This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.mft File: 72LxVcGXHVBJQfVx7t-sCvzFKFk.mft (raw, json) Hash identifier: ZwpKMnoU0cI0aLdei/CrD2RJxo3Mtt8jp/4BopYI8fQ= Subject key identifier: A8:14:49:EE:B6:98:BF:11:7D:ED:DF:80:33:95:97:07:21:0E:3B:96 Authority key identifier: EF:62:F1:55:C1:97:1D:50:49:41:F5:71:EE:DF:AC:0A:FC:C5:28:59 Certificate issuer: /CN=A91BFE6A/serialNumber=EF62F155C1971D504941F571EEDFAC0AFCC52859 Certificate serial: 12FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.mft Manifest number: 12D3 Signing time: Sat 20 Dec 2025 16:48:14 +0000 Manifest this update: Sat 20 Dec 2025 16:48:13 +0000 Manifest next update: Sat 27 Dec 2025 16:48:13 +0000 Files and hashes: 1: 72LxVcGXHVBJQfVx7t-sCvzFKFk.crl (hash: RsVRYbr9zRQJoBjNsupDfabp08D1FQqIUiIQabwZNCo=) 2: CEBECC28D38811E8A763B462C4F9AE02.roa (hash: nxXSdnwoUfmzLx95eiSN62zk0YbQxEgJtgpJheqOOz4=) 3: ED388A1840BB11E9A6718844C4F9AE02.roa (hash: gcGbaS+C10OxA3/sWZJEHnaLaEauoh+9kGT7bNc0D6Q=) 4: 5122B56A51F311E9AB54691EC4F9AE02.roa (hash: 3BEJ1gCiaz/4ZdrE3qzkDJ5+ojL/iMHnMesKRyA+c6Q=) 5: 08DCBB24DC8011F0AB4C816E3A6F56BC.roa (hash: WXCmLL//FoCjMGfjt8pRmkTjKi9B4euZO4lNoEtZDGU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.crl rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 16:48:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4858 (0x12fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE6A, serialNumber=EF62F155C1971D504941F571EEDFAC0AFCC52859 Validity Not Before: Dec 20 16:48:13 2025 GMT Not After : Dec 27 16:48:13 2025 GMT Subject: CN=6946d34e-f6f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:9d:bc:7c:1f:e6:5e:79:d8:57:aa:e5:d7:5a: 9b:11:d9:8c:da:64:05:68:e8:c3:52:6b:25:c9:c1: 16:8c:57:42:3a:a6:c7:5b:4c:3d:fe:4f:d8:f1:46: 29:a7:cf:ff:d7:4c:33:70:fe:60:98:2d:0a:d1:2e: 6b:2c:16:4f:5c:52:46:49:db:8b:22:28:49:52:31: 04:7b:46:8b:e3:96:be:f6:d0:81:85:85:b9:ea:da: fc:22:92:0c:58:45:f9:a6:96:f5:86:6f:50:8c:34: a1:cd:8d:46:e0:d0:39:a4:3a:44:87:3f:7c:05:eb: 17:2b:45:6e:24:70:af:29:94:cb:f9:0a:d0:3e:24: 23:36:3f:06:a2:c2:7e:41:a5:0a:35:cc:da:ab:cc: 47:21:d7:69:55:02:47:03:43:9c:32:08:f0:1d:00: 42:3e:70:b1:93:54:10:02:f4:82:36:a3:37:e9:52: 83:b5:0d:81:33:02:d6:23:bc:a5:dd:be:e8:5a:79: 34:72:11:2c:05:58:17:0c:7e:ee:00:32:c3:a0:59: 0b:ab:4e:c8:d4:1f:7b:5a:4e:24:9b:95:56:73:68: db:17:cb:4e:2e:e3:a6:99:2a:a6:30:a6:a7:fb:fb: 64:6d:8f:9d:07:48:62:74:0c:29:fb:32:5e:19:12: 31:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:14:49:EE:B6:98:BF:11:7D:ED:DF:80:33:95:97:07:21:0E:3B:96 X509v3 Authority Key Identifier: keyid:EF:62:F1:55:C1:97:1D:50:49:41:F5:71:EE:DF:AC:0A:FC:C5:28:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:ea:9c:7d:34:cd:83:0a:d0:cb:9e:ed:58:29:3e:8b:ce:fb: 59:91:d2:be:3c:0a:fc:6e:e6:b4:3c:24:c3:1c:5e:ab:12:74: 66:88:f6:26:e5:69:7d:7d:9a:0b:60:e3:18:7f:51:62:96:ab: 2b:ac:3e:d0:a8:9a:b7:7b:86:1f:76:7b:55:60:4b:22:4a:22: c1:66:6d:19:66:fb:a2:53:8b:07:4c:93:0e:ff:9a:47:d4:96: bc:3c:ef:53:e8:d2:64:28:ee:35:ce:df:7a:b4:1a:8c:6f:f9: cb:83:0f:14:d3:e2:a7:2e:a7:e2:35:ff:82:d7:20:66:e0:5f: b0:93:ee:38:92:01:df:65:47:ff:a3:6b:7f:32:96:cc:91:7b: f0:b0:dd:a2:1a:30:83:58:97:33:ea:d5:42:ce:ca:48:f9:ec: 26:c9:41:c2:01:e6:d1:15:6a:56:4b:72:5b:99:b4:54:b4:55: 1b:e5:56:10:8d:8b:ec:29:cc:53:7e:ef:bb:8f:f9:e3:70:ef: 70:16:48:6d:fd:9c:e0:92:27:cc:8d:c4:5f:e0:af:c1:05:10: 5c:df:f2:6a:13:07:63:a2:ab:44:44:ed:d7:62:c9:5d:0d:85: af:5e:21:2f:88:27:03:11:07:73:a3:d8:49:7f:59:d3:14:e4: 4e:03:f3:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEvowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZFNkExMTAvBgNVBAUTKEVGNjJGMTU1QzE5NzFENTA0OTQxRjU3MUVFREZBQzBB RkNDNTI4NTkwHhcNMjUxMjIwMTY0ODEzWhcNMjUxMjI3MTY0ODEzWjAYMRYwFAYD VQQDDA02OTQ2ZDM0ZS1mNmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArZ28fB/mXnnYV6rl11qbEdmM2mQFaOjDUmslycEWjFdCOqbHW0w9/k/Y8UYp p8//10wzcP5gmC0K0S5rLBZPXFJGSduLIihJUjEEe0aL45a+9tCBhYW56tr8IpIM WEX5ppb1hm9QjDShzY1G4NA5pDpEhz98BesXK0VuJHCvKZTL+QrQPiQjNj8GosJ+ QaUKNczaq8xHIddpVQJHA0OcMgjwHQBCPnCxk1QQAvSCNqM36VKDtQ2BMwLWI7yl 3b7oWnk0chEsBVgXDH7uADLDoFkLq07I1B97Wk4km5VWc2jbF8tOLuOmmSqmMKan +/tkbY+dB0hidAwp+zJeGRIxJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKgUSe62 mL8Rfe3fgDOVlwchDjuWMB8GA1UdIwQYMBaAFO9i8VXBlx1QSUH1ce7frAr8xShZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkU2QS8xRDY0MzI4RUQz ODcxMUU4QkQ3MDc1NUNDNEY5QUUwMi83Mkx4VmNHWEhWQkpRZlZ4N3Qtc0N2ekZL RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyTHhWY0dYSFZCSlFmVng3dC1zQ3Z6RktGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RkU2QS8xRDY0MzI4RUQzODcxMUU4QkQ3MDc1NUNDNEY5QUUwMi83Mkx4VmNHWEhW QkpRZlZ4N3Qtc0N2ekZLRmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBA6px9NM2DCtDLnu1YKT6LzvtZkdK+PAr8bua0PCTDHF6rEnRmiPYm 5Wl9fZoLYOMYf1FilqsrrD7QqJq3e4YfdntVYEsiSiLBZm0ZZvuiU4sHTJMO/5pH 1Ja8PO9T6NJkKO41zt96tBqMb/nLgw8U0+KnLqfiNf+C1yBm4F+wk+44kgHfZUf/ o2t/MpbMkXvwsN2iGjCDWJcz6tVCzspI+ewmyUHCAebRFWpWS3JbmbRUtFUb5VYQ jYvsKcxTfu+7j/njcO9wFkht/ZzgkifMjcRf4K/BBRBc3/JqEwdjoqtERO3XYsld DYWvXiEviCcDEQdzo9hJf1nTFOROA/O+ -----END CERTIFICATE-----Generated at Sun Dec 21 15:04:54 2025 by rpki-client