This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.mft File: mMl-BS19mtU2CVm50-B22t126gE.mft (raw, json) Hash identifier: 2jJ3qFPEohv3SRIHNqySYHVpIXCid9gejYMyTRfmFTA= Subject key identifier: BE:B7:02:4D:DC:B5:85:6B:4B:21:DE:9D:9C:89:E4:B1:15:33:99:2C Authority key identifier: 98:C9:7E:05:2D:7D:9A:D5:36:09:59:B9:D3:E0:76:DA:DD:76:EA:01 Certificate issuer: /CN=A91CB435/serialNumber=98C97E052D7D9AD5360959B9D3E076DADD76EA01 Certificate serial: 0735 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/mMl-BS19mtU2CVm50-B22t126gE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.mft Manifest number: 0728 Signing time: Sat 06 Dec 2025 20:48:15 +0000 Manifest this update: Sat 06 Dec 2025 20:48:15 +0000 Manifest next update: Sat 13 Dec 2025 20:48:15 +0000 Files and hashes: 1: mMl-BS19mtU2CVm50-B22t126gE.crl (hash: zFaTiJCtsn7fRzXw+rYevS6blaQ2vDk4GNcDFYaqR7I=) 2: F07A52005BEA11EB9863331EC4F9AE02.roa (hash: t/jzVO6L3wgo+QH7mzqB0zSXy5Nwbra0pOtYvgiFmIs=) 3: F1541C9C5BEA11EB9863331EC4F9AE02.roa (hash: bMetSmWwjzP6LMILwQp0327+1V3svzhvOdiLjBriktI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.crl rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/mMl-BS19mtU2CVm50-B22t126gE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:11:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1845 (0x735) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB435, serialNumber=98C97E052D7D9AD5360959B9D3E076DADD76EA01 Validity Not Before: Dec 6 20:48:15 2025 GMT Not After : Dec 13 20:48:15 2025 GMT Subject: CN=6934968f-9d0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:90:9c:1f:1e:ca:6d:94:64:c4:14:30:52:9a: 43:13:84:e8:1a:1a:79:df:1e:ae:68:07:10:33:cb: 23:c1:7f:3d:14:a9:1f:34:f2:49:84:e6:36:63:89: 38:31:d7:be:ab:aa:08:09:65:40:23:60:75:0f:72: 11:0a:ac:17:b3:a4:76:23:20:8e:13:41:83:69:f9: 20:7c:fd:db:bf:b1:1b:22:1a:81:13:33:f8:9f:90: 3b:03:48:f9:e7:b6:76:67:ec:a0:9d:44:7d:9a:b7: 5a:86:f4:f9:4d:e0:ee:36:65:a1:46:7f:de:b0:cc: fc:3f:b3:1c:bc:25:21:31:9b:04:da:85:f8:0b:67: 6c:65:a5:1f:af:e8:39:d7:74:78:90:55:83:b4:6e: 2d:58:5d:23:ec:46:21:25:71:bf:ee:82:b4:91:5a: 89:83:fd:f5:2f:38:41:e6:fe:80:f9:6d:5a:c4:d3: 9b:89:27:09:27:6e:aa:d0:f6:7a:17:c6:f9:45:73: 71:13:7f:3a:29:c3:dd:e9:09:eb:a0:d9:7f:b0:d7: 67:69:4a:bc:2c:da:83:38:b8:dc:fa:c2:6e:52:1e: 9d:23:46:00:1b:60:74:17:2f:7d:2e:b5:8e:af:6d: 86:9b:32:64:7b:60:91:76:bc:95:ef:0c:88:ab:a8: 2f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:B7:02:4D:DC:B5:85:6B:4B:21:DE:9D:9C:89:E4:B1:15:33:99:2C X509v3 Authority Key Identifier: keyid:98:C9:7E:05:2D:7D:9A:D5:36:09:59:B9:D3:E0:76:DA:DD:76:EA:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/mMl-BS19mtU2CVm50-B22t126gE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:4d:9e:62:3b:22:e5:4f:b8:47:e8:b9:a0:4b:c9:38:5f:26: 63:37:54:62:ab:38:4b:9c:cf:ca:cf:3e:47:2c:79:9e:e7:86: 7f:67:ad:36:d8:03:94:f5:73:db:73:d1:0b:45:92:61:27:12: c3:0b:ab:7a:b5:1b:ba:11:16:b1:c6:23:56:be:80:18:1d:14: a9:23:10:6b:46:eb:75:5f:c6:c8:94:4e:2a:a4:2d:c6:95:cb: c3:a2:70:3d:00:fc:a2:72:cf:5c:0a:7e:36:21:77:47:df:89: 61:42:7f:4c:7d:e7:d3:4d:b7:d4:93:e8:fb:7d:f7:97:37:6f: 67:da:1b:35:ad:09:5b:66:1d:b3:ec:12:b5:87:d4:fd:cf:86: 67:d0:cb:0d:9f:14:21:94:48:df:af:83:b5:e5:05:f3:03:29: d0:1c:7a:e8:a8:05:78:16:e6:43:01:4f:f2:b0:f6:8d:b1:32: 94:5a:de:5a:c3:c6:10:29:ef:41:a1:9f:2c:b0:45:54:77:5e: eb:27:1f:96:d9:8d:8b:3a:a3:0e:f5:56:fb:63:c9:59:a1:c7: ad:16:d1:96:8c:a8:1f:b6:46:68:3d:03:e9:05:04:56:d0:7e: bb:25:4a:b2:84:b1:dc:86:58:aa:71:1b:3f:1f:b8:71:d5:cd: 74:c4:88:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I0MzUxMTAvBgNVBAUTKDk4Qzk3RTA1MkQ3RDlBRDUzNjA5NTlCOUQzRTA3NkRB REQ3NkVBMDEwHhcNMjUxMjA2MjA0ODE1WhcNMjUxMjEzMjA0ODE1WjAYMRYwFAYD VQQDEw02OTM0OTY4Zi05ZDBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnZCcHx7KbZRkxBQwUppDE4ToGhp53x6uaAcQM8sjwX89FKkfNPJJhOY2Y4k4 Mde+q6oICWVAI2B1D3IRCqwXs6R2IyCOE0GDafkgfP3bv7EbIhqBEzP4n5A7A0j5 57Z2Z+ygnUR9mrdahvT5TeDuNmWhRn/esMz8P7McvCUhMZsE2oX4C2dsZaUfr+g5 13R4kFWDtG4tWF0j7EYhJXG/7oK0kVqJg/31LzhB5v6A+W1axNObiScJJ26q0PZ6 F8b5RXNxE386KcPd6QnroNl/sNdnaUq8LNqDOLjc+sJuUh6dI0YAG2B0Fy99LrWO r22GmzJke2CRdryV7wyIq6gvAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL63Ak3c tYVrSyHenZyJ5LEVM5ksMB8GA1UdIwQYMBaAFJjJfgUtfZrVNglZudPgdtrdduoB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjQzNS9FQzA1OTA0NjVC RTkxMUVCOTY2ODAwMUVDNEY5QUUwMi9tTWwtQlMxOW10VTJDVm01MC1CMjJ0MTI2 Z0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL21NbC1CUzE5bXRVMkNWbTUwLUIyMnQxMjZnRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjQzNS9FQzA1OTA0NjVCRTkxMUVCOTY2ODAwMUVDNEY5QUUwMi9tTWwtQlMxOW10 VTJDVm01MC1CMjJ0MTI2Z0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtTZ5iOyLlT7hH6LmgS8k4XyZjN1RiqzhLnM/Kzz5HLHme54Z/Z602 2AOU9XPbc9ELRZJhJxLDC6t6tRu6ERaxxiNWvoAYHRSpIxBrRut1X8bIlE4qpC3G lcvDonA9APyics9cCn42IXdH34lhQn9MfefTTbfUk+j7ffeXN29n2hs1rQlbZh2z 7BK1h9T9z4Zn0MsNnxQhlEjfr4O15QXzAynQHHroqAV4FuZDAU/ysPaNsTKUWt5a w8YQKe9BoZ8ssEVUd17rJx+W2Y2LOqMO9Vb7Y8lZocetFtGWjKgftkZoPQPpBQRW 0H67JUqyhLHchliqcRs/H7hx1c10xIi0 -----END CERTIFICATE-----Generated at Sat Dec 6 22:04:02 2025 by rpki-client