This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft File: MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft (raw, json) Hash identifier: aGmLtr5F6KgE0mXQaGGI4wyHlQ7ikTk0/Z7Cd6iD8og= Subject key identifier: 67:12:60:74:9E:99:44:3E:63:90:19:CF:87:00:1F:61:34:4B:4D:94 Authority key identifier: 32:70:F3:AC:D9:71:EE:DF:84:61:75:48:F7:2E:51:E2:2A:50:3C:F8 Certificate issuer: /CN=A91DA023/serialNumber=3270F3ACD971EEDF84617548F72E51E22A503CF8 Certificate serial: 34E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft Manifest number: 34E7 Signing time: Thu 18 Dec 2025 14:59:59 +0000 Manifest this update: Thu 18 Dec 2025 14:59:59 +0000 Manifest next update: Thu 25 Dec 2025 14:59:59 +0000 Files and hashes: 1: MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl (hash: 1xKcpf5kCElSSWV7B0f7UQtCCkNg05PPBX6IZFfVtC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 14:59:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13543 (0x34e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA023, serialNumber=3270F3ACD971EEDF84617548F72E51E22A503CF8 Validity Not Before: Dec 18 14:59:59 2025 GMT Not After : Dec 25 14:59:59 2025 GMT Subject: CN=694416ef-aff4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:63:df:e6:ba:f0:a0:b8:dc:0a:8e:21:f4:27: 40:fc:c3:9d:e9:ff:b6:b3:6f:e0:12:dc:43:44:9c: 56:44:27:ab:c1:6c:44:56:62:d7:6d:bb:68:58:00: 76:a2:d0:68:e0:8a:0f:53:84:54:07:3d:27:05:4d: d7:ab:3d:fb:07:b4:a6:f9:3e:41:f0:32:8b:01:37: 38:67:b4:7f:4c:cc:70:21:3e:fe:c6:9e:87:6e:33: 98:7e:ec:5e:ef:c5:71:21:db:c4:41:68:77:34:98: ec:4e:41:43:9c:2b:47:28:a6:0e:52:6d:25:1e:1a: 54:b5:27:d1:01:13:c3:42:21:e8:a0:7f:16:be:a7: 7a:99:20:03:45:54:85:70:61:1d:46:df:bc:f9:50: 5f:fe:00:99:1d:fa:f0:f6:1c:66:3e:da:68:6b:dd: 5c:54:20:c5:d2:6c:94:1a:ce:94:d6:ef:b5:2a:a2: f7:34:53:79:47:79:49:8b:1a:c1:99:90:bd:53:63: 0e:1a:22:36:31:ab:2f:dc:ed:5c:82:4e:b1:ef:f7: 44:19:07:f2:7b:44:ec:eb:0b:ac:0e:ed:3c:be:1a: ec:cd:fc:51:10:3f:7c:9f:db:84:0e:c7:81:33:e9: 68:f7:b7:b1:9e:b4:96:5c:b2:76:18:cd:7b:f5:0f: 22:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:12:60:74:9E:99:44:3E:63:90:19:CF:87:00:1F:61:34:4B:4D:94 X509v3 Authority Key Identifier: keyid:32:70:F3:AC:D9:71:EE:DF:84:61:75:48:F7:2E:51:E2:2A:50:3C:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:0b:ca:1c:e7:af:3d:fc:cc:3f:0d:fe:de:68:13:05:09:aa: eb:40:d5:eb:07:65:e6:d6:7a:6f:25:53:a1:b8:96:c9:fd:20: 1e:74:16:fa:d2:3d:76:65:d6:72:33:c4:e5:4a:55:00:e0:52: 23:ac:ea:6a:3a:d6:72:33:01:cf:f6:d9:c2:59:2a:a5:99:b6: 49:bb:39:17:bd:c7:28:c4:35:2f:f2:17:d6:1f:26:1b:26:ee: 60:af:71:1d:c6:5c:3e:bd:71:9d:81:05:66:4f:b2:9d:f4:9b: a7:75:04:30:09:a3:e8:23:bf:08:d0:3e:97:c8:b4:cb:64:be: 65:81:e1:89:0e:55:82:24:59:0c:49:e7:e5:6b:db:59:f5:70: 1f:2c:fc:bf:3e:21:bc:36:01:d0:46:52:61:b0:1a:37:78:bd: cb:e3:53:e4:e1:c1:48:6e:0c:06:27:8c:9b:4d:1b:e8:ff:7b: 3b:17:92:57:22:f2:3d:3f:5e:ce:a9:d1:92:b5:ff:88:bb:43: c7:88:db:99:46:69:29:13:56:04:6b:d1:fe:5a:17:cf:c3:45: 1d:74:3f:3d:c1:c2:c8:bf:36:ed:eb:d4:6b:6e:b9:5f:3f:09: 66:1d:74:c0:26:eb:bd:8f:2e:11:a2:0d:82:18:53:3b:7a:da: 46:da:de:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEwMjMxMTAvBgNVBAUTKDMyNzBGM0FDRDk3MUVFREY4NDYxNzU0OEY3MkU1MUUy MkE1MDNDRjgwHhcNMjUxMjE4MTQ1OTU5WhcNMjUxMjI1MTQ1OTU5WjAYMRYwFAYD VQQDDA02OTQ0MTZlZi1hZmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumPf5rrwoLjcCo4h9CdA/MOd6f+2s2/gEtxDRJxWRCerwWxEVmLXbbtoWAB2 otBo4IoPU4RUBz0nBU3Xqz37B7Sm+T5B8DKLATc4Z7R/TMxwIT7+xp6HbjOYfuxe 78VxIdvEQWh3NJjsTkFDnCtHKKYOUm0lHhpUtSfRARPDQiHooH8Wvqd6mSADRVSF cGEdRt+8+VBf/gCZHfrw9hxmPtpoa91cVCDF0myUGs6U1u+1KqL3NFN5R3lJixrB mZC9U2MOGiI2Masv3O1cgk6x7/dEGQfye0Ts6wusDu08vhrszfxRED98n9uEDseB M+lo97exnrSWXLJ2GM179Q8i1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGcSYHSe mUQ+Y5AZz4cAH2E0S02UMB8GA1UdIwQYMBaAFDJw86zZce7fhGF1SPcuUeIqUDz4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTAyMy82RjE3MkRGMDFE QTAxMUUyQTFDM0E2OTEwOEIwMkNEMi9NbkR6ck5seDd0LUVZWFZJOXk1UjRpcFFQ UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01uRHpyTmx4N3QtRVlYVkk5eTVSNGlwUVBQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTAyMy82RjE3MkRGMDFEQTAxMUUyQTFDM0E2OTEwOEIwMkNEMi9NbkR6ck5seDd0 LUVZWFZJOXk1UjRpcFFQUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMC8oc5689/Mw/Df7eaBMFCarrQNXrB2Xm1npvJVOhuJbJ/SAedBb6 0j12ZdZyM8TlSlUA4FIjrOpqOtZyMwHP9tnCWSqlmbZJuzkXvccoxDUv8hfWHyYb Ju5gr3Edxlw+vXGdgQVmT7Kd9JundQQwCaPoI78I0D6XyLTLZL5lgeGJDlWCJFkM Sefla9tZ9XAfLPy/PiG8NgHQRlJhsBo3eL3L41Pk4cFIbgwGJ4ybTRvo/3s7F5JX IvI9P17OqdGStf+Iu0PHiNuZRmkpE1YEa9H+WhfPw0UddD89wcLIvzbt69Rrbrlf PwlmHXTAJuu9jy4Rog2CGFM7etpG2t6l -----END CERTIFICATE-----Generated at Fri Dec 19 23:56:30 2025 by rpki-client