This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft File: 72Nt-xWS8CIgFrAPrKJwNXP00oI.mft (raw, json) Hash identifier: BDwmNQ9dyuFMJ7RIIU3VyN22Pqfd3rgmLl4PMZ6WMCE= Subject key identifier: 3E:7C:80:3D:B5:DB:9C:2B:9C:CD:60:43:DD:2F:A9:23:9A:EC:0A:68 Authority key identifier: EF:63:6D:FB:15:92:F0:22:20:16:B0:0F:AC:A2:70:35:73:F4:D2:82 Certificate issuer: /CN=A91DC8BD/serialNumber=EF636DFB1592F0222016B00FACA2703573F4D282 Certificate serial: 01AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Nt-xWS8CIgFrAPrKJwNXP00oI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft Manifest number: 01AC Signing time: Fri 05 Dec 2025 01:25:49 +0000 Manifest this update: Fri 05 Dec 2025 01:25:49 +0000 Manifest next update: Fri 12 Dec 2025 01:25:49 +0000 Files and hashes: 1: 72Nt-xWS8CIgFrAPrKJwNXP00oI.crl (hash: py2+xpIE34GgYcoGB1KbqmC4iUT7vogBzUi5b9WQASo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.crl rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Nt-xWS8CIgFrAPrKJwNXP00oI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:25:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 428 (0x1ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC8BD, serialNumber=EF636DFB1592F0222016B00FACA2703573F4D282 Validity Not Before: Dec 5 01:25:49 2025 GMT Not After : Dec 12 01:25:49 2025 GMT Subject: CN=6932349d-917b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ac:3a:09:79:0b:cb:a6:46:37:1b:8b:42:b7: 7d:4e:47:b2:81:78:fb:77:80:79:39:92:57:f9:97: bd:a2:f1:87:26:31:52:31:21:18:08:fa:eb:80:9e: 19:a0:59:d2:07:7a:93:9c:a8:46:59:c8:54:1f:9d: 58:f1:cd:5e:16:a4:96:c6:de:cf:06:85:30:41:fe: 3c:2f:47:ab:90:6d:a6:02:49:b5:41:13:a6:87:b5: b3:5e:a5:f5:84:a1:de:dd:36:65:b0:9d:02:2c:ae: f0:07:f9:13:c9:24:f5:1d:1d:d0:8c:36:50:57:1d: cf:ec:3e:31:e1:25:25:0c:76:06:c8:ef:ae:35:40: 22:63:d7:6b:76:48:e0:57:e4:39:56:b5:d1:20:63: cc:8d:95:81:33:a5:f0:2e:8b:20:c8:bf:12:78:75: f3:d4:4a:41:a7:47:a6:ad:a3:f2:97:e8:3a:39:ac: 1b:03:aa:a9:ce:08:03:c5:2b:8d:b2:d7:a6:50:5b: 6a:99:00:00:ce:50:83:40:ac:29:00:59:6d:31:8d: 45:76:4a:36:04:8b:1c:93:66:e4:3c:63:96:6c:84: f5:30:7b:8a:bc:7b:91:70:b5:ba:4d:5d:2d:68:57: 12:73:d3:4a:91:fd:03:f7:9a:d1:0f:c5:03:23:9b: ae:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:7C:80:3D:B5:DB:9C:2B:9C:CD:60:43:DD:2F:A9:23:9A:EC:0A:68 X509v3 Authority Key Identifier: keyid:EF:63:6D:FB:15:92:F0:22:20:16:B0:0F:AC:A2:70:35:73:F4:D2:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Nt-xWS8CIgFrAPrKJwNXP00oI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC8BD/119CC22040FD11EEA6AD2935C4F9AE02/72Nt-xWS8CIgFrAPrKJwNXP00oI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:f3:5c:f7:6a:cf:0a:db:7e:8b:a3:74:62:8c:37:11:7f:8f: 2a:6b:1d:14:fc:f9:39:0d:88:67:6d:34:90:e1:ef:fd:17:d3: e9:96:15:55:31:34:fe:68:1a:8c:f4:be:33:07:da:76:39:3c: 5d:29:54:ca:d1:84:65:d5:a5:04:43:70:23:6a:38:1a:63:bb: 11:f0:38:ab:dd:71:0d:ff:d3:eb:f7:38:5d:3a:a8:33:c1:f8: b0:6d:fa:bc:bc:9f:ad:a4:6a:0a:5a:c2:19:12:25:a5:90:09: 74:2d:7b:44:e1:e9:1b:f3:9b:f5:b3:0b:3a:11:9f:9c:37:bf: b6:d6:d7:41:fa:14:f8:6f:9d:6e:1a:18:a6:20:ac:42:2a:4b: b6:d8:26:1f:b0:ce:d5:59:7f:3c:9b:40:a5:75:34:9e:6b:40: 7c:a9:5b:c5:27:95:7f:83:fc:e6:fb:77:87:02:00:99:0a:84: 4b:e2:be:d0:97:a3:34:bb:42:71:e9:7c:d2:b7:cf:5e:25:f7: 0c:db:b3:60:8e:8e:a9:bb:e2:6c:2a:66:2e:be:c9:cf:19:84: b7:e4:66:8c:d9:7e:0b:93:10:3d:83:0c:74:b8:e5:48:fa:4a: a2:87:9f:4a:e3:c2:2a:e7:6e:95:18:76:bd:bc:09:4a:59:86: f0:e3:3e:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM4QkQxMTAvBgNVBAUTKEVGNjM2REZCMTU5MkYwMjIyMDE2QjAwRkFDQTI3MDM1 NzNGNEQyODIwHhcNMjUxMjA1MDEyNTQ5WhcNMjUxMjEyMDEyNTQ5WjAYMRYwFAYD VQQDEw02OTMyMzQ5ZC05MTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqaw6CXkLy6ZGNxuLQrd9TkeygXj7d4B5OZJX+Ze9ovGHJjFSMSEYCPrrgJ4Z oFnSB3qTnKhGWchUH51Y8c1eFqSWxt7PBoUwQf48L0erkG2mAkm1QROmh7WzXqX1 hKHe3TZlsJ0CLK7wB/kTyST1HR3QjDZQVx3P7D4x4SUlDHYGyO+uNUAiY9drdkjg V+Q5VrXRIGPMjZWBM6XwLosgyL8SeHXz1EpBp0emraPyl+g6OawbA6qpzggDxSuN stemUFtqmQAAzlCDQKwpAFltMY1Fdko2BIsck2bkPGOWbIT1MHuKvHuRcLW6TV0t aFcSc9NKkf0D95rRD8UDI5uulwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD58gD21 25wrnM1gQ90vqSOa7ApoMB8GA1UdIwQYMBaAFO9jbfsVkvAiIBawD6yicDVz9NKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzhCRC8xMTlDQzIyMDQw RkQxMUVFQTZBRDI5MzVDNEY5QUUwMi83Mk50LXhXUzhDSWdGckFQcktKd05YUDAw b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyTnQteFdTOENJZ0ZyQVByS0p3TlhQMDBvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzhCRC8xMTlDQzIyMDQwRkQxMUVFQTZBRDI5MzVDNEY5QUUwMi83Mk50LXhXUzhD SWdGckFQcktKd05YUDAwb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCm81z3as8K236Lo3RijDcRf48qax0U/Pk5DYhnbTSQ4e/9F9PplhVV MTT+aBqM9L4zB9p2OTxdKVTK0YRl1aUEQ3AjajgaY7sR8Dir3XEN/9Pr9zhdOqgz wfiwbfq8vJ+tpGoKWsIZEiWlkAl0LXtE4ekb85v1sws6EZ+cN7+21tdB+hT4b51u GhimIKxCKku22CYfsM7VWX88m0CldTSea0B8qVvFJ5V/g/zm+3eHAgCZCoRL4r7Q l6M0u0Jx6XzSt89eJfcM27Ngjo6pu+JsKmYuvsnPGYS35GaM2X4LkxA9gwx0uOVI +kqih59K48Iq526VGHa9vAlKWYbw4z6C -----END CERTIFICATE-----Generated at Sat Dec 6 14:34:26 2025 by rpki-client