This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft File: MGcPYbflDgsLiOclHeh4TAPJ5GI.mft (raw, json) Hash identifier: 3bK7WdDdjtDfqAWCga3b91OthvWta+8vAX8PNvYxNm4= Subject key identifier: 70:9F:55:6A:F8:34:39:E7:B4:2C:BD:09:19:0F:63:6D:0F:B0:68:BB Authority key identifier: 30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 Certificate issuer: /CN=A91CE6EC/serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Certificate serial: 0124 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft Manifest number: 0121 Signing time: Thu 18 Dec 2025 15:39:37 +0000 Manifest this update: Thu 18 Dec 2025 15:39:37 +0000 Manifest next update: Thu 25 Dec 2025 15:39:37 +0000 Files and hashes: 1: MGcPYbflDgsLiOclHeh4TAPJ5GI.crl (hash: Rl1gvCW60WtmmtRI/74A/Ar2KoGR/TJbHfAXTIaoNQs=) 2: 038610FC2D1E11EFA25C6D16C4F9AE02.roa (hash: fWZETNQO/nq4+BYBCH9MSAL8N1aF88n2/dhae6ZuhiQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 15:39:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 292 (0x124) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6EC, serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Validity Not Before: Dec 18 15:39:37 2025 GMT Not After : Dec 25 15:39:37 2025 GMT Subject: CN=69442039-8d7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ab:bf:23:46:f7:00:f8:cc:09:4e:3c:6c:2c: 10:d9:43:59:6d:4f:17:52:86:0d:75:0e:4d:fb:81: 2e:4b:36:16:74:78:a4:12:41:9d:30:55:64:71:65: 97:b4:70:08:f3:ef:4c:54:40:35:75:3e:dc:2b:4a: ae:d8:e8:95:dd:b3:64:f0:84:63:50:ae:ee:61:31: cd:d4:f4:8f:e4:04:b2:93:7b:aa:62:0e:46:1b:1b: 22:8a:59:c7:08:a1:f8:24:87:56:83:3a:70:57:43: 7c:48:e2:fc:36:82:c2:4b:a2:99:60:91:9b:e5:7c: 7b:8b:9f:2e:98:52:41:c4:e6:03:8c:8f:21:ea:2b: a8:48:2d:97:d5:5c:71:11:c2:90:0b:1c:e2:4a:ef: 10:df:56:9b:c6:56:52:b1:25:67:f9:09:63:75:c3: d6:7f:e1:f0:5f:f1:97:db:a8:06:ce:38:e0:a2:2e: 20:ef:62:9a:b8:cf:7a:e6:72:8a:73:5e:5d:df:35: cc:4f:2e:72:89:72:e4:6a:1c:ed:30:26:9b:70:1f: 46:f4:ed:4b:f0:d4:6c:af:e7:db:ec:29:de:11:db: ce:06:24:f2:a1:37:89:db:b4:94:b8:dc:32:e1:68: 17:aa:39:c5:78:81:8e:e2:6e:37:7b:9a:a6:73:13: 3e:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:9F:55:6A:F8:34:39:E7:B4:2C:BD:09:19:0F:63:6D:0F:B0:68:BB X509v3 Authority Key Identifier: keyid:30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:35:98:f1:10:b8:b3:26:52:b7:82:8b:7e:b0:4c:8c:57:5b: ee:57:18:7a:5b:3a:d7:17:ef:95:2b:60:15:32:be:78:01:9b: 57:8b:6c:16:3c:3c:27:bc:c1:a5:af:cd:6a:1c:8a:cc:8b:57: aa:e1:f6:17:7e:71:71:ed:6b:40:76:85:c6:01:d1:9c:9d:60: c8:7e:9a:c6:a0:44:cf:26:f2:13:99:b7:44:ad:54:d6:e4:fc: 9b:17:89:dc:5b:b0:30:90:04:d5:d8:1e:20:37:9c:e3:7f:20: a8:22:3a:b3:27:9d:db:a8:d5:70:28:78:32:af:d5:6c:32:07: db:f4:21:a2:9b:94:18:63:f4:a3:4b:c5:e0:d1:03:36:b3:46: b2:6c:e4:5c:b2:2e:f7:cc:59:d8:f4:2c:87:e8:37:06:f6:bf: 06:84:46:f8:2a:45:43:a6:25:86:e2:26:6b:1b:1d:5f:39:41: 30:d1:ca:87:20:95:ac:05:ba:76:6b:f4:d6:57:a0:2d:67:3d: 88:a6:c9:bb:40:5c:e4:fe:bb:6b:0c:2a:b5:c1:7c:14:3a:7a: 04:10:9d:e2:f9:81:c3:63:04:80:28:66:56:e4:91:7b:ea:e9: c9:25:b2:83:8e:18:18:1f:bb:6f:ea:e5:e1:ae:75:91:28:44: 51:1a:0d:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2RUMxMTAvBgNVBAUTKDMwNjcwRjYxQjdFNTBFMEIwQjg4RTcyNTFERTg3ODRD MDNDOUU0NjIwHhcNMjUxMjE4MTUzOTM3WhcNMjUxMjI1MTUzOTM3WjAYMRYwFAYD VQQDDA02OTQ0MjAzOS04ZDdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqu/I0b3APjMCU48bCwQ2UNZbU8XUoYNdQ5N+4EuSzYWdHikEkGdMFVkcWWX tHAI8+9MVEA1dT7cK0qu2OiV3bNk8IRjUK7uYTHN1PSP5ASyk3uqYg5GGxsiilnH CKH4JIdWgzpwV0N8SOL8NoLCS6KZYJGb5Xx7i58umFJBxOYDjI8h6iuoSC2X1Vxx EcKQCxziSu8Q31abxlZSsSVn+QljdcPWf+HwX/GX26gGzjjgoi4g72KauM965nKK c15d3zXMTy5yiXLkahztMCabcB9G9O1L8NRsr+fb7CneEdvOBiTyoTeJ27SUuNwy 4WgXqjnFeIGO4m43e5qmcxM+DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHCfVWr4 NDnntCy9CRkPY20PsGi7MB8GA1UdIwQYMBaAFDBnD2G35Q4LC4jnJR3oeEwDyeRi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZFQy8wODJBODlGMDJB MjkxMUVGODg5NUYxMUNDNEY5QUUwMi9NR2NQWWJmbERnc0xpT2NsSGVoNFRBUEo1 R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01HY1BZYmZsRGdzTGlPY2xIZWg0VEFQSjVHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZFQy8wODJBODlGMDJBMjkxMUVGODg5NUYxMUNDNEY5QUUwMi9NR2NQWWJmbERn c0xpT2NsSGVoNFRBUEo1R0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5NZjxELizJlK3got+sEyMV1vuVxh6WzrXF++VK2AVMr54AZtXi2wW PDwnvMGlr81qHIrMi1eq4fYXfnFx7WtAdoXGAdGcnWDIfprGoETPJvITmbdErVTW 5PybF4ncW7AwkATV2B4gN5zjfyCoIjqzJ53bqNVwKHgyr9VsMgfb9CGim5QYY/Sj S8Xg0QM2s0aybORcsi73zFnY9CyH6DcG9r8GhEb4KkVDpiWG4iZrGx1fOUEw0cqH IJWsBbp2a/TWV6AtZz2Ipsm7QFzk/rtrDCq1wXwUOnoEEJ3i+YHDYwSAKGZW5JF7 6unJJbKDjhgYH7tv6uXhrnWRKERRGg00 -----END CERTIFICATE-----Generated at Sat Dec 20 00:54:40 2025 by rpki-client