This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.mft File: 72cCp9CuyDTe-49BaLL-j01YQ-g.mft (raw, json) Hash identifier: J9v7kG6NMKkDAtP30YvIsImUpzeRC+XI/c4LoE8CcIw= Subject key identifier: 49:43:CF:5C:8F:B6:24:AB:AE:29:5A:0B:B6:FE:0B:20:A8:6C:09:FF Authority key identifier: EF:67:02:A7:D0:AE:C8:34:DE:FB:8F:41:68:B2:FE:8F:4D:58:43:E8 Certificate issuer: /CN=A91A352E/serialNumber=EF6702A7D0AEC834DEFB8F4168B2FE8F4D5843E8 Certificate serial: 01E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72cCp9CuyDTe-49BaLL-j01YQ-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.mft Manifest number: 01DA Signing time: Sun 21 Dec 2025 02:02:19 +0000 Manifest this update: Sun 21 Dec 2025 02:02:19 +0000 Manifest next update: Sun 28 Dec 2025 02:02:19 +0000 Files and hashes: 1: 72cCp9CuyDTe-49BaLL-j01YQ-g.crl (hash: rq2QqKKI0aVrtt4VHK2eV8SJQUkYJtLgQQHghG26D8o=) 2: 3E734F70B9A311EE85D60B49C4F9AE02.roa (hash: 9gR2lRbVVIU22KEWmoGtOBdRGANvKvJYg+mYVptNNuo=) 3: C3835BF6B9A311EEB293524AC4F9AE02.roa (hash: UlpJBRG/slW4YmDu7jI0m8GwClz9FqM/W/iTuDuu4YY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.crl rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72cCp9CuyDTe-49BaLL-j01YQ-g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 02:02:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 482 (0x1e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A352E, serialNumber=EF6702A7D0AEC834DEFB8F4168B2FE8F4D5843E8 Validity Not Before: Dec 21 02:02:19 2025 GMT Not After : Dec 28 02:02:19 2025 GMT Subject: CN=6947552b-1453 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:91:b6:d5:63:7c:a7:37:1c:c9:93:cd:f6:e5: 86:44:e6:09:10:98:d4:45:a5:d6:9f:ce:7b:09:00: 29:97:c5:d4:d3:9c:03:ae:19:89:b5:14:61:6b:27: 5a:a7:24:25:49:38:86:05:e2:30:fc:9c:2a:ef:74: ed:bf:95:b3:41:a3:a6:d1:bf:5c:41:20:6e:ad:45: fd:08:f6:4b:e0:94:c5:26:c8:1e:0e:6a:1c:07:bb: 96:6e:88:7d:64:83:8b:35:b0:3e:7c:fe:fd:1e:e4: 77:c1:b5:09:a1:96:0c:97:2c:90:5a:a0:6b:b3:d2: 9d:7f:41:e4:58:00:63:a8:94:0e:46:63:d0:db:f1: 43:ab:0e:29:6f:33:3e:21:bb:c5:8d:03:67:1c:11: 2f:e7:dd:2c:e5:47:35:7d:9c:ab:42:c8:f7:54:df: 60:27:1c:6f:02:e5:05:7a:64:d9:a6:4a:cf:e5:a7: bf:59:d0:39:2c:aa:4d:03:2f:64:b0:10:26:18:60: f3:dc:7a:a7:d8:09:f7:f4:bc:98:9a:dd:53:cd:60: 15:c3:b7:f6:c9:32:84:29:28:d9:25:0d:bd:35:e5: 4d:44:33:fa:65:b8:94:ed:fc:58:c0:69:c1:94:ab: cf:60:e1:db:a7:63:99:a8:af:72:20:94:90:1c:8f: ef:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:43:CF:5C:8F:B6:24:AB:AE:29:5A:0B:B6:FE:0B:20:A8:6C:09:FF X509v3 Authority Key Identifier: keyid:EF:67:02:A7:D0:AE:C8:34:DE:FB:8F:41:68:B2:FE:8F:4D:58:43:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72cCp9CuyDTe-49BaLL-j01YQ-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:59:58:ba:96:82:f4:ca:fc:41:c8:05:3f:44:c9:4c:da:bf: c2:cd:65:a1:07:97:37:e0:a9:35:dc:75:db:b6:50:5f:9a:04: a4:04:98:8d:4f:65:06:6f:5c:ee:2f:10:40:e1:bb:5c:fb:88: 6d:b2:8e:50:36:a7:cb:51:ec:f0:83:37:7a:87:d2:83:b0:c5: ca:97:8e:b5:2e:46:35:db:57:88:63:10:d0:0e:23:f0:69:27: 3d:7f:93:58:34:d7:4e:2f:d3:cb:69:ad:42:fd:18:dd:c0:41: 92:af:ea:7b:0d:0a:f3:84:6c:f2:1a:96:db:23:e8:f2:51:75: d2:6b:c5:fc:56:6e:ee:6d:c0:e6:5b:df:e7:e3:ef:6f:80:a8: 83:b4:d0:78:29:a9:55:37:d1:50:ab:8a:cd:62:04:90:1b:10: f9:6c:4c:95:79:8e:cf:bd:66:2c:f9:c8:3a:61:65:2e:cc:e4: a5:8c:ed:9c:92:90:80:1d:66:d4:48:8a:20:b1:83:43:9a:f6: 9a:7b:93:0e:17:de:5e:30:ff:1f:99:2a:79:bc:f6:6b:39:9f: 25:27:9d:e1:00:1f:a1:d2:94:12:8d:3e:90:63:23:4d:1c:ef: 43:5c:2c:e6:43:f5:af:e1:56:6b:f5:6f:1b:25:98:2e:4e:ac: 20:7d:d4:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM1MkUxMTAvBgNVBAUTKEVGNjcwMkE3RDBBRUM4MzRERUZCOEY0MTY4QjJGRThG NEQ1ODQzRTgwHhcNMjUxMjIxMDIwMjE5WhcNMjUxMjI4MDIwMjE5WjAYMRYwFAYD VQQDDA02OTQ3NTUyYi0xNDUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZG21WN8pzccyZPN9uWGROYJEJjURaXWn857CQApl8XU05wDrhmJtRRhayda pyQlSTiGBeIw/Jwq73Ttv5WzQaOm0b9cQSBurUX9CPZL4JTFJsgeDmocB7uWboh9 ZIOLNbA+fP79HuR3wbUJoZYMlyyQWqBrs9Kdf0HkWABjqJQORmPQ2/FDqw4pbzM+ IbvFjQNnHBEv590s5Uc1fZyrQsj3VN9gJxxvAuUFemTZpkrP5ae/WdA5LKpNAy9k sBAmGGDz3Hqn2An39LyYmt1TzWAVw7f2yTKEKSjZJQ29NeVNRDP6ZbiU7fxYwGnB lKvPYOHbp2OZqK9yIJSQHI/vLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFElDz1yP tiSrrilaC7b+CyCobAn/MB8GA1UdIwQYMBaAFO9nAqfQrsg03vuPQWiy/o9NWEPo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzUyRS9EQzMzNTk3QzBC NjAxMUVFQjMyMjA0MUFDNEY5QUUwMi83MmNDcDlDdXlEVGUtNDlCYUxMLWowMVlR LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyY0NwOUN1eURUZS00OUJhTEwtajAxWVEtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzUyRS9EQzMzNTk3QzBCNjAxMUVFQjMyMjA0MUFDNEY5QUUwMi83MmNDcDlDdXlE VGUtNDlCYUxMLWowMVlRLWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjWVi6loL0yvxByAU/RMlM2r/CzWWhB5c34Kk13HXbtlBfmgSkBJiN T2UGb1zuLxBA4btc+4htso5QNqfLUezwgzd6h9KDsMXKl461LkY121eIYxDQDiPw aSc9f5NYNNdOL9PLaa1C/RjdwEGSr+p7DQrzhGzyGpbbI+jyUXXSa8X8Vm7ubcDm W9/n4+9vgKiDtNB4KalVN9FQq4rNYgSQGxD5bEyVeY7PvWYs+cg6YWUuzOSljO2c kpCAHWbUSIogsYNDmvaae5MOF95eMP8fmSp5vPZrOZ8lJ53hAB+h0pQSjT6QYyNN HO9DXCzmQ/Wv4VZr9W8bJZguTqwgfdRH -----END CERTIFICATE-----Generated at Sun Dec 21 19:28:50 2025 by rpki-client