This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF6EF/ACBF6F2A574211F0BEDB455CC4F9AE02/mgI7gKvPTmeX04jA3oFgoW6xXf4.mft File: mgI7gKvPTmeX04jA3oFgoW6xXf4.mft (raw, json) Hash identifier: 78A0Czx9tQ3RtTC9ATbYfD1LrrmAja5J5ex+XhY+E/8= Subject key identifier: 58:F8:60:F8:89:3F:0C:00:10:41:34:EA:23:69:21:34:0A:71:31:A3 Authority key identifier: 9A:02:3B:80:AB:CF:4E:67:97:D3:88:C0:DE:81:60:A1:6E:B1:5D:FE Certificate issuer: /CN=A91EF6EF/serialNumber=9A023B80ABCF4E6797D388C0DE8160A16EB15DFE Certificate serial: 5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgI7gKvPTmeX04jA3oFgoW6xXf4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF6EF/ACBF6F2A574211F0BEDB455CC4F9AE02/mgI7gKvPTmeX04jA3oFgoW6xXf4.mft Manifest number: 5C Signing time: Sun 21 Dec 2025 06:11:11 +0000 Manifest this update: Sun 21 Dec 2025 06:11:11 +0000 Manifest next update: Sun 28 Dec 2025 06:11:11 +0000 Files and hashes: 1: mgI7gKvPTmeX04jA3oFgoW6xXf4.crl (hash: kCHpsLx6p0QuhR3cShpiz/9x4jLE+icl6LcnFaRi+Io=) 2: 3C15F928579311F0B296C030C4F9AE02.roa (hash: kbwAloXsrTWCITEmD+odpUzfYSBQf6qqCRC37VKW0HE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF6EF/ACBF6F2A574211F0BEDB455CC4F9AE02/mgI7gKvPTmeX04jA3oFgoW6xXf4.crl rsync://rpki.apnic.net/member_repository/A91EF6EF/ACBF6F2A574211F0BEDB455CC4F9AE02/mgI7gKvPTmeX04jA3oFgoW6xXf4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgI7gKvPTmeX04jA3oFgoW6xXf4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 06:11:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF6EF, serialNumber=9A023B80ABCF4E6797D388C0DE8160A16EB15DFE Validity Not Before: Dec 21 06:11:11 2025 GMT Not After : Dec 28 06:11:11 2025 GMT Subject: CN=69478f7f-046f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:f2:e0:9f:1f:fe:40:91:2a:04:50:1f:ae:0f: 06:10:e2:62:17:b7:49:81:af:99:1f:0e:5e:b9:6e: 2b:13:90:3a:a9:f9:37:a0:17:45:d5:89:3f:b7:cf: e5:be:9a:50:74:02:c2:36:8e:54:34:d0:7b:ce:2d: 5d:82:5e:ed:d6:d2:ba:52:89:aa:20:41:bd:c6:a3: 94:de:fa:c7:9b:81:bd:77:32:a0:4e:73:65:16:b1: 6f:c1:8b:07:b1:5d:36:90:ed:66:fd:59:68:48:0e: 93:23:bc:24:75:0d:5c:2b:40:01:16:f2:ab:6f:b5: 6b:c0:76:ff:e1:71:19:ff:4e:8a:02:1c:db:5f:79: 95:b7:09:69:37:32:ca:a8:02:1f:35:80:2f:9c:8d: 94:6a:d0:bf:0a:dc:11:7b:04:c3:80:02:64:8e:3e: 07:99:04:e0:1e:0b:b0:7d:0f:9e:a8:1a:1a:dd:c0: 8d:77:97:09:d9:cc:17:c8:f8:83:65:b4:85:df:7b: a1:74:76:43:ac:5d:1b:1c:e2:3e:28:bb:bd:f6:32: 30:21:6f:cb:11:03:7d:41:56:ca:ef:6b:bc:94:17: ea:8d:40:ed:f6:24:6e:bb:04:49:9b:fe:a7:bb:47: dc:9a:8a:f9:cd:fc:18:30:08:37:9f:ea:e3:39:1d: 37:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:F8:60:F8:89:3F:0C:00:10:41:34:EA:23:69:21:34:0A:71:31:A3 X509v3 Authority Key Identifier: keyid:9A:02:3B:80:AB:CF:4E:67:97:D3:88:C0:DE:81:60:A1:6E:B1:5D:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF6EF/ACBF6F2A574211F0BEDB455CC4F9AE02/mgI7gKvPTmeX04jA3oFgoW6xXf4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgI7gKvPTmeX04jA3oFgoW6xXf4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF6EF/ACBF6F2A574211F0BEDB455CC4F9AE02/mgI7gKvPTmeX04jA3oFgoW6xXf4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:dd:4c:3b:0d:94:25:bb:e1:45:a1:da:c6:25:b4:e8:67:48: 6c:f9:e7:30:37:78:e0:00:c9:5e:43:83:3d:2a:96:dd:25:8b: 0c:8e:ab:9d:dd:30:2e:aa:22:d0:f6:0e:c6:2d:c3:d9:59:03: 0f:9b:a8:90:47:4b:65:cc:64:ac:8c:7f:04:3e:65:fa:f3:0f: 00:af:b1:ab:8c:09:7f:54:83:9b:39:ef:23:30:82:d5:24:bc: 9d:cd:ce:b4:00:1c:7e:61:49:6b:3f:e6:ef:9e:d9:54:9f:1f: 5f:0c:8a:59:57:bd:03:25:7e:8a:8f:78:02:ad:89:ec:e1:92: dc:82:46:ac:bb:d4:52:7b:48:06:8f:b6:d4:7a:5b:98:a7:6b: 3f:60:27:7b:4c:fc:a3:ef:80:e2:5d:3b:8c:2f:79:76:36:05: 86:8d:59:6e:2d:da:73:64:7d:e1:df:e9:5b:dc:7d:c1:ff:84: 4d:0d:e9:4c:1f:ac:70:99:5f:21:57:c5:f4:17:6b:5a:68:af: 5e:44:e0:63:e5:2e:01:9c:3a:4a:ad:88:01:25:d4:1e:6a:d3: fe:87:23:24:80:97:4d:f7:de:22:fc:49:3e:32:bd:81:12:30: 0c:d6:60:d2:6a:27:17:a5:80:ff:f8:85:62:87:da:e9:f7:0a: e2:11:07:f5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RjZFRjExMC8GA1UEBRMoOUEwMjNCODBBQkNGNEU2Nzk3RDM4OEMwREU4MTYwQTE2 RUIxNURGRTAeFw0yNTEyMjEwNjExMTFaFw0yNTEyMjgwNjExMTFaMBgxFjAUBgNV BAMMDTY5NDc4ZjdmLTA0NmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDk8uCfH/5AkSoEUB+uDwYQ4mIXt0mBr5kfDl65bisTkDqp+TegF0XViT+3z+W+ mlB0AsI2jlQ00HvOLV2CXu3W0rpSiaogQb3Go5Te+sebgb13MqBOc2UWsW/Biwex XTaQ7Wb9WWhIDpMjvCR1DVwrQAEW8qtvtWvAdv/hcRn/TooCHNtfeZW3CWk3Msqo Ah81gC+cjZRq0L8K3BF7BMOAAmSOPgeZBOAeC7B9D56oGhrdwI13lwnZzBfI+INl tIXfe6F0dkOsXRsc4j4ou732MjAhb8sRA31BVsrva7yUF+qNQO32JG67BEmb/qe7 R9yaivnN/BgwCDef6uM5HTfxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWPhg+Ik/ DAAQQTTqI2khNApxMaMwHwYDVR0jBBgwFoAUmgI7gKvPTmeX04jA3oFgoW6xXf4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVGNkVGL0FDQkY2RjJBNTc0 MjExRjBCRURCNDU1Q0M0RjlBRTAyL21nSTdnS3ZQVG1lWDA0akEzb0Znb1c2eFhm NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbWdJN2dLdlBUbWVYMDRqQTNvRmdvVzZ4WGY0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVG NkVGL0FDQkY2RjJBNTc0MjExRjBCRURCNDU1Q0M0RjlBRTAyL21nSTdnS3ZQVG1l WDA0akEzb0Znb1c2eFhmNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAALdTDsNlCW74UWh2sYltOhnSGz55zA3eOAAyV5Dgz0qlt0liwyOq53d MC6qItD2DsYtw9lZAw+bqJBHS2XMZKyMfwQ+ZfrzDwCvsauMCX9Ug5s57yMwgtUk vJ3NzrQAHH5hSWs/5u+e2VSfH18MillXvQMlfoqPeAKtiezhktyCRqy71FJ7SAaP ttR6W5inaz9gJ3tM/KPvgOJdO4wveXY2BYaNWW4t2nNkfeHf6VvcfcH/hE0N6Uwf rHCZXyFXxfQXa1por15E4GPlLgGcOkqtiAEl1B5q0/6HIySAl0333iL8ST4yvYES MAzWYNJqJxelgP/4hWKH2un3CuIRB/U= -----END CERTIFICATE-----Generated at Sun Dec 21 08:01:16 2025 by rpki-client