This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft File: rehZrZQNGhc_pkzXBYZ9SH5nNog.mft (raw, json) Hash identifier: pALtul18ks6e3JUTumDs39T5v9Iv6ub20cyvoQtZLgw= Subject key identifier: 4A:22:10:E6:54:D0:48:20:CB:07:B0:0B:D1:EC:01:52:7B:56:01:AC Authority key identifier: AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88 Certificate issuer: /CN=A91FDAD4/serialNumber=ADE859AD940D1A173FA64CD705867D487E673688 Certificate serial: 0259 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft Manifest number: 0254 Signing time: Sat 06 Dec 2025 22:51:48 +0000 Manifest this update: Sat 06 Dec 2025 22:51:47 +0000 Manifest next update: Sat 13 Dec 2025 22:51:47 +0000 Files and hashes: 1: rehZrZQNGhc_pkzXBYZ9SH5nNog.crl (hash: Ht+hDTH04j6HAYNLYJF6XyBwaYbBLcHK+COmN9jmq5o=) 2: A99BC9D64CAC11EDA3BF485AC4F9AE02.roa (hash: M0LQ0bOgsXho1IONj8CXX3n4kpo/nKJprHxKVrxONpQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.crl rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:11:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 601 (0x259) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDAD4, serialNumber=ADE859AD940D1A173FA64CD705867D487E673688 Validity Not Before: Dec 6 22:51:47 2025 GMT Not After : Dec 13 22:51:47 2025 GMT Subject: CN=6934b384-823a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:ce:a1:b5:fe:d8:d4:00:11:5c:4b:3d:94:72: 6a:ce:b8:0b:30:94:42:30:7d:20:d2:79:0f:c0:07: 54:a3:1e:6c:ad:2c:d5:bc:9b:66:97:bf:b1:08:4e: 52:83:bd:49:e4:5e:05:f0:87:89:a9:da:2d:79:1e: 27:47:58:a5:7f:58:1f:18:88:c1:40:a1:6e:87:b8: c1:2b:7c:72:78:f2:fc:66:c1:64:cd:11:0b:71:af: 09:4e:2d:1c:4c:92:c5:27:9f:02:33:58:2b:47:14: 21:a3:77:0c:7a:14:7c:21:25:6a:38:21:88:97:64: 17:ab:a6:59:65:a2:b2:7f:90:82:21:ed:88:06:44: 1d:53:b4:37:de:e8:23:e3:9c:fb:20:db:48:6a:a9: e1:4a:ce:f1:8a:6c:49:f4:0b:45:d7:8b:ba:dc:a3: 49:75:d0:10:ed:69:5a:58:86:b3:b5:52:4b:1f:f8: ec:9b:2b:ac:d4:72:d6:28:68:6c:6b:a1:61:5c:e3: b4:80:94:82:ae:a0:4c:5b:2a:96:d2:f3:1d:8c:12: ff:ab:be:a9:a2:70:5a:ae:be:21:98:60:e6:fd:e3: 45:b5:00:ae:67:e2:18:9d:42:b8:9f:bd:85:4d:26: 29:4c:2b:95:a3:75:40:e9:6e:70:6f:7f:21:5d:15: bc:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:22:10:E6:54:D0:48:20:CB:07:B0:0B:D1:EC:01:52:7B:56:01:AC X509v3 Authority Key Identifier: keyid:AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:c5:3e:21:30:2a:48:3f:12:ed:86:8e:16:bb:19:1e:cb:34: a9:f0:4e:44:d1:88:f4:77:5f:35:69:dc:cc:82:fa:2d:92:a0: 90:50:3c:68:68:f2:f7:28:74:d7:a0:d2:d2:6a:a3:67:9d:a8: e0:f7:28:e5:60:41:0b:82:4e:8a:35:55:7f:ef:81:fd:ae:fe: d3:d7:0a:fc:a8:ee:56:7e:8d:a4:e5:d9:6c:16:44:cb:24:a6: 4b:24:d1:5a:85:8e:e6:07:46:b7:50:fc:b7:0c:0f:0d:da:31: 61:5e:ef:50:ab:13:60:0b:f0:2c:96:64:3c:74:e7:95:ba:8e: 5b:a6:e0:ab:e7:f9:9b:30:a6:17:97:cd:72:20:26:43:14:d8: e9:56:6c:62:3d:ff:67:be:7d:80:fc:7d:a5:72:18:1b:98:d7: 0f:18:e5:5b:b0:a0:bc:76:29:52:09:e6:fb:af:d8:0c:be:55: ea:d8:30:5a:af:04:f0:8b:90:cc:a5:6f:e4:64:5c:80:85:bb: af:3a:32:13:1c:b6:82:bd:e8:1a:0d:38:3a:66:ae:e1:a3:a4: 5f:d4:ac:f8:fd:87:e2:93:76:47:a1:51:b1:65:75:85:6f:ba: 56:a1:86:43:f6:61:2f:35:58:11:22:82:80:c0:ba:23:19:f6: 93:9e:6f:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBRDQxMTAvBgNVBAUTKEFERTg1OUFEOTQwRDFBMTczRkE2NENENzA1ODY3RDQ4 N0U2NzM2ODgwHhcNMjUxMjA2MjI1MTQ3WhcNMjUxMjEzMjI1MTQ3WjAYMRYwFAYD VQQDEw02OTM0YjM4NC04MjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnc6htf7Y1AARXEs9lHJqzrgLMJRCMH0g0nkPwAdUox5srSzVvJtml7+xCE5S g71J5F4F8IeJqdoteR4nR1ilf1gfGIjBQKFuh7jBK3xyePL8ZsFkzRELca8JTi0c TJLFJ58CM1grRxQho3cMehR8ISVqOCGIl2QXq6ZZZaKyf5CCIe2IBkQdU7Q33ugj 45z7INtIaqnhSs7ximxJ9AtF14u63KNJddAQ7WlaWIaztVJLH/jsmyus1HLWKGhs a6FhXOO0gJSCrqBMWyqW0vMdjBL/q76ponBarr4hmGDm/eNFtQCuZ+IYnUK4n72F TSYpTCuVo3VA6W5wb38hXRW8BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEoiEOZU 0EggywewC9HsAVJ7VgGsMB8GA1UdIwQYMBaAFK3oWa2UDRoXP6ZM1wWGfUh+ZzaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREFENC9DODVFODM3QTQz OTkxMUVEODM5RDcyMEVDNEY5QUUwMi9yZWhaclpRTkdoY19wa3pYQllaOVNINW5O b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3JlaFpyWlFOR2hjX3BrelhCWVo5U0g1bk5vZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REFENC9DODVFODM3QTQzOTkxMUVEODM5RDcyMEVDNEY5QUUwMi9yZWhaclpRTkdo Y19wa3pYQllaOVNINW5Ob2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALxT4hMCpIPxLtho4WuxkeyzSp8E5E0Yj0d181adzMgvotkqCQUDxo aPL3KHTXoNLSaqNnnajg9yjlYEELgk6KNVV/74H9rv7T1wr8qO5Wfo2k5dlsFkTL JKZLJNFahY7mB0a3UPy3DA8N2jFhXu9QqxNgC/AslmQ8dOeVuo5bpuCr5/mbMKYX l81yICZDFNjpVmxiPf9nvn2A/H2lchgbmNcPGOVbsKC8dilSCeb7r9gMvlXq2DBa rwTwi5DMpW/kZFyAhbuvOjITHLaCvegaDTg6Zq7ho6Rf1Kz4/Yfik3ZHoVGxZXWF b7pWoYZD9mEvNVgRIoKAwLojGfaTnm8X -----END CERTIFICATE-----Generated at Sun Dec 7 01:56:59 2025 by rpki-client