This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.mft File: MxG_l-IbcmqcAFa75KhbH38pXzU.mft (raw, json) Hash identifier: y3TOji5w6YmZZmOQs2F65wItSV/IA+Mfnt/5QnQtUK0= Subject key identifier: CA:23:2D:28:02:3E:FD:45:64:52:7D:9E:36:3E:CF:47:29:6F:36:C2 Authority key identifier: 33:11:BF:97:E2:1B:72:6A:9C:00:56:BB:E4:A8:5B:1F:7F:29:5F:35 Certificate issuer: /CN=A91D7454/serialNumber=3311BF97E21B726A9C0056BBE4A85B1F7F295F35 Certificate serial: 11BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxG_l-IbcmqcAFa75KhbH38pXzU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.mft Manifest number: 11B1 Signing time: Sat 20 Dec 2025 16:56:07 +0000 Manifest this update: Sat 20 Dec 2025 16:56:06 +0000 Manifest next update: Sat 27 Dec 2025 16:56:06 +0000 Files and hashes: 1: MxG_l-IbcmqcAFa75KhbH38pXzU.crl (hash: gVOoW0JYYufHorYRVqsUNfEP6JbU39bOZM+fQ6tAW9U=) 2: 51273D9A08EE11E99E30172AC4F9AE02.roa (hash: w5Wibqq/9uZKFdplDNzWfbo2U0mV8bZOoGj0UNzkyfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.crl rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxG_l-IbcmqcAFa75KhbH38pXzU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 16:56:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4541 (0x11bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7454, serialNumber=3311BF97E21B726A9C0056BBE4A85B1F7F295F35 Validity Not Before: Dec 20 16:56:06 2025 GMT Not After : Dec 27 16:56:06 2025 GMT Subject: CN=6946d527-b43c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:69:73:fc:84:56:c7:ac:8e:cf:05:2a:df:91: 32:23:42:00:e1:89:b7:2d:a6:33:53:00:2d:71:8d: 9e:92:bc:aa:03:85:4e:94:bc:83:29:45:c7:39:07: 4e:40:18:2e:e6:56:ce:57:a2:30:98:d5:ed:a9:91: e4:67:71:55:c5:2b:10:a8:c9:80:d0:0f:09:92:3f: 6d:7a:71:99:80:d2:50:73:f1:fd:55:8f:68:8b:47: 7d:e3:d9:88:43:25:b4:62:ad:94:d1:9e:f3:06:34: ca:d1:c2:f4:51:10:f6:14:8e:f3:fd:f1:38:83:76: a9:2e:7b:ff:65:7f:2d:2e:5c:a7:46:29:63:53:50: 36:4b:65:06:7b:88:32:d4:6e:cc:91:3d:39:36:49: 26:4f:ce:dc:46:8b:88:f0:be:22:96:5d:91:bf:3f: a5:3f:02:97:d4:76:2f:92:bf:af:b1:0d:af:db:95: 6e:91:93:42:f6:2e:0a:7d:56:77:56:6a:4f:de:09: 34:18:d6:1d:67:6f:15:2a:62:9e:ea:e1:fc:d7:6f: af:98:e0:5d:79:03:be:a9:ec:89:6d:b4:08:4d:e0: 34:b1:17:d9:af:28:45:f3:b0:6f:eb:7e:ec:77:70: d2:0c:e6:af:be:79:75:cb:68:ee:ed:d3:ed:0a:5c: c7:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:23:2D:28:02:3E:FD:45:64:52:7D:9E:36:3E:CF:47:29:6F:36:C2 X509v3 Authority Key Identifier: keyid:33:11:BF:97:E2:1B:72:6A:9C:00:56:BB:E4:A8:5B:1F:7F:29:5F:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxG_l-IbcmqcAFa75KhbH38pXzU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:1f:a4:da:9a:38:51:40:3b:3b:93:22:3e:8c:93:cc:cd:f2: 74:b3:85:d1:22:ad:40:60:53:98:01:96:68:f9:b4:8b:36:ca: 82:20:48:68:ea:68:6d:d6:70:2f:a7:83:9c:a0:74:83:ac:40: 4b:40:69:25:9e:f8:18:1d:7e:bb:a9:17:aa:3e:e8:fc:db:90: b5:1f:ab:1b:f7:fe:19:5e:f1:52:80:fb:1c:14:42:79:68:d2: 84:5c:75:c1:19:32:5c:1f:2e:01:6e:21:bd:22:b4:11:c6:c4: 1c:41:38:67:32:93:7f:90:b2:20:38:38:22:fd:9e:c8:7c:53: d6:ca:54:09:c1:04:62:9c:d9:5d:fc:a4:cd:9c:b1:f3:6e:8f: 8b:10:f0:5b:0c:56:54:a9:ac:43:c6:ba:fb:65:0c:58:03:32: b1:89:68:b3:c8:e5:23:28:3f:3a:d3:7f:61:7b:ba:21:ae:3e: 42:44:41:a1:5e:74:84:c6:5b:b6:90:a2:cf:a4:cb:93:41:81: 33:cf:22:ed:36:57:c5:d2:76:4c:f3:f8:40:26:28:8f:00:0f: 82:87:1d:fc:60:3b:27:53:f0:88:05:62:f7:9b:40:46:0b:eb: f4:fd:49:0d:99:15:4c:0f:bd:14:46:b0:a6:1d:13:df:65:24: cd:dd:41:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc0NTQxMTAvBgNVBAUTKDMzMTFCRjk3RTIxQjcyNkE5QzAwNTZCQkU0QTg1QjFG N0YyOTVGMzUwHhcNMjUxMjIwMTY1NjA2WhcNMjUxMjI3MTY1NjA2WjAYMRYwFAYD VQQDDA02OTQ2ZDUyNy1iNDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm2lz/IRWx6yOzwUq35EyI0IA4Ym3LaYzUwAtcY2ekryqA4VOlLyDKUXHOQdO QBgu5lbOV6IwmNXtqZHkZ3FVxSsQqMmA0A8Jkj9tenGZgNJQc/H9VY9oi0d949mI QyW0Yq2U0Z7zBjTK0cL0URD2FI7z/fE4g3apLnv/ZX8tLlynRiljU1A2S2UGe4gy 1G7MkT05NkkmT87cRouI8L4ill2Rvz+lPwKX1HYvkr+vsQ2v25VukZNC9i4KfVZ3 VmpP3gk0GNYdZ28VKmKe6uH812+vmOBdeQO+qeyJbbQITeA0sRfZryhF87Bv637s d3DSDOavvnl1y2ju7dPtClzHTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMojLSgC Pv1FZFJ9njY+z0cpbzbCMB8GA1UdIwQYMBaAFDMRv5fiG3JqnABWu+SoWx9/KV81 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzQ1NC83OUM2MUU3QzA4 RUIxMUU5QUY4QkNEMjNDNEY5QUUwMi9NeEdfbC1JYmNtcWNBRmE3NUtoYkgzOHBY elUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL014R19sLUliY21xY0FGYTc1S2hiSDM4cFh6VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzQ1NC83OUM2MUU3QzA4RUIxMUU5QUY4QkNEMjNDNEY5QUUwMi9NeEdfbC1JYmNt cWNBRmE3NUtoYkgzOHBYelUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVH6TamjhRQDs7kyI+jJPMzfJ0s4XRIq1AYFOYAZZo+bSLNsqCIEho 6mht1nAvp4OcoHSDrEBLQGklnvgYHX67qReqPuj825C1H6sb9/4ZXvFSgPscFEJ5 aNKEXHXBGTJcHy4BbiG9IrQRxsQcQThnMpN/kLIgODgi/Z7IfFPWylQJwQRinNld /KTNnLHzbo+LEPBbDFZUqaxDxrr7ZQxYAzKxiWizyOUjKD86039he7ohrj5CREGh XnSExlu2kKLPpMuTQYEzzyLtNlfF0nZM8/hAJiiPAA+Chx38YDsnU/CIBWL3m0BG C+v0/UkNmRVMD70URrCmHRPfZSTN3UGD -----END CERTIFICATE-----Generated at Mon Dec 22 07:20:36 2025 by rpki-client