This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft File: mGsNU3ZLyD3A4HLsrzacefIqOdc.mft (raw, json) Hash identifier: CaFdiJK0IvBCB2/7NOje5836ol+7l79Zu2oAgQNfIPI= Subject key identifier: 41:A9:88:1C:98:5B:08:B1:BE:27:62:17:9C:57:4E:BD:8C:B7:0F:C7 Authority key identifier: 98:6B:0D:53:76:4B:C8:3D:C0:E0:72:EC:AF:36:9C:79:F2:2A:39:D7 Certificate issuer: /CN=A91DD799/serialNumber=986B0D53764BC83DC0E072ECAF369C79F22A39D7 Certificate serial: 076D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft Manifest number: 076D Signing time: Sat 06 Dec 2025 14:43:11 +0000 Manifest this update: Sat 06 Dec 2025 14:43:11 +0000 Manifest next update: Sat 13 Dec 2025 14:43:11 +0000 Files and hashes: 1: mGsNU3ZLyD3A4HLsrzacefIqOdc.crl (hash: 3HmUIMoGHUJytm0Rpl/D5YoY6fEMG5ERA9Ohn5rWRsE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.crl rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:43:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1901 (0x76d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD799, serialNumber=986B0D53764BC83DC0E072ECAF369C79F22A39D7 Validity Not Before: Dec 6 14:43:11 2025 GMT Not After : Dec 13 14:43:11 2025 GMT Subject: CN=693440ff-87bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:cd:56:5f:6d:d1:c1:8f:2e:7b:4e:cf:5f:8f: fb:5f:af:dd:bd:7f:0e:f1:1c:5d:6a:5a:5a:f0:20: 63:53:1a:4b:01:41:1b:11:0e:3b:20:e7:dc:72:72: bc:7f:7b:01:cc:a8:28:49:cc:44:73:f9:eb:85:b1: d0:5e:c6:3d:49:75:0b:cf:72:b4:d8:4d:2a:6b:09: f8:f3:69:76:91:1c:d4:bb:4a:5d:12:29:e0:ac:d3: 54:39:2c:24:76:f2:de:b3:a4:ea:5e:8e:f1:65:af: 83:3c:02:39:d4:45:62:47:2b:17:1e:5c:ef:28:d3: e4:ae:fe:11:f0:7e:b5:28:d0:f8:78:31:81:6d:ed: 77:1d:61:06:8c:91:d4:fc:70:1f:98:46:21:05:3a: 04:34:2e:df:d6:c7:a0:b4:87:da:1f:bd:b9:f1:7b: e8:4e:f2:a9:ae:1d:dc:d8:df:6a:33:3a:7f:10:d1: 9e:99:47:4c:82:cc:e8:cd:95:42:6d:e8:e2:54:1a: 69:38:bc:d5:27:09:59:8f:d8:53:a0:06:6d:a5:ee: 3a:bc:25:5f:50:f7:ab:a9:91:9f:2a:0d:4c:0f:be: 9a:f6:6c:d6:b2:a4:13:41:c5:e7:4b:f7:62:ae:0f: 38:d4:38:19:e5:ae:ab:a0:8a:70:79:55:87:19:78: d2:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:A9:88:1C:98:5B:08:B1:BE:27:62:17:9C:57:4E:BD:8C:B7:0F:C7 X509v3 Authority Key Identifier: keyid:98:6B:0D:53:76:4B:C8:3D:C0:E0:72:EC:AF:36:9C:79:F2:2A:39:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:d7:4e:1f:c9:71:e0:83:ba:a6:0e:a2:af:ca:30:20:63:6a: 1b:0b:09:58:ff:48:bf:2f:22:85:45:ed:7f:27:46:e1:49:57: a5:94:25:12:0c:c5:e1:f1:b6:7d:19:55:ec:4d:c0:ab:5c:1b: 4f:57:83:96:96:25:2a:80:4c:58:0a:8b:83:02:2a:ad:20:f5: 3f:31:3e:d8:6f:2b:6f:2e:c3:94:7f:a8:f4:19:ba:fa:37:fd: e7:8f:62:af:d1:ba:23:20:01:ba:91:53:6f:36:15:f5:97:2d: d2:1e:8f:bf:d0:2a:c8:6e:b3:9a:38:14:82:63:3d:32:62:e5: 2c:e4:c9:a2:4c:a5:74:fd:99:c4:aa:55:bf:69:c0:b6:42:18: aa:2a:1d:74:d4:71:90:99:70:82:c9:f8:00:40:21:a5:2f:a7: 4a:7e:61:84:ce:72:7e:86:fc:36:e5:61:b5:64:f9:0e:b3:ba: 6d:a2:74:8a:8c:cf:ce:6f:3b:9a:87:0f:5a:2c:5c:36:89:fb: d0:5d:80:ab:56:04:ee:35:94:3f:00:8c:bf:7d:88:0b:aa:c7: 3b:10:58:f9:db:22:12:c9:a9:4c:85:ae:b8:3e:b7:fc:f2:e1: 71:01:c0:6f:8a:a4:2d:69:90:9b:d0:e0:a8:06:30:53:30:db: 9a:e1:31:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB20wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ3OTkxMTAvBgNVBAUTKDk4NkIwRDUzNzY0QkM4M0RDMEUwNzJFQ0FGMzY5Qzc5 RjIyQTM5RDcwHhcNMjUxMjA2MTQ0MzExWhcNMjUxMjEzMTQ0MzExWjAYMRYwFAYD VQQDEw02OTM0NDBmZi04N2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApc1WX23RwY8ue07PX4/7X6/dvX8O8Rxdalpa8CBjUxpLAUEbEQ47IOfccnK8 f3sBzKgoScxEc/nrhbHQXsY9SXULz3K02E0qawn482l2kRzUu0pdEingrNNUOSwk dvLes6TqXo7xZa+DPAI51EViRysXHlzvKNPkrv4R8H61KND4eDGBbe13HWEGjJHU /HAfmEYhBToENC7f1segtIfaH7258XvoTvKprh3c2N9qMzp/ENGemUdMgszozZVC bejiVBppOLzVJwlZj9hToAZtpe46vCVfUPerqZGfKg1MD76a9mzWsqQTQcXnS/di rg841DgZ5a6roIpweVWHGXjSKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEGpiByY WwixvidiF5xXTr2Mtw/HMB8GA1UdIwQYMBaAFJhrDVN2S8g9wOBy7K82nHnyKjnX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDc5OS8xM0NBODJGQTQz RkIxMUVCOUY3M0Q2M0NDNEY5QUUwMi9tR3NOVTNaTHlEM0E0SExzcnphY2VmSXFP ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21Hc05VM1pMeUQzQTRITHNyemFjZWZJcU9kYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDc5OS8xM0NBODJGQTQzRkIxMUVCOUY3M0Q2M0NDNEY5QUUwMi9tR3NOVTNaTHlE M0E0SExzcnphY2VmSXFPZGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJ104fyXHgg7qmDqKvyjAgY2obCwlY/0i/LyKFRe1/J0bhSVellCUS DMXh8bZ9GVXsTcCrXBtPV4OWliUqgExYCouDAiqtIPU/MT7YbytvLsOUf6j0Gbr6 N/3nj2Kv0bojIAG6kVNvNhX1ly3SHo+/0CrIbrOaOBSCYz0yYuUs5MmiTKV0/ZnE qlW/acC2QhiqKh101HGQmXCCyfgAQCGlL6dKfmGEznJ+hvw25WG1ZPkOs7ptonSK jM/Obzuahw9aLFw2ifvQXYCrVgTuNZQ/AIy/fYgLqsc7EFj52yISyalMha64Prf8 8uFxAcBviqQtaZCb0OCoBjBTMNua4TFs -----END CERTIFICATE-----Generated at Sat Dec 6 18:01:53 2025 by rpki-client