This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.mft File: zuSHZKosFvdaBnJE66WGaXThztY.mft (raw, json) Hash identifier: ebBOd0iAuLQMKvq5im0QCBqq/joim3wVEiWjK/WyAO4= Subject key identifier: 57:E8:75:3C:A6:80:6B:D7:68:F9:60:4B:84:2D:84:01:25:4D:F1:2B Authority key identifier: CE:E4:87:64:AA:2C:16:F7:5A:06:72:44:EB:A5:86:69:74:E1:CE:D6 Certificate issuer: /CN=A915A4AF/serialNumber=CEE48764AA2C16F75A067244EBA5866974E1CED6 Certificate serial: F4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zuSHZKosFvdaBnJE66WGaXThztY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.mft Manifest number: EF Signing time: Sun 07 Dec 2025 03:37:26 +0000 Manifest this update: Sun 07 Dec 2025 03:37:26 +0000 Manifest next update: Sun 14 Dec 2025 03:37:26 +0000 Files and hashes: 1: zuSHZKosFvdaBnJE66WGaXThztY.crl (hash: 4uvufN/aIFXCU54AaY9jrdQfdX4epurwhhXpj2+4egE=) 2: D4BAE68E853311F0AC0D4852C4F9AE02.roa (hash: tLT0yEhePGIlO1CJGs9BSo7w/4wYDa+u843KrFx+LWM=) 3: 9B22AC1269F611EFA7665A51C4F9AE02.roa (hash: KhTZGp8krCmWIeV1MjnilFIIicvKTA9kclTUkxcftdk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.crl rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zuSHZKosFvdaBnJE66WGaXThztY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 03:37:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A4AF, serialNumber=CEE48764AA2C16F75A067244EBA5866974E1CED6 Validity Not Before: Dec 7 03:37:26 2025 GMT Not After : Dec 14 03:37:26 2025 GMT Subject: CN=6934f676-b098 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:da:f3:ac:31:3b:d4:19:4f:51:d0:e7:46:47: 24:9e:ef:8f:6c:cd:4a:6f:4f:22:33:37:da:1e:52: d0:34:eb:a8:90:ff:96:d8:b3:08:df:4e:0a:9e:2a: 53:85:93:37:76:fb:a2:09:e5:8f:8a:a1:a0:38:b9: b5:a1:7a:de:b6:2c:a6:98:fb:d1:6c:32:45:b5:a2: 16:09:e7:61:ee:ce:7a:90:c3:00:11:9b:50:25:82: de:ed:f2:5a:5c:d7:7b:2e:b0:96:56:ba:61:54:e1: 42:5a:a2:eb:ee:c1:4b:fd:e4:9c:2a:17:cc:48:d2: dd:6e:e2:3d:87:c5:45:c2:3c:4d:10:46:3a:6e:df: 0d:94:e1:51:ab:8d:2c:38:17:1d:7c:df:e6:4e:32: ca:8e:26:75:1a:9f:c5:50:c7:5b:e8:d5:78:6b:8d: 33:64:cb:de:f7:2d:e9:8b:48:60:ba:3e:3c:ff:db: c7:5c:9b:55:ac:8f:ec:35:54:0c:b6:9f:3a:9a:e0: 0d:18:2c:66:ff:f9:aa:e6:72:cb:28:98:d4:19:31: 4d:21:ae:24:98:a3:e8:3e:d8:cb:6f:76:52:5a:87: c3:0e:6c:ff:bf:fa:1c:b9:8f:ec:a1:61:cd:59:68: be:8b:b2:6d:8f:55:48:37:ce:6a:ef:01:5a:78:7f: 6d:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:E8:75:3C:A6:80:6B:D7:68:F9:60:4B:84:2D:84:01:25:4D:F1:2B X509v3 Authority Key Identifier: keyid:CE:E4:87:64:AA:2C:16:F7:5A:06:72:44:EB:A5:86:69:74:E1:CE:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zuSHZKosFvdaBnJE66WGaXThztY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:69:2e:a6:af:b2:e1:47:79:22:75:7a:a8:00:48:9d:32:8b: 95:bc:ca:88:66:7e:27:5b:1b:4c:9f:4b:31:d8:1e:6f:a6:3e: a5:60:cf:b0:7b:61:bf:27:c6:56:cc:9b:ba:e0:91:8b:cb:ca: e3:00:91:5e:c3:6b:a6:ad:9c:da:5e:ba:69:93:aa:31:dd:b3: 87:4e:16:62:b1:e4:87:98:72:c9:87:70:05:1c:48:4e:dc:21: 1e:2d:7b:ba:c7:56:4e:06:11:e9:21:8b:7d:29:8f:9d:a3:f6: e2:7f:ea:52:09:03:4c:9f:d9:1a:08:3e:d7:6b:cf:39:47:7f: 2c:79:9f:8e:51:55:6e:7b:03:c3:71:1e:53:25:3a:99:54:52: dc:9f:52:d6:6a:8c:a8:0d:b9:f6:fc:d8:c6:d9:0c:35:8f:1b: af:ab:cf:79:e4:8c:ce:7a:30:5f:a6:eb:05:5f:f8:03:f6:71: 8f:ab:81:ff:c4:fa:ca:e6:db:17:37:b7:dc:46:73:09:b3:2a: 27:4e:b6:77:70:9b:d5:ff:d8:f3:61:b7:1e:75:ae:3b:49:2e: a5:2c:4d:56:12:ca:79:40:6b:c5:6e:d1:33:da:65:cd:b1:89: c2:3b:63:c5:9c:e9:3a:dc:28:c9:a0:9e:3b:2d:4b:8b:43:43: d1:de:88:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE0QUYxMTAvBgNVBAUTKENFRTQ4NzY0QUEyQzE2Rjc1QTA2NzI0NEVCQTU4NjY5 NzRFMUNFRDYwHhcNMjUxMjA3MDMzNzI2WhcNMjUxMjE0MDMzNzI2WjAYMRYwFAYD VQQDEw02OTM0ZjY3Ni1iMDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAydrzrDE71BlPUdDnRkcknu+PbM1Kb08iMzfaHlLQNOuokP+W2LMI304KnipT hZM3dvuiCeWPiqGgOLm1oXretiymmPvRbDJFtaIWCedh7s56kMMAEZtQJYLe7fJa XNd7LrCWVrphVOFCWqLr7sFL/eScKhfMSNLdbuI9h8VFwjxNEEY6bt8NlOFRq40s OBcdfN/mTjLKjiZ1Gp/FUMdb6NV4a40zZMve9y3pi0hguj48/9vHXJtVrI/sNVQM tp86muANGCxm//mq5nLLKJjUGTFNIa4kmKPoPtjLb3ZSWofDDmz/v/ocuY/soWHN WWi+i7Jtj1VIN85q7wFaeH9tnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFfodTym gGvXaPlgS4QthAElTfErMB8GA1UdIwQYMBaAFM7kh2SqLBb3WgZyROulhml04c7W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTRBRi80NjY0NjZDQTY5 RjYxMUVGQjJCOEFGNTBDNEY5QUUwMi96dVNIWktvc0Z2ZGFCbkpFNjZXR2FYVGh6 dFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3p1U0haS29zRnZkYUJuSkU2NldHYVhUaHp0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTRBRi80NjY0NjZDQTY5RjYxMUVGQjJCOEFGNTBDNEY5QUUwMi96dVNIWktvc0Z2 ZGFCbkpFNjZXR2FYVGh6dFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/aS6mr7LhR3kidXqoAEidMouVvMqIZn4nWxtMn0sx2B5vpj6lYM+w e2G/J8ZWzJu64JGLy8rjAJFew2umrZzaXrppk6ox3bOHThZiseSHmHLJh3AFHEhO 3CEeLXu6x1ZOBhHpIYt9KY+do/bif+pSCQNMn9kaCD7Xa885R38seZ+OUVVuewPD cR5TJTqZVFLcn1LWaoyoDbn2/NjG2Qw1jxuvq8955IzOejBfpusFX/gD9nGPq4H/ xPrK5tsXN7fcRnMJsyonTrZ3cJvV/9jzYbceda47SS6lLE1WEsp5QGvFbtEz2mXN sYnCO2PFnOk63CjJoJ47LUuLQ0PR3ogV -----END CERTIFICATE-----Generated at Mon Dec 8 14:28:10 2025 by rpki-client