This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/oC73fAXKEwwiKYXNdK6TjaeaT78.mft File: oC73fAXKEwwiKYXNdK6TjaeaT78.mft (raw, json) Hash identifier: 1DsF9uEMf4ESw7g4f4K+YbwRyylc5CFYjezqYByjuJM= Subject key identifier: 64:55:64:A3:43:AD:05:AA:DC:2C:D6:60:72:2A:02:30:A2:CA:1C:EF Authority key identifier: A0:2E:F7:7C:05:CA:13:0C:22:29:85:CD:74:AE:93:8D:A7:9A:4F:BF Certificate issuer: /CN=A91398E5/serialNumber=A02EF77C05CA130C222985CD74AE938DA79A4FBF Certificate serial: 099D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oC73fAXKEwwiKYXNdK6TjaeaT78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/oC73fAXKEwwiKYXNdK6TjaeaT78.mft Manifest number: 210D Signing time: Sat 06 Dec 2025 16:11:45 +0000 Manifest this update: Sat 06 Dec 2025 16:11:44 +0000 Manifest next update: Sat 13 Dec 2025 16:11:44 +0000 Files and hashes: 1: oC73fAXKEwwiKYXNdK6TjaeaT78.crl (hash: fIj124WcG3Ny81ZM2xibO4zh/1tVAtRY2PMehlBG9RQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/oC73fAXKEwwiKYXNdK6TjaeaT78.crl rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/oC73fAXKEwwiKYXNdK6TjaeaT78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oC73fAXKEwwiKYXNdK6TjaeaT78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 16:11:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2461 (0x99d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91398E5, serialNumber=A02EF77C05CA130C222985CD74AE938DA79A4FBF Validity Not Before: Dec 6 16:11:44 2025 GMT Not After : Dec 13 16:11:44 2025 GMT Subject: CN=693455c1-436a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:10:69:b7:f1:40:66:45:25:1c:c3:3d:0c:8c: 7f:31:7b:d7:5c:ef:1d:bc:e9:8d:9a:9a:9a:5d:46: 97:26:8d:32:cf:08:32:4f:67:12:92:b4:f5:5e:46: d7:3d:85:65:96:70:c2:72:b1:47:4f:8c:69:cb:8d: 2d:67:67:56:d4:aa:38:5c:b9:7b:6a:1f:d7:96:09: 59:02:66:01:5e:00:53:fb:86:98:42:57:ec:e9:3a: b9:ba:84:46:43:a5:4e:09:4d:39:4e:a2:84:d8:ef: f1:de:88:6d:01:36:46:7f:b3:2d:90:5d:4a:8c:d1: b3:05:02:ec:15:5a:6b:28:5f:1f:21:00:ca:74:63: d5:62:61:da:15:05:f5:a9:c6:2f:35:97:8b:9f:72: 16:0c:8c:5f:a3:2e:d4:d4:0f:cb:42:97:7d:43:a0: b3:cf:a2:28:17:c3:6d:3f:44:45:05:67:f2:88:29: bd:2a:7e:24:82:5d:c3:ec:51:54:ee:b4:cd:49:18: f5:5e:6f:41:e6:90:e7:22:e8:eb:8a:b7:24:8c:32: 1d:f3:e5:ac:33:f1:2d:44:88:e5:8b:3d:6e:60:34: 0e:54:28:5a:12:eb:31:e3:14:92:43:85:bf:1b:62: 2d:c6:d1:d4:f2:32:2b:17:c1:f5:cf:78:90:af:71: dc:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:55:64:A3:43:AD:05:AA:DC:2C:D6:60:72:2A:02:30:A2:CA:1C:EF X509v3 Authority Key Identifier: keyid:A0:2E:F7:7C:05:CA:13:0C:22:29:85:CD:74:AE:93:8D:A7:9A:4F:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/oC73fAXKEwwiKYXNdK6TjaeaT78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oC73fAXKEwwiKYXNdK6TjaeaT78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/oC73fAXKEwwiKYXNdK6TjaeaT78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:f2:1e:44:d5:3a:66:a4:d4:f0:45:b0:e4:bf:fc:96:96:90: 5d:c5:81:74:df:e8:d0:24:0e:b2:f5:d3:ae:df:4b:e5:8f:33: 6c:74:01:5d:19:15:8f:70:c8:d6:0c:b9:82:9c:cc:32:07:79: 36:f9:c1:14:05:81:e9:ea:6b:f3:69:b3:d9:71:0f:34:9e:7f: 41:3e:ad:b9:f9:ca:b0:4b:53:05:93:53:a3:bc:df:eb:6f:11: 67:0d:fc:95:ab:4c:bc:1f:27:f8:2b:b8:ca:2e:07:37:b4:65: 9b:d0:9a:fa:8a:e5:4b:40:7d:d6:92:73:30:76:ad:bc:77:46: 59:91:df:ec:1b:b4:01:61:73:15:44:2b:49:dd:8c:02:d9:00: 7d:27:5f:32:7c:68:9f:d8:0d:a6:9e:dc:23:04:82:dc:a9:8f: 02:52:8a:ba:e3:5a:f9:41:ff:05:b5:74:96:c7:fd:bf:e0:6d: a7:4f:d1:6b:6f:19:c2:db:b9:05:c6:f9:b8:0a:a0:b3:b2:24: 93:27:1a:53:fd:2a:c2:a2:d9:5c:6e:cd:cd:ca:31:83:19:4a: e9:38:a7:7c:b7:c1:5b:3c:d7:11:5b:40:b8:58:33:b8:56:85: 89:09:bf:7d:e5:c5:79:8a:e8:3f:40:89:12:4f:37:c1:75:af: 26:8b:5d:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk4RTUxMTAvBgNVBAUTKEEwMkVGNzdDMDVDQTEzMEMyMjI5ODVDRDc0QUU5MzhE QTc5QTRGQkYwHhcNMjUxMjA2MTYxMTQ0WhcNMjUxMjEzMTYxMTQ0WjAYMRYwFAYD VQQDEw02OTM0NTVjMS00MzZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0BBpt/FAZkUlHMM9DIx/MXvXXO8dvOmNmpqaXUaXJo0yzwgyT2cSkrT1XkbX PYVllnDCcrFHT4xpy40tZ2dW1Ko4XLl7ah/XlglZAmYBXgBT+4aYQlfs6Tq5uoRG Q6VOCU05TqKE2O/x3ohtATZGf7MtkF1KjNGzBQLsFVprKF8fIQDKdGPVYmHaFQX1 qcYvNZeLn3IWDIxfoy7U1A/LQpd9Q6Czz6IoF8NtP0RFBWfyiCm9Kn4kgl3D7FFU 7rTNSRj1Xm9B5pDnIujrirckjDId8+WsM/EtRIjliz1uYDQOVChaEusx4xSSQ4W/ G2ItxtHU8jIrF8H1z3iQr3Hc6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGRVZKND rQWq3CzWYHIqAjCiyhzvMB8GA1UdIwQYMBaAFKAu93wFyhMMIimFzXSuk42nmk+/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOThFNS83ODQwRDk1RUU0 OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9vQzczZkFYS0V3d2lLWVhOZEs2VGphZWFU NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29DNzNmQVhLRXd3aUtZWE5kSzZUamFlYVQ3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OThFNS83ODQwRDk1RUU0OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9vQzczZkFYS0V3 d2lLWVhOZEs2VGphZWFUNzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBL8h5E1TpmpNTwRbDkv/yWlpBdxYF03+jQJA6y9dOu30vljzNsdAFd GRWPcMjWDLmCnMwyB3k2+cEUBYHp6mvzabPZcQ80nn9BPq25+cqwS1MFk1OjvN/r bxFnDfyVq0y8Hyf4K7jKLgc3tGWb0Jr6iuVLQH3WknMwdq28d0ZZkd/sG7QBYXMV RCtJ3YwC2QB9J18yfGif2A2mntwjBILcqY8CUoq641r5Qf8FtXSWx/2/4G2nT9Fr bxnC27kFxvm4CqCzsiSTJxpT/SrCotlcbs3NyjGDGUrpOKd8t8FbPNcRW0C4WDO4 VoWJCb995cV5iug/QIkSTzfBda8mi12P -----END CERTIFICATE-----Generated at Mon Dec 8 09:13:04 2025 by rpki-client