This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft File: MGcPYbflDgsLiOclHeh4TAPJ5GI.mft (raw, json) Hash identifier: oDaG4x7ghHouy6vY+DVN+Le+fEbu0yacKdxrnPAVzWk= Subject key identifier: 2E:B0:DC:15:01:10:50:47:82:7A:7C:42:EE:96:C4:C5:A5:EB:9A:E7 Authority key identifier: 30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 Certificate issuer: /CN=A91CE6EC/serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Certificate serial: 011D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft Manifest number: 011A Signing time: Thu 04 Dec 2025 15:32:21 +0000 Manifest this update: Thu 04 Dec 2025 15:32:20 +0000 Manifest next update: Thu 11 Dec 2025 15:32:20 +0000 Files and hashes: 1: MGcPYbflDgsLiOclHeh4TAPJ5GI.crl (hash: UG7Nzi6ogtLvOSY5qmE65uWud5+XdML48cOOPwT+a4s=) 2: 038610FC2D1E11EFA25C6D16C4F9AE02.roa (hash: fWZETNQO/nq4+BYBCH9MSAL8N1aF88n2/dhae6ZuhiQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 15:32:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 285 (0x11d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6EC, serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Validity Not Before: Dec 4 15:32:20 2025 GMT Not After : Dec 11 15:32:20 2025 GMT Subject: CN=6931a984-518f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d7:65:41:68:b9:30:b6:84:3d:dd:6c:86:e6: 54:36:84:e6:02:60:3b:98:5e:03:63:cb:82:32:e6: b8:74:1f:07:f6:e7:2d:f8:6a:5a:af:49:9a:ed:4b: bc:d2:0d:bf:96:b9:fc:50:d8:f0:e1:6a:09:16:54: e0:1f:e6:c9:2f:88:a9:78:6b:51:01:82:9d:14:98: ad:fe:64:16:2a:d9:9f:20:d8:26:d1:21:23:d0:fe: ff:0a:5d:e7:0a:b4:96:34:ec:26:49:96:30:dd:fe: 61:e8:5c:25:83:3c:83:43:07:5f:f1:ef:11:ea:35: 1f:a5:0e:02:49:92:40:06:b6:9e:01:3b:78:18:41: 29:6c:4e:78:87:e0:de:43:ce:1b:36:ed:30:f2:df: 60:b1:c2:22:d3:bd:1c:e2:af:f3:e4:81:39:16:06: 85:8b:dd:50:ce:81:b1:53:bd:fb:ea:2e:29:ad:ce: 04:10:ad:15:d8:b9:3e:54:7c:54:57:80:94:dd:3d: 58:39:f5:51:ef:b0:6d:63:83:fe:ba:e6:0a:52:1f: 93:90:8d:c7:30:84:f8:0c:45:43:b3:4d:ea:6c:c3: 94:ba:c2:7c:26:17:a2:b4:64:08:cf:71:18:03:8e: 4a:7f:fe:00:55:47:8f:80:b8:a0:d3:6b:99:ab:d3: 0f:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:B0:DC:15:01:10:50:47:82:7A:7C:42:EE:96:C4:C5:A5:EB:9A:E7 X509v3 Authority Key Identifier: keyid:30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:cb:d1:a7:5f:7a:b8:e1:9e:b5:14:fc:cd:ed:70:dd:d1:f5: dc:61:08:b3:cd:71:26:93:1a:2a:90:23:f1:13:f7:c8:c7:a0: 22:af:99:b1:69:27:b1:94:19:83:69:cd:54:2c:9a:84:7a:0d: e4:81:81:f6:4b:ab:96:fe:86:69:f8:76:cb:a7:42:85:28:da: 2f:1a:57:9f:9f:53:08:b8:4a:43:ec:b1:11:e5:80:ea:39:6d: 2d:9d:44:cb:15:bc:29:67:bb:8e:82:c8:21:45:6a:b3:b5:91: 85:2e:e3:ce:a4:76:c7:e5:14:27:97:4c:ef:64:b1:d4:fb:ec: 2e:d9:36:c1:ca:f7:8f:fb:c7:6f:b9:b1:3b:2e:63:cb:dc:5f: c8:1f:37:6d:6e:f7:93:a0:3b:19:d0:00:ed:f0:d2:f8:40:5e: 27:de:fe:0e:6a:d4:f8:4c:22:a8:4d:c5:c1:ea:dc:fc:98:bd: f1:5e:08:7b:e4:5f:5e:13:c9:e7:6d:02:a5:68:91:5b:9b:91: a8:a3:cc:ab:b4:bc:b7:f0:d8:bd:46:1d:78:8d:14:2d:cb:92: 42:55:be:c4:54:84:6a:36:b2:b9:6f:87:32:cf:b8:f9:d9:be: 58:68:6d:57:7a:8e:e1:05:0d:16:0d:09:5b:cd:a9:63:7f:65: 49:c5:e8:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2RUMxMTAvBgNVBAUTKDMwNjcwRjYxQjdFNTBFMEIwQjg4RTcyNTFERTg3ODRD MDNDOUU0NjIwHhcNMjUxMjA0MTUzMjIwWhcNMjUxMjExMTUzMjIwWjAYMRYwFAYD VQQDEw02OTMxYTk4NC01MThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo9dlQWi5MLaEPd1shuZUNoTmAmA7mF4DY8uCMua4dB8H9uct+Gpar0ma7Uu8 0g2/lrn8UNjw4WoJFlTgH+bJL4ipeGtRAYKdFJit/mQWKtmfINgm0SEj0P7/Cl3n CrSWNOwmSZYw3f5h6FwlgzyDQwdf8e8R6jUfpQ4CSZJABraeATt4GEEpbE54h+De Q84bNu0w8t9gscIi070c4q/z5IE5FgaFi91QzoGxU7376i4prc4EEK0V2Lk+VHxU V4CU3T1YOfVR77BtY4P+uuYKUh+TkI3HMIT4DEVDs03qbMOUusJ8JheitGQIz3EY A45Kf/4AVUePgLig02uZq9MPkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC6w3BUB EFBHgnp8Qu6WxMWl65rnMB8GA1UdIwQYMBaAFDBnD2G35Q4LC4jnJR3oeEwDyeRi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZFQy8wODJBODlGMDJB MjkxMUVGODg5NUYxMUNDNEY5QUUwMi9NR2NQWWJmbERnc0xpT2NsSGVoNFRBUEo1 R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01HY1BZYmZsRGdzTGlPY2xIZWg0VEFQSjVHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZFQy8wODJBODlGMDJBMjkxMUVGODg5NUYxMUNDNEY5QUUwMi9NR2NQWWJmbERn c0xpT2NsSGVoNFRBUEo1R0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACy9GnX3q44Z61FPzN7XDd0fXcYQizzXEmkxoqkCPxE/fIx6Air5mx aSexlBmDac1ULJqEeg3kgYH2S6uW/oZp+HbLp0KFKNovGlefn1MIuEpD7LER5YDq OW0tnUTLFbwpZ7uOgsghRWqztZGFLuPOpHbH5RQnl0zvZLHU++wu2TbByveP+8dv ubE7LmPL3F/IHzdtbveToDsZ0ADt8NL4QF4n3v4OatT4TCKoTcXB6tz8mL3xXgh7 5F9eE8nnbQKlaJFbm5Goo8yrtLy38Ni9Rh14jRQty5JCVb7EVIRqNrK5b4cyz7j5 2b5YaG1Xeo7hBQ0WDQlbzaljf2VJxegm -----END CERTIFICATE-----Generated at Sat Dec 6 16:30:02 2025 by rpki-client