This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft File: rehZrZQNGhc_pkzXBYZ9SH5nNog.mft (raw, json) Hash identifier: XobyXzXsnUjZANeWywiCXQxVjMSR6k43p6BzA/PAYnk= Subject key identifier: DC:4E:4C:D9:25:93:7B:F0:A9:70:58:3B:36:7E:C9:22:72:7D:EE:58 Authority key identifier: AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88 Certificate issuer: /CN=A91FDAD4/serialNumber=ADE859AD940D1A173FA64CD705867D487E673688 Certificate serial: 025F Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft Manifest number: 025A Signing time: Thu 18 Dec 2025 23:31:14 +0000 Manifest this update: Thu 18 Dec 2025 23:31:14 +0000 Manifest next update: Thu 25 Dec 2025 23:31:14 +0000 Files and hashes: 1: rehZrZQNGhc_pkzXBYZ9SH5nNog.crl (hash: 1Hq+8CK8qqknX9KEIk061sFW94+oE85QziWfHoJP67c=) 2: A99BC9D64CAC11EDA3BF485AC4F9AE02.roa (hash: M0LQ0bOgsXho1IONj8CXX3n4kpo/nKJprHxKVrxONpQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.crl rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:31:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 607 (0x25f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDAD4, serialNumber=ADE859AD940D1A173FA64CD705867D487E673688 Validity Not Before: Dec 18 23:31:14 2025 GMT Not After : Dec 25 23:31:14 2025 GMT Subject: CN=69448ec2-d298 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c2:4b:88:a3:ae:a6:f4:85:25:78:e1:85:e7: da:55:1d:6c:f4:e2:96:44:81:94:62:1b:2a:ee:1b: 02:75:e8:8b:05:8a:ad:d2:9a:2d:38:60:3e:a6:d7: 90:b1:6c:f0:f1:50:73:16:f2:34:b3:1d:cd:07:4e: f3:81:96:de:20:ee:42:d3:34:cd:4d:c4:20:60:f4: 74:cc:23:76:89:79:a5:39:9d:b5:9d:25:5d:aa:80: 8e:dc:cd:0b:cc:51:b4:01:85:ac:99:8d:0e:eb:82: 09:47:f6:b7:6e:33:7b:70:de:61:52:00:07:d7:06: 36:9f:eb:54:bb:ef:20:56:79:8d:e1:95:bd:7d:00: fb:1a:26:e7:09:4b:24:9a:35:3b:9e:cf:12:31:f7: 8f:81:3b:28:68:7b:da:9d:5b:8c:b2:6d:2f:f6:33: f9:0b:e2:2f:cf:e6:0b:0b:af:21:b8:57:29:ff:bb: 1d:a6:7c:22:4f:28:2d:1e:ed:4e:12:87:e6:87:9a: 51:2c:56:6c:11:55:2d:42:d9:7d:05:28:c9:91:6d: 6b:60:fe:a7:d9:6c:cf:c9:c0:da:3f:34:ac:60:99: 82:90:63:26:08:1a:b4:a2:f6:bf:c6:ac:d1:97:77: 8d:71:b1:56:1f:44:2e:5b:3a:28:8e:06:8b:12:16: b7:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:4E:4C:D9:25:93:7B:F0:A9:70:58:3B:36:7E:C9:22:72:7D:EE:58 X509v3 Authority Key Identifier: keyid:AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:bc:c7:11:73:3c:08:c9:58:2f:36:6e:d0:3e:f2:e8:3b:ed: 07:f3:94:21:b4:39:a9:74:af:61:1c:9a:22:a2:66:77:b4:9f: 24:a5:cd:99:9a:1d:42:a0:ac:4c:d1:2e:d8:7f:2a:b4:7b:10: e5:da:8e:d1:1a:56:3c:1e:80:47:b3:0f:75:5c:7d:54:a5:ac: 49:f3:0a:cd:3d:db:df:a7:35:30:5c:16:11:d4:26:ec:53:0c: ff:e2:39:78:48:32:b5:38:e0:86:f4:99:97:85:93:8c:7f:f8: fa:41:e2:12:43:89:7d:f4:00:f1:64:bb:b8:a4:12:26:2d:92: d7:3d:86:13:4a:6f:25:cc:d9:02:ed:16:59:66:a8:4d:e3:c6: 76:a6:7f:cb:21:fc:51:9c:c5:a9:17:8b:76:54:61:65:54:71: 74:e9:3e:a9:1b:9b:a9:e9:1b:05:12:81:0c:86:9e:5f:d1:45: 9a:69:99:2e:c7:6a:49:05:04:7c:86:c2:92:95:cb:dc:01:45: 33:16:e7:f4:79:3a:d1:57:cf:38:35:bd:d7:65:0f:59:6c:ea: e5:4d:86:0c:c4:2e:67:25:1c:7d:0a:08:b7:b8:26:e0:42:ae: 17:eb:be:ab:84:7c:31:b0:b5:36:b7:c8:fa:3e:98:ae:aa:8f: 57:f1:78:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBRDQxMTAvBgNVBAUTKEFERTg1OUFEOTQwRDFBMTczRkE2NENENzA1ODY3RDQ4 N0U2NzM2ODgwHhcNMjUxMjE4MjMzMTE0WhcNMjUxMjI1MjMzMTE0WjAYMRYwFAYD VQQDDA02OTQ0OGVjMi1kMjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8JLiKOupvSFJXjhhefaVR1s9OKWRIGUYhsq7hsCdeiLBYqt0potOGA+pteQ sWzw8VBzFvI0sx3NB07zgZbeIO5C0zTNTcQgYPR0zCN2iXmlOZ21nSVdqoCO3M0L zFG0AYWsmY0O64IJR/a3bjN7cN5hUgAH1wY2n+tUu+8gVnmN4ZW9fQD7GibnCUsk mjU7ns8SMfePgTsoaHvanVuMsm0v9jP5C+Ivz+YLC68huFcp/7sdpnwiTygtHu1O Eofmh5pRLFZsEVUtQtl9BSjJkW1rYP6n2WzPycDaPzSsYJmCkGMmCBq0ova/xqzR l3eNcbFWH0QuWzoojgaLEha3PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNxOTNkl k3vwqXBYOzZ+ySJyfe5YMB8GA1UdIwQYMBaAFK3oWa2UDRoXP6ZM1wWGfUh+ZzaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREFENC9DODVFODM3QTQz OTkxMUVEODM5RDcyMEVDNEY5QUUwMi9yZWhaclpRTkdoY19wa3pYQllaOVNINW5O b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3JlaFpyWlFOR2hjX3BrelhCWVo5U0g1bk5vZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REFENC9DODVFODM3QTQzOTkxMUVEODM5RDcyMEVDNEY5QUUwMi9yZWhaclpRTkdo Y19wa3pYQllaOVNINW5Ob2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUvMcRczwIyVgvNm7QPvLoO+0H85QhtDmpdK9hHJoiomZ3tJ8kpc2Z mh1CoKxM0S7Yfyq0exDl2o7RGlY8HoBHsw91XH1UpaxJ8wrNPdvfpzUwXBYR1Cbs Uwz/4jl4SDK1OOCG9JmXhZOMf/j6QeISQ4l99ADxZLu4pBImLZLXPYYTSm8lzNkC 7RZZZqhN48Z2pn/LIfxRnMWpF4t2VGFlVHF06T6pG5up6RsFEoEMhp5f0UWaaZku x2pJBQR8hsKSlcvcAUUzFuf0eTrRV884Nb3XZQ9ZbOrlTYYMxC5nJRx9Cgi3uCbg Qq4X676rhHwxsLU2t8j6Ppiuqo9X8Xj2 -----END CERTIFICATE-----Generated at Sat Dec 20 21:10:44 2025 by rpki-client