This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft File: kROhaGm30B54nuCf4m5q-jfPPkc.mft (raw, json) Hash identifier: fDmiRG57g1GNSimxCLLmjbrTCT67SX++U0C7ax4CncM= Subject key identifier: 0B:3F:BB:34:AD:A5:C6:0C:8B:59:46:EA:25:74:9F:A5:1E:66:C4:0C Authority key identifier: 91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 Certificate issuer: /CN=A91E3814/serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Certificate serial: 04AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft Manifest number: 04A1 Signing time: Sat 06 Dec 2025 22:43:15 +0000 Manifest this update: Sat 06 Dec 2025 22:43:14 +0000 Manifest next update: Sat 13 Dec 2025 22:43:14 +0000 Files and hashes: 1: kROhaGm30B54nuCf4m5q-jfPPkc.crl (hash: KYuQ4eUOs6znCk6ImmRM4qnGhao1q67VG1uPynEIApU=) 2: 8628E1BA210611F082BE7E10C4F9AE02.roa (hash: wGvigc7YwHG59J2rGqwJ7WYeY96T+112b/PUTqhl/lE=) 3: 2F74D644ABC711EF9CD3CE81C4F9AE02.roa (hash: wmmIaxLCg5K0uFc5rnys8oy6i0z0O/e/VdhovEca3nw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 22:43:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1195 (0x4ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3814, serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Validity Not Before: Dec 6 22:43:14 2025 GMT Not After : Dec 13 22:43:14 2025 GMT Subject: CN=6934b182-9022 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:96:e8:43:44:44:48:1b:6c:c9:83:ad:ec:1e: 05:31:02:66:a6:cc:c3:d9:de:e1:6b:c8:bf:28:6a: 36:42:ee:4d:6e:07:42:b1:d3:a7:1e:a3:df:62:9b: 9d:95:12:f8:cd:2c:72:cd:e2:0d:da:76:df:1e:c4: 1f:23:96:6f:66:56:b7:53:22:6c:24:22:9c:da:88: d9:a0:83:07:0e:48:16:9e:ff:54:0b:9b:3f:f9:72: 0e:7a:1a:4f:6f:09:7c:c3:23:8e:89:8d:91:f4:20: ce:71:3c:df:1c:cf:fb:c2:1b:6e:b8:cb:c8:46:78: c9:f7:cd:c0:3d:e8:82:c4:60:d3:20:89:05:a8:4e: 7c:bf:71:56:4e:c5:f5:f4:0a:2b:d8:4a:8a:71:a5: 96:f9:ae:76:d8:ab:f8:a5:bf:49:ec:05:1e:1a:67: af:e2:ca:de:ad:ea:c0:06:6b:89:6f:d5:61:64:0a: 15:f2:76:ac:55:30:c4:06:d9:e4:25:0c:42:74:ed: 28:38:f1:ab:a9:5d:8d:a9:3e:82:2b:75:1b:62:a3: 76:73:ef:89:91:93:2c:94:7b:76:d6:77:b4:ad:2f: c9:95:27:46:81:08:b6:da:5a:c9:52:0e:da:67:0b: 82:84:0a:63:50:de:ef:65:70:b9:b7:62:27:8f:16: 97:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:3F:BB:34:AD:A5:C6:0C:8B:59:46:EA:25:74:9F:A5:1E:66:C4:0C X509v3 Authority Key Identifier: keyid:91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e7:74:45:ca:af:6d:8d:ff:6f:9c:ac:20:0f:f1:1b:6a:55:cd: d2:78:0b:6d:b8:2e:28:2c:c0:9b:2b:83:98:8a:5f:de:7d:c5: 9f:36:da:29:24:80:7c:fb:d8:43:f4:f8:59:7b:21:e5:8e:58: 8a:e9:0d:8b:6e:e0:a7:ca:17:ba:64:0c:69:27:fc:ed:dc:c0: 25:9b:e9:d5:a2:dd:a7:1c:03:93:f2:77:e5:59:8c:d4:87:52: 97:3a:3c:13:45:d5:32:fa:25:ae:39:a3:38:fb:d0:6c:cd:4e: c7:93:38:4a:91:7d:a3:bb:7a:53:09:c0:12:ff:9f:c3:99:ca: cc:9f:81:62:cd:34:c9:e0:97:89:6a:d1:84:57:da:42:f6:b3: 8f:fe:24:de:2b:22:9c:08:b0:05:de:c0:57:ba:6f:2d:f7:d8: d7:29:e0:e4:93:47:9b:7a:db:f7:90:57:ea:27:af:4e:28:e9: 98:f5:6a:5c:23:d7:0b:9e:c5:b4:4c:fc:29:b1:6d:e0:7e:fa: db:33:d1:66:7f:36:24:a0:6b:7d:7b:62:69:81:55:47:ab:59: a3:1a:a0:9e:b4:c4:89:f5:b4:dc:0b:20:60:1e:32:04:94:ce: 4b:e6:1c:b7:76:af:ca:c0:cf:c6:c8:7f:b4:45:14:dd:56:72: f7:c8:1d:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM4MTQxMTAvBgNVBAUTKDkxMTNBMTY4NjlCN0QwMUU3ODlFRTA5RkUyNkU2QUZB MzdDRjNFNDcwHhcNMjUxMjA2MjI0MzE0WhcNMjUxMjEzMjI0MzE0WjAYMRYwFAYD VQQDEw02OTM0YjE4Mi05MDIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJboQ0RESBtsyYOt7B4FMQJmpszD2d7ha8i/KGo2Qu5NbgdCsdOnHqPfYpud lRL4zSxyzeIN2nbfHsQfI5ZvZla3UyJsJCKc2ojZoIMHDkgWnv9UC5s/+XIOehpP bwl8wyOOiY2R9CDOcTzfHM/7whtuuMvIRnjJ983APeiCxGDTIIkFqE58v3FWTsX1 9Aor2EqKcaWW+a522Kv4pb9J7AUeGmev4srererABmuJb9VhZAoV8nasVTDEBtnk JQxCdO0oOPGrqV2NqT6CK3UbYqN2c++JkZMslHt21ne0rS/JlSdGgQi22lrJUg7a ZwuChApjUN7vZXC5t2InjxaXgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAs/uzSt pcYMi1lG6iV0n6UeZsQMMB8GA1UdIwQYMBaAFJEToWhpt9AeeJ7gn+Juavo3zz5H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzgxNC8yNTQyQjQyMjVE NzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBCNTRudUNmNG01cS1qZlBQ a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tST2hhR20zMEI1NG51Q2Y0bTVxLWpmUFBrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzgxNC8yNTQyQjQyMjVENzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBC NTRudUNmNG01cS1qZlBQa2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDndEXKr22N/2+crCAP8RtqVc3SeAttuC4oLMCbK4OYil/efcWfNtop JIB8+9hD9PhZeyHljliK6Q2LbuCnyhe6ZAxpJ/zt3MAlm+nVot2nHAOT8nflWYzU h1KXOjwTRdUy+iWuOaM4+9BszU7HkzhKkX2ju3pTCcAS/5/DmcrMn4FizTTJ4JeJ atGEV9pC9rOP/iTeKyKcCLAF3sBXum8t99jXKeDkk0ebetv3kFfqJ69OKOmY9Wpc I9cLnsW0TPwpsW3gfvrbM9FmfzYkoGt9e2JpgVVHq1mjGqCetMSJ9bTcCyBgHjIE lM5L5hy3dq/KwM/GyH+0RRTdVnL3yB3i -----END CERTIFICATE-----Generated at Mon Dec 8 06:13:32 2025 by rpki-client