This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.mft File: 72cCp9CuyDTe-49BaLL-j01YQ-g.mft (raw, json) Hash identifier: p/sPcNLWJhc1f7g8eLTH5wFCToPI6NsF2CxZoGa6zvg= Subject key identifier: FF:55:EC:2E:01:12:04:A0:27:7B:F6:BF:AC:C5:8B:65:96:D4:6F:CB Authority key identifier: EF:67:02:A7:D0:AE:C8:34:DE:FB:8F:41:68:B2:FE:8F:4D:58:43:E8 Certificate issuer: /CN=A91A352E/serialNumber=EF6702A7D0AEC834DEFB8F4168B2FE8F4D5843E8 Certificate serial: 01E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72cCp9CuyDTe-49BaLL-j01YQ-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.mft Manifest number: 01D9 Signing time: Fri 19 Dec 2025 01:59:59 +0000 Manifest this update: Fri 19 Dec 2025 01:59:59 +0000 Manifest next update: Fri 26 Dec 2025 01:59:59 +0000 Files and hashes: 1: 72cCp9CuyDTe-49BaLL-j01YQ-g.crl (hash: URsz8lq89bkDJn1oDxCJ6xy5XQY3xO2Lwq6MB2migGA=) 2: C3835BF6B9A311EEB293524AC4F9AE02.roa (hash: UlpJBRG/slW4YmDu7jI0m8GwClz9FqM/W/iTuDuu4YY=) 3: 3E734F70B9A311EE85D60B49C4F9AE02.roa (hash: 9gR2lRbVVIU22KEWmoGtOBdRGANvKvJYg+mYVptNNuo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.crl rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72cCp9CuyDTe-49BaLL-j01YQ-g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:59:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 481 (0x1e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A352E, serialNumber=EF6702A7D0AEC834DEFB8F4168B2FE8F4D5843E8 Validity Not Before: Dec 19 01:59:59 2025 GMT Not After : Dec 26 01:59:59 2025 GMT Subject: CN=6944b19f-8179 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:20:ee:ff:ed:ae:50:c0:ac:57:0f:c4:4e:29: a2:1c:de:ae:c4:6d:71:0f:d3:e9:46:93:ba:d4:2e: 80:24:5a:51:b2:bf:ac:51:3e:e2:1a:64:82:d8:2d: dc:84:a6:f1:99:3d:2c:4b:3f:b3:45:e0:b9:3a:6b: ee:68:51:99:1f:8e:bf:69:ec:b9:bb:e5:fb:26:1f: 6d:b3:f6:f1:44:12:40:24:e9:48:d4:24:4f:a4:fd: c5:46:9a:a7:09:38:f2:28:10:f9:46:53:da:1f:8f: ef:2a:6b:e2:53:56:f5:71:b2:fd:9e:db:a6:2d:d9: 61:e6:52:a5:21:ca:b8:30:6b:9d:15:18:ed:78:f7: 5c:00:22:4e:9a:eb:a8:75:9b:7e:8a:a1:1d:c2:c9: 61:19:80:05:19:21:e1:cd:59:f5:dd:2c:c3:7d:fa: f5:6b:b0:10:6f:09:84:43:d9:9a:b0:2b:d6:22:68: 1d:8e:26:f9:3b:fc:06:0b:53:51:03:47:d3:d2:bf: 96:f1:c8:f4:49:2b:51:3d:55:fe:f9:31:60:38:88: 34:f7:b9:86:c7:4c:6a:8b:ac:f1:49:1a:01:e9:fe: 56:ed:db:a6:17:27:64:3e:fb:d9:f8:72:a1:95:64: 4b:ef:a6:dd:7e:b5:06:ca:11:b5:68:fb:5c:3f:e8: 83:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:55:EC:2E:01:12:04:A0:27:7B:F6:BF:AC:C5:8B:65:96:D4:6F:CB X509v3 Authority Key Identifier: keyid:EF:67:02:A7:D0:AE:C8:34:DE:FB:8F:41:68:B2:FE:8F:4D:58:43:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72cCp9CuyDTe-49BaLL-j01YQ-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:bb:cb:af:78:5c:2b:1a:f3:1b:af:3a:d7:35:76:97:61:6f: 1a:f6:e9:5a:87:25:09:5d:0f:4d:e1:84:60:58:41:23:f5:a3: c5:53:66:81:69:8b:07:d3:fc:10:ab:84:bb:c6:87:0d:44:ce: a6:f0:5a:e8:22:79:99:22:5b:b9:2f:f7:c2:5f:cd:71:ba:30: 73:db:70:db:f8:0d:f1:02:6b:cb:84:29:d9:63:5e:a2:01:82: 3d:e1:15:f7:16:43:ba:b0:9b:4e:3f:2d:02:95:e1:d7:b2:c9: d6:1f:0a:9a:2e:b6:15:d6:ce:d9:89:f1:ab:fe:74:c2:e8:cc: 6b:8f:6d:82:fd:8e:97:40:e9:cb:6a:04:02:1b:ed:15:6a:46: d9:cc:ce:93:5b:17:fe:b9:94:f5:db:47:1f:a9:59:84:04:a4: 81:dd:7f:79:09:54:ef:41:82:64:8a:61:7f:30:6f:d7:55:12: 97:b8:ac:13:43:15:f8:3b:28:b3:d5:56:c4:19:33:df:55:ac: e1:27:5c:ae:98:32:c7:44:41:c9:ff:7e:96:b5:04:36:b8:ad: 0c:43:ef:d9:3a:11:e3:82:39:89:67:d5:a1:03:49:69:8b:89: 68:64:40:68:aa:f0:53:64:9d:10:9b:7a:79:07:0f:00:43:cd: 8e:2e:ab:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM1MkUxMTAvBgNVBAUTKEVGNjcwMkE3RDBBRUM4MzRERUZCOEY0MTY4QjJGRThG NEQ1ODQzRTgwHhcNMjUxMjE5MDE1OTU5WhcNMjUxMjI2MDE1OTU5WjAYMRYwFAYD VQQDDA02OTQ0YjE5Zi04MTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CDu/+2uUMCsVw/ETimiHN6uxG1xD9PpRpO61C6AJFpRsr+sUT7iGmSC2C3c hKbxmT0sSz+zReC5OmvuaFGZH46/aey5u+X7Jh9ts/bxRBJAJOlI1CRPpP3FRpqn CTjyKBD5RlPaH4/vKmviU1b1cbL9ntumLdlh5lKlIcq4MGudFRjtePdcACJOmuuo dZt+iqEdwslhGYAFGSHhzVn13SzDffr1a7AQbwmEQ9masCvWImgdjib5O/wGC1NR A0fT0r+W8cj0SStRPVX++TFgOIg097mGx0xqi6zxSRoB6f5W7dumFydkPvvZ+HKh lWRL76bdfrUGyhG1aPtcP+iDFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP9V7C4B EgSgJ3v2v6zFi2WW1G/LMB8GA1UdIwQYMBaAFO9nAqfQrsg03vuPQWiy/o9NWEPo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzUyRS9EQzMzNTk3QzBC NjAxMUVFQjMyMjA0MUFDNEY5QUUwMi83MmNDcDlDdXlEVGUtNDlCYUxMLWowMVlR LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyY0NwOUN1eURUZS00OUJhTEwtajAxWVEtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzUyRS9EQzMzNTk3QzBCNjAxMUVFQjMyMjA0MUFDNEY5QUUwMi83MmNDcDlDdXlE VGUtNDlCYUxMLWowMVlRLWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADu8uveFwrGvMbrzrXNXaXYW8a9ulahyUJXQ9N4YRgWEEj9aPFU2aB aYsH0/wQq4S7xocNRM6m8FroInmZIlu5L/fCX81xujBz23Db+A3xAmvLhCnZY16i AYI94RX3FkO6sJtOPy0CleHXssnWHwqaLrYV1s7ZifGr/nTC6Mxrj22C/Y6XQOnL agQCG+0VakbZzM6TWxf+uZT120cfqVmEBKSB3X95CVTvQYJkimF/MG/XVRKXuKwT QxX4Oyiz1VbEGTPfVazhJ1yumDLHREHJ/36WtQQ2uK0MQ+/ZOhHjgjmJZ9WhA0lp i4loZEBoqvBTZJ0Qm3p5Bw8AQ82OLqtW -----END CERTIFICATE-----Generated at Fri Dec 19 20:52:43 2025 by rpki-client