This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft File: MGSQ23RcleyGYUmf_IJkZnumf4o.mft (raw, json) Hash identifier: yZdSNiVHuQlodKdsHczFTxNp2m1WwuTMBhAkt2hNGJQ= Subject key identifier: 54:F3:B3:CE:20:3D:55:01:5E:36:90:AD:8A:B7:C6:F5:13:C6:D1:C8 Authority key identifier: 30:64:90:DB:74:5C:95:EC:86:61:49:9F:FC:82:64:66:7B:A6:7F:8A Certificate issuer: /CN=A91CE7A4/serialNumber=306490DB745C95EC8661499FFC8264667BA67F8A Certificate serial: C7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft Manifest number: C6 Signing time: Sun 25 Jan 2026 05:02:49 +0000 Manifest this update: Sun 25 Jan 2026 05:02:49 +0000 Manifest next update: Sun 01 Feb 2026 05:02:49 +0000 Files and hashes: 1: MGSQ23RcleyGYUmf_IJkZnumf4o.crl (hash: l35XClFzTAOU3AbMbOahpPwq9Znf+sZW5sJj28pmZUM=) 2: 19C407C0CC1011EFBC7E0050C4F9AE02.roa (hash: 0uD06YfXP8jJiypkQtgg/+0Dg/DOv6s8Gpjo5ybB4rE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.crl rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 04:58:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE7A4, serialNumber=306490DB745C95EC8661499FFC8264667BA67F8A Validity Not Before: Jan 25 05:02:49 2026 GMT Not After : Feb 1 05:02:49 2026 GMT Subject: CN=6975a3f9-2acb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:37:8b:d5:4f:53:e2:c6:82:ec:07:64:f9:61: 67:66:01:f3:68:8a:71:23:f4:87:3c:33:fd:97:b5: 41:56:51:aa:1e:bd:e7:2e:f2:89:59:0e:e8:f9:17: 7f:43:9c:27:4f:24:9a:8b:18:0a:8a:76:12:86:02: 85:df:9f:45:ef:2c:6c:8c:2f:78:df:58:a7:7e:94: 4d:82:1e:f9:95:b0:93:d1:eb:4d:df:e9:25:06:71: f5:23:5d:16:7f:55:ef:92:56:1e:37:ca:9f:e5:aa: 28:5c:7a:84:b4:4e:f9:3c:26:3c:1f:5d:52:44:b4: b1:65:35:56:e6:22:d3:8e:93:1c:ee:39:2a:39:2d: aa:26:05:67:d8:83:d3:c1:49:fc:5d:f8:32:9c:1f: 9a:9a:3c:86:8d:a8:08:d1:b4:6a:88:0f:4a:c4:04: 50:c9:56:71:ec:20:29:ee:42:0a:a4:41:0a:a8:49: c4:eb:b9:06:dc:fd:80:48:c1:f5:79:d7:cc:86:43: 42:4f:6c:fd:22:7c:6b:33:8f:dc:a5:33:80:b1:34: fd:c5:b9:56:0d:80:33:c3:17:2b:db:93:72:0a:d1: 35:5b:4f:1a:0d:1d:07:a2:13:14:8b:bf:ed:4d:26: ee:3f:7b:af:fd:52:c1:f3:1e:c1:86:16:23:a9:24: dc:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:F3:B3:CE:20:3D:55:01:5E:36:90:AD:8A:B7:C6:F5:13:C6:D1:C8 X509v3 Authority Key Identifier: keyid:30:64:90:DB:74:5C:95:EC:86:61:49:9F:FC:82:64:66:7B:A6:7F:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:4e:e9:2a:a4:0b:77:a6:0e:1c:dd:bb:72:17:b7:41:ee:d9: 2b:d9:0b:d0:db:e3:26:d8:0f:fe:a7:9f:34:6c:5e:45:b5:2f: cf:fb:91:83:75:a4:a1:5e:86:70:1b:94:35:86:4f:57:b1:c2: ed:9b:31:b7:64:95:5d:78:24:01:7d:30:fe:58:8c:15:d8:63: 0d:bc:d0:3d:f9:8c:ae:ff:4e:bf:9d:bc:62:98:b7:30:59:50: b1:b6:de:00:6c:20:2b:ce:37:09:a1:5f:31:9d:90:10:9b:9f: 8a:04:aa:41:1c:28:a1:74:89:0b:35:18:ce:ab:83:97:51:61: 56:94:18:72:4c:ee:a7:48:b9:d1:7f:11:03:59:00:ea:f0:21: ae:7e:4b:a1:2a:0f:d3:9b:16:c0:4b:9b:77:bc:e2:90:0f:c1: 1a:24:5a:81:58:c3:1f:00:a4:0c:e7:d0:91:54:1b:7d:6a:af: 01:f0:8f:42:ca:db:af:a8:89:ea:56:43:e9:61:6f:3a:d0:51: 5a:c0:45:bc:06:ad:46:fc:01:13:f3:60:4e:5a:58:5b:b2:33: 4d:bf:fb:81:2b:1c:47:43:68:44:ec:96:6e:f4:f1:e5:ac:0b: 27:3c:e9:c1:c7:67:4d:40:e1:65:73:ab:ab:49:e1:85:ee:a5: 41:6a:03:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U3QTQxMTAvBgNVBAUTKDMwNjQ5MERCNzQ1Qzk1RUM4NjYxNDk5RkZDODI2NDY2 N0JBNjdGOEEwHhcNMjYwMTI1MDUwMjQ5WhcNMjYwMjAxMDUwMjQ5WjAYMRYwFAYD VQQDDA02OTc1YTNmOS0yYWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArTeL1U9T4saC7Adk+WFnZgHzaIpxI/SHPDP9l7VBVlGqHr3nLvKJWQ7o+Rd/ Q5wnTySaixgKinYShgKF359F7yxsjC9431infpRNgh75lbCT0etN3+klBnH1I10W f1XvklYeN8qf5aooXHqEtE75PCY8H11SRLSxZTVW5iLTjpMc7jkqOS2qJgVn2IPT wUn8XfgynB+amjyGjagI0bRqiA9KxARQyVZx7CAp7kIKpEEKqEnE67kG3P2ASMH1 edfMhkNCT2z9InxrM4/cpTOAsTT9xblWDYAzwxcr25NyCtE1W08aDR0HohMUi7/t TSbuP3uv/VLB8x7BhhYjqSTc8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFTzs84g PVUBXjaQrYq3xvUTxtHIMB8GA1UdIwQYMBaAFDBkkNt0XJXshmFJn/yCZGZ7pn+K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTdBNC9CODkwREZEMkND MEYxMUVGQTI3OEZENENDNEY5QUUwMi9NR1NRMjNSY2xleUdZVW1mX0lKa1pudW1m NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01HU1EyM1JjbGV5R1lVbWZfSUprWm51bWY0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTdBNC9CODkwREZEMkNDMEYxMUVGQTI3OEZENENDNEY5QUUwMi9NR1NRMjNSY2xl eUdZVW1mX0lKa1pudW1mNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdTukqpAt3pg4c3btyF7dB7tkr2QvQ2+Mm2A/+p580bF5FtS/P+5GD daShXoZwG5Q1hk9XscLtmzG3ZJVdeCQBfTD+WIwV2GMNvNA9+Yyu/06/nbximLcw WVCxtt4AbCArzjcJoV8xnZAQm5+KBKpBHCihdIkLNRjOq4OXUWFWlBhyTO6nSLnR fxEDWQDq8CGufkuhKg/TmxbAS5t3vOKQD8EaJFqBWMMfAKQM59CRVBt9aq8B8I9C ytuvqInqVkPpYW860FFawEW8Bq1G/AET82BOWlhbsjNNv/uBKxxHQ2hE7JZu9PHl rAsnPOnBx2dNQOFlc6urSeGF7qVBagOl -----END CERTIFICATE-----Generated at Sun Jan 25 11:50:44 2026 by rpki-client