This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft File: mgZOprZttN4gyTzAQbhaFwbIBnI.mft (raw, json) Hash identifier: fBDFHDmoojj9WSPKo21qIz4+P23D0qJHckuYKIaaVtQ= Subject key identifier: F2:07:7D:BE:83:E0:D3:70:A0:11:A3:2B:46:F7:AB:B8:23:AC:B9:55 Authority key identifier: 9A:06:4E:A6:B6:6D:B4:DE:20:C9:3C:C0:41:B8:5A:17:06:C8:06:72 Certificate issuer: /CN=A913A5BD/serialNumber=9A064EA6B66DB4DE20C93CC041B85A1706C80672 Certificate serial: 02B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft Manifest number: 02B1 Signing time: Thu 04 Dec 2025 23:50:20 +0000 Manifest this update: Thu 04 Dec 2025 23:50:20 +0000 Manifest next update: Thu 11 Dec 2025 23:50:20 +0000 Files and hashes: 1: mgZOprZttN4gyTzAQbhaFwbIBnI.crl (hash: BArx8jYrFT97ytSDqwS80tCct1wZG/n6v4t3B3flXkw=) 2: C6B3DBFE1CF911EDBAE62F45C4F9AE02.roa (hash: omp1fXUs+vDBv/MaKIuGTrmCJ5TEGYnfoKG3I8GKsAA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.crl rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 694 (0x2b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A5BD, serialNumber=9A064EA6B66DB4DE20C93CC041B85A1706C80672 Validity Not Before: Dec 4 23:50:20 2025 GMT Not After : Dec 11 23:50:20 2025 GMT Subject: CN=69321e3c-26ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:fc:5d:3c:a5:f8:76:6f:aa:2e:b1:fe:e3:ed: 3c:c7:b2:27:01:56:19:d4:25:94:da:cb:1f:31:19: a8:65:02:a8:05:8e:ea:b0:65:0e:18:00:47:87:cd: 2c:2e:40:88:82:5b:98:a9:e2:f2:19:1e:b5:f1:45: a5:90:1d:87:0d:a0:44:6a:cd:6f:de:18:ad:e0:34: fa:5e:d3:41:7a:ec:f0:c3:c6:8b:44:6e:3c:5e:b5: aa:fd:2a:5e:38:3b:dc:fa:03:50:f1:9d:0d:b9:03: 5a:3c:3b:c7:3b:8d:54:35:ef:5e:b1:1b:9d:d4:d2: 7f:23:6c:35:ab:47:c4:5f:37:49:52:4a:c4:ea:6e: 48:4b:89:69:b7:93:85:a5:ff:43:2f:a1:a0:8c:25: a9:97:09:a2:c8:65:56:ba:ce:09:76:19:b2:9e:a6: 69:fc:3a:a6:ba:d0:30:6d:fb:d3:52:30:bd:b0:07: 00:02:eb:e7:12:b5:b0:7f:5a:1a:f7:7e:eb:d0:e4: 21:a8:54:1d:19:49:b9:99:50:6b:90:e5:f5:bb:69: 12:0d:77:e6:f0:19:20:9e:a0:bd:74:5f:20:b4:8c: 96:9a:7a:fe:e6:d8:80:b7:c2:00:d8:78:a0:08:e9: a6:0f:00:3f:8a:7b:26:26:6b:56:f5:25:c7:b9:c4: bb:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:07:7D:BE:83:E0:D3:70:A0:11:A3:2B:46:F7:AB:B8:23:AC:B9:55 X509v3 Authority Key Identifier: keyid:9A:06:4E:A6:B6:6D:B4:DE:20:C9:3C:C0:41:B8:5A:17:06:C8:06:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:36:e5:09:70:fd:ca:4e:e2:c4:4e:a2:99:f5:73:3a:bb:ab: 6d:d4:da:59:09:f0:8e:be:75:79:10:61:84:9c:55:27:30:0b: e3:c0:21:b4:70:a2:04:0b:d5:1a:08:26:59:54:9e:00:b9:ee: f6:56:fa:37:fb:2b:62:a7:f9:d1:23:04:07:ce:26:56:73:d1: 67:75:79:b9:34:51:02:c1:74:20:09:9e:26:b2:af:67:8a:31: b0:51:ae:f8:c4:6e:9b:b0:70:c7:1d:09:48:0d:c6:2c:03:f4: 41:df:21:9d:41:1a:5e:b7:89:2c:c6:98:2f:75:eb:3e:66:9c: a4:49:49:49:4d:64:84:b1:ca:36:8c:ad:f1:9d:8a:52:f5:a0: f6:04:62:e3:96:f8:13:d1:50:05:c3:ea:64:6e:ca:f1:9c:cf: db:6f:44:cf:1b:1d:b7:0b:c8:8a:ea:62:1b:98:e1:76:84:cb: 9a:81:1f:48:b5:17:ff:b8:a3:86:1b:1b:b6:e0:9e:4a:0f:a2: 91:29:d4:16:88:6b:c7:19:37:40:28:d9:13:8e:73:9f:01:6c: ac:58:13:6b:30:0a:53:25:c9:b2:91:87:38:58:b9:34:67:56: 58:ed:20:92:93:0f:1b:bd:39:9e:02:e6:15:4d:2d:c7:e8:51: 75:f2:bd:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E1QkQxMTAvBgNVBAUTKDlBMDY0RUE2QjY2REI0REUyMEM5M0NDMDQxQjg1QTE3 MDZDODA2NzIwHhcNMjUxMjA0MjM1MDIwWhcNMjUxMjExMjM1MDIwWjAYMRYwFAYD VQQDEw02OTMyMWUzYy0yNmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAofxdPKX4dm+qLrH+4+08x7InAVYZ1CWU2ssfMRmoZQKoBY7qsGUOGABHh80s LkCIgluYqeLyGR618UWlkB2HDaBEas1v3hit4DT6XtNBeuzww8aLRG48XrWq/Spe ODvc+gNQ8Z0NuQNaPDvHO41UNe9esRud1NJ/I2w1q0fEXzdJUkrE6m5IS4lpt5OF pf9DL6GgjCWplwmiyGVWus4JdhmynqZp/DqmutAwbfvTUjC9sAcAAuvnErWwf1oa 937r0OQhqFQdGUm5mVBrkOX1u2kSDXfm8BkgnqC9dF8gtIyWmnr+5tiAt8IA2Hig COmmDwA/insmJmtW9SXHucS7xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPIHfb6D 4NNwoBGjK0b3q7gjrLlVMB8GA1UdIwQYMBaAFJoGTqa2bbTeIMk8wEG4WhcGyAZy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTVCRC81NEVFRjUxNDFD RjcxMUVEQTAwRkQzNDNDNEY5QUUwMi9tZ1pPcHJadHRONGd5VHpBUWJoYUZ3YklC bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21nWk9wclp0dE40Z3lUekFRYmhhRndiSUJuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTVCRC81NEVFRjUxNDFDRjcxMUVEQTAwRkQzNDNDNEY5QUUwMi9tZ1pPcHJadHRO NGd5VHpBUWJoYUZ3YklCbkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4NuUJcP3KTuLETqKZ9XM6u6tt1NpZCfCOvnV5EGGEnFUnMAvjwCG0 cKIEC9UaCCZZVJ4Aue72Vvo3+ytip/nRIwQHziZWc9FndXm5NFECwXQgCZ4msq9n ijGwUa74xG6bsHDHHQlIDcYsA/RB3yGdQRpet4ksxpgvdes+ZpykSUlJTWSEsco2 jK3xnYpS9aD2BGLjlvgT0VAFw+pkbsrxnM/bb0TPGx23C8iK6mIbmOF2hMuagR9I tRf/uKOGGxu24J5KD6KRKdQWiGvHGTdAKNkTjnOfAWysWBNrMApTJcmykYc4WLk0 Z1ZY7SCSkw8bvTmeAuYVTS3H6FF18r1L -----END CERTIFICATE-----Generated at Sat Dec 6 16:14:15 2025 by rpki-client