjIzMjEwWhcNMjYwMTMxMjIzMjEwWjAYMRYwFAYD VQQDDA02OTc1NDg2YS1lMDRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8rilNwkAjjMY+n3LND5ytG6jhKg35uZgjLm7wRswBsSnZpUW/qQ4x6Sq9y5T AE68gqUkWOyurupZ3ZBgnhRuy2cC9H0jka6h1r0jhhs5i+R7lQcSuxVCNI0vK0lS RY9ZZwe1YcAqRS2O5J0vAVQ1fy4c2u59Er+SajjjEWdvAiLgGUsO6EnCRPSU5wcO DchIPgGpCKONUAAEm2SnDLNqnsnvzzR66EA4wDFz7xEQAF5aT4KAB2ilhd09IHTO C+IB0T6Pv3dsz1i/2W9FYrr1i8li3Ip1rMLKyPvqFPOHvKGtMX2WFCPEF4Igu4W2 lXsrs/ReEeXCfu7Qx8n1LI8efQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI8qZxOV hcDqjpcBrTXtHk5X5iR1MB8GA1UdIwQYMBaAFFEtm96BPLe8dxkKhPmxjbjrTiJf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTU2Qy9GQjMwNUE1RTBD OEExMUVDQTMxOTFCMENDNEY5QUUwMi9VUzJiM29FOHQ3eDNHUXFFLWJHTnVPdE9J bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTMmIzb0U4dDd4M0dRcUUtYkdOdU90T0lsOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTU2Qy9GQjMwNUE1RTBDOEExMUVDQTMxOTFCMENDNEY5QUUwMi9VUzJiM29FOHQ3 eDNHUXFFLWJHTnVPdE9JbDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByR0AjJZO6JzK+XhvzOlhE2P7dnF9IxapIQ8VPVcTlPXU+ygAnmorf qA0Ad3p67sxdeivW3AxhEt+shlqdWkhM2oUZPPsIsSX2uTODpuSmClIoRAjYqTFv 4lWvxowDrUxVUxM9dLBhXADjOqddwjJ5KA/AIUKY4QJ0pLgJTK9Rd01s5+WNT4M7 MsynO+glcyLJhLdbi4cdd/sq4LBul9AWDQWfm7+r3o42dkGcqxJWccIeBfnaW+ec h/VN6X888YsXLg0KuvteVnhgqGDMfjLTSr8o80T536tdGuLQNlQZisABMv7eTpSq ZfBxAN7JOo3ykVxEyFnABKbWGvkmlj9d -----END CERTIFICATE-----Generated at Sun Jan 25 02:57:55 2026 by rpki-client