This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912434D/FC20913858DD11F08FAADE66C4F9AE02/MNcZ-cbTfirJ9NbUsffZeOwqMok.mft File: MNcZ-cbTfirJ9NbUsffZeOwqMok.mft (raw, json) Hash identifier: qAjzFxsnLKQX2vsYyAbw0nm+vOMv85bg9YbJ0KeF4Ck= Subject key identifier: A7:02:92:45:6A:4F:38:6E:2A:22:7C:72:BC:93:E1:D7:AB:A5:B1:93 Authority key identifier: 30:D7:19:F9:C6:D3:7E:2A:C9:F4:D6:D4:B1:F7:D9:78:EC:2A:32:89 Certificate issuer: /CN=A912434D/serialNumber=30D719F9C6D37E2AC9F4D6D4B1F7D978EC2A3289 Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MNcZ-cbTfirJ9NbUsffZeOwqMok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912434D/FC20913858DD11F08FAADE66C4F9AE02/MNcZ-cbTfirJ9NbUsffZeOwqMok.mft Manifest number: 51 Signing time: Wed 03 Dec 2025 05:28:21 +0000 Manifest this update: Wed 03 Dec 2025 05:28:21 +0000 Manifest next update: Wed 10 Dec 2025 05:28:21 +0000 Files and hashes: 1: MNcZ-cbTfirJ9NbUsffZeOwqMok.crl (hash: jlDmyiJ4HJ3JFTVTGFLAt9AlDFf78oe6gUrz1k+CHVM=) 2: CD9B554E58DF11F0A0F08D09C4F9AE02.roa (hash: RjBz7DM9PWj4EYARJmqJIScM3PQCM6ck/UDuntxMtmQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912434D/FC20913858DD11F08FAADE66C4F9AE02/MNcZ-cbTfirJ9NbUsffZeOwqMok.crl rsync://rpki.apnic.net/member_repository/A912434D/FC20913858DD11F08FAADE66C4F9AE02/MNcZ-cbTfirJ9NbUsffZeOwqMok.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MNcZ-cbTfirJ9NbUsffZeOwqMok.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 05:28:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912434D, serialNumber=30D719F9C6D37E2AC9F4D6D4B1F7D978EC2A3289 Validity Not Before: Dec 3 05:28:21 2025 GMT Not After : Dec 10 05:28:21 2025 GMT Subject: CN=692fca75-190d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:10:9c:33:0e:c9:ae:20:a0:29:03:32:e9:21: d2:f6:2d:41:8a:f0:c1:3a:8e:a7:bf:bc:ea:3a:f9: 83:31:e6:c1:0f:a5:30:98:86:ae:f4:98:74:ae:13: 89:b3:f2:27:24:06:49:7b:a5:3a:fd:30:72:8a:69: f6:b4:63:75:07:9f:e9:95:76:ad:f4:08:82:68:bf: 9e:ab:55:2b:83:aa:16:f4:f6:8e:18:84:34:8d:de: 82:85:72:04:03:21:32:85:70:d7:da:12:a2:70:31: da:86:12:f4:09:14:f0:af:14:99:c3:c1:04:26:ff: a6:61:2b:c7:25:ca:84:5d:0e:ec:0f:8f:3b:cb:de: 15:7e:fd:6a:0c:ea:fa:45:fb:20:29:5c:a7:df:61: e4:c5:08:d0:b3:a7:78:d4:92:0a:71:ee:aa:dd:6e: 5d:1c:11:b1:50:62:2f:dc:c1:f2:7b:0b:26:f8:b0: f6:72:12:47:7a:cb:ad:41:79:f0:76:20:28:c1:99: 79:3a:d5:a8:e1:3c:80:45:00:7d:b4:df:67:c5:7f: eb:71:e0:ed:9f:46:b7:1d:49:c0:fd:94:3a:e8:61: 54:22:49:a5:5f:f2:92:8f:3e:53:86:21:fd:56:7d: 6d:c3:be:33:0c:01:2e:c0:dd:22:8c:df:4c:83:24: 9b:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:02:92:45:6A:4F:38:6E:2A:22:7C:72:BC:93:E1:D7:AB:A5:B1:93 X509v3 Authority Key Identifier: keyid:30:D7:19:F9:C6:D3:7E:2A:C9:F4:D6:D4:B1:F7:D9:78:EC:2A:32:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912434D/FC20913858DD11F08FAADE66C4F9AE02/MNcZ-cbTfirJ9NbUsffZeOwqMok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MNcZ-cbTfirJ9NbUsffZeOwqMok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912434D/FC20913858DD11F08FAADE66C4F9AE02/MNcZ-cbTfirJ9NbUsffZeOwqMok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:0e:bf:a6:91:5c:0b:bb:ec:53:0f:a7:10:45:44:2c:e5:69: 0f:7c:df:a3:38:cd:d9:c0:6b:88:ac:10:9a:32:ac:9b:5b:37: 87:0d:1f:4c:70:56:45:a9:85:e5:39:3d:88:71:82:d9:4d:02: 54:a1:3a:23:2c:0d:5e:9f:fd:62:7b:c7:ca:30:e9:5d:c2:c9: 63:ed:3f:0c:da:67:78:ce:be:6f:10:59:4c:30:6c:db:66:de: 0e:c9:97:b1:25:4d:62:54:60:10:22:90:29:4b:09:51:3a:04: ab:52:a1:30:04:50:e5:12:8d:4b:10:8f:37:87:ab:2a:55:b0: 71:81:3c:44:48:fb:8e:2b:20:b7:b6:ad:53:a3:3f:c6:c0:2d: 6a:42:46:24:71:f8:67:bd:4d:04:20:25:43:bf:f6:14:d9:f7: 31:ca:3a:4b:ae:74:84:7c:f7:75:ef:42:08:20:a0:48:10:59: 3a:b1:ae:b8:95:b2:eb:7a:a4:2d:57:58:bc:93:a8:4c:11:b4: 2f:0b:27:da:4e:72:82:4c:fe:d6:1e:36:90:82:94:4e:ec:55: 03:1c:35:fa:54:dc:53:7f:9d:69:87:c7:4e:31:3b:7e:09:02: bb:e7:b0:b7:82:43:aa:80:7b:db:3f:5e:a8:db:82:fd:60:03: da:3b:8e:b9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NDM0RDExMC8GA1UEBRMoMzBENzE5RjlDNkQzN0UyQUM5RjRENkQ0QjFGN0Q5NzhF QzJBMzI4OTAeFw0yNTEyMDMwNTI4MjFaFw0yNTEyMTAwNTI4MjFaMBgxFjAUBgNV BAMTDTY5MmZjYTc1LTE5MGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCfEJwzDsmuIKApAzLpIdL2LUGK8ME6jqe/vOo6+YMx5sEPpTCYhq70mHSuE4mz 8ickBkl7pTr9MHKKafa0Y3UHn+mVdq30CIJov56rVSuDqhb09o4YhDSN3oKFcgQD ITKFcNfaEqJwMdqGEvQJFPCvFJnDwQQm/6ZhK8clyoRdDuwPjzvL3hV+/WoM6vpF +yApXKffYeTFCNCzp3jUkgpx7qrdbl0cEbFQYi/cwfJ7Cyb4sPZyEkd6y61BefB2 ICjBmXk61ajhPIBFAH2032fFf+tx4O2fRrcdScD9lDroYVQiSaVf8pKPPlOGIf1W fW3DvjMMAS7A3SKM30yDJJv5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUpwKSRWpP OG4qInxyvJPh16ulsZMwHwYDVR0jBBgwFoAUMNcZ+cbTfirJ9NbUsffZeOwqMokw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0MzREL0ZDMjA5MTM4NThE RDExRjA4RkFBREU2NkM0RjlBRTAyL01OY1otY2JUZmlySjlOYlVzZmZaZU93cU1v ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTU5jWi1jYlRmaXJKOU5iVXNmZlplT3dxTW9rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0 MzREL0ZDMjA5MTM4NThERDExRjA4RkFBREU2NkM0RjlBRTAyL01OY1otY2JUZmly SjlOYlVzZmZaZU93cU1vay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJwOv6aRXAu77FMPpxBFRCzlaQ9836M4zdnAa4isEJoyrJtbN4cNH0xw VkWpheU5PYhxgtlNAlShOiMsDV6f/WJ7x8ow6V3CyWPtPwzaZ3jOvm8QWUwwbNtm 3g7Jl7ElTWJUYBAikClLCVE6BKtSoTAEUOUSjUsQjzeHqypVsHGBPERI+44rILe2 rVOjP8bALWpCRiRx+Ge9TQQgJUO/9hTZ9zHKOkuudIR893XvQgggoEgQWTqxrriV sut6pC1XWLyTqEwRtC8LJ9pOcoJM/tYeNpCClE7sVQMcNfpU3FN/nWmHx04xO34J ArvnsLeCQ6qAe9s/Xqjbgv1gA9o7jrk= -----END CERTIFICATE-----Generated at Wed Dec 3 14:56:57 2025 by rpki-client