This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft File: 72Nt-xWS8CIgFrAPrKJwNXP00oI.mft (raw, json) Hash identifier: LCu5bEz2JNedcT3j5H77lYTsTp4DbeMDFRepMFpvswE= Subject key identifier: EE:A5:01:62:79:8D:86:6F:1D:A5:70:22:07:E2:25:C5:50:1F:99:68 Authority key identifier: EF:63:6D:FB:15:92:F0:22:20:16:B0:0F:AC:A2:70:35:73:F4:D2:82 Certificate issuer: /CN=A91DC8BD/serialNumber=EF636DFB1592F0222016B00FACA2703573F4D282 Certificate serial: 01B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Nt-xWS8CIgFrAPrKJwNXP00oI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft Manifest number: 01B5 Signing time: Tue 23 Dec 2025 02:07:01 +0000 Manifest this update: Tue 23 Dec 2025 02:07:01 +0000 Manifest next update: Tue 30 Dec 2025 02:07:01 +0000 Files and hashes: 1: 72Nt-xWS8CIgFrAPrKJwNXP00oI.crl (hash: oCD4X+zNMO6cyx4LtIsFbLGiHiLI0x/lGuab45HJaZk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.crl rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Nt-xWS8CIgFrAPrKJwNXP00oI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:07:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 437 (0x1b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC8BD, serialNumber=EF636DFB1592F0222016B00FACA2703573F4D282 Validity Not Before: Dec 23 02:07:01 2025 GMT Not After : Dec 30 02:07:01 2025 GMT Subject: CN=6949f945-8f05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:8b:74:b7:1c:04:0b:53:28:75:fa:a5:b2:c1: 45:a5:d1:70:22:55:26:9e:96:54:30:23:58:e4:6d: d2:e4:75:30:cc:48:c3:b6:e1:56:94:27:fc:4b:72: 8b:d9:14:d1:f8:75:c3:6f:4b:1a:ed:bb:5b:54:36: f3:6b:1a:87:58:91:40:a4:5b:cb:3a:26:a8:4c:0f: f2:85:1d:90:b5:15:d8:a6:48:b3:43:25:73:c1:28: 11:20:a6:7e:c2:17:40:ca:dd:ba:d7:bb:29:3a:1f: da:54:56:10:fb:d7:ad:2a:0b:c4:ac:ed:7c:62:f4: f7:ba:8f:df:d5:7c:a0:27:d3:e9:5f:26:66:13:43: 3f:d4:12:2f:b1:f6:21:0d:d2:d3:66:b6:15:0a:71: 52:3d:46:95:da:68:5e:ba:96:e3:49:7c:ab:d0:11: 51:f7:dd:40:5b:e1:19:b9:42:ed:5f:fa:d1:0e:0e: 80:d4:84:9e:94:42:ec:48:ab:1c:93:6a:f0:5c:dc: 23:db:cb:1f:04:80:53:7b:af:21:7c:b9:94:18:c4: 67:81:4b:bd:81:ea:ec:70:1b:15:9e:34:fe:3d:8b: 55:45:17:d6:9d:18:d9:6b:6a:f0:d5:91:23:ca:b5: 8b:b4:59:64:c5:7b:f8:69:76:f8:5d:07:f7:85:29: 48:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:A5:01:62:79:8D:86:6F:1D:A5:70:22:07:E2:25:C5:50:1F:99:68 X509v3 Authority Key Identifier: keyid:EF:63:6D:FB:15:92:F0:22:20:16:B0:0F:AC:A2:70:35:73:F4:D2:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Nt-xWS8CIgFrAPrKJwNXP00oI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:02:49:05:0c:8e:43:06:3c:d2:2c:c1:b8:2e:3e:b4:13:9b: 6d:3b:1f:17:2f:12:5e:56:9c:3d:2c:71:31:a0:01:36:5c:cc: 73:db:a9:b2:c3:0f:76:ea:05:05:88:b5:c7:62:9f:d0:fb:e7: ea:ed:e9:79:fb:74:b2:a5:ec:d3:87:65:8c:1c:67:12:b4:ae: ed:05:3c:90:93:9d:0f:25:77:a8:62:ba:91:e9:5e:c5:72:74: 62:bf:00:6b:27:ea:01:02:f3:cc:7e:a1:0d:f1:df:81:5c:08: b2:a2:4a:d6:fd:a9:a0:a9:8b:e2:6c:c5:ce:ae:2a:e2:3d:a4: 04:03:b0:bb:58:2e:b6:b8:38:35:1b:b0:7e:82:d4:48:9d:b7: 82:89:d6:57:b6:4f:27:1a:4e:67:47:6c:8e:2d:5d:a5:c2:98: 0a:9f:8e:7b:11:7c:18:8b:52:cf:74:44:74:2a:e4:37:95:b8: 76:d8:59:a1:a2:d9:e1:c1:6e:14:59:e8:19:62:74:52:85:49: 66:b9:ec:99:7f:ca:aa:82:91:a2:56:e5:fa:4a:17:41:55:bf: c1:4f:3b:1a:e9:c0:45:5a:62:ba:dc:d9:94:df:2d:c2:d1:69: fc:da:ba:7c:fe:1d:2b:19:e7:6e:8d:8a:b8:a7:8f:0a:fc:d0: 3a:bd:b9:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM4QkQxMTAvBgNVBAUTKEVGNjM2REZCMTU5MkYwMjIyMDE2QjAwRkFDQTI3MDM1 NzNGNEQyODIwHhcNMjUxMjIzMDIwNzAxWhcNMjUxMjMwMDIwNzAxWjAYMRYwFAYD VQQDDA02OTQ5Zjk0NS04ZjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9It0txwEC1ModfqlssFFpdFwIlUmnpZUMCNY5G3S5HUwzEjDtuFWlCf8S3KL 2RTR+HXDb0sa7btbVDbzaxqHWJFApFvLOiaoTA/yhR2QtRXYpkizQyVzwSgRIKZ+ whdAyt2617spOh/aVFYQ+9etKgvErO18YvT3uo/f1XygJ9PpXyZmE0M/1BIvsfYh DdLTZrYVCnFSPUaV2mheupbjSXyr0BFR991AW+EZuULtX/rRDg6A1ISelELsSKsc k2rwXNwj28sfBIBTe68hfLmUGMRngUu9gerscBsVnjT+PYtVRRfWnRjZa2rw1ZEj yrWLtFlkxXv4aXb4XQf3hSlIPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO6lAWJ5 jYZvHaVwIgfiJcVQH5loMB8GA1UdIwQYMBaAFO9jbfsVkvAiIBawD6yicDVz9NKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzhCRC8xMTlDQzIyMDQw RkQxMUVFQTZBRDI5MzVDNEY5QUUwMi83Mk50LXhXUzhDSWdGckFQcktKd05YUDAw b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyTnQteFdTOENJZ0ZyQVByS0p3TlhQMDBvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzhCRC8xMTlDQzIyMDQwRkQxMUVFQTZBRDI5MzVDNEY5QUUwMi83Mk50LXhXUzhD SWdGckFQcktKd05YUDAwb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2AkkFDI5DBjzSLMG4Lj60E5ttOx8XLxJeVpw9LHExoAE2XMxz26my ww926gUFiLXHYp/Q++fq7el5+3SypezTh2WMHGcStK7tBTyQk50PJXeoYrqR6V7F cnRivwBrJ+oBAvPMfqEN8d+BXAiyokrW/amgqYvibMXOririPaQEA7C7WC62uDg1 G7B+gtRInbeCidZXtk8nGk5nR2yOLV2lwpgKn457EXwYi1LPdER0KuQ3lbh22Fmh otnhwW4UWegZYnRShUlmueyZf8qqgpGiVuX6ShdBVb/BTzsa6cBFWmK63NmU3y3C 0Wn82rp8/h0rGedujYq4p48K/NA6vblr -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:00 2025 by rpki-client