This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft File: MGSQ23RcleyGYUmf_IJkZnumf4o.mft (raw, json) Hash identifier: w1xwAo+1eYxKBSFiEYLF/C/VixQpS/9beN+FTe/5wTw= Subject key identifier: 3A:1F:B9:3E:DF:C7:DE:AB:FE:AD:36:40:61:5E:AF:A5:D7:9E:CF:DD Authority key identifier: 30:64:90:DB:74:5C:95:EC:86:61:49:9F:FC:82:64:66:7B:A6:7F:8A Certificate issuer: /CN=A91CE7A4/serialNumber=306490DB745C95EC8661499FFC8264667BA67F8A Certificate serial: B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft Manifest number: B5 Signing time: Tue 23 Dec 2025 05:00:07 +0000 Manifest this update: Tue 23 Dec 2025 05:00:06 +0000 Manifest next update: Tue 30 Dec 2025 05:00:06 +0000 Files and hashes: 1: MGSQ23RcleyGYUmf_IJkZnumf4o.crl (hash: Dz0n/OfziVzqp6Z+6KCRzSc+6ifCzEN4b4Ta6a1TnK8=) 2: 19C407C0CC1011EFBC7E0050C4F9AE02.roa (hash: 0uD06YfXP8jJiypkQtgg/+0Dg/DOv6s8Gpjo5ybB4rE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.crl rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:00:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 182 (0xb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE7A4, serialNumber=306490DB745C95EC8661499FFC8264667BA67F8A Validity Not Before: Dec 23 05:00:06 2025 GMT Not After : Dec 30 05:00:06 2025 GMT Subject: CN=694a21d6-1270 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:b0:45:6a:29:66:5a:88:9a:7f:d4:1f:6e:62: b6:eb:67:44:26:ea:8d:5b:0d:93:6e:16:e4:e2:f6: ff:81:a9:a7:76:64:eb:94:8c:dd:e4:97:aa:17:20: 7a:d0:8b:05:75:8a:39:c8:18:45:a0:0a:2f:76:5c: aa:7a:e8:98:3a:3f:6a:7f:2f:7c:d2:76:66:91:40: 19:f3:16:3f:2b:1a:26:76:0e:c1:d5:13:38:81:e9: d0:63:d9:a5:94:17:ec:a8:a1:2e:02:11:27:b6:02: d2:64:dc:dc:d2:ae:0f:11:32:a3:61:6d:b6:c8:c5: f9:c4:ad:9e:d2:14:4a:98:45:18:2b:6c:03:44:9b: 4e:76:63:35:dc:44:df:c4:2d:9d:70:49:c3:45:8a: ea:4a:05:56:1f:7e:84:36:3b:36:12:fb:59:3c:d5: 8c:6a:48:cc:c8:4f:43:0c:c8:21:0d:4b:f1:57:76: 8c:d9:85:fd:0a:9d:af:22:ae:78:51:dd:2e:79:f8: 62:33:73:dd:bc:59:ff:9c:6c:82:bb:49:8a:7e:2b: 18:27:dd:b5:1b:67:88:58:13:73:43:e1:c8:82:23: 96:32:32:65:01:b1:0e:2e:71:85:0d:e0:e7:cf:29: ee:a6:c2:bd:ab:38:80:e0:ea:98:a9:d3:73:45:d3: d7:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:1F:B9:3E:DF:C7:DE:AB:FE:AD:36:40:61:5E:AF:A5:D7:9E:CF:DD X509v3 Authority Key Identifier: keyid:30:64:90:DB:74:5C:95:EC:86:61:49:9F:FC:82:64:66:7B:A6:7F:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:ae:2a:63:ac:cf:a6:26:a9:2b:ce:53:74:a8:49:d5:0e:26: 0f:fc:1f:86:5e:b7:57:23:e5:ce:3e:87:f0:5e:2a:a0:58:8b: c9:60:5e:50:8e:dd:33:db:34:6d:83:ef:a5:6b:01:ec:28:ce: 89:fc:e1:21:7e:74:68:42:54:54:82:2a:af:80:ce:c6:44:66: 42:55:de:c7:99:96:81:be:0a:73:af:02:93:6a:fa:fc:38:26: bf:a0:43:0a:c0:3e:e1:5d:5d:c3:d1:0d:2e:21:69:6f:f6:52: 40:9d:e4:fc:99:5f:6f:8f:40:64:09:42:75:35:05:81:a6:22: 78:11:a8:13:31:0c:fb:67:9c:fa:a9:fe:a4:ac:3f:ab:d1:8e: 30:b0:fd:36:30:2f:8a:45:ba:58:6a:00:1a:89:71:8b:a7:29: 2b:c6:e7:96:50:cc:7f:82:ff:22:0b:44:97:ca:19:fb:45:d4: 29:40:39:d6:53:70:46:7a:67:ff:7a:ba:15:d1:77:b0:fd:03: ad:6f:00:fb:14:63:85:fa:30:87:f3:6c:64:aa:f6:55:60:8d: 6f:69:60:ce:f0:f7:12:17:58:58:86:49:c9:be:c0:8c:b5:1c: f5:8f:60:dc:1c:9c:1d:79:6a:e5:56:5b:5a:47:1a:51:95:43: 98:25:c2:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U3QTQxMTAvBgNVBAUTKDMwNjQ5MERCNzQ1Qzk1RUM4NjYxNDk5RkZDODI2NDY2 N0JBNjdGOEEwHhcNMjUxMjIzMDUwMDA2WhcNMjUxMjMwMDUwMDA2WjAYMRYwFAYD VQQDDA02OTRhMjFkNi0xMjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA27BFailmWoiaf9QfbmK262dEJuqNWw2Tbhbk4vb/gamndmTrlIzd5JeqFyB6 0IsFdYo5yBhFoAovdlyqeuiYOj9qfy980nZmkUAZ8xY/Kxomdg7B1RM4genQY9ml lBfsqKEuAhEntgLSZNzc0q4PETKjYW22yMX5xK2e0hRKmEUYK2wDRJtOdmM13ETf xC2dcEnDRYrqSgVWH36ENjs2EvtZPNWMakjMyE9DDMghDUvxV3aM2YX9Cp2vIq54 Ud0uefhiM3PdvFn/nGyCu0mKfisYJ921G2eIWBNzQ+HIgiOWMjJlAbEOLnGFDeDn zynupsK9qziA4OqYqdNzRdPX9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDofuT7f x96r/q02QGFer6XXns/dMB8GA1UdIwQYMBaAFDBkkNt0XJXshmFJn/yCZGZ7pn+K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTdBNC9CODkwREZEMkND MEYxMUVGQTI3OEZENENDNEY5QUUwMi9NR1NRMjNSY2xleUdZVW1mX0lKa1pudW1m NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01HU1EyM1JjbGV5R1lVbWZfSUprWm51bWY0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTdBNC9CODkwREZEMkNDMEYxMUVGQTI3OEZENENDNEY5QUUwMi9NR1NRMjNSY2xl eUdZVW1mX0lKa1pudW1mNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbripjrM+mJqkrzlN0qEnVDiYP/B+GXrdXI+XOPofwXiqgWIvJYF5Q jt0z2zRtg++lawHsKM6J/OEhfnRoQlRUgiqvgM7GRGZCVd7HmZaBvgpzrwKTavr8 OCa/oEMKwD7hXV3D0Q0uIWlv9lJAneT8mV9vj0BkCUJ1NQWBpiJ4EagTMQz7Z5z6 qf6krD+r0Y4wsP02MC+KRbpYagAaiXGLpykrxueWUMx/gv8iC0SXyhn7RdQpQDnW U3BGemf/eroV0Xew/QOtbwD7FGOF+jCH82xkqvZVYI1vaWDO8PcSF1hYhknJvsCM tRz1j2DcHJwdeWrlVltaRxpRlUOYJcKl -----END CERTIFICATE-----Generated at Wed Dec 24 20:25:29 2025 by rpki-client