This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft File: ReDCzhRgM0N0_BWzcEXXajTd7l0.mft (raw, json) Hash identifier: lTzMUcB1NTHi++Mi7zDQWpm9CE0xVHu7kzHeWK3ZZqo= Subject key identifier: CA:05:68:46:15:79:5F:C1:3C:01:60:D8:32:82:B6:D1:5F:9F:55:50 Authority key identifier: 45:E0:C2:CE:14:60:33:43:74:FC:15:B3:70:45:D7:6A:34:DD:EE:5D Certificate issuer: /CN=A911465D/serialNumber=45E0C2CE1460334374FC15B37045D76A34DDEE5D Certificate serial: 7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft Manifest number: 7D Signing time: Sun 21 Dec 2025 05:49:09 +0000 Manifest this update: Sun 21 Dec 2025 05:49:08 +0000 Manifest next update: Sun 28 Dec 2025 05:49:08 +0000 Files and hashes: 1: ReDCzhRgM0N0_BWzcEXXajTd7l0.crl (hash: QMoa0zEMZx3ckuf+4lc5xg+elcX13abVD9diQILmlKs=) 2: 8494A0A8202211F091667E59C4F9AE02.roa (hash: 0td0rYY1sI6ZCcrPq8Ekycn5CSJTuG2FeaNe5fiVsgQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.crl rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 05:49:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911465D, serialNumber=45E0C2CE1460334374FC15B37045D76A34DDEE5D Validity Not Before: Dec 21 05:49:08 2025 GMT Not After : Dec 28 05:49:08 2025 GMT Subject: CN=69478a54-0247 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:0a:fe:ef:b9:1b:a1:14:a5:a0:62:5b:df:38: d2:5d:dc:8a:95:80:af:da:bf:0c:01:cc:f4:83:6a: a4:47:33:87:2c:f5:1a:4e:1c:92:90:b5:9a:a2:10: 5a:1e:34:27:89:2c:32:ea:fa:63:65:d5:5f:ca:a2: 1e:84:98:79:a1:00:21:5b:e6:92:41:4b:07:6c:fc: 52:8a:19:df:a6:ff:53:3e:69:cd:04:aa:b0:36:af: 43:f5:d3:5b:36:4d:ac:01:c3:28:f1:ae:c2:1e:5b: f9:0f:00:41:13:4f:62:f0:38:d5:e1:57:18:93:2e: ac:3e:25:b8:02:12:a0:38:ae:04:88:2d:51:53:c2: 98:90:99:c8:7f:dc:f4:b6:68:b3:11:11:99:b5:e5: 6f:3e:31:d4:c2:f8:9a:97:fc:e9:9d:9d:e5:f3:ca: 92:3b:82:db:c9:2c:9b:e4:cb:bb:70:62:72:e0:cf: 35:0b:a8:cc:00:ab:2d:f2:73:65:47:f4:ab:48:f8: 45:8f:75:34:3b:f4:67:94:b9:b7:fa:0f:18:53:f5: 75:06:97:55:2a:f2:ac:89:d9:f3:40:03:6a:fe:4c: 18:bc:47:b1:3f:ff:a1:01:8e:48:15:01:21:03:8b: a0:a9:e6:5a:62:41:00:c6:d1:b5:ff:62:30:24:de: de:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:05:68:46:15:79:5F:C1:3C:01:60:D8:32:82:B6:D1:5F:9F:55:50 X509v3 Authority Key Identifier: keyid:45:E0:C2:CE:14:60:33:43:74:FC:15:B3:70:45:D7:6A:34:DD:EE:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:b5:05:c4:8b:90:27:7e:05:9f:ad:5f:4d:7b:09:b0:9f:2a: e5:85:95:8d:48:c2:bd:1b:ee:97:2b:bf:f9:51:be:46:0a:56: 26:74:b6:13:2b:d3:43:e5:e7:00:b5:26:f8:24:ed:e1:50:ef: f2:16:95:7e:29:2c:90:48:7a:f1:5a:c2:f0:3b:a1:5a:40:33: b9:1e:cc:37:91:6a:4b:63:86:d8:ab:21:44:7e:7f:84:1c:a1: 9e:14:21:c2:89:d6:01:6e:91:7b:4e:26:8b:2b:d8:52:db:b8: c6:a3:fc:d7:a5:ed:7b:0e:6c:48:7a:e0:9f:42:6f:40:28:72: bb:2e:4c:30:b2:b4:87:97:f1:db:98:6c:67:81:0e:a1:81:e5: 09:31:8f:b5:1d:1e:1a:d9:b9:9f:3f:32:1d:47:a2:66:85:76: da:01:4a:61:d0:dc:fe:38:c9:d8:db:44:6f:42:cd:8e:7d:42: f0:0f:af:4b:53:08:16:79:a2:98:19:f1:25:38:89:06:54:70: 25:9f:3a:eb:5a:ec:cc:9b:53:81:61:18:88:a7:5f:55:fd:39: da:a8:7a:ee:eb:43:e6:5c:53:6a:60:d8:c1:9f:9b:d5:43:44: 9a:21:bd:c0:b8:10:93:2c:ea:d5:bd:dd:17:9f:ec:81:09:9f: 9b:f9:d9:4a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NDY1RDExMC8GA1UEBRMoNDVFMEMyQ0UxNDYwMzM0Mzc0RkMxNUIzNzA0NUQ3NkEz NERERUU1RDAeFw0yNTEyMjEwNTQ5MDhaFw0yNTEyMjgwNTQ5MDhaMBgxFjAUBgNV BAMMDTY5NDc4YTU0LTAyNDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDACv7vuRuhFKWgYlvfONJd3IqVgK/avwwBzPSDaqRHM4cs9RpOHJKQtZqiEFoe NCeJLDLq+mNl1V/Koh6EmHmhACFb5pJBSwds/FKKGd+m/1M+ac0EqrA2r0P101s2 TawBwyjxrsIeW/kPAEETT2LwONXhVxiTLqw+JbgCEqA4rgSILVFTwpiQmch/3PS2 aLMREZm15W8+MdTC+JqX/OmdneXzypI7gtvJLJvky7twYnLgzzULqMwAqy3yc2VH 9KtI+EWPdTQ79GeUubf6DxhT9XUGl1Uq8qyJ2fNAA2r+TBi8R7E//6EBjkgVASED i6Cp5lpiQQDG0bX/YjAk3t5RAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUygVoRhV5 X8E8AWDYMoK20V+fVVAwHwYDVR0jBBgwFoAUReDCzhRgM0N0/BWzcEXXajTd7l0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0NjVEL0Q0MTlEQzRBMjAx QTExRjBBNDAyRjYzQkM0RjlBRTAyL1JlREN6aFJnTTBOMF9CV3pjRVhYYWpUZDds MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUmVEQ3poUmdNME4wX0JXemNFWFhhalRkN2wwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0 NjVEL0Q0MTlEQzRBMjAxQTExRjBBNDAyRjYzQkM0RjlBRTAyL1JlREN6aFJnTTBO MF9CV3pjRVhYYWpUZDdsMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG21BcSLkCd+BZ+tX017CbCfKuWFlY1Iwr0b7pcrv/lRvkYKViZ0thMr 00Pl5wC1Jvgk7eFQ7/IWlX4pLJBIevFawvA7oVpAM7kezDeRaktjhtirIUR+f4Qc oZ4UIcKJ1gFukXtOJosr2FLbuMaj/Nel7XsObEh64J9Cb0AocrsuTDCytIeX8duY bGeBDqGB5Qkxj7UdHhrZuZ8/Mh1HomaFdtoBSmHQ3P44ydjbRG9CzY59QvAPr0tT CBZ5opgZ8SU4iQZUcCWfOuta7MybU4FhGIinX1X9Odqoeu7rQ+ZcU2pg2MGfm9VD RJohvcC4EJMs6tW93Ref7IEJn5v52Uo= -----END CERTIFICATE-----Generated at Sun Dec 21 09:02:37 2025 by rpki-client