This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft File: MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft (raw, json) Hash identifier: i03jP+x/xXT9bC3ijx4q09t7iXVN/EDPWIOkTRZowDk= Subject key identifier: E7:BA:3E:D0:E0:D8:BE:B4:A7:A7:99:D1:98:5C:0E:8E:09:C8:7B:F9 Authority key identifier: 30:6E:34:FA:84:DA:09:0C:60:01:B3:54:64:BB:8C:42:63:57:D9:28 Certificate issuer: /CN=A91B9EC7/serialNumber=306E34FA84DA090C6001B35464BB8C426357D928 Certificate serial: 018D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft Manifest number: 018A Signing time: Sun 21 Dec 2025 02:47:55 +0000 Manifest this update: Sun 21 Dec 2025 02:47:55 +0000 Manifest next update: Sun 28 Dec 2025 02:47:55 +0000 Files and hashes: 1: MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl (hash: meLv74x8ZfBYJwwGfaBMGtpsV7KcTDtywCiMCGNfBLQ=) 2: 02FC3E3C82A511EEA1F2710DC4F9AE02.roa (hash: etATH7cpBctXxSFj9qh8jaunQqoMoUcK6DY8J7yW9Mc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 02:47:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 397 (0x18d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9EC7, serialNumber=306E34FA84DA090C6001B35464BB8C426357D928 Validity Not Before: Dec 21 02:47:55 2025 GMT Not After : Dec 28 02:47:55 2025 GMT Subject: CN=69475fdb-39a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ba:19:dd:da:b0:3d:c5:b8:fc:95:fc:a7:0f: 7c:d2:b3:7c:49:ba:57:85:03:29:a4:3e:80:b4:8d: 7e:c8:a7:f0:2b:bc:2b:93:93:6d:d7:fd:11:92:ca: 5a:86:91:06:d6:17:00:fd:14:fd:74:6e:d4:1f:42: 4e:aa:d5:c6:4b:0f:c6:9e:ab:c7:43:81:14:06:7e: 2b:6c:24:22:14:8a:47:e1:b8:fd:b7:ca:ba:91:2f: 0b:e7:47:8d:13:ff:d5:b7:55:7e:55:d2:c5:02:35: 79:d4:72:27:5b:d8:2a:a0:4b:03:30:06:2f:a3:30: 60:44:48:54:51:96:72:6c:63:50:de:ed:fc:f1:a7: 68:dc:ce:06:4a:82:58:3b:0c:32:46:85:be:a7:a7: 37:9c:b3:12:de:d7:4e:fb:0b:17:1d:56:8f:32:51: ac:f3:57:14:5b:3e:8f:6d:a6:6e:bf:86:d4:8f:c3: 9c:9d:5b:be:e7:1f:02:a2:77:12:ed:36:17:38:46: 9b:57:9f:71:4a:5d:f8:db:fc:a3:00:4c:78:02:8b: ae:2a:56:4e:bf:62:ae:f5:37:7c:21:be:41:cf:b6: 0d:b1:b0:41:6e:9f:ba:f6:07:95:17:e3:8a:46:8b: 20:c8:4a:2e:1a:2f:08:98:60:f5:72:70:32:b8:a5: 07:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:BA:3E:D0:E0:D8:BE:B4:A7:A7:99:D1:98:5C:0E:8E:09:C8:7B:F9 X509v3 Authority Key Identifier: keyid:30:6E:34:FA:84:DA:09:0C:60:01:B3:54:64:BB:8C:42:63:57:D9:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MG40-oTaCQxgAbNUZLuMQmNX2Sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9EC7/E63F2F8A82A311EE9B117357C4F9AE02/MG40-oTaCQxgAbNUZLuMQmNX2Sg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:a9:de:01:81:e2:75:86:68:a7:50:7b:5e:77:52:7d:b6:49: 27:5b:b2:87:2f:57:c9:d7:90:c9:c2:9f:de:09:fe:a5:c5:1d: c1:54:d4:23:1c:ec:0e:a1:70:a9:14:5c:b7:17:5d:2d:3a:90: 76:14:98:e9:1d:66:c9:b3:ba:b8:3d:2b:c5:75:82:3a:09:f4: 4c:48:f4:a5:a6:04:92:04:35:3b:c9:24:a9:44:27:85:b5:2e: 8c:94:ca:4c:5a:3f:0a:1b:78:7e:68:d0:5b:86:02:8f:f0:fc: 38:1a:d1:ad:5e:72:d3:51:be:ae:61:1e:d0:f6:1e:6a:6a:28: ec:bd:e3:6d:09:91:4c:6f:42:ab:47:57:e8:cb:4b:a0:c8:f5: 7d:bb:f3:e8:f1:27:31:da:84:58:c9:37:5f:d1:13:92:31:05: 56:da:aa:74:c1:d8:74:e9:be:43:2e:13:07:e4:c8:4c:1a:2a: 4f:ea:c1:7a:8d:9c:13:07:09:fa:2c:7e:de:d7:14:7a:a1:5e: 53:5f:27:81:76:05:66:86:56:2a:b9:7e:03:de:2f:98:f5:99: ef:69:84:70:ea:0f:32:ba:31:57:0a:f0:80:a4:2d:2b:35:73: 6d:0f:1c:89:34:16:b1:21:f3:18:14:13:a1:0d:a1:7a:95:4e: 06:10:07:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlFQzcxMTAvBgNVBAUTKDMwNkUzNEZBODREQTA5MEM2MDAxQjM1NDY0QkI4QzQy NjM1N0Q5MjgwHhcNMjUxMjIxMDI0NzU1WhcNMjUxMjI4MDI0NzU1WjAYMRYwFAYD VQQDDA02OTQ3NWZkYi0zOWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07oZ3dqwPcW4/JX8pw980rN8SbpXhQMppD6AtI1+yKfwK7wrk5Nt1/0Rkspa hpEG1hcA/RT9dG7UH0JOqtXGSw/GnqvHQ4EUBn4rbCQiFIpH4bj9t8q6kS8L50eN E//Vt1V+VdLFAjV51HInW9gqoEsDMAYvozBgREhUUZZybGNQ3u388ado3M4GSoJY OwwyRoW+p6c3nLMS3tdO+wsXHVaPMlGs81cUWz6PbaZuv4bUj8OcnVu+5x8ConcS 7TYXOEabV59xSl342/yjAEx4AouuKlZOv2Ku9Td8Ib5Bz7YNsbBBbp+69geVF+OK RosgyEouGi8ImGD1cnAyuKUHaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOe6PtDg 2L60p6eZ0ZhcDo4JyHv5MB8GA1UdIwQYMBaAFDBuNPqE2gkMYAGzVGS7jEJjV9ko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUVDNy9FNjNGMkY4QTgy QTMxMUVFOUIxMTczNTdDNEY5QUUwMi9NRzQwLW9UYUNReGdBYk5VWkx1TVFtTlgy U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01HNDAtb1RhQ1F4Z0FiTlVaTHVNUW1OWDJTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUVDNy9FNjNGMkY4QTgyQTMxMUVFOUIxMTczNTdDNEY5QUUwMi9NRzQwLW9UYUNR eGdBYk5VWkx1TVFtTlgyU2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwqd4BgeJ1hminUHted1J9tkknW7KHL1fJ15DJwp/eCf6lxR3BVNQj HOwOoXCpFFy3F10tOpB2FJjpHWbJs7q4PSvFdYI6CfRMSPSlpgSSBDU7ySSpRCeF tS6MlMpMWj8KG3h+aNBbhgKP8Pw4GtGtXnLTUb6uYR7Q9h5qaijsveNtCZFMb0Kr R1foy0ugyPV9u/Po8Scx2oRYyTdf0ROSMQVW2qp0wdh06b5DLhMH5MhMGipP6sF6 jZwTBwn6LH7e1xR6oV5TXyeBdgVmhlYquX4D3i+Y9ZnvaYRw6g8yujFXCvCApC0r NXNtDxyJNBaxIfMYFBOhDaF6lU4GEAez -----END CERTIFICATE-----Generated at Mon Dec 22 07:21:15 2025 by rpki-client