This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft File: MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft (raw, json) Hash identifier: qpPgCtxZBfIT4R0HEI/diuRqev2qYD3B00AZV3nvuhs= Subject key identifier: D9:B7:3C:7B:07:25:85:F9:42:C2:09:3B:6F:D0:63:FF:F8:08:D8:FB Authority key identifier: 32:70:F3:AC:D9:71:EE:DF:84:61:75:48:F7:2E:51:E2:2A:50:3C:F8 Certificate issuer: /CN=A91DA023/serialNumber=3270F3ACD971EEDF84617548F72E51E22A503CF8 Certificate serial: 34E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft Manifest number: 34E1 Signing time: Sat 06 Dec 2025 14:56:14 +0000 Manifest this update: Sat 06 Dec 2025 14:56:14 +0000 Manifest next update: Sat 13 Dec 2025 14:56:14 +0000 Files and hashes: 1: MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl (hash: SzNKWtkjrhUlgpC6JKFO0gKTm5Lo3rsgBYOnJ/O5SJg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:56:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13537 (0x34e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA023, serialNumber=3270F3ACD971EEDF84617548F72E51E22A503CF8 Validity Not Before: Dec 6 14:56:14 2025 GMT Not After : Dec 13 14:56:14 2025 GMT Subject: CN=6934440e-8a9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:ba:6f:e7:3f:85:ff:5b:ce:14:06:a6:25:2e: 65:e7:d9:82:af:bb:a8:cc:9f:a9:6b:02:24:08:49: 7c:ad:41:a5:1b:b9:c9:72:f9:4c:dd:ec:52:db:14: f3:43:c8:2b:d0:66:f6:b4:85:98:80:0a:d1:7c:82: 62:24:8c:00:1e:19:82:ea:63:38:f6:75:3b:84:99: a9:e6:88:ef:c4:95:68:d8:27:04:d4:f6:5b:b4:bb: 81:77:79:cb:37:01:09:8d:4f:de:41:3b:80:05:22: 46:44:4c:ca:7e:09:c3:ef:6b:4e:0a:79:5e:d4:f8: 22:81:9e:46:db:fa:3a:71:09:36:11:ca:12:12:4c: 3e:a9:8d:6c:be:9a:ea:74:d5:75:af:1c:cf:1d:88: fd:99:fe:55:20:e9:c9:85:e3:ef:d6:7c:f0:19:f5: a3:af:25:6f:4a:1d:05:24:87:b3:26:b5:4c:01:95: ac:8e:6a:b0:ef:70:51:6a:86:19:d1:bb:fe:58:f1: 39:7e:8b:79:87:4d:e4:9a:a4:3e:f9:56:51:ae:60: 35:0c:f4:4e:1a:4b:cc:9c:85:34:9c:7c:e6:e5:73: 1b:34:a8:78:74:ee:fa:f4:bd:5e:03:61:dd:f4:eb: ee:9d:99:af:72:c1:a9:2d:fe:8c:85:72:42:2e:d0: 7a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:B7:3C:7B:07:25:85:F9:42:C2:09:3B:6F:D0:63:FF:F8:08:D8:FB X509v3 Authority Key Identifier: keyid:32:70:F3:AC:D9:71:EE:DF:84:61:75:48:F7:2E:51:E2:2A:50:3C:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:8a:80:c3:e9:a8:9a:08:65:6a:27:72:3f:69:2e:b4:5c:f3: 8b:6c:a8:43:62:f0:3a:5d:bf:f7:3f:08:f6:80:db:d2:05:3e: fc:b8:81:5a:53:40:a8:f5:61:78:38:fd:23:9c:1a:54:1b:f1: c7:0a:e8:c9:78:f4:17:ea:81:c3:ec:ee:d1:15:b6:79:45:45: d0:c4:6a:cd:32:4c:2c:eb:c1:58:87:e4:0a:f4:0a:a5:d4:20: d8:39:38:98:61:7e:d3:3b:9f:8b:00:66:ea:76:b3:ff:db:49: 0f:a7:b3:a9:42:a1:e2:36:7b:c3:12:1d:4d:e1:2a:53:d1:f4: c9:09:60:0b:44:5e:cf:4d:c7:d2:72:e9:0f:b0:5e:a6:3b:8b: 74:20:57:0d:f4:3e:cc:44:15:68:01:04:4c:79:75:70:a8:de: 8e:89:f3:97:8f:52:fd:2e:20:92:0e:8b:a8:4b:ea:40:f9:8b: 76:d8:2d:88:b5:94:79:14:df:31:5e:28:db:b1:11:ef:d9:06: ca:2e:87:50:ed:a7:94:4f:65:f2:72:ee:09:ac:40:a4:b5:91: 96:9d:7b:97:25:f0:ce:8c:86:81:26:9e:5f:97:71:74:c9:a3: a3:4d:7a:5c:4f:4b:cf:d9:be:e8:e1:47:39:b5:3d:0e:cf:d6: 71:eb:fb:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEwMjMxMTAvBgNVBAUTKDMyNzBGM0FDRDk3MUVFREY4NDYxNzU0OEY3MkU1MUUy MkE1MDNDRjgwHhcNMjUxMjA2MTQ1NjE0WhcNMjUxMjEzMTQ1NjE0WjAYMRYwFAYD VQQDEw02OTM0NDQwZS04YTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4rpv5z+F/1vOFAamJS5l59mCr7uozJ+pawIkCEl8rUGlG7nJcvlM3exS2xTz Q8gr0Gb2tIWYgArRfIJiJIwAHhmC6mM49nU7hJmp5ojvxJVo2CcE1PZbtLuBd3nL NwEJjU/eQTuABSJGREzKfgnD72tOCnle1PgigZ5G2/o6cQk2EcoSEkw+qY1svprq dNV1rxzPHYj9mf5VIOnJhePv1nzwGfWjryVvSh0FJIezJrVMAZWsjmqw73BRaoYZ 0bv+WPE5fot5h03kmqQ++VZRrmA1DPROGkvMnIU0nHzm5XMbNKh4dO769L1eA2Hd 9OvunZmvcsGpLf6MhXJCLtB6vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNm3PHsH JYX5QsIJO2/QY//4CNj7MB8GA1UdIwQYMBaAFDJw86zZce7fhGF1SPcuUeIqUDz4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTAyMy82RjE3MkRGMDFE QTAxMUUyQTFDM0E2OTEwOEIwMkNEMi9NbkR6ck5seDd0LUVZWFZJOXk1UjRpcFFQ UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01uRHpyTmx4N3QtRVlYVkk5eTVSNGlwUVBQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTAyMy82RjE3MkRGMDFEQTAxMUUyQTFDM0E2OTEwOEIwMkNEMi9NbkR6ck5seDd0 LUVZWFZJOXk1UjRpcFFQUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOioDD6aiaCGVqJ3I/aS60XPOLbKhDYvA6Xb/3Pwj2gNvSBT78uIFa U0Co9WF4OP0jnBpUG/HHCujJePQX6oHD7O7RFbZ5RUXQxGrNMkws68FYh+QK9Aql 1CDYOTiYYX7TO5+LAGbqdrP/20kPp7OpQqHiNnvDEh1N4SpT0fTJCWALRF7PTcfS cukPsF6mO4t0IFcN9D7MRBVoAQRMeXVwqN6OifOXj1L9LiCSDouoS+pA+Yt22C2I tZR5FN8xXijbsRHv2QbKLodQ7aeUT2Xycu4JrECktZGWnXuXJfDOjIaBJp5fl3F0 yaOjTXpcT0vP2b7o4Uc5tT0Oz9Zx6/vA -----END CERTIFICATE-----Generated at Sat Dec 6 23:16:18 2025 by rpki-client