This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft File: mnPxqRn79GyHLjiAWxZQtfiCdtM.mft (raw, json) Hash identifier: PtcoRVlcnadoMt8eE2mkYuSULisif5bacAUzAkH1iGU= Subject key identifier: 41:90:3B:7E:3B:9F:C6:18:57:62:5D:34:58:2C:AC:04:98:29:F8:57 Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3 Certificate serial: 1198 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft Manifest number: 0D3E Signing time: Thu 04 Dec 2025 19:35:17 +0000 Manifest this update: Thu 04 Dec 2025 19:35:17 +0000 Manifest next update: Thu 11 Dec 2025 19:35:17 +0000 Files and hashes: 1: mnPxqRn79GyHLjiAWxZQtfiCdtM.crl (hash: J2e8KfgRhbPNj67UuZyWtPoFMZRc9sCVR1Ns/YQ2H9Q=) 2: 5C2A5AE670FD11F08583BE3AC4F9AE02.roa (hash: NAdbZTtzlwtewbjTfuMORoVz4S6lpr350iCxdpAhbLc=) 3: 8BAE1FFA6D1A11F0A4E9404DC4F9AE02.roa (hash: LcfL6WlPDAVnfVe8FVQ0PTDxHLr1cQFF1C/EotpyU7g=) 4: 25F14F2CCB7311F0AD0EFD28C4F9AE02.roa (hash: WPGYPxYYbe7jSIec6WtkW7sTM/Xo3UBDdfWUOBnJS1E=) 5: A173B894112711F0845DF16FC4F9AE02.roa (hash: 3CENOgG8lzvvc7h19xhkGA0RtKWssC6nuSD3IRmHv+U=) 6: 24B754BA9B7911EFBA9A2A42C4F9AE02.roa (hash: y4nldf+8SF0UXyvc5ZFdPynmdfFfU94WXlTR6JoprTg=) 7: 6BE346006D1A11F0B1F1074DC4F9AE02.roa (hash: F+kwWb5yikRsOK2zoJFU1MWIPMWRYvJswNdoIKQaUNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:35:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4504 (0x1198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134, serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3 Validity Not Before: Dec 4 19:35:17 2025 GMT Not After : Dec 11 19:35:17 2025 GMT Subject: CN=6931e275-f82d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:d1:b7:ab:29:7e:64:c4:36:9f:4b:cc:8e:02: 36:9e:4d:09:54:a8:1d:ed:7f:d5:93:75:9c:6c:d6: 73:3b:61:24:c6:20:bd:9b:f8:a1:4a:ef:32:4e:e2: ab:35:42:be:83:1b:b7:b4:01:b1:18:fa:7c:3c:f1: 14:04:3f:e4:89:2b:cb:49:ef:fe:78:81:f5:07:d1: c8:78:75:e9:be:73:1d:4e:aa:87:66:59:20:9c:34: 81:d9:6c:f4:e0:7c:e2:28:b3:0a:00:bf:7a:b4:61: c9:5d:59:30:1a:57:b2:bc:24:bf:80:51:64:55:a4: 57:11:58:50:7c:c5:67:41:28:c5:db:82:0b:05:ba: 4b:a9:0b:75:79:74:0b:50:7f:fd:0c:1e:2d:23:8b: 3d:b8:76:75:94:8b:3d:59:ed:05:97:e3:28:f3:c5: ba:64:27:b8:43:bf:73:6a:a1:78:79:f1:03:6d:f7: 36:8b:e7:5d:b4:80:2a:d9:3e:f9:8f:1e:83:dd:0e: 08:2f:87:f4:73:9f:8b:78:0c:80:ae:91:95:0a:1d: e2:0a:80:18:c7:06:f1:36:2b:79:9b:56:98:97:c2: 37:6b:ca:b0:4e:ba:8e:d9:c0:52:50:41:0a:11:f6: 8a:d7:fa:e1:c5:ce:d4:14:af:37:53:e5:b8:06:2e: 03:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:90:3B:7E:3B:9F:C6:18:57:62:5D:34:58:2C:AC:04:98:29:F8:57 X509v3 Authority Key Identifier: keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:ea:6a:43:e4:7e:80:ee:77:c2:03:7b:0d:7d:ab:c7:d1:1a: cb:75:97:f0:41:33:ec:a5:40:03:bc:9d:88:c6:04:1b:83:4e: bf:cb:4c:71:24:ab:7b:22:61:e9:5a:7d:99:1d:6f:bd:da:48: d8:1c:60:86:8f:19:2f:0c:13:c0:b2:db:cf:ec:3d:27:cf:0f: 4f:6a:70:27:2e:68:aa:33:51:f1:b4:c7:d9:21:3a:cc:a8:a0: d3:e1:59:7a:90:b4:5c:d0:17:ed:c9:5d:17:07:86:57:c7:78: 90:43:6c:20:4e:3e:78:35:31:78:41:82:27:6f:0b:03:57:5e: 8c:2f:cc:64:d9:86:41:c0:85:f9:85:05:a6:2d:ea:06:90:77: 5e:2a:fe:98:c3:f2:2c:b0:d1:6c:3d:08:31:88:44:68:91:d6: 00:9b:15:51:9d:8d:15:a2:3c:f0:ac:39:5e:c3:1d:c7:34:18: d6:bb:a9:19:04:2b:25:f0:90:00:46:97:f0:66:4b:4f:c1:31: 2e:ff:63:24:4f:b4:69:1a:ff:c5:b2:8e:d3:29:86:eb:ca:ed: 80:7f:e1:c7:dc:1a:ba:d6:fb:c2:ce:55:e9:f5:b4:c4:2e:30: 54:e8:f3:e5:27:b1:7e:04:9e:35:98:52:2f:9d:ca:3e:ed:24: b8:ce:27:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDlBNzNGMUE5MTlGQkY0NkM4NzJFMzg4MDVCMTY1MEI1 Rjg4Mjc2RDMwHhcNMjUxMjA0MTkzNTE3WhcNMjUxMjExMTkzNTE3WjAYMRYwFAYD VQQDEw02OTMxZTI3NS1mODJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7tG3qyl+ZMQ2n0vMjgI2nk0JVKgd7X/Vk3WcbNZzO2EkxiC9m/ihSu8yTuKr NUK+gxu3tAGxGPp8PPEUBD/kiSvLSe/+eIH1B9HIeHXpvnMdTqqHZlkgnDSB2Wz0 4HziKLMKAL96tGHJXVkwGleyvCS/gFFkVaRXEVhQfMVnQSjF24ILBbpLqQt1eXQL UH/9DB4tI4s9uHZ1lIs9We0Fl+Mo88W6ZCe4Q79zaqF4efEDbfc2i+ddtIAq2T75 jx6D3Q4IL4f0c5+LeAyArpGVCh3iCoAYxwbxNit5m1aYl8I3a8qwTrqO2cBSUEEK EfaK1/rhxc7UFK83U+W4Bi4DDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEGQO347 n8YYV2JdNFgsrASYKfhXMB8GA1UdIwQYMBaAFJpz8akZ+/Rshy44gFsWULX4gnbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81N0IzRTBCQ0My QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9tblB4cVJuNzlHeUhMamlBV3haUXRmaUNk dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21uUHhxUm43OUd5SExqaUFXeFpRdGZpQ2R0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjEzNC81N0IzRTBCQ0MyQTgxMUVBQTc5MThBMkVDNEY5QUUwMi9tblB4cVJuNzlH eUhMamlBV3haUXRmaUNkdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAI6mpD5H6A7nfCA3sNfavH0RrLdZfwQTPspUADvJ2IxgQbg06/y0xx JKt7ImHpWn2ZHW+92kjYHGCGjxkvDBPAstvP7D0nzw9PanAnLmiqM1HxtMfZITrM qKDT4Vl6kLRc0BftyV0XB4ZXx3iQQ2wgTj54NTF4QYInbwsDV16ML8xk2YZBwIX5 hQWmLeoGkHdeKv6Yw/IssNFsPQgxiERokdYAmxVRnY0VojzwrDlewx3HNBjWu6kZ BCsl8JAARpfwZktPwTEu/2MkT7RpGv/Fso7TKYbryu2Af+HH3Bq61vvCzlXp9bTE LjBU6PPlJ7F+BJ41mFIvnco+7SS4zicY -----END CERTIFICATE-----Generated at Sat Dec 6 12:27:07 2025 by rpki-client