This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft File: MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft (raw, json) Hash identifier: V+qjiFMOVHxa6VkKM+A1GLldUf4w94Qo+/4pQttEhiE= Subject key identifier: 0C:F8:36:99:39:51:11:7E:6C:3E:4C:95:D1:DA:07:6F:ED:F5:62:56 Authority key identifier: 30:6E:34:FA:84:DA:09:0C:60:01:B3:54:64:BB:8C:42:63:57:D9:28 Certificate issuer: /CN=A91B9EC7/serialNumber=306E34FA84DA090C6001B35464BB8C426357D928 Certificate serial: 0185 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft Manifest number: 0182 Signing time: Fri 05 Dec 2025 01:50:55 +0000 Manifest this update: Fri 05 Dec 2025 01:50:54 +0000 Manifest next update: Fri 12 Dec 2025 01:50:54 +0000 Files and hashes: 1: MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl (hash: JdOU+dtghEJeh9GpS7ylCTppRKquPem+g6GNgVTrbOg=) 2: 02FC3E3C82A511EEA1F2710DC4F9AE02.roa (hash: etATH7cpBctXxSFj9qh8jaunQqoMoUcK6DY8J7yW9Mc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:50:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 389 (0x185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9EC7, serialNumber=306E34FA84DA090C6001B35464BB8C426357D928 Validity Not Before: Dec 5 01:50:54 2025 GMT Not After : Dec 12 01:50:54 2025 GMT Subject: CN=69323a7f-daf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:73:07:df:0b:57:b4:7a:5c:50:6f:16:4c:29: 5a:1a:d7:1b:2f:13:8b:1e:47:24:aa:5d:5e:be:36: 28:5d:6a:47:1b:4e:d1:7a:8d:44:53:d2:90:35:08: dd:71:7e:04:0f:27:9f:1f:af:0d:82:b8:c5:a4:8c: f7:80:4b:61:d5:f3:bd:d2:1f:d1:cd:7a:0e:15:19: 18:f0:7c:24:40:6a:86:e0:57:f7:c8:36:78:9f:4a: 21:b6:00:82:48:1f:f4:d7:dc:7f:41:a0:fd:38:ee: c1:78:e4:b1:cb:c9:75:09:a1:5b:b0:30:8c:95:13: 82:ed:94:cf:b6:10:c1:d3:aa:3e:53:fd:08:e7:31: 3b:c3:75:a9:ae:b6:51:bd:49:84:2a:5a:92:a3:e1: 05:f7:cb:4a:23:fd:f1:e7:78:00:23:20:db:a7:fa: ac:91:b5:cc:8c:7c:70:bc:7b:f8:ef:25:c3:f7:8a: 79:5c:dd:7e:8e:f5:dd:25:50:10:92:00:28:16:83: 9c:4e:6b:1b:47:4f:32:97:4f:92:15:f3:d0:e0:52: 9b:2c:37:dc:b4:39:03:25:17:b0:4a:db:be:73:64: e8:48:02:fd:ac:20:fb:92:99:08:8b:91:21:d7:b5: 78:97:fc:98:54:18:7c:92:82:0c:2f:d0:43:6f:bf: e0:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:F8:36:99:39:51:11:7E:6C:3E:4C:95:D1:DA:07:6F:ED:F5:62:56 X509v3 Authority Key Identifier: keyid:30:6E:34:FA:84:DA:09:0C:60:01:B3:54:64:BB:8C:42:63:57:D9:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:47:65:10:e8:ed:cd:5f:9f:79:ca:56:66:bf:c5:2d:9a:61: e6:65:f3:9f:7e:1c:21:f0:4d:78:5c:41:14:02:70:dc:8f:8b: ae:7b:fe:e8:49:20:8e:40:e6:78:a9:e8:8e:a3:16:62:7d:b0: 4e:1b:1a:59:18:6b:b2:30:65:8e:b8:ac:4e:03:a1:bd:42:ba: 18:19:57:c7:45:5a:cb:47:0c:5c:46:18:8b:f4:c3:31:27:9a: d9:a4:12:03:1f:04:c6:22:3e:c9:66:81:f4:2b:9e:8b:6d:41: 59:32:a9:d9:92:0f:f5:b5:ea:35:cf:69:2d:44:ee:bb:1a:80: ca:5b:bd:d6:c1:fe:50:38:10:6f:ba:70:42:0d:70:61:00:9f: ba:06:2c:d5:c9:0d:0d:ee:df:f5:62:12:c7:e1:bf:28:a5:9f: f9:cb:fb:e5:e5:7e:ac:fd:d4:68:a2:25:b0:95:e5:86:f6:0c: 9a:f7:47:0c:8d:ee:13:9b:4a:00:a7:9a:37:af:8a:48:6d:01: 8b:8d:7d:f0:e1:39:7e:1c:0e:d0:c8:d1:69:83:b5:0b:88:32: dc:dd:31:58:d6:f7:da:41:60:77:4b:1d:c8:36:ef:bf:95:42: e2:8a:a1:5e:7b:5c:a4:70:a5:5b:99:51:58:d4:b5:f9:2e:ed: e5:44:fc:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlFQzcxMTAvBgNVBAUTKDMwNkUzNEZBODREQTA5MEM2MDAxQjM1NDY0QkI4QzQy NjM1N0Q5MjgwHhcNMjUxMjA1MDE1MDU0WhcNMjUxMjEyMDE1MDU0WjAYMRYwFAYD VQQDEw02OTMyM2E3Zi1kYWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunMH3wtXtHpcUG8WTClaGtcbLxOLHkckql1evjYoXWpHG07Reo1EU9KQNQjd cX4EDyefH68NgrjFpIz3gEth1fO90h/RzXoOFRkY8HwkQGqG4Ff3yDZ4n0ohtgCC SB/019x/QaD9OO7BeOSxy8l1CaFbsDCMlROC7ZTPthDB06o+U/0I5zE7w3WprrZR vUmEKlqSo+EF98tKI/3x53gAIyDbp/qskbXMjHxwvHv47yXD94p5XN1+jvXdJVAQ kgAoFoOcTmsbR08yl0+SFfPQ4FKbLDfctDkDJRewStu+c2ToSAL9rCD7kpkIi5Eh 17V4l/yYVBh8koIML9BDb7/gfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAz4Npk5 URF+bD5MldHaB2/t9WJWMB8GA1UdIwQYMBaAFDBuNPqE2gkMYAGzVGS7jEJjV9ko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUVDNy9FNjNGMkY4QTgy QTMxMUVFOUIxMTczNTdDNEY5QUUwMi9NRzQwLW9UYUNReGdBYk5VWkx1TVFtTlgy U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01HNDAtb1RhQ1F4Z0FiTlVaTHVNUW1OWDJTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUVDNy9FNjNGMkY4QTgyQTMxMUVFOUIxMTczNTdDNEY5QUUwMi9NRzQwLW9UYUNR eGdBYk5VWkx1TVFtTlgyU2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7R2UQ6O3NX595ylZmv8UtmmHmZfOffhwh8E14XEEUAnDcj4uue/7o SSCOQOZ4qeiOoxZifbBOGxpZGGuyMGWOuKxOA6G9QroYGVfHRVrLRwxcRhiL9MMx J5rZpBIDHwTGIj7JZoH0K56LbUFZMqnZkg/1teo1z2ktRO67GoDKW73Wwf5QOBBv unBCDXBhAJ+6BizVyQ0N7t/1YhLH4b8opZ/5y/vl5X6s/dRooiWwleWG9gya90cM je4Tm0oAp5o3r4pIbQGLjX3w4Tl+HA7QyNFpg7ULiDLc3TFY1vfaQWB3Sx3INu+/ lULiiqFee1ykcKVbmVFY1LX5Lu3lRPy6 -----END CERTIFICATE-----Generated at Sat Dec 6 20:30:06 2025 by rpki-client