This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.mft File: A72QmhoVpFA9-tWUw8bem5RgTmY.mft (raw, json) Hash identifier: auKlKMNBhtVbLMyMmOWS41ymFaEtOgIbNC5JvJkn19k= Subject key identifier: A8:7D:D7:19:4F:49:C0:93:DC:2C:8C:30:F6:EB:20:B7:8F:CE:F2:13 Authority key identifier: 03:BD:90:9A:1A:15:A4:50:3D:FA:D5:94:C3:C6:DE:9B:94:60:4E:66 Certificate issuer: /CN=A91D873B/serialNumber=03BD909A1A15A4503DFAD594C3C6DE9B94604E66 Certificate serial: 03A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A72QmhoVpFA9-tWUw8bem5RgTmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.mft Manifest number: 0399 Signing time: Sun 21 Dec 2025 00:00:24 +0000 Manifest this update: Sun 21 Dec 2025 00:00:24 +0000 Manifest next update: Sun 28 Dec 2025 00:00:24 +0000 Files and hashes: 1: A72QmhoVpFA9-tWUw8bem5RgTmY.crl (hash: oDjyZW19UWPv/a6zlOJxfZyDnCRaYMH+86bnKsDxRwk=) 2: 5409C188C6CB11ECB185E43EC4F9AE02.roa (hash: 2/IKvkUuZOOzd7P3ebV8mfawdp+i1YZvP31f6RG6ltY=) 3: E15CC33CD55011EFB17CB022C4F9AE02.roa (hash: TM7o1U1frnQzWPowFrhF6wZcjiDylkwLUHlakulI5i0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.crl rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A72QmhoVpFA9-tWUw8bem5RgTmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 930 (0x3a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D873B, serialNumber=03BD909A1A15A4503DFAD594C3C6DE9B94604E66 Validity Not Before: Dec 21 00:00:24 2025 GMT Not After : Dec 28 00:00:24 2025 GMT Subject: CN=69473898-b764 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:6a:94:94:33:7c:80:54:37:a6:06:c5:db:d8: f6:86:a5:17:bf:20:3f:eb:8e:1d:70:92:f9:28:cf: 4b:df:73:96:84:01:7a:43:78:cd:39:5e:c4:a7:29: a1:a5:85:8d:63:99:d0:5a:94:1f:23:d4:43:48:69: e7:e1:c3:b7:67:4b:77:fc:1e:be:44:33:4f:ab:9c: 57:61:c3:bd:98:30:75:9b:b2:57:14:33:e7:4c:db: 3b:28:eb:d8:be:48:03:5e:24:2b:79:53:a3:07:d9: e9:fc:8f:67:b0:45:99:da:52:78:a1:54:79:8e:ca: dc:61:0c:b6:39:6e:9f:9d:28:b4:15:b1:ef:e5:c0: da:1c:b7:91:b1:65:2b:f3:3c:32:8f:14:74:12:2f: 2e:69:9c:06:63:9d:db:86:51:b2:4d:1f:c1:e7:ae: 5a:e3:10:f2:9a:f6:fa:b0:09:37:9d:61:14:63:80: d6:d0:0a:20:49:b4:ae:f3:91:ac:e0:1d:7a:4b:d7: 76:a1:aa:31:6f:de:54:15:fd:6a:db:94:17:8b:b2: dd:a2:e5:ac:64:4d:fd:1c:29:20:92:af:ce:ae:13: 21:61:7f:97:9f:24:92:be:cb:bd:b8:60:2a:2d:cd: c2:e2:29:60:1b:92:23:d7:47:05:08:6d:83:4f:0c: 85:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:7D:D7:19:4F:49:C0:93:DC:2C:8C:30:F6:EB:20:B7:8F:CE:F2:13 X509v3 Authority Key Identifier: keyid:03:BD:90:9A:1A:15:A4:50:3D:FA:D5:94:C3:C6:DE:9B:94:60:4E:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A72QmhoVpFA9-tWUw8bem5RgTmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:99:bb:23:1d:b2:37:41:d9:46:68:bb:9c:d7:c4:1a:32:39: f0:dd:ab:f7:9e:14:55:1a:00:11:66:07:3f:3f:3b:45:e5:af: 0f:0d:17:1d:f7:b8:14:25:d3:c3:be:ce:07:6b:78:05:e7:42: ed:82:4e:03:b0:09:af:d3:e1:7f:07:cf:6a:34:6e:e9:73:94: 1e:fd:9b:f3:5a:90:18:da:23:f5:57:79:47:11:54:be:64:42: f8:2a:a2:7c:fd:0c:6c:ce:c8:bb:63:5a:20:01:b3:63:45:95: 72:03:77:8c:31:bc:b0:fc:bb:89:a8:d2:f9:70:79:23:46:43: 6d:f2:5e:2c:53:7d:ce:58:6f:77:6a:50:db:6b:42:b0:6a:ec: 44:52:a7:3a:a2:93:d4:4f:dc:d9:81:0f:31:16:59:07:90:16: ae:5c:96:61:02:e4:5f:27:ba:af:12:da:17:d6:ae:59:61:2b: fe:b8:82:f4:40:f8:36:d5:2e:f8:ec:7c:03:52:0c:23:a0:fe: 05:20:2a:5c:2c:c6:91:fd:a4:2e:a3:6e:7e:30:52:99:a0:1a: ea:3a:fa:2b:63:0b:88:24:eb:28:01:eb:8f:de:12:88:9f:cd: e3:69:9d:1a:bb:8e:d5:15:df:3f:83:f0:21:81:c5:4b:c2:50: a6:28:96:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg3M0IxMTAvBgNVBAUTKDAzQkQ5MDlBMUExNUE0NTAzREZBRDU5NEMzQzZERTlC OTQ2MDRFNjYwHhcNMjUxMjIxMDAwMDI0WhcNMjUxMjI4MDAwMDI0WjAYMRYwFAYD VQQDDA02OTQ3Mzg5OC1iNzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8mqUlDN8gFQ3pgbF29j2hqUXvyA/644dcJL5KM9L33OWhAF6Q3jNOV7Epymh pYWNY5nQWpQfI9RDSGnn4cO3Z0t3/B6+RDNPq5xXYcO9mDB1m7JXFDPnTNs7KOvY vkgDXiQreVOjB9np/I9nsEWZ2lJ4oVR5jsrcYQy2OW6fnSi0FbHv5cDaHLeRsWUr 8zwyjxR0Ei8uaZwGY53bhlGyTR/B565a4xDymvb6sAk3nWEUY4DW0AogSbSu85Gs 4B16S9d2oaoxb95UFf1q25QXi7LdouWsZE39HCkgkq/OrhMhYX+XnySSvsu9uGAq Lc3C4ilgG5Ij10cFCG2DTwyFMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKh91xlP ScCT3CyMMPbrILePzvITMB8GA1UdIwQYMBaAFAO9kJoaFaRQPfrVlMPG3puUYE5m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODczQi80QTE2QkJEQUM2 MDQxMUVDQUE5NDU5NEJDNEY5QUUwMi9BNzJRbWhvVnBGQTktdFdVdzhiZW01UmdU bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E3MlFtaG9WcEZBOS10V1V3OGJlbTVSZ1RtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODczQi80QTE2QkJEQUM2MDQxMUVDQUE5NDU5NEJDNEY5QUUwMi9BNzJRbWhvVnBG QTktdFdVdzhiZW01UmdUbVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnmbsjHbI3QdlGaLuc18QaMjnw3av3nhRVGgARZgc/PztF5a8PDRcd 97gUJdPDvs4Ha3gF50Ltgk4DsAmv0+F/B89qNG7pc5Qe/ZvzWpAY2iP1V3lHEVS+ ZEL4KqJ8/Qxszsi7Y1ogAbNjRZVyA3eMMbyw/LuJqNL5cHkjRkNt8l4sU33OWG93 alDba0KwauxEUqc6opPUT9zZgQ8xFlkHkBauXJZhAuRfJ7qvEtoX1q5ZYSv+uIL0 QPg21S747HwDUgwjoP4FICpcLMaR/aQuo25+MFKZoBrqOvorYwuIJOsoAeuP3hKI n83jaZ0au47VFd8/g/AhgcVLwlCmKJYK -----END CERTIFICATE-----Generated at Sun Dec 21 11:29:22 2025 by rpki-client