This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft File: MGcPYbflDgsLiOclHeh4TAPJ5GI.mft (raw, json) Hash identifier: TjwDcLpbbjVx9+v05q4RBx+nhRsHS8+wuoTBynbBbg4= Subject key identifier: 60:32:E1:63:40:60:35:BC:87:BC:46:B5:47:AE:7B:FF:B5:20:85:46 Authority key identifier: 30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 Certificate issuer: /CN=A91CE6EC/serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Certificate serial: 0127 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft Manifest number: 0124 Signing time: Wed 24 Dec 2025 15:35:20 +0000 Manifest this update: Wed 24 Dec 2025 15:35:19 +0000 Manifest next update: Wed 31 Dec 2025 15:35:19 +0000 Files and hashes: 1: MGcPYbflDgsLiOclHeh4TAPJ5GI.crl (hash: SBKFri/uXQ1OCqFwJ7JVQVYx4oFylw6Ki/+jvNcEs/I=) 2: 038610FC2D1E11EFA25C6D16C4F9AE02.roa (hash: fWZETNQO/nq4+BYBCH9MSAL8N1aF88n2/dhae6ZuhiQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 15:35:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6EC, serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Validity Not Before: Dec 24 15:35:19 2025 GMT Not After : Dec 31 15:35:19 2025 GMT Subject: CN=694c0837-c3ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:a2:6e:f2:f6:8f:6a:12:c2:89:0e:8e:74:09: 5d:f5:90:46:6e:d8:30:81:03:4e:37:cf:7a:14:23: b1:27:d8:93:59:ba:b0:fd:60:bf:20:06:43:73:7d: fe:e7:06:86:e8:ac:57:6c:d6:d1:5b:1e:06:fd:b8: 86:5e:b1:16:2e:2f:47:d9:8c:27:72:3d:97:a9:7f: d1:31:af:dd:fe:d1:d3:b8:85:e5:25:5c:3b:c7:fa: e3:bc:77:0d:51:28:23:72:ff:c6:5b:e4:69:3e:3d: 86:29:e0:bc:dc:ce:8d:a3:24:58:26:f2:11:61:b8: c7:e4:70:f0:02:5f:b0:6a:a7:1e:b5:fb:14:fd:2e: fb:f3:db:57:70:8f:f4:88:d2:7c:2c:a4:8c:14:c8: 36:4f:a0:d3:a6:a5:5b:40:d1:62:d8:35:4c:7c:b5: 32:ad:38:f0:59:16:79:7d:c4:21:8b:b1:6f:78:64: 07:36:be:1d:72:00:2e:80:f0:a7:79:8b:f3:33:a7: 9a:4a:8e:12:fc:d4:d6:cc:38:00:0e:14:d1:65:24: 2b:f4:21:b2:a3:30:53:0a:d4:21:b2:b2:14:51:e4: 09:d5:dc:72:b2:01:85:37:c0:56:85:cd:8a:5e:64: 75:6d:83:89:81:1c:dc:43:ed:54:f7:db:d0:78:dc: b8:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:32:E1:63:40:60:35:BC:87:BC:46:B5:47:AE:7B:FF:B5:20:85:46 X509v3 Authority Key Identifier: keyid:30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:c3:39:4c:42:55:f9:bd:95:fc:b4:b8:9f:01:32:a7:c3:e4: 41:76:75:8b:bb:b9:95:f0:35:7b:73:3d:d9:c9:f7:8c:b4:d3: 11:a4:b4:87:4b:d8:b3:da:ab:37:98:11:90:98:b0:32:84:21: 96:d9:77:5b:33:ba:fb:54:18:af:00:7d:74:43:fd:93:fe:10: 6c:5d:c5:b0:a9:27:55:7d:98:b9:00:f2:50:cd:ab:66:02:57: 3c:a1:3f:55:38:50:ff:fc:b7:d8:86:cb:eb:36:37:3a:dd:cb: f1:98:c8:2c:c9:09:ad:76:1d:34:72:f6:2a:b7:86:ce:bb:78: c0:eb:bb:72:8a:93:c6:3a:13:fa:59:11:9b:4b:bf:bb:6f:cc: 4b:23:b6:28:50:f5:28:e9:a4:e5:58:ee:9f:dc:43:3a:09:a5: 5c:3e:0e:fc:f5:6f:7a:dd:92:5e:33:25:88:06:87:f6:d8:c5: 5d:2c:07:23:07:d5:e5:47:b5:3b:9f:f5:3b:46:bf:bf:7d:1c: c1:89:3f:04:4f:23:02:f2:6d:e1:ad:d2:c6:c3:e4:60:4f:37: 9c:39:6c:0c:b8:45:4e:a7:9c:f3:7b:b9:d1:b4:f4:c8:24:5a: 6d:90:17:e8:90:35:07:ab:60:d3:34:16:fb:01:7f:78:a8:52: e0:cf:22:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2RUMxMTAvBgNVBAUTKDMwNjcwRjYxQjdFNTBFMEIwQjg4RTcyNTFERTg3ODRD MDNDOUU0NjIwHhcNMjUxMjI0MTUzNTE5WhcNMjUxMjMxMTUzNTE5WjAYMRYwFAYD VQQDDA02OTRjMDgzNy1jM2FlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1qJu8vaPahLCiQ6OdAld9ZBGbtgwgQNON896FCOxJ9iTWbqw/WC/IAZDc33+ 5waG6KxXbNbRWx4G/biGXrEWLi9H2Ywncj2XqX/RMa/d/tHTuIXlJVw7x/rjvHcN USgjcv/GW+RpPj2GKeC83M6NoyRYJvIRYbjH5HDwAl+waqcetfsU/S7789tXcI/0 iNJ8LKSMFMg2T6DTpqVbQNFi2DVMfLUyrTjwWRZ5fcQhi7FveGQHNr4dcgAugPCn eYvzM6eaSo4S/NTWzDgADhTRZSQr9CGyozBTCtQhsrIUUeQJ1dxysgGFN8BWhc2K XmR1bYOJgRzcQ+1U99vQeNy4swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGAy4WNA YDW8h7xGtUeue/+1IIVGMB8GA1UdIwQYMBaAFDBnD2G35Q4LC4jnJR3oeEwDyeRi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZFQy8wODJBODlGMDJB MjkxMUVGODg5NUYxMUNDNEY5QUUwMi9NR2NQWWJmbERnc0xpT2NsSGVoNFRBUEo1 R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01HY1BZYmZsRGdzTGlPY2xIZWg0VEFQSjVHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZFQy8wODJBODlGMDJBMjkxMUVGODg5NUYxMUNDNEY5QUUwMi9NR2NQWWJmbERn c0xpT2NsSGVoNFRBUEo1R0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGwzlMQlX5vZX8tLifATKnw+RBdnWLu7mV8DV7cz3ZyfeMtNMRpLSH S9iz2qs3mBGQmLAyhCGW2XdbM7r7VBivAH10Q/2T/hBsXcWwqSdVfZi5APJQzatm Alc8oT9VOFD//LfYhsvrNjc63cvxmMgsyQmtdh00cvYqt4bOu3jA67tyipPGOhP6 WRGbS7+7b8xLI7YoUPUo6aTlWO6f3EM6CaVcPg789W963ZJeMyWIBof22MVdLAcj B9XlR7U7n/U7Rr+/fRzBiT8ETyMC8m3hrdLGw+RgTzecOWwMuEVOp5zze7nRtPTI JFptkBfokDUHq2DTNBb7AX94qFLgzyJ2 -----END CERTIFICATE-----Generated at Wed Dec 24 22:59:57 2025 by rpki-client