This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.mft File: M-VCXQNo-C_4W5uEf0EjitWNTlA.mft (raw, json) Hash identifier: xKnVFI88XXWPgU8DCD7RC0MU0M/2jYLZdiSeCrPgwlI= Subject key identifier: 70:D6:91:0C:B8:DE:E9:93:38:46:DE:AF:1B:C7:EF:F1:25:6C:2A:23 Authority key identifier: 33:E5:42:5D:03:68:F8:2F:F8:5B:9B:84:7F:41:23:8A:D5:8D:4E:50 Certificate issuer: /CN=A91CFD5A/serialNumber=33E5425D0368F82FF85B9B847F41238AD58D4E50 Certificate serial: 0164 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M-VCXQNo-C_4W5uEf0EjitWNTlA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.mft Manifest number: 0161 Signing time: Tue 09 Dec 2025 02:11:19 +0000 Manifest this update: Tue 09 Dec 2025 02:11:18 +0000 Manifest next update: Tue 16 Dec 2025 02:11:18 +0000 Files and hashes: 1: M-VCXQNo-C_4W5uEf0EjitWNTlA.crl (hash: UAfXccbHAfIVBxyEd8SuwnxuWFiL7HTAmwOQphtDRFU=) 2: D677E18AB9AF11EE97EEDB49C4F9AE02.roa (hash: LUJnGhbUriDz5PEXzwqHVqGRqenH5+Jp3evLId0QNQI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.crl rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M-VCXQNo-C_4W5uEf0EjitWNTlA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Dec 2025 02:11:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 356 (0x164) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFD5A, serialNumber=33E5425D0368F82FF85B9B847F41238AD58D4E50 Validity Not Before: Dec 9 02:11:18 2025 GMT Not After : Dec 16 02:11:18 2025 GMT Subject: CN=69378546-d23b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:2d:ca:9a:70:d7:7b:a1:6c:f5:a3:46:80:86: 9f:92:19:53:a3:d0:e2:fe:ba:e8:1a:4c:89:35:33: 2b:32:7b:3a:87:95:83:aa:56:25:20:c9:9a:7f:f3: cb:a7:96:d0:43:26:7d:ec:79:3b:bd:c9:e4:9c:84: 65:1e:49:dd:d7:50:7f:0f:44:5f:11:7f:00:e2:b9: f2:bd:83:a9:04:e3:cf:f9:1a:53:fc:24:66:df:41: e6:5f:95:8b:e9:a2:32:c4:f9:b8:1a:ea:1f:da:96: 1c:9c:49:f1:b3:83:46:c7:3e:4e:ad:a8:7c:74:63: 48:85:13:d0:4d:99:83:1c:a8:88:ac:41:4a:71:16: 98:02:e6:3c:93:9f:98:08:72:70:d7:a0:60:d4:c5: 1e:8e:2b:2f:47:bf:cc:1c:f8:f0:21:93:ed:ce:37: bb:12:28:96:24:8e:c6:a5:ea:6e:3d:eb:0a:e5:2a: a0:11:91:e4:b9:af:d4:98:4d:58:97:5f:18:bf:55: ca:8a:2a:88:5e:e9:47:fa:55:81:29:a6:10:46:28: 1a:cd:6f:5f:30:70:e0:81:77:59:d2:c0:f7:6a:0d: 9a:af:da:90:c2:dd:46:9f:9f:e2:85:c5:9f:4c:bd: ae:01:e1:7d:81:e7:c5:f6:bf:0b:f4:5b:66:38:5a: 56:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:D6:91:0C:B8:DE:E9:93:38:46:DE:AF:1B:C7:EF:F1:25:6C:2A:23 X509v3 Authority Key Identifier: keyid:33:E5:42:5D:03:68:F8:2F:F8:5B:9B:84:7F:41:23:8A:D5:8D:4E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M-VCXQNo-C_4W5uEf0EjitWNTlA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:05:b5:24:af:50:16:68:fc:bf:60:5b:59:7b:ef:ac:0c:77: 28:ed:1b:ac:4c:d5:da:77:fc:08:6c:1d:78:28:c3:33:3a:75: 83:65:1d:36:26:8d:4f:3a:01:18:3e:4b:f8:7f:50:8e:90:33: 35:4e:67:a3:9c:de:57:6c:1d:41:af:5d:14:33:0e:5f:b7:aa: e3:26:43:92:c6:47:91:35:2e:de:92:7d:7e:af:fa:9a:38:50: 41:94:e0:99:15:8f:e1:41:72:f6:c8:87:00:79:56:ee:e7:e6: f7:3d:f5:95:77:4b:95:8d:5f:7f:c4:33:d7:c3:3e:03:72:52: e5:30:f4:a0:23:4b:40:3b:b4:04:9b:5f:53:32:f9:3f:df:e0: 3b:ad:f6:2e:cb:44:2b:0e:61:fa:92:87:ad:d6:62:87:0b:77: 55:15:88:7e:11:3e:fe:b0:e2:6d:bc:9b:cd:73:66:46:89:89: 53:0f:d4:e3:a5:e2:f5:cd:3c:db:79:57:bc:93:1a:fb:a7:03: 55:bd:6b:d3:14:17:98:f1:ec:ba:32:2f:38:53:45:e3:1a:a1: e7:94:35:b8:74:75:35:ad:8c:55:78:90:97:e8:21:c0:48:4e: 14:fa:65:b4:6d:a0:e8:f7:2f:77:5f:2e:59:5d:32:72:79:10: a5:56:a4:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZENUExMTAvBgNVBAUTKDMzRTU0MjVEMDM2OEY4MkZGODVCOUI4NDdGNDEyMzhB RDU4RDRFNTAwHhcNMjUxMjA5MDIxMTE4WhcNMjUxMjE2MDIxMTE4WjAYMRYwFAYD VQQDEw02OTM3ODU0Ni1kMjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAny3KmnDXe6Fs9aNGgIafkhlTo9Di/rroGkyJNTMrMns6h5WDqlYlIMmaf/PL p5bQQyZ97Hk7vcnknIRlHknd11B/D0RfEX8A4rnyvYOpBOPP+RpT/CRm30HmX5WL 6aIyxPm4Guof2pYcnEnxs4NGxz5Orah8dGNIhRPQTZmDHKiIrEFKcRaYAuY8k5+Y CHJw16Bg1MUejisvR7/MHPjwIZPtzje7EiiWJI7GpepuPesK5SqgEZHkua/UmE1Y l18Yv1XKiiqIXulH+lWBKaYQRigazW9fMHDggXdZ0sD3ag2ar9qQwt1Gn5/ihcWf TL2uAeF9gefF9r8L9FtmOFpWRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHDWkQy4 3umTOEberxvH7/ElbCojMB8GA1UdIwQYMBaAFDPlQl0DaPgv+FubhH9BI4rVjU5Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkQ1QS81RkI3REMwOEI5 QUExMUVFQjBEQ0Q4MzRDNEY5QUUwMi9NLVZDWFFOby1DXzRXNXVFZjBFaml0V05U bEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL00tVkNYUU5vLUNfNFc1dUVmMEVqaXRXTlRsQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkQ1QS81RkI3REMwOEI5QUExMUVFQjBEQ0Q4MzRDNEY5QUUwMi9NLVZDWFFOby1D XzRXNXVFZjBFaml0V05UbEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsBbUkr1AWaPy/YFtZe++sDHco7RusTNXad/wIbB14KMMzOnWDZR02 Jo1POgEYPkv4f1COkDM1TmejnN5XbB1Br10UMw5ft6rjJkOSxkeRNS7ekn1+r/qa OFBBlOCZFY/hQXL2yIcAeVbu5+b3PfWVd0uVjV9/xDPXwz4DclLlMPSgI0tAO7QE m19TMvk/3+A7rfYuy0QrDmH6koet1mKHC3dVFYh+ET7+sOJtvJvNc2ZGiYlTD9Tj peL1zTzbeVe8kxr7pwNVvWvTFBeY8ey6Mi84U0XjGqHnlDW4dHU1rYxVeJCX6CHA SE4U+mW0baDo9y93Xy5ZXTJyeRClVqRa -----END CERTIFICATE-----Generated at Wed Dec 10 13:16:03 2025 by rpki-client