This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft File: 72i9vAcsq0VbbaMWDt-PtsSI3RU.mft (raw, json) Hash identifier: i3oFEPz0jnkJBPEb88bn0scbiHSEuJKK0QrkDSaX3cw= Subject key identifier: 56:A1:D2:C6:0A:5A:AA:6E:73:5C:E0:91:EC:BE:99:44:CE:D4:0D:13 Authority key identifier: EF:68:BD:BC:07:2C:AB:45:5B:6D:A3:16:0E:DF:8F:B6:C4:88:DD:15 Certificate issuer: /CN=A91A4B9D/serialNumber=EF68BDBC072CAB455B6DA3160EDF8FB6C488DD15 Certificate serial: 351C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72i9vAcsq0VbbaMWDt-PtsSI3RU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft Manifest number: 350F Signing time: Thu 18 Dec 2025 14:57:35 +0000 Manifest this update: Thu 18 Dec 2025 14:57:35 +0000 Manifest next update: Thu 25 Dec 2025 14:57:35 +0000 Files and hashes: 1: 72i9vAcsq0VbbaMWDt-PtsSI3RU.crl (hash: SwJt47j6b/6lNMd76W2NGesVGiEkYfHjxofk6GWa6D0=) 2: C6BCEF8ECF2311F09BE9DF62C4F9AE02.roa (hash: v6QDKHGNgQsriG4lPK9GtQgpf0BZUi9e8DtrdXFAk8A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.crl rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72i9vAcsq0VbbaMWDt-PtsSI3RU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 14:57:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13596 (0x351c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B9D, serialNumber=EF68BDBC072CAB455B6DA3160EDF8FB6C488DD15 Validity Not Before: Dec 18 14:57:35 2025 GMT Not After : Dec 25 14:57:35 2025 GMT Subject: CN=6944165f-9299 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:14:79:ae:0f:f2:49:ef:f2:3a:be:dc:63:dc: 29:81:72:e3:a8:08:8c:94:4e:b1:f5:8d:dd:d6:84: 15:5a:e3:e7:88:da:f5:7c:8b:9c:29:f2:1f:38:31: e2:28:b7:84:d9:69:0e:76:ee:fd:0e:2c:37:76:19: 9d:8d:03:83:24:7e:9c:d6:1d:78:77:53:b6:9a:93: a6:c9:a1:e4:ea:5a:d6:0a:68:a2:f3:45:e5:d2:ef: 67:96:57:25:ff:89:09:68:a6:bb:f6:ca:a5:88:7b: 89:36:a4:92:f0:89:59:18:1d:10:00:a5:43:f2:71: d2:5e:50:e7:95:93:e2:25:5d:40:3c:ad:6c:fc:d4: 36:69:c9:0f:fd:29:43:d3:19:c9:11:7b:1f:0c:8d: 38:ab:7f:f0:2d:57:9a:34:74:8b:c2:f4:a5:0c:2f: da:4e:1f:83:9c:37:86:72:2b:c3:87:08:54:c9:bf: 98:4f:f5:d2:16:ea:ea:06:b0:a1:c3:74:43:88:0f: 78:45:f0:8a:50:f2:86:aa:ed:a0:cf:63:10:9d:90: 33:c0:d5:1f:be:0c:f4:b8:86:3c:f3:7e:10:10:47: db:22:9d:fc:a7:0d:a4:63:82:9c:70:39:78:ab:84: 17:c3:f2:1d:09:24:83:ad:c6:f7:44:da:39:14:40: af:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:A1:D2:C6:0A:5A:AA:6E:73:5C:E0:91:EC:BE:99:44:CE:D4:0D:13 X509v3 Authority Key Identifier: keyid:EF:68:BD:BC:07:2C:AB:45:5B:6D:A3:16:0E:DF:8F:B6:C4:88:DD:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72i9vAcsq0VbbaMWDt-PtsSI3RU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B9D/95AD03881D9E11E2880E868E08B02CD2/72i9vAcsq0VbbaMWDt-PtsSI3RU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:53:a8:a3:f5:57:7d:23:62:2e:11:1d:d2:73:4c:48:f5:b9: 8e:31:08:4b:b1:f1:58:f8:cf:0c:5a:3f:f4:6b:5a:21:63:c3: cc:23:b6:83:b3:3a:46:e5:f6:12:6b:4c:c7:41:d5:5d:ee:6d: 50:fe:4b:5f:1a:6d:98:3c:16:28:2c:cc:9c:2c:b2:56:ee:cd: 81:3f:67:0a:5a:d7:28:88:86:02:b5:00:2f:86:ee:62:6a:74: 51:f7:69:a1:7f:8e:87:67:52:3c:c8:00:4f:db:79:52:01:a2: ea:0e:f0:58:03:4b:74:6f:cf:88:83:aa:b1:00:a6:58:1e:5e: f2:fc:db:7e:0e:c9:f5:aa:bc:d6:92:31:45:ec:5f:45:8a:1a: 24:72:0f:38:03:7b:59:77:d3:ab:ca:89:b3:2a:e9:f0:88:c2: 64:31:fc:7e:bd:b1:e8:b0:db:7a:9b:8c:cf:86:03:bf:40:de: e5:fc:47:7b:33:25:1a:b8:d9:8e:dd:eb:cb:c3:20:0f:7f:bb: fa:be:3d:0a:76:17:1b:43:59:16:3d:82:6f:a9:f4:1f:30:5b: 39:5c:de:36:e3:72:f2:40:7a:3f:af:60:94:c9:e0:c9:b8:5f: 21:25:19:04:3c:90:5f:83:65:1e:bf:8d:b2:d1:e1:d2:7d:cc: bf:fb:14:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCOUQxMTAvBgNVBAUTKEVGNjhCREJDMDcyQ0FCNDU1QjZEQTMxNjBFREY4RkI2 QzQ4OEREMTUwHhcNMjUxMjE4MTQ1NzM1WhcNMjUxMjI1MTQ1NzM1WjAYMRYwFAYD VQQDDA02OTQ0MTY1Zi05Mjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnRR5rg/ySe/yOr7cY9wpgXLjqAiMlE6x9Y3d1oQVWuPniNr1fIucKfIfODHi KLeE2WkOdu79Diw3dhmdjQODJH6c1h14d1O2mpOmyaHk6lrWCmii80Xl0u9nllcl /4kJaKa79sqliHuJNqSS8IlZGB0QAKVD8nHSXlDnlZPiJV1APK1s/NQ2ackP/SlD 0xnJEXsfDI04q3/wLVeaNHSLwvSlDC/aTh+DnDeGcivDhwhUyb+YT/XSFurqBrCh w3RDiA94RfCKUPKGqu2gz2MQnZAzwNUfvgz0uIY8834QEEfbIp38pw2kY4KccDl4 q4QXw/IdCSSDrcb3RNo5FECv1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFah0sYK Wqpuc1zgkey+mUTO1A0TMB8GA1UdIwQYMBaAFO9ovbwHLKtFW22jFg7fj7bEiN0V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEI5RC85NUFEMDM4ODFE OUUxMUUyODgwRTg2OEUwOEIwMkNEMi83Mmk5dkFjc3EwVmJiYU1XRHQtUHRzU0kz UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyaTl2QWNzcTBWYmJhTVdEdC1QdHNTSTNSVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEI5RC85NUFEMDM4ODFEOUUxMUUyODgwRTg2OEUwOEIwMkNEMi83Mmk5dkFjc3Ew VmJiYU1XRHQtUHRzU0kzUlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaU6ij9Vd9I2IuER3Sc0xI9bmOMQhLsfFY+M8MWj/0a1ohY8PMI7aD szpG5fYSa0zHQdVd7m1Q/ktfGm2YPBYoLMycLLJW7s2BP2cKWtcoiIYCtQAvhu5i anRR92mhf46HZ1I8yABP23lSAaLqDvBYA0t0b8+Ig6qxAKZYHl7y/Nt+Dsn1qrzW kjFF7F9Fihokcg84A3tZd9OryomzKunwiMJkMfx+vbHosNt6m4zPhgO/QN7l/Ed7 MyUauNmO3evLwyAPf7v6vj0KdhcbQ1kWPYJvqfQfMFs5XN4243LyQHo/r2CUyeDJ uF8hJRkEPJBfg2Uev42y0eHSfcy/+xTC -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:35 2025 by rpki-client