This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft File: mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft (raw, json) Hash identifier: 1eNghA4rHeeIA2RoVwBnMcepTDbfwWtWc/RJ0AVox+s= Subject key identifier: E4:A0:81:C2:19:81:7F:57:07:BE:C1:94:32:A3:55:51:C2:AB:3E:CE Authority key identifier: 9A:58:7E:4E:CF:68:EC:77:29:D8:DE:43:5F:FD:AA:DC:EA:5B:49:39 Certificate issuer: /CN=A91E3E80/serialNumber=9A587E4ECF68EC7729D8DE435FFDAADCEA5B4939 Certificate serial: 58 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft Manifest number: 57 Signing time: Wed 03 Dec 2025 05:23:23 +0000 Manifest this update: Wed 03 Dec 2025 05:23:22 +0000 Manifest next update: Wed 10 Dec 2025 05:23:22 +0000 Files and hashes: 1: mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.crl (hash: Rpq8Tlu6YqaZryMZP3cZmqrysvP5q9mpTMbPzkS6lHg=) 2: 1E008B864B7411F09B3DF33BC4F9AE02.roa (hash: ev5mDZ6XFmJ+ji01cNK3sq1eGbo1TIpqJN2vMLDyQBI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.crl rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 05:23:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E80, serialNumber=9A587E4ECF68EC7729D8DE435FFDAADCEA5B4939 Validity Not Before: Dec 3 05:23:22 2025 GMT Not After : Dec 10 05:23:22 2025 GMT Subject: CN=692fc94a-87c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:23:6a:16:57:56:86:69:03:e3:5c:fd:a0:d8: 63:94:04:33:66:f6:74:f4:08:39:d1:12:67:3a:73: eb:35:0f:26:fe:5c:6e:80:7d:86:d8:11:84:67:3e: 5c:4d:a4:0b:ee:a1:73:59:67:02:8d:8f:7f:a4:40: 5a:79:6c:ca:8a:57:59:8e:ec:3d:44:b8:81:f9:c7: c1:18:c9:1d:72:e6:ca:a5:38:d0:b6:5c:01:44:9d: 33:d1:da:a0:c6:85:88:1c:78:14:b6:48:1e:1f:84: 8f:a6:a2:a6:a9:ca:f9:d0:95:cf:56:4e:f9:6e:c3: c5:58:d1:3b:4b:1d:10:18:11:30:21:fb:36:3a:8d: 35:e6:1d:5c:3c:81:f1:73:b1:ca:86:b2:16:ed:d0: 30:10:5b:a7:07:1b:ff:a4:9e:3c:53:6b:d4:a9:5f: 78:7b:89:42:c9:47:b7:8a:41:a7:ff:2b:f2:b8:05: 4b:79:5e:b2:e7:88:1c:99:7f:3d:cb:92:5b:ca:a4: a4:6d:0a:c2:19:11:7d:e8:6d:4e:e2:89:7f:e9:9f: ec:38:06:41:11:b9:30:4c:6b:da:16:c1:d0:a0:44: e0:22:2b:fe:ce:00:ec:ca:19:4a:c5:58:c2:0d:2f: 3a:93:c6:2b:3d:cb:69:a6:3f:1a:0f:6b:e2:db:12: 14:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:A0:81:C2:19:81:7F:57:07:BE:C1:94:32:A3:55:51:C2:AB:3E:CE X509v3 Authority Key Identifier: keyid:9A:58:7E:4E:CF:68:EC:77:29:D8:DE:43:5F:FD:AA:DC:EA:5B:49:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E80/35433F224B6611F0B8852439C4F9AE02/mlh-Ts9o7Hcp2N5DX_2q3OpbSTk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:69:cc:2c:e6:0b:ad:23:d2:27:5f:b8:48:70:b1:11:8e:4f: 20:90:2c:c2:1c:1b:ca:e4:7f:59:5b:7d:16:0e:c6:cd:00:6f: 16:3e:78:fb:25:a9:6f:a3:71:da:10:d9:62:62:8e:ee:30:15: 80:f8:c5:0c:a2:5f:07:91:f4:3e:4e:0d:b9:f0:c8:6f:10:37: bd:00:d8:13:c2:65:51:a0:ac:1a:d0:78:e6:5f:fb:86:f6:2e: 78:b8:a5:0b:d6:1d:8b:d4:36:14:7b:b7:27:2b:92:9c:7c:bd: 1e:0f:40:22:ac:d3:f6:bd:16:7c:4f:f5:8c:8d:fe:61:51:08: b3:3c:9e:73:35:bc:ba:74:b9:53:94:e9:2a:95:7c:d8:f6:56: 0d:be:b1:a0:eb:ed:ab:72:82:f2:fb:32:2f:4c:cc:ca:4c:55: af:4e:e2:24:88:0d:f6:89:a9:09:60:c9:78:b4:27:a5:fc:80: 70:fb:3e:1d:fa:9b:8f:4f:0b:5f:6c:08:44:f3:cf:ae:bb:fa: 5b:25:78:e9:e1:bd:03:78:27:1e:ca:50:70:11:34:5f:8b:70: c5:f9:fc:58:76:54:43:ab:82:40:f5:00:c6:b7:7c:9a:18:8b: a1:89:7c:8c:42:16:bb:d2:8b:88:54:1a:bb:69:7c:ac:31:bd: fd:a2:0c:e2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF M0U4MDExMC8GA1UEBRMoOUE1ODdFNEVDRjY4RUM3NzI5RDhERTQzNUZGREFBRENF QTVCNDkzOTAeFw0yNTEyMDMwNTIzMjJaFw0yNTEyMTAwNTIzMjJaMBgxFjAUBgNV BAMTDTY5MmZjOTRhLTg3YzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDhI2oWV1aGaQPjXP2g2GOUBDNm9nT0CDnREmc6c+s1Dyb+XG6AfYbYEYRnPlxN pAvuoXNZZwKNj3+kQFp5bMqKV1mO7D1EuIH5x8EYyR1y5sqlONC2XAFEnTPR2qDG hYgceBS2SB4fhI+moqapyvnQlc9WTvluw8VY0TtLHRAYETAh+zY6jTXmHVw8gfFz scqGshbt0DAQW6cHG/+knjxTa9SpX3h7iULJR7eKQaf/K/K4BUt5XrLniByZfz3L klvKpKRtCsIZEX3obU7iiX/pn+w4BkERuTBMa9oWwdCgROAiK/7OAOzKGUrFWMIN LzqTxis9y2mmPxoPa+LbEhT3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5KCBwhmB f1cHvsGUMqNVUcKrPs4wHwYDVR0jBBgwFoAUmlh+Ts9o7Hcp2N5DX/2q3OpbSTkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzRTgwLzM1NDMzRjIyNEI2 NjExRjBCODg1MjQzOUM0RjlBRTAyL21saC1UczlvN0hjcDJONURYXzJxM09wYlNU ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbWxoLVRzOW83SGNwMk41RFhfMnEzT3BiU1RrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUz RTgwLzM1NDMzRjIyNEI2NjExRjBCODg1MjQzOUM0RjlBRTAyL21saC1UczlvN0hj cDJONURYXzJxM09wYlNUay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFNpzCzmC60j0idfuEhwsRGOTyCQLMIcG8rkf1lbfRYOxs0AbxY+ePsl qW+jcdoQ2WJiju4wFYD4xQyiXweR9D5ODbnwyG8QN70A2BPCZVGgrBrQeOZf+4b2 Lni4pQvWHYvUNhR7tycrkpx8vR4PQCKs0/a9FnxP9YyN/mFRCLM8nnM1vLp0uVOU 6SqVfNj2Vg2+saDr7atygvL7Mi9MzMpMVa9O4iSIDfaJqQlgyXi0J6X8gHD7Ph36 m49PC19sCETzz667+lsleOnhvQN4Jx7KUHARNF+LcMX5/Fh2VEOrgkD1AMa3fJoY i6GJfIxCFrvSi4hUGrtpfKwxvf2iDOI= -----END CERTIFICATE-----Generated at Wed Dec 3 13:58:03 2025 by rpki-client