This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft
File:                     PKzc_ifokI3EfzPvkUrjxQi6R7M.mft (raw, json)
Hash identifier:          5F19u4Oq6bHm+fU2DXGZig1VMPgYcWU2YjsVj7kWegU=
Subject key identifier:   90:5D:35:91:DB:27:A7:C7:BB:A2:57:96:61:FB:5C:6C:29:AE:11:88
Authority key identifier: 3C:AC:DC:FE:27:E8:90:8D:C4:7F:33:EF:91:4A:E3:C5:08:BA:47:B3
Certificate issuer:       /CN=A9133B40/serialNumber=3CACDCFE27E8908DC47F33EF914AE3C508BA47B3
Certificate serial:       019B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PKzc_ifokI3EfzPvkUrjxQi6R7M.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft
Manifest number:          0197
Signing time:             Wed 27 Aug 2025 03:38:51 +0000
Manifest this update:     Wed 27 Aug 2025 03:38:51 +0000
Manifest next update:     Wed 03 Sep 2025 03:38:51 +0000
Files and hashes:         1: PKzc_ifokI3EfzPvkUrjxQi6R7M.crl (hash: FMDUnx+zTjFjwJoLamz4aejB+CuLS2d0E40Quc/A7h8=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 411 (0x19b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9133B40, serialNumber=3CACDCFE27E8908DC47F33EF914AE3C508BA47B3
        Validity
            Not Before: Aug 27 03:38:51 2025 GMT
            Not After : Sep  3 03:38:51 2025 GMT
        Subject: CN=68ae7dcb-ea9b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:42:63:86:a1:ac:00:ad:9a:dc:62:26:1e:4b:
                    c6:ab:d8:e3:e1:c7:7d:77:2b:23:b7:f8:bb:b0:e5:
                    a3:13:8c:2c:c5:21:d6:80:93:44:24:84:54:56:a8:
                    cf:5d:d8:6c:4b:2d:9d:35:1d:d1:16:b0:45:93:36:
                    18:7b:fb:de:db:b1:d2:43:4a:f5:85:40:cf:ed:4e:
                    e5:39:07:ba:f5:27:be:51:67:62:24:38:52:7d:06:
                    7f:3f:65:e3:10:0a:93:d2:96:ae:e8:b4:95:3a:2f:
                    5c:14:c8:8f:67:c4:45:e5:17:37:bd:5f:10:cc:fe:
                    7b:ee:6e:54:eb:83:55:b4:1d:91:3f:9d:08:aa:08:
                    22:55:bf:8c:cf:68:78:a5:92:51:5b:6b:ec:8e:d0:
                    a3:1e:fe:9c:69:99:35:5f:86:bd:ca:3e:1b:9c:6a:
                    84:9c:34:d2:01:b3:90:da:6f:5b:70:97:8d:d2:15:
                    0e:2d:e8:bc:86:b2:51:6f:83:f7:16:eb:1c:83:0b:
                    59:61:73:bf:93:47:37:ac:51:fc:0c:68:18:cf:7a:
                    1e:1a:6f:75:4e:57:1e:d4:c2:f8:71:30:b3:0d:bc:
                    e9:9e:bd:4c:fb:b2:d2:17:2c:c8:6b:b9:64:fd:16:
                    c3:41:cf:6c:d4:bd:27:98:13:bd:15:93:33:9c:3e:
                    b0:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                90:5D:35:91:DB:27:A7:C7:BB:A2:57:96:61:FB:5C:6C:29:AE:11:88
            X509v3 Authority Key Identifier:
                keyid:3C:AC:DC:FE:27:E8:90:8D:C4:7F:33:EF:91:4A:E3:C5:08:BA:47:B3

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PKzc_ifokI3EfzPvkUrjxQi6R7M.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         1b:39:7c:59:94:e7:6c:77:a4:4c:3d:58:d9:e3:6e:e2:0f:58:
         c3:03:43:49:09:49:ca:1a:2f:c6:71:72:24:4c:cf:91:11:b9:
         bb:84:fe:7f:2f:99:f3:69:b3:19:0e:c8:85:a0:a1:47:55:bb:
         ee:f2:9b:3d:24:fa:24:92:09:43:29:5c:26:97:02:fb:87:d5:
         76:1d:30:e2:fd:41:11:ea:2f:09:4d:05:23:5e:b1:33:21:2e:
         28:00:11:f2:d7:9f:ec:1c:9b:b3:40:c9:0f:f5:38:3b:d9:57:
         de:8b:26:51:6b:6d:b2:99:36:bd:94:c2:92:33:6e:20:fd:ec:
         cc:9e:b3:66:7d:c1:47:c8:67:96:ec:43:49:00:65:93:88:64:
         36:b8:d0:5b:4a:94:da:d9:68:e7:75:18:35:31:fa:df:e7:22:
         8c:5e:43:8a:51:b2:ab:b6:62:44:a2:3a:df:71:a0:84:fa:02:
         28:a1:e1:e4:d2:0f:e5:7c:e9:9d:f5:ea:62:b9:62:13:12:f0:
         ea:f9:fa:62:ce:fd:b1:d9:32:44:00:8a:db:ff:3b:69:56:8b:
         9a:2a:0f:36:3b:b9:dd:c4:55:a4:06:e5:0a:3b:b2:d5:f8:09:
         9d:20:ce:e2:df:21:3b:f3:fe:5d:fa:a7:1c:d9:e9:82:23:ff:
         03:ec:f8:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----