This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft File: rehZrZQNGhc_pkzXBYZ9SH5nNog.mft (raw, json) Hash identifier: /OoY9DVD06EnzYbuYi75z/olfCNzsLMdq1Qxys0cH8Y= Subject key identifier: E5:14:70:E9:E0:DF:69:67:A5:BC:BD:50:E7:30:8B:E5:88:C2:2B:7A Authority key identifier: AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88 Certificate issuer: /CN=A91FDAD4/serialNumber=ADE859AD940D1A173FA64CD705867D487E673688 Certificate serial: 0270 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft Manifest number: 026B Signing time: Tue 20 Jan 2026 23:17:51 +0000 Manifest this update: Tue 20 Jan 2026 23:17:50 +0000 Manifest next update: Tue 27 Jan 2026 23:17:50 +0000 Files and hashes: 1: rehZrZQNGhc_pkzXBYZ9SH5nNog.crl (hash: eoccQhFdo8Ys0FRmO/biNHZ5z7TozN8IZeDtLIAyBe8=) 2: A99BC9D64CAC11EDA3BF485AC4F9AE02.roa (hash: M0LQ0bOgsXho1IONj8CXX3n4kpo/nKJprHxKVrxONpQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.crl rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 23:17:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 624 (0x270) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDAD4, serialNumber=ADE859AD940D1A173FA64CD705867D487E673688 Validity Not Before: Jan 20 23:17:50 2026 GMT Not After : Jan 27 23:17:50 2026 GMT Subject: CN=69700d1e-fc40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:7d:34:96:6f:97:4d:48:62:fb:b2:d4:48:94: 93:2c:3f:b1:96:d3:f2:d9:1b:c0:1a:73:a4:3d:10: 97:46:fe:4f:af:f8:a2:2c:98:83:ab:4d:ab:e5:c7: 0d:82:28:db:ca:85:9e:cd:fe:aa:5d:90:cb:5c:1b: f7:ac:4c:30:81:26:e5:94:49:6e:f8:e4:5f:b5:39: 24:ea:1e:4f:cd:5a:c7:f0:d3:ef:5b:d5:33:dd:5f: a0:8b:1a:f3:63:91:42:5a:4c:06:ae:92:a0:f9:3a: 81:00:57:5b:1d:c6:bb:dd:ce:e0:8b:3c:0b:8b:b9: e9:ce:b3:78:12:b8:26:2c:11:3b:af:bf:92:18:d5: 30:ba:93:15:6d:bb:7e:63:be:7c:8f:7a:68:b9:da: 17:ac:b0:6d:25:09:2b:aa:66:32:46:5d:bd:99:63: bc:82:1d:89:4c:5b:89:5e:55:2b:1a:ad:95:3a:df: c9:b6:67:35:64:3b:f2:8f:bb:22:30:fd:aa:c3:1d: 99:95:1c:86:5a:af:4e:60:a0:1f:85:6e:ca:92:2e: 49:20:25:66:29:5c:dc:08:71:7c:a3:3b:38:96:30: 37:39:da:11:93:4f:21:ba:c7:c8:0b:a2:64:d3:5f: c1:5b:1c:4d:48:7a:3f:13:3b:79:6f:71:cb:75:d0: 89:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:14:70:E9:E0:DF:69:67:A5:BC:BD:50:E7:30:8B:E5:88:C2:2B:7A X509v3 Authority Key Identifier: keyid:AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:4b:e7:a9:98:44:14:a8:f4:19:b6:d0:fc:67:6b:8d:61:b8: 7c:66:58:ac:ec:b0:b1:fd:a4:ef:ee:a8:7e:7c:89:3c:e8:7e: a8:64:c4:81:43:52:fe:e6:75:3f:6a:b7:9d:e5:c8:97:83:e8: 97:60:b9:23:d8:16:c9:70:16:e2:25:8d:03:a6:6f:e0:31:fe: 46:80:30:a0:ba:ec:71:59:d7:ae:a8:4f:17:54:ab:1a:28:3c: 29:40:c2:5e:bf:fa:bf:7b:8d:33:32:cb:48:b7:b7:1c:e2:17: b8:eb:40:96:2a:37:d6:f0:ea:92:bc:2f:83:67:37:de:b9:43: b6:e9:06:5d:a7:e5:d0:72:7c:82:2b:8b:0f:38:ad:8c:57:5d: 14:15:c5:cc:69:e5:5c:db:94:0f:03:f5:23:1e:07:4c:4e:57: aa:eb:97:1c:c8:10:76:a6:0d:15:3a:50:8f:2f:46:24:f3:a0: 73:cf:1c:a3:18:c9:53:67:fa:d0:2e:67:21:33:3d:a9:91:27: e8:a4:31:ee:8a:45:76:b1:f3:56:06:4c:57:0a:4c:cb:03:15: 6b:02:98:ea:78:67:fa:c3:82:87:f4:9d:89:57:4f:ba:e9:cd: d7:5a:a6:cd:5f:c6:fc:f0:bc:39:45:f2:13:62:1e:1c:c3:d5: eb:49:c3:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBRDQxMTAvBgNVBAUTKEFERTg1OUFEOTQwRDFBMTczRkE2NENENzA1ODY3RDQ4 N0U2NzM2ODgwHhcNMjYwMTIwMjMxNzUwWhcNMjYwMTI3MjMxNzUwWjAYMRYwFAYD VQQDDA02OTcwMGQxZS1mYzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2300lm+XTUhi+7LUSJSTLD+xltPy2RvAGnOkPRCXRv5Pr/iiLJiDq02r5ccN gijbyoWezf6qXZDLXBv3rEwwgSbllElu+ORftTkk6h5PzVrH8NPvW9Uz3V+gixrz Y5FCWkwGrpKg+TqBAFdbHca73c7gizwLi7npzrN4ErgmLBE7r7+SGNUwupMVbbt+ Y758j3poudoXrLBtJQkrqmYyRl29mWO8gh2JTFuJXlUrGq2VOt/Jtmc1ZDvyj7si MP2qwx2ZlRyGWq9OYKAfhW7Kki5JICVmKVzcCHF8ozs4ljA3OdoRk08husfIC6Jk 01/BWxxNSHo/Ezt5b3HLddCJCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOUUcOng 32lnpby9UOcwi+WIwit6MB8GA1UdIwQYMBaAFK3oWa2UDRoXP6ZM1wWGfUh+ZzaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREFENC9DODVFODM3QTQz OTkxMUVEODM5RDcyMEVDNEY5QUUwMi9yZWhaclpRTkdoY19wa3pYQllaOVNINW5O b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3JlaFpyWlFOR2hjX3BrelhCWVo5U0g1bk5vZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REFENC9DODVFODM3QTQzOTkxMUVEODM5RDcyMEVDNEY5QUUwMi9yZWhaclpRTkdo Y19wa3pYQllaOVNINW5Ob2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALS+epmEQUqPQZttD8Z2uNYbh8Zlis7LCx/aTv7qh+fIk86H6oZMSB Q1L+5nU/ared5ciXg+iXYLkj2BbJcBbiJY0Dpm/gMf5GgDCguuxxWdeuqE8XVKsa KDwpQMJev/q/e40zMstIt7cc4he460CWKjfW8OqSvC+DZzfeuUO26QZdp+XQcnyC K4sPOK2MV10UFcXMaeVc25QPA/UjHgdMTleq65ccyBB2pg0VOlCPL0Yk86Bzzxyj GMlTZ/rQLmchMz2pkSfopDHuikV2sfNWBkxXCkzLAxVrApjqeGf6w4KH9J2JV0+6 6c3XWqbNX8b88Lw5RfITYh4cw9XrScP1 -----END CERTIFICATE-----Generated at Wed Jan 21 07:52:45 2026 by rpki-client