This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft File: MGcPYbflDgsLiOclHeh4TAPJ5GI.mft (raw, json) Hash identifier: Ot55JpuNiYtKUBvGmS4yIed93W3GOh7/qkLUDBA0J3k= Subject key identifier: A9:6D:26:C4:93:06:1B:A3:35:B7:9B:41:ED:30:6D:8A:2B:01:30:3F Authority key identifier: 30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 Certificate issuer: /CN=A91CE6EC/serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Certificate serial: 0129 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft Manifest number: 0126 Signing time: Sun 28 Dec 2025 15:34:14 +0000 Manifest this update: Sun 28 Dec 2025 15:34:14 +0000 Manifest next update: Sun 04 Jan 2026 15:34:14 +0000 Files and hashes: 1: MGcPYbflDgsLiOclHeh4TAPJ5GI.crl (hash: dldNmug0OjM+ovSzL8BOGnM8zDweUv2Kg/kqRQu5VZg=) 2: 038610FC2D1E11EFA25C6D16C4F9AE02.roa (hash: fWZETNQO/nq4+BYBCH9MSAL8N1aF88n2/dhae6ZuhiQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 15:34:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6EC, serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Validity Not Before: Dec 28 15:34:14 2025 GMT Not After : Jan 4 15:34:14 2026 GMT Subject: CN=69514df6-e3fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5d:bc:50:83:68:5b:62:f2:a6:b9:b5:a3:90: d2:69:e6:9b:19:6b:6c:4a:ed:dd:c0:11:71:fb:bf: 61:ba:b1:13:7a:5d:5e:55:38:35:1e:79:5d:b7:5a: 08:b3:57:db:3f:c0:62:1e:3f:bd:ac:20:c5:85:d8: ab:20:44:18:6a:a0:20:0f:a6:27:d9:e2:16:2d:7f: c1:bf:a1:c1:3c:0e:e8:b8:41:e2:81:4e:01:1a:df: ad:a8:ff:b2:f5:61:71:90:dc:2f:aa:ce:2e:28:d8: 22:cf:7f:09:a2:e6:c6:ae:ff:05:e0:f5:80:a8:43: 97:2f:8e:46:1f:63:a1:df:5b:97:de:01:65:b6:73: 58:40:9c:02:28:52:b7:56:3e:fd:5d:50:c9:4c:78: 29:5c:6f:d8:e7:65:23:6a:7e:2d:cb:d8:2c:14:7e: c1:61:58:13:81:37:2a:4d:28:7e:95:6d:80:a2:5a: 0c:af:f3:e3:06:3b:29:e8:0f:72:1c:c3:4e:06:a6: bd:db:4a:16:35:4d:8f:ab:3f:24:e1:12:bd:bd:46: 76:e5:5c:89:c9:5f:3e:a7:5b:5c:e5:4b:48:79:18: 03:25:9a:6b:a8:60:05:bd:6f:54:f8:cc:12:04:d3: e2:d2:35:f0:8a:9f:62:e4:7d:8a:35:85:8b:10:c9: ef:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:6D:26:C4:93:06:1B:A3:35:B7:9B:41:ED:30:6D:8A:2B:01:30:3F X509v3 Authority Key Identifier: keyid:30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:68:03:f8:e2:81:07:1c:76:4f:0c:79:30:63:08:bc:9d:52: 56:06:32:2d:ea:45:88:a0:3b:81:68:08:21:39:cd:ec:98:f2: c3:96:9f:10:3d:fe:fc:bd:c2:fd:82:47:1d:ae:75:7d:ad:34: aa:3b:39:be:b8:12:b2:d5:d6:11:49:be:c8:6e:23:1f:8e:a1: 8e:74:db:4a:4f:b1:68:8d:73:4f:7d:6d:7b:46:5c:15:80:ea: 22:e1:37:0f:6b:5b:54:47:c0:d2:f2:6c:20:1f:d9:2f:59:24: 50:3d:6b:dd:d2:df:ac:2a:fc:7a:21:94:d2:42:92:a5:6d:07: 22:af:fe:6b:d4:78:ee:b4:1a:7e:3e:6e:5a:1a:3e:08:a9:a7: 3a:e3:96:3f:ae:97:59:f6:d5:f4:cd:e7:85:7f:9b:11:0a:56: 4c:78:d1:7e:8a:bb:49:37:5a:db:32:27:60:dc:13:35:d1:ea: 3d:ae:f9:29:53:bc:d8:44:04:0a:3b:60:d7:2a:2a:17:e6:7e: 01:fe:eb:ed:6c:90:db:77:7f:2a:3b:ce:00:81:af:1c:12:f0: 47:80:ee:f5:f2:a7:e9:b8:f6:7a:a5:e1:f1:0b:79:92:88:4c: 99:e3:44:f0:a1:22:23:1f:a8:00:c1:3f:a2:63:30:47:d5:09: f9:7a:f3:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2RUMxMTAvBgNVBAUTKDMwNjcwRjYxQjdFNTBFMEIwQjg4RTcyNTFERTg3ODRD MDNDOUU0NjIwHhcNMjUxMjI4MTUzNDE0WhcNMjYwMTA0MTUzNDE0WjAYMRYwFAYD VQQDDA02OTUxNGRmNi1lM2ZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsF28UINoW2Lyprm1o5DSaeabGWtsSu3dwBFx+79hurETel1eVTg1Hnldt1oI s1fbP8BiHj+9rCDFhdirIEQYaqAgD6Yn2eIWLX/Bv6HBPA7ouEHigU4BGt+tqP+y 9WFxkNwvqs4uKNgiz38JoubGrv8F4PWAqEOXL45GH2Oh31uX3gFltnNYQJwCKFK3 Vj79XVDJTHgpXG/Y52Ujan4ty9gsFH7BYVgTgTcqTSh+lW2AoloMr/PjBjsp6A9y HMNOBqa920oWNU2Pqz8k4RK9vUZ25VyJyV8+p1tc5UtIeRgDJZprqGAFvW9U+MwS BNPi0jXwip9i5H2KNYWLEMnv3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKltJsST BhujNbebQe0wbYorATA/MB8GA1UdIwQYMBaAFDBnD2G35Q4LC4jnJR3oeEwDyeRi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZFQy8wODJBODlGMDJB MjkxMUVGODg5NUYxMUNDNEY5QUUwMi9NR2NQWWJmbERnc0xpT2NsSGVoNFRBUEo1 R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01HY1BZYmZsRGdzTGlPY2xIZWg0VEFQSjVHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZFQy8wODJBODlGMDJBMjkxMUVGODg5NUYxMUNDNEY5QUUwMi9NR2NQWWJmbERn c0xpT2NsSGVoNFRBUEo1R0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEaAP44oEHHHZPDHkwYwi8nVJWBjIt6kWIoDuBaAghOc3smPLDlp8Q Pf78vcL9gkcdrnV9rTSqOzm+uBKy1dYRSb7IbiMfjqGOdNtKT7FojXNPfW17RlwV gOoi4TcPa1tUR8DS8mwgH9kvWSRQPWvd0t+sKvx6IZTSQpKlbQcir/5r1HjutBp+ Pm5aGj4Iqac645Y/rpdZ9tX0zeeFf5sRClZMeNF+irtJN1rbMidg3BM10eo9rvkp U7zYRAQKO2DXKioX5n4B/uvtbJDbd38qO84Aga8cEvBHgO718qfpuPZ6peHxC3mS iEyZ40TwoSIjH6gAwT+iYzBH1Qn5evME -----END CERTIFICATE-----Generated at Tue Dec 30 07:06:39 2025 by rpki-client