This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F2D/FD860F68BC6E11EBB8C64854C4F9AE02/r-73ovgxqXVbE7N-tum5HYHoqeg.mft File: r-73ovgxqXVbE7N-tum5HYHoqeg.mft (raw, json) Hash identifier: n224P4XWSnoWhvq4x814+NgRQllOITInDe1CtY4bbDA= Subject key identifier: 22:64:F9:77:00:04:03:B7:A4:A2:E3:54:15:1C:E8:E8:75:2D:70:92 Authority key identifier: AF:EE:F7:A2:F8:31:A9:75:5B:13:B3:7E:B6:E9:B9:1D:81:E8:A9:E8 Certificate issuer: /CN=A91A6F2D/serialNumber=AFEEF7A2F831A9755B13B37EB6E9B91D81E8A9E8 Certificate serial: 0642 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r-73ovgxqXVbE7N-tum5HYHoqeg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F2D/FD860F68BC6E11EBB8C64854C4F9AE02/r-73ovgxqXVbE7N-tum5HYHoqeg.mft Manifest number: 063D Signing time: Sun 28 Dec 2025 21:56:14 +0000 Manifest this update: Sun 28 Dec 2025 21:56:13 +0000 Manifest next update: Sun 04 Jan 2026 21:56:13 +0000 Files and hashes: 1: r-73ovgxqXVbE7N-tum5HYHoqeg.crl (hash: drhUiVEwarhlH1EJRTPDwbo9fxyiV7Msd4dtmQcUs4Y=) 2: C17E1DDCBC7111EBB1423E5FC4F9AE02.roa (hash: LpIzyfQvDqArXC9hZJ5ZqGifDCSL9ldak3ZwH8S2NRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F2D/FD860F68BC6E11EBB8C64854C4F9AE02/r-73ovgxqXVbE7N-tum5HYHoqeg.crl rsync://rpki.apnic.net/member_repository/A91A6F2D/FD860F68BC6E11EBB8C64854C4F9AE02/r-73ovgxqXVbE7N-tum5HYHoqeg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r-73ovgxqXVbE7N-tum5HYHoqeg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 21:56:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1602 (0x642) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F2D, serialNumber=AFEEF7A2F831A9755B13B37EB6E9B91D81E8A9E8 Validity Not Before: Dec 28 21:56:13 2025 GMT Not After : Jan 4 21:56:13 2026 GMT Subject: CN=6951a77e-dd8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:46:4b:03:1a:d4:78:b9:d1:47:26:6d:a0:9b: 26:50:b5:9f:e4:66:2b:b8:ff:7c:c2:0b:b3:e3:88: 32:8b:4b:4e:b8:97:b9:be:63:cf:e7:07:9b:72:04: 76:59:7c:d5:4b:9c:dc:61:20:ca:84:da:64:7b:d8: c7:34:bc:5a:dc:d8:66:a6:25:68:fb:9a:e9:5c:01: 85:dc:11:4f:c8:3c:70:88:fd:68:33:67:b4:84:2d: 52:bf:37:63:50:a1:42:3a:11:e7:94:ac:a5:aa:ef: c0:82:81:7f:90:4c:d7:23:8e:91:81:5f:01:10:84: ca:bd:8d:de:04:f0:61:6c:c4:27:3f:78:88:08:06: 8b:a3:2f:ef:ae:e6:39:3e:cd:fc:a9:07:91:71:b8: 67:0c:cf:0c:6e:c7:0c:06:bf:18:5f:62:e4:e3:63: 65:82:e9:89:db:b9:3a:a8:1d:7f:9e:b3:d8:a6:44: 04:fd:c1:1a:93:24:7f:30:bd:20:0b:85:0c:0c:3e: 62:a7:27:e0:1c:2b:5c:5f:f0:a6:83:b6:72:23:06: 09:35:f0:d2:cd:d9:4a:cc:2e:84:fd:37:cf:67:92: 44:e1:13:4d:12:05:42:92:b9:e0:df:3d:20:ed:8d: f9:88:4e:99:cc:f2:5b:6b:01:b5:22:05:65:72:63: bd:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:64:F9:77:00:04:03:B7:A4:A2:E3:54:15:1C:E8:E8:75:2D:70:92 X509v3 Authority Key Identifier: keyid:AF:EE:F7:A2:F8:31:A9:75:5B:13:B3:7E:B6:E9:B9:1D:81:E8:A9:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/FD860F68BC6E11EBB8C64854C4F9AE02/r-73ovgxqXVbE7N-tum5HYHoqeg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r-73ovgxqXVbE7N-tum5HYHoqeg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/FD860F68BC6E11EBB8C64854C4F9AE02/r-73ovgxqXVbE7N-tum5HYHoqeg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:a4:07:d6:0c:43:18:82:ba:17:ad:28:52:13:5f:06:39:74: 61:16:81:7e:63:c5:f7:c2:16:c0:26:44:b6:2f:92:9d:6f:a0: 9d:2d:ca:d4:fe:b6:b9:e2:c0:e4:1f:a7:fd:f5:4e:d6:23:8b: f6:ef:1c:2b:27:67:ca:22:d7:0c:a3:b3:01:55:db:17:d4:b7: b9:63:f9:c5:ba:5e:ca:6e:3a:83:cf:8f:b6:02:8b:1f:2a:b0: 92:f7:45:4a:d3:4f:a4:f9:af:ae:22:05:72:88:cd:59:2a:45: f0:08:d2:fb:5c:fd:cb:52:8b:b2:c6:e3:6f:89:c6:91:55:f4: f1:e8:9b:18:67:2a:c2:6c:b9:1e:82:06:0a:6a:26:dc:d3:dc: 1d:52:ca:a0:ba:c6:2c:e5:f0:a1:a7:05:95:74:23:65:3e:11: 59:6e:e0:6c:b0:29:a1:25:95:74:a3:ee:75:90:ca:ec:9d:0d: 08:1f:33:3f:67:36:8a:e5:b8:a0:af:28:5d:61:60:66:06:27: 4c:fd:49:e9:5f:24:ef:0a:8c:23:31:63:47:ab:bc:1c:bd:60: fa:c4:9d:d9:55:5b:b4:6c:42:a1:19:bb:88:3c:cb:92:eb:d6: 70:b3:96:a1:d3:fe:6e:32:d0:40:1f:b7:d0:1b:20:b0:0f:ca: c9:a9:78:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZGMkQxMTAvBgNVBAUTKEFGRUVGN0EyRjgzMUE5NzU1QjEzQjM3RUI2RTlCOTFE ODFFOEE5RTgwHhcNMjUxMjI4MjE1NjEzWhcNMjYwMTA0MjE1NjEzWjAYMRYwFAYD VQQDDA02OTUxYTc3ZS1kZDhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoUZLAxrUeLnRRyZtoJsmULWf5GYruP98wguz44gyi0tOuJe5vmPP5webcgR2 WXzVS5zcYSDKhNpke9jHNLxa3NhmpiVo+5rpXAGF3BFPyDxwiP1oM2e0hC1Svzdj UKFCOhHnlKylqu/AgoF/kEzXI46RgV8BEITKvY3eBPBhbMQnP3iICAaLoy/vruY5 Ps38qQeRcbhnDM8MbscMBr8YX2Lk42NlgumJ27k6qB1/nrPYpkQE/cEakyR/ML0g C4UMDD5ipyfgHCtcX/Cmg7ZyIwYJNfDSzdlKzC6E/TfPZ5JE4RNNEgVCkrng3z0g 7Y35iE6ZzPJbawG1IgVlcmO9TwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCJk+XcA BAO3pKLjVBUc6Oh1LXCSMB8GA1UdIwQYMBaAFK/u96L4Mal1WxOzfrbpuR2B6Kno MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkYyRC9GRDg2MEY2OEJD NkUxMUVCQjhDNjQ4NTRDNEY5QUUwMi9yLTczb3ZneHFYVmJFN04tdHVtNUhZSG9x ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ItNzNvdmd4cVhWYkU3Ti10dW01SFlIb3FlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkYyRC9GRDg2MEY2OEJDNkUxMUVCQjhDNjQ4NTRDNEY5QUUwMi9yLTczb3ZneHFY VmJFN04tdHVtNUhZSG9xZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAopAfWDEMYgroXrShSE18GOXRhFoF+Y8X3whbAJkS2L5Kdb6CdLcrU /ra54sDkH6f99U7WI4v27xwrJ2fKItcMo7MBVdsX1Le5Y/nFul7KbjqDz4+2Aosf KrCS90VK00+k+a+uIgVyiM1ZKkXwCNL7XP3LUouyxuNvicaRVfTx6JsYZyrCbLke ggYKaibc09wdUsqgusYs5fChpwWVdCNlPhFZbuBssCmhJZV0o+51kMrsnQ0IHzM/ ZzaK5bigryhdYWBmBidM/UnpXyTvCowjMWNHq7wcvWD6xJ3ZVVu0bEKhGbuIPMuS 69Zws5ah0/5uMtBAH7fQGyCwD8rJqXj9 -----END CERTIFICATE-----Generated at Mon Dec 29 22:43:19 2025 by rpki-client