This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft File: 72Z43AzrNBQcZKGKskv4bKsvvTU.mft (raw, json) Hash identifier: kz9QtqVwQ1bkYbqGapkc1Zj+bCXjnAJsaLaaQgDzQ/A= Subject key identifier: A7:E5:F6:0B:75:41:20:4E:B7:33:86:65:AA:35:57:31:6E:F3:10:2D Authority key identifier: EF:66:78:DC:0C:EB:34:14:1C:64:A1:8A:B2:4B:F8:6C:AB:2F:BD:35 Certificate issuer: /CN=A91BAE34/serialNumber=EF6678DC0CEB34141C64A18AB24BF86CAB2FBD35 Certificate serial: 0524 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft Manifest number: 0516 Signing time: Thu 18 Dec 2025 22:56:51 +0000 Manifest this update: Thu 18 Dec 2025 22:56:51 +0000 Manifest next update: Thu 25 Dec 2025 22:56:51 +0000 Files and hashes: 1: 72Z43AzrNBQcZKGKskv4bKsvvTU.crl (hash: KCMAVNZjjAEQw101C3AbcZfqhjuVCRfv/EwmcRgt7BU=) 2: 7AAFF88446BA11ECB8463B6AC4F9AE02.roa (hash: RtF3QF7uJka6OGDIQWbUTerYNiAs2ytZrcxGiAE5oMQ=) 3: DCEF2F3CFFD611EFA348445FC4F9AE02.roa (hash: ehKgJL5LpCf7RlyE1aWed3p9Jx0fKt/Hbu4XpQx0/fc=) 4: EEBE377430C411ECBC8D1E20C4F9AE02.roa (hash: yboxuGYa7ria6kIKGtokstUujAuaxIezyJo4PlnmwrQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.crl rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:56:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1316 (0x524) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAE34, serialNumber=EF6678DC0CEB34141C64A18AB24BF86CAB2FBD35 Validity Not Before: Dec 18 22:56:51 2025 GMT Not After : Dec 25 22:56:51 2025 GMT Subject: CN=694486b3-d623 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:39:58:fd:90:74:53:f6:75:1e:32:1f:67:a5: 43:22:c1:eb:0e:27:d2:53:11:74:75:19:6f:d9:60: e1:e9:4f:dd:d5:84:48:20:d0:3d:f6:f1:5b:f9:0d: ce:9a:2f:90:34:34:18:87:15:65:fa:af:c8:41:84: 08:ff:5b:ba:a2:9f:c1:72:2c:24:4b:df:b9:06:d3: c8:40:11:63:17:97:d9:dd:bf:6c:fb:c5:94:74:d0: 07:5d:34:a6:65:7b:5f:02:b0:27:c9:d2:92:11:6c: db:67:62:49:ad:0b:d1:5e:a4:1d:4f:e5:6f:b5:20: b2:ab:d4:d3:b8:cc:16:bf:8e:5c:ef:44:4b:78:52: dc:cb:be:b4:0a:e2:c9:cd:b7:df:bc:57:b4:be:38: 63:91:10:93:ca:19:fc:f0:51:df:09:e0:46:0e:c8: f5:b6:84:7c:08:11:88:1d:00:b4:79:90:8e:62:f0: 48:b4:9c:1b:85:19:b3:45:79:e3:55:00:fe:e1:5b: 4d:cd:09:31:59:3d:e1:ff:86:3d:21:9e:0c:57:99: 3d:67:de:b5:64:12:14:19:a1:d8:87:f7:b2:86:8d: 45:76:e0:91:f9:9a:83:4c:2d:16:e2:c4:b9:74:54: 6e:91:aa:14:21:89:bc:0e:d6:70:3d:d8:a4:ad:83: 77:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:E5:F6:0B:75:41:20:4E:B7:33:86:65:AA:35:57:31:6E:F3:10:2D X509v3 Authority Key Identifier: keyid:EF:66:78:DC:0C:EB:34:14:1C:64:A1:8A:B2:4B:F8:6C:AB:2F:BD:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:6c:db:70:40:5e:34:5a:db:77:05:3f:fe:cd:25:0a:18:92: 92:7e:df:f4:df:fc:55:3c:25:a3:99:22:f6:42:a1:ef:2d:2c: 5e:e7:9e:b8:68:ad:a4:9a:14:dc:ae:e2:1f:4d:6f:91:88:53: 1d:9e:de:5d:b8:9a:03:2e:be:0d:3b:f1:e7:1e:8d:fe:da:34: fb:94:45:68:c6:f1:ce:98:aa:a1:7d:97:18:23:1c:c3:b2:42: 45:de:3a:03:7d:4e:f0:86:58:d9:e3:a9:28:fd:1e:0d:33:39: 27:4d:88:2f:02:21:a0:4a:ff:3e:55:70:4c:42:85:a9:32:f9: 6b:a8:cb:80:3b:67:ac:eb:11:42:e4:a4:6c:8a:88:4c:d1:c9: 32:f9:36:d0:bd:9f:f3:c9:06:07:90:44:e7:84:a7:fe:98:80: ce:f0:4a:0c:b7:c7:0e:b1:91:fe:22:8d:5d:6b:ce:b7:f9:cc: 90:b9:c2:cc:d4:4d:14:05:29:3d:10:42:3b:8a:73:b4:3c:64: 4a:8f:fc:8a:8e:fd:91:b9:f3:fa:fb:b7:df:bd:57:51:29:71: 40:2b:e8:99:a2:85:5a:54:d5:6c:a5:1e:f9:4c:d0:d0:1d:2d: 04:af:14:4c:cf:13:bc:be:a7:6d:b6:24:39:27:a8:99:c5:bf: 6e:b8:1d:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFFMzQxMTAvBgNVBAUTKEVGNjY3OERDMENFQjM0MTQxQzY0QTE4QUIyNEJGODZD QUIyRkJEMzUwHhcNMjUxMjE4MjI1NjUxWhcNMjUxMjI1MjI1NjUxWjAYMRYwFAYD VQQDDA02OTQ0ODZiMy1kNjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsTlY/ZB0U/Z1HjIfZ6VDIsHrDifSUxF0dRlv2WDh6U/d1YRIINA99vFb+Q3O mi+QNDQYhxVl+q/IQYQI/1u6op/BciwkS9+5BtPIQBFjF5fZ3b9s+8WUdNAHXTSm ZXtfArAnydKSEWzbZ2JJrQvRXqQdT+VvtSCyq9TTuMwWv45c70RLeFLcy760CuLJ zbffvFe0vjhjkRCTyhn88FHfCeBGDsj1toR8CBGIHQC0eZCOYvBItJwbhRmzRXnj VQD+4VtNzQkxWT3h/4Y9IZ4MV5k9Z961ZBIUGaHYh/eyho1FduCR+ZqDTC0W4sS5 dFRukaoUIYm8DtZwPdikrYN3AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKfl9gt1 QSBOtzOGZao1VzFu8xAtMB8GA1UdIwQYMBaAFO9meNwM6zQUHGShirJL+GyrL701 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUUzNC80QkVGQkVDQTMw QzIxMUVDOTFBMTcwMURDNEY5QUUwMi83Mlo0M0F6ck5CUWNaS0dLc2t2NGJLc3Z2 VFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyWjQzQXpyTkJRY1pLR0tza3Y0YktzdnZUVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUUzNC80QkVGQkVDQTMwQzIxMUVDOTFBMTcwMURDNEY5QUUwMi83Mlo0M0F6ck5C UWNaS0dLc2t2NGJLc3Z2VFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcbNtwQF40Wtt3BT/+zSUKGJKSft/03/xVPCWjmSL2QqHvLSxe5564 aK2kmhTcruIfTW+RiFMdnt5duJoDLr4NO/HnHo3+2jT7lEVoxvHOmKqhfZcYIxzD skJF3joDfU7whljZ46ko/R4NMzknTYgvAiGgSv8+VXBMQoWpMvlrqMuAO2es6xFC 5KRsiohM0cky+TbQvZ/zyQYHkETnhKf+mIDO8EoMt8cOsZH+Io1da863+cyQucLM 1E0UBSk9EEI7inO0PGRKj/yKjv2RufP6+7ffvVdRKXFAK+iZooVaVNVspR75TNDQ HS0ErxRMzxO8vqdttiQ5J6iZxb9uuB0M -----END CERTIFICATE-----Generated at Sat Dec 20 03:23:26 2025 by rpki-client