This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919FEA1/BFCB85EC9E1411E9A2F6F946C4F9AE02/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.mft File: 72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.mft (raw, json) Hash identifier: SrclxkQAfUUFp0Y3061Ysowxj0Me4jDGejDtMur4BKQ= Subject key identifier: 1F:11:DB:1F:01:AB:47:DF:F8:C9:84:01:1C:8B:4D:89:86:E6:87:73 Authority key identifier: EF:6C:19:4B:B2:89:4D:33:E6:DE:06:42:23:2D:94:CE:4E:9E:F1:94 Certificate issuer: /CN=A919FEA1/serialNumber=EF6C194BB2894D33E6DE0642232D94CE4E9EF194 Certificate serial: 0EBF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FEA1/BFCB85EC9E1411E9A2F6F946C4F9AE02/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.mft Manifest number: 0EB6 Signing time: Mon 22 Dec 2025 17:19:10 +0000 Manifest this update: Mon 22 Dec 2025 17:19:10 +0000 Manifest next update: Mon 29 Dec 2025 17:19:10 +0000 Files and hashes: 1: 72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.crl (hash: dZ3IvFWwVKvKOXCy49qn1o1ElMM/M5+OXwCIZiGBvhs=) 2: 0DFAD3529E1611E98059B049C4F9AE02.roa (hash: Fk/MM5a7XloGNvh5BBzETAolL1qXnjEN3DS8ILJUook=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FEA1/BFCB85EC9E1411E9A2F6F946C4F9AE02/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.crl rsync://rpki.apnic.net/member_repository/A919FEA1/BFCB85EC9E1411E9A2F6F946C4F9AE02/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:19:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3775 (0xebf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FEA1, serialNumber=EF6C194BB2894D33E6DE0642232D94CE4E9EF194 Validity Not Before: Dec 22 17:19:10 2025 GMT Not After : Dec 29 17:19:10 2025 GMT Subject: CN=69497d8e-13a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:bc:d2:2f:5b:37:5d:9e:7e:33:c0:b1:94:95: 2d:ee:a0:61:05:31:d0:47:5e:bc:79:69:e2:79:52: 59:b2:50:f7:6e:4c:de:34:86:f1:68:4e:38:db:d4: 0c:9e:23:83:6e:e3:3f:ad:f6:31:f2:00:e7:02:a8: 15:62:cf:b0:67:29:76:b1:15:5c:8a:73:d3:24:7c: 6a:6a:01:90:5b:b6:cc:05:c4:ee:09:9b:1c:96:99: 20:48:9e:51:73:02:20:86:62:05:79:85:84:31:c1: af:1d:d6:3c:d8:6f:6f:ac:08:71:09:08:ad:62:8d: 76:d8:ad:69:fe:4d:19:ef:3f:8b:a9:70:c4:80:3a: 02:ea:1d:be:2a:5b:c2:de:f6:e7:40:e4:f1:33:28: 08:dc:6a:1c:99:2b:fe:68:db:fc:34:de:f2:b9:49: 8c:36:95:e9:a7:bf:83:31:de:84:3e:0f:a1:26:ea: f9:0e:8a:ad:50:d6:4d:3e:cb:0e:8c:cc:8c:15:91: c4:7a:f5:3e:62:00:40:e2:bd:43:06:ff:e7:3a:1e: bc:ba:0a:b6:2c:4f:75:32:31:e6:00:f9:24:30:20: 2c:b0:9f:c6:78:12:bd:ce:ea:d6:8e:b1:07:5d:a9: 0f:a3:44:57:18:44:1f:45:c6:63:93:fd:9a:a7:d5: cb:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:11:DB:1F:01:AB:47:DF:F8:C9:84:01:1C:8B:4D:89:86:E6:87:73 X509v3 Authority Key Identifier: keyid:EF:6C:19:4B:B2:89:4D:33:E6:DE:06:42:23:2D:94:CE:4E:9E:F1:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FEA1/BFCB85EC9E1411E9A2F6F946C4F9AE02/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FEA1/BFCB85EC9E1411E9A2F6F946C4F9AE02/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:d3:7f:88:b4:7b:4e:8b:3f:d4:97:f1:3b:81:e3:8b:d6:69: 9e:e1:9b:40:55:bf:57:e5:b8:21:53:f4:49:cc:60:88:1c:79: 95:86:eb:f2:92:f5:cf:e4:62:25:e6:9a:6e:81:34:30:cc:42: c5:27:1c:1f:b1:22:30:27:0c:96:23:cd:5d:ca:2f:74:39:e0: cf:f2:49:48:d6:83:5b:7e:15:68:52:4f:90:37:b9:9f:52:04: 95:d8:24:1e:8a:64:3a:d7:c5:7a:e0:d4:21:3d:7e:3f:32:b0: 2d:44:b1:3d:af:a5:29:8c:7f:fa:55:6a:cc:f6:1f:4e:fa:6c: ff:17:72:ff:ac:e8:45:ae:ec:7d:58:07:0a:4d:b9:0c:f2:15: f1:91:d8:cd:b1:04:1f:67:9a:44:af:dc:30:15:3d:8f:4c:2c: 8e:b7:ef:84:1f:dc:94:c2:34:5e:92:61:18:0d:8d:84:82:b8: d0:d0:81:c5:aa:e9:6a:42:46:47:dc:2d:f5:ec:98:8f:a5:41: 15:71:2d:ad:f6:36:bb:e2:8b:75:f9:3d:05:0b:07:d5:39:ce: 43:50:1f:e9:5f:45:e0:94:da:53:f3:91:b4:b7:f4:4e:90:c3: d0:31:58:7a:f9:85:a0:6c:e7:c0:e2:eb:50:c9:dd:d7:9e:b6: 88:1b:9a:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZFQTExMTAvBgNVBAUTKEVGNkMxOTRCQjI4OTREMzNFNkRFMDY0MjIzMkQ5NENF NEU5RUYxOTQwHhcNMjUxMjIyMTcxOTEwWhcNMjUxMjI5MTcxOTEwWjAYMRYwFAYD VQQDDA02OTQ5N2Q4ZS0xM2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrzSL1s3XZ5+M8CxlJUt7qBhBTHQR168eWnieVJZslD3bkzeNIbxaE4429QM niODbuM/rfYx8gDnAqgVYs+wZyl2sRVcinPTJHxqagGQW7bMBcTuCZsclpkgSJ5R cwIghmIFeYWEMcGvHdY82G9vrAhxCQitYo122K1p/k0Z7z+LqXDEgDoC6h2+KlvC 3vbnQOTxMygI3GocmSv+aNv8NN7yuUmMNpXpp7+DMd6EPg+hJur5DoqtUNZNPssO jMyMFZHEevU+YgBA4r1DBv/nOh68ugq2LE91MjHmAPkkMCAssJ/GeBK9zurWjrEH XakPo0RXGEQfRcZjk/2ap9XLlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB8R2x8B q0ff+MmEARyLTYmG5odzMB8GA1UdIwQYMBaAFO9sGUuyiU0z5t4GQiMtlM5OnvGU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkVBMS9CRkNCODVFQzlF MTQxMUU5QTJGNkY5NDZDNEY5QUUwMi83MndaUzdLSlRUUG0zZ1pDSXkyVXprNmU4 WlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyd1pTN0tKVFRQbTNnWkNJeTJVems2ZThaUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkVBMS9CRkNCODVFQzlFMTQxMUU5QTJGNkY5NDZDNEY5QUUwMi83MndaUzdLSlRU UG0zZ1pDSXkyVXprNmU4WlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAL03+ItHtOiz/Ul/E7geOL1mme4ZtAVb9X5bghU/RJzGCIHHmVhuvy kvXP5GIl5ppugTQwzELFJxwfsSIwJwyWI81dyi90OeDP8klI1oNbfhVoUk+QN7mf UgSV2CQeimQ618V64NQhPX4/MrAtRLE9r6UpjH/6VWrM9h9O+mz/F3L/rOhFrux9 WAcKTbkM8hXxkdjNsQQfZ5pEr9wwFT2PTCyOt++EH9yUwjRekmEYDY2EgrjQ0IHF qulqQkZH3C317JiPpUEVcS2t9ja74ot1+T0FCwfVOc5DUB/pX0XglNpT85G0t/RO kMPQMVh6+YWgbOfA4utQyd3XnraIG5oY -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:44 2025 by rpki-client