This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft File: rehZrZQNGhc_pkzXBYZ9SH5nNog.mft (raw, json) Hash identifier: cGUyz2zviDR6YfOw+ZoTCgOaXIc7vzqWtSpF3T0nlyc= Subject key identifier: 56:7E:EA:F0:99:2C:E3:18:B3:A8:52:DF:E9:D4:94:A4:D8:DC:37:36 Authority key identifier: AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88 Certificate issuer: /CN=A91FDAD4/serialNumber=ADE859AD940D1A173FA64CD705867D487E673688 Certificate serial: 0258 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft Manifest number: 0253 Signing time: Thu 04 Dec 2025 22:40:36 +0000 Manifest this update: Thu 04 Dec 2025 22:40:36 +0000 Manifest next update: Thu 11 Dec 2025 22:40:36 +0000 Files and hashes: 1: rehZrZQNGhc_pkzXBYZ9SH5nNog.crl (hash: rsPBdeRiDCSuTZMfhIKYknw+0YHVtLGd3ljvh3hvZzM=) 2: A99BC9D64CAC11EDA3BF485AC4F9AE02.roa (hash: M0LQ0bOgsXho1IONj8CXX3n4kpo/nKJprHxKVrxONpQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.crl rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:40:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 600 (0x258) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDAD4, serialNumber=ADE859AD940D1A173FA64CD705867D487E673688 Validity Not Before: Dec 4 22:40:36 2025 GMT Not After : Dec 11 22:40:36 2025 GMT Subject: CN=69320de4-71d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e6:40:c4:f6:9b:66:f3:d4:7c:c2:95:f6:54: 20:14:e2:99:60:1a:b6:00:53:34:c6:fb:b8:0a:1e: c0:eb:73:7e:cc:3d:70:d9:33:19:ad:ff:fd:28:02: 83:df:7d:c6:ea:c6:8b:34:62:5d:bc:27:ba:df:b3: 93:92:2d:08:e5:9c:96:99:38:d5:c5:37:d0:4b:e0: b1:96:47:26:29:3c:26:ef:6f:b1:00:6c:ef:10:7f: be:48:b2:42:c2:30:60:82:cb:06:4a:bb:a0:21:f1: ba:8e:d8:8b:cd:f7:50:76:eb:3c:68:c0:f1:2e:a2: 13:25:85:f1:50:7e:b5:e5:f8:54:bd:41:ba:c2:16: f6:11:f6:52:e5:68:5c:dc:a3:2d:a1:7f:de:e9:30: fe:9d:a1:8a:e6:9b:45:57:07:dd:49:7d:c9:a1:15: 22:d0:e4:b6:5d:82:25:7c:1c:5d:ff:a2:54:da:25: 74:5d:e0:59:18:a5:14:d3:ec:ca:b9:03:35:bd:65: df:25:34:c8:b0:dc:56:4e:b9:c4:11:ce:d0:20:6a: 86:1b:ac:2b:db:e1:d5:65:07:22:48:91:a3:07:54: fe:7c:3d:7b:10:f0:5e:a7:8b:a9:88:73:45:a3:48: d2:d6:d4:33:64:01:88:11:e5:f7:4d:ef:e8:ef:95: e2:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:7E:EA:F0:99:2C:E3:18:B3:A8:52:DF:E9:D4:94:A4:D8:DC:37:36 X509v3 Authority Key Identifier: keyid:AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:09:03:c8:0e:f9:8a:07:af:29:81:2d:b9:36:b1:d0:b8:0d: a0:cc:3b:7f:f6:ef:1f:5c:fc:05:c6:47:3d:bf:f9:c2:77:a1: 7f:44:8a:b5:bf:98:eb:8f:0d:b5:6a:d4:f9:7b:34:79:e0:84: 92:ee:a5:88:04:52:01:af:2d:15:4c:89:1a:b5:55:c8:dd:09: 04:3b:1a:57:63:a1:61:3b:d6:e2:70:4e:cf:2c:9c:51:05:d9: 5b:f2:93:ce:8d:c5:f9:91:19:42:39:b2:04:17:9e:2f:9d:06: 00:cc:53:b6:aa:a5:39:cb:2f:ff:97:cc:69:d2:bd:7c:74:cb: d0:b2:e0:c3:bc:b8:f4:a7:54:65:85:a8:b5:b7:78:af:96:75: b6:68:94:75:8f:22:f6:e6:a0:19:30:26:f9:c1:ae:a1:4e:e9: 59:08:aa:f1:ba:1f:04:cf:be:88:2c:28:01:53:41:31:dd:4b: d4:f1:05:5c:7f:74:95:d3:83:9b:0c:b1:aa:6d:10:5c:5a:2d: 64:71:7d:43:b5:15:1e:32:7f:02:49:e8:b6:1e:81:73:4b:77: 5d:70:87:b0:a2:09:63:21:c7:40:1a:cd:9a:a3:bd:93:62:42: e0:bf:83:f4:a9:ab:19:54:e7:85:a3:bf:b9:4b:55:84:f5:9c: e4:da:9d:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBRDQxMTAvBgNVBAUTKEFERTg1OUFEOTQwRDFBMTczRkE2NENENzA1ODY3RDQ4 N0U2NzM2ODgwHhcNMjUxMjA0MjI0MDM2WhcNMjUxMjExMjI0MDM2WjAYMRYwFAYD VQQDEw02OTMyMGRlNC03MWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAteZAxPabZvPUfMKV9lQgFOKZYBq2AFM0xvu4Ch7A63N+zD1w2TMZrf/9KAKD 333G6saLNGJdvCe637OTki0I5ZyWmTjVxTfQS+CxlkcmKTwm72+xAGzvEH++SLJC wjBggssGSrugIfG6jtiLzfdQdus8aMDxLqITJYXxUH615fhUvUG6whb2EfZS5Whc 3KMtoX/e6TD+naGK5ptFVwfdSX3JoRUi0OS2XYIlfBxd/6JU2iV0XeBZGKUU0+zK uQM1vWXfJTTIsNxWTrnEEc7QIGqGG6wr2+HVZQciSJGjB1T+fD17EPBep4upiHNF o0jS1tQzZAGIEeX3Te/o75XicQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFZ+6vCZ LOMYs6hS3+nUlKTY3Dc2MB8GA1UdIwQYMBaAFK3oWa2UDRoXP6ZM1wWGfUh+ZzaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREFENC9DODVFODM3QTQz OTkxMUVEODM5RDcyMEVDNEY5QUUwMi9yZWhaclpRTkdoY19wa3pYQllaOVNINW5O b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3JlaFpyWlFOR2hjX3BrelhCWVo5U0g1bk5vZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REFENC9DODVFODM3QTQzOTkxMUVEODM5RDcyMEVDNEY5QUUwMi9yZWhaclpRTkdo Y19wa3pYQllaOVNINW5Ob2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgCQPIDvmKB68pgS25NrHQuA2gzDt/9u8fXPwFxkc9v/nCd6F/RIq1 v5jrjw21atT5ezR54ISS7qWIBFIBry0VTIkatVXI3QkEOxpXY6FhO9bicE7PLJxR Bdlb8pPOjcX5kRlCObIEF54vnQYAzFO2qqU5yy//l8xp0r18dMvQsuDDvLj0p1Rl hai1t3ivlnW2aJR1jyL25qAZMCb5wa6hTulZCKrxuh8Ez76ILCgBU0Ex3UvU8QVc f3SV04ObDLGqbRBcWi1kcX1DtRUeMn8CSei2HoFzS3ddcIewogljIcdAGs2ao72T YkLgv4P0qasZVOeFo7+5S1WE9Zzk2p3X -----END CERTIFICATE-----Generated at Sat Dec 6 22:03:59 2025 by rpki-client