This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft File: MGSQ23RcleyGYUmf_IJkZnumf4o.mft (raw, json) Hash identifier: MZWM5cHfM5EalAhu+Y3AHy3XwcyQEfwCkXiHJD0JsLo= Subject key identifier: 35:5F:31:FB:DA:82:14:F0:E5:B4:B6:1E:95:C4:92:DC:FF:3A:10:21 Authority key identifier: 30:64:90:DB:74:5C:95:EC:86:61:49:9F:FC:82:64:66:7B:A6:7F:8A Certificate issuer: /CN=A91CE7A4/serialNumber=306490DB745C95EC8661499FFC8264667BA67F8A Certificate serial: AD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft Manifest number: AC Signing time: Fri 05 Dec 2025 04:09:13 +0000 Manifest this update: Fri 05 Dec 2025 04:09:12 +0000 Manifest next update: Fri 12 Dec 2025 04:09:12 +0000 Files and hashes: 1: MGSQ23RcleyGYUmf_IJkZnumf4o.crl (hash: v3wIhdrzOYwaQDTLi/ARQmeAO8aLGGZp9JUsAxm2F4o=) 2: 19C407C0CC1011EFBC7E0050C4F9AE02.roa (hash: 0uD06YfXP8jJiypkQtgg/+0Dg/DOv6s8Gpjo5ybB4rE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.crl rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:09:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE7A4, serialNumber=306490DB745C95EC8661499FFC8264667BA67F8A Validity Not Before: Dec 5 04:09:12 2025 GMT Not After : Dec 12 04:09:12 2025 GMT Subject: CN=69325ae8-249c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f8:1f:22:eb:c5:50:f2:88:e3:c3:b2:22:90: ca:40:4b:8e:e6:96:59:43:e8:9d:84:de:8f:27:3e: fe:f0:61:eb:57:01:37:e8:7b:16:a8:7e:e6:27:1f: c5:10:32:0e:a5:79:dd:47:8e:07:a7:d8:59:47:a7: 81:ce:fb:b1:51:bc:1d:57:45:6d:43:32:6b:78:0a: d9:c2:77:23:a8:a4:06:67:3d:ff:62:5e:2f:d4:4e: 6f:e4:ab:d5:22:16:91:5f:54:0e:a0:f6:e1:6d:43: f1:3f:3a:91:ea:fc:55:35:e5:4c:8a:16:58:47:a7: cd:7f:cb:25:c9:e6:bc:db:a3:d0:c8:5b:5a:21:5c: 29:0d:2d:16:00:6c:b4:31:cf:78:5b:4e:a7:bb:fe: 94:7f:2c:31:e2:4b:d0:24:5d:d3:07:b8:e9:bd:09: 0c:74:6a:31:e5:89:3b:e7:f0:4f:27:11:df:18:be: da:07:90:a8:2e:c6:f9:ff:ab:66:2d:09:2c:b0:8d: 4f:d3:2b:df:9d:18:97:06:a3:72:47:53:34:78:ca: 95:9c:1a:e6:8f:ae:4c:11:4c:66:98:ca:89:b5:bc: 31:bf:2e:fa:94:fd:73:92:16:8a:37:6c:dd:e1:8b: 01:ec:b2:0f:a9:34:68:97:ec:e4:a1:d3:4e:88:89: 71:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:5F:31:FB:DA:82:14:F0:E5:B4:B6:1E:95:C4:92:DC:FF:3A:10:21 X509v3 Authority Key Identifier: keyid:30:64:90:DB:74:5C:95:EC:86:61:49:9F:FC:82:64:66:7B:A6:7F:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:e0:18:65:35:ea:62:29:c9:e5:7b:c6:72:a5:d3:de:48:4b: 55:c8:6b:ac:52:73:37:05:be:63:41:b9:3d:5b:1e:82:24:fe: b5:8d:bc:a5:76:25:a5:dd:47:5f:c2:33:cd:70:f9:76:b8:a5: f1:0c:4d:ab:c7:f3:22:4c:46:b5:8d:34:56:19:7d:9a:71:39: a1:50:58:6b:98:8c:72:3b:2d:6d:c1:3f:03:74:02:23:94:f7: ca:f0:d1:f3:7a:3c:42:35:f1:f8:4d:6d:c0:a3:6f:88:6b:08: e2:5d:9e:a7:8f:28:36:0d:4d:77:52:6d:93:6a:2d:0c:cf:c3: 12:03:38:e3:b4:87:4c:10:89:ca:08:6e:89:e0:be:35:96:16: 55:24:e6:5c:f8:7d:46:2c:ef:e9:25:39:93:03:a9:75:bc:73: 1f:05:44:09:b6:31:83:9c:55:80:4e:7a:c8:a5:ae:b2:cf:2e: cb:df:15:88:18:87:e7:e0:c8:66:e0:7d:cf:4a:56:b0:4a:af: 5c:95:06:a4:3d:2e:9b:1e:98:14:b0:7e:98:9b:2f:67:eb:d6: 70:61:7b:7f:8c:e3:9e:37:50:ca:35:39:88:41:32:f9:c4:1c: c4:9a:d6:0d:05:e4:d0:f7:0b:a0:57:b0:7d:ba:d2:94:c8:17: 82:9c:48:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U3QTQxMTAvBgNVBAUTKDMwNjQ5MERCNzQ1Qzk1RUM4NjYxNDk5RkZDODI2NDY2 N0JBNjdGOEEwHhcNMjUxMjA1MDQwOTEyWhcNMjUxMjEyMDQwOTEyWjAYMRYwFAYD VQQDEw02OTMyNWFlOC0yNDljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyPgfIuvFUPKI48OyIpDKQEuO5pZZQ+idhN6PJz7+8GHrVwE36HsWqH7mJx/F EDIOpXndR44Hp9hZR6eBzvuxUbwdV0VtQzJreArZwncjqKQGZz3/Yl4v1E5v5KvV IhaRX1QOoPbhbUPxPzqR6vxVNeVMihZYR6fNf8slyea826PQyFtaIVwpDS0WAGy0 Mc94W06nu/6Ufywx4kvQJF3TB7jpvQkMdGox5Yk75/BPJxHfGL7aB5CoLsb5/6tm LQkssI1P0yvfnRiXBqNyR1M0eMqVnBrmj65MEUxmmMqJtbwxvy76lP1zkhaKN2zd 4YsB7LIPqTRol+zkodNOiIlxUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDVfMfva ghTw5bS2HpXEktz/OhAhMB8GA1UdIwQYMBaAFDBkkNt0XJXshmFJn/yCZGZ7pn+K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTdBNC9CODkwREZEMkND MEYxMUVGQTI3OEZENENDNEY5QUUwMi9NR1NRMjNSY2xleUdZVW1mX0lKa1pudW1m NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01HU1EyM1JjbGV5R1lVbWZfSUprWm51bWY0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTdBNC9CODkwREZEMkNDMEYxMUVGQTI3OEZENENDNEY5QUUwMi9NR1NRMjNSY2xl eUdZVW1mX0lKa1pudW1mNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCG4BhlNepiKcnle8ZypdPeSEtVyGusUnM3Bb5jQbk9Wx6CJP61jbyl diWl3UdfwjPNcPl2uKXxDE2rx/MiTEa1jTRWGX2acTmhUFhrmIxyOy1twT8DdAIj lPfK8NHzejxCNfH4TW3Ao2+IawjiXZ6njyg2DU13Um2Tai0Mz8MSAzjjtIdMEInK CG6J4L41lhZVJOZc+H1GLO/pJTmTA6l1vHMfBUQJtjGDnFWATnrIpa6yzy7L3xWI GIfn4Mhm4H3PSlawSq9clQakPS6bHpgUsH6Ymy9n69ZwYXt/jOOeN1DKNTmIQTL5 xBzEmtYNBeTQ9wugV7B9utKUyBeCnEik -----END CERTIFICATE-----Generated at Sat Dec 6 15:19:20 2025 by rpki-client