This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft File: mGsNU3ZLyD3A4HLsrzacefIqOdc.mft (raw, json) Hash identifier: oOHHTXBY5ITkaxgZyA1oPLlRU9PNjSySwjPeQ9ABrRE= Subject key identifier: DA:42:FD:17:FC:3C:D3:C6:09:DF:4E:09:66:A9:D5:FD:53:91:FD:33 Authority key identifier: 98:6B:0D:53:76:4B:C8:3D:C0:E0:72:EC:AF:36:9C:79:F2:2A:39:D7 Certificate issuer: /CN=A91DD799/serialNumber=986B0D53764BC83DC0E072ECAF369C79F22A39D7 Certificate serial: 076B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft Manifest number: 076B Signing time: Tue 02 Dec 2025 14:44:09 +0000 Manifest this update: Tue 02 Dec 2025 14:44:07 +0000 Manifest next update: Tue 09 Dec 2025 14:44:07 +0000 Files and hashes: 1: mGsNU3ZLyD3A4HLsrzacefIqOdc.crl (hash: LCaRx4fH1rVXDkjKl6rNpBs/lJbVAv1MeoFZVS1Ppm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.crl rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 14:44:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1899 (0x76b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD799, serialNumber=986B0D53764BC83DC0E072ECAF369C79F22A39D7 Validity Not Before: Dec 2 14:44:07 2025 GMT Not After : Dec 9 14:44:07 2025 GMT Subject: CN=692efb38-07f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:63:6d:6a:c6:1b:03:29:f2:ec:a8:ac:a1:f5: 2b:25:51:5e:c7:c9:f9:28:a7:93:c9:e3:84:08:65: 93:76:a5:6a:29:08:54:ec:d9:1c:dd:c1:3e:b4:e7: 55:57:fd:70:58:30:41:fe:7c:a9:c0:86:ed:be:02: 39:dd:ee:24:9e:75:ff:32:da:76:05:c1:01:c8:80: ea:33:cd:70:a9:64:f9:b1:dc:34:6f:18:3f:fd:49: 0e:52:74:a0:b6:5d:97:d0:78:f3:7c:df:99:78:e1: 37:5c:d5:cb:a8:b0:97:db:12:69:fc:8d:c2:2d:c2: 8f:42:cc:ba:4b:fd:a6:86:f3:f3:55:22:c9:b2:52: 83:7a:1e:c3:ee:92:c8:58:74:42:fc:5c:49:7c:98: e3:ec:37:d2:25:fa:a6:01:15:97:8b:28:95:40:69: 48:66:7c:b5:30:93:ef:b1:d3:b1:9c:cb:c8:19:80: 1b:28:9e:9d:84:78:27:ae:77:77:45:3c:9b:94:ba: e2:3a:90:33:89:28:a2:7e:c9:07:db:3d:16:20:cf: e6:f7:75:c5:b4:df:85:7c:d5:8e:aa:19:d0:b9:86: 6d:8b:93:d4:36:43:c6:f6:62:75:fd:a5:3b:ee:d4: e3:64:57:f1:af:5e:39:7d:d2:c6:6e:96:ce:fa:3b: e8:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:42:FD:17:FC:3C:D3:C6:09:DF:4E:09:66:A9:D5:FD:53:91:FD:33 X509v3 Authority Key Identifier: keyid:98:6B:0D:53:76:4B:C8:3D:C0:E0:72:EC:AF:36:9C:79:F2:2A:39:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:75:2f:a4:6b:29:95:b8:65:d6:c7:8a:bb:5b:77:ab:8f:bf: a6:5f:a6:9e:6d:43:69:f6:ae:e0:a9:ae:c9:b9:dc:4a:97:18: bc:15:a4:78:27:0c:7f:3e:4a:2e:c8:b2:cc:70:e6:f7:75:30: 95:0c:66:27:97:6a:3d:c6:92:f7:46:53:65:4c:82:06:b2:b0: 41:1f:dc:8e:71:6d:b4:7b:86:d7:d4:4c:f4:10:97:a4:6a:5e: c0:80:98:c0:b8:cb:fc:50:54:ae:6a:1f:a7:90:86:e3:c5:57: 97:c8:7d:df:3c:a1:92:13:80:42:f5:2f:80:97:21:29:90:e5: c8:50:4a:6e:c1:0a:69:36:03:0c:f0:99:31:4a:9f:a6:bf:c1: 94:79:a8:d1:5b:c5:ca:ab:74:e6:b2:29:c1:46:bd:3d:f7:db: 61:fe:4b:f4:7a:3b:20:ee:25:60:0b:49:5b:5a:31:5b:7e:cd: 70:33:33:b7:49:55:90:9e:3d:c5:25:9e:bd:6d:ff:fb:66:be: ef:f7:36:3f:b0:ad:88:24:85:75:74:e5:5b:2c:7c:9c:3f:a4: ed:e7:f9:32:2f:13:fb:2f:7a:ce:ac:4b:6f:1d:ca:b2:86:c2: b0:08:ab:27:f3:aa:71:ac:13:f7:af:91:13:cd:d9:fe:12:11: 69:60:8b:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ3OTkxMTAvBgNVBAUTKDk4NkIwRDUzNzY0QkM4M0RDMEUwNzJFQ0FGMzY5Qzc5 RjIyQTM5RDcwHhcNMjUxMjAyMTQ0NDA3WhcNMjUxMjA5MTQ0NDA3WjAYMRYwFAYD VQQDEw02OTJlZmIzOC0wN2Y4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0WNtasYbAyny7KisofUrJVFex8n5KKeTyeOECGWTdqVqKQhU7Nkc3cE+tOdV V/1wWDBB/nypwIbtvgI53e4knnX/Mtp2BcEByIDqM81wqWT5sdw0bxg//UkOUnSg tl2X0HjzfN+ZeOE3XNXLqLCX2xJp/I3CLcKPQsy6S/2mhvPzVSLJslKDeh7D7pLI WHRC/FxJfJjj7DfSJfqmARWXiyiVQGlIZny1MJPvsdOxnMvIGYAbKJ6dhHgnrnd3 RTyblLriOpAziSiifskH2z0WIM/m93XFtN+FfNWOqhnQuYZti5PUNkPG9mJ1/aU7 7tTjZFfxr145fdLGbpbO+jvouQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNpC/Rf8 PNPGCd9OCWap1f1Tkf0zMB8GA1UdIwQYMBaAFJhrDVN2S8g9wOBy7K82nHnyKjnX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDc5OS8xM0NBODJGQTQz RkIxMUVCOUY3M0Q2M0NDNEY5QUUwMi9tR3NOVTNaTHlEM0E0SExzcnphY2VmSXFP ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21Hc05VM1pMeUQzQTRITHNyemFjZWZJcU9kYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDc5OS8xM0NBODJGQTQzRkIxMUVCOUY3M0Q2M0NDNEY5QUUwMi9tR3NOVTNaTHlE M0E0SExzcnphY2VmSXFPZGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDdS+kaymVuGXWx4q7W3erj7+mX6aebUNp9q7gqa7JudxKlxi8FaR4 Jwx/PkouyLLMcOb3dTCVDGYnl2o9xpL3RlNlTIIGsrBBH9yOcW20e4bX1Ez0EJek al7AgJjAuMv8UFSuah+nkIbjxVeXyH3fPKGSE4BC9S+AlyEpkOXIUEpuwQppNgMM 8JkxSp+mv8GUeajRW8XKq3TmsinBRr0999th/kv0ejsg7iVgC0lbWjFbfs1wMzO3 SVWQnj3FJZ69bf/7Zr7v9zY/sK2IJIV1dOVbLHycP6Tt5/kyLxP7L3rOrEtvHcqy hsKwCKsn86pxrBP3r5ETzdn+EhFpYIsw -----END CERTIFICATE-----Generated at Wed Dec 3 15:30:25 2025 by rpki-client