This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft File: ZUCRhgKOxUzUW1g0_77K9LePGcI.mft (raw, json) Hash identifier: FRSPqwSYt+1TTKFV0yDkf7irMlkZUMcojzPcdw5mD2I= Subject key identifier: 80:0C:2E:C6:8F:5E:98:B7:1B:95:F6:A9:7E:21:5E:05:30:4A:80:3C Authority key identifier: 65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 Certificate issuer: /CN=A917BBF1/serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Certificate serial: 0CBD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft Manifest number: 0C9E Signing time: Wed 10 Dec 2025 17:44:00 +0000 Manifest this update: Wed 10 Dec 2025 17:43:59 +0000 Manifest next update: Wed 17 Dec 2025 17:43:59 +0000 Files and hashes: 1: ZUCRhgKOxUzUW1g0_77K9LePGcI.crl (hash: dJ6WM6lxQXNh5BC2bPV42JL/W2XkaJCqmuCxR1vCbeQ=) 2: 3EED102CC53011F0ADCB012EC4F9AE02.roa (hash: 6fE56WTUrkGoowNCAPAXKB4etjMvEgjd/DPqKL4LTvw=) 3: 1B54858065B711EE93D6ED6DC4F9AE02.roa (hash: GsJaSUcatISwdkkhFSUQBWiCBZOPMZtERdw74sbshGA=) 4: FF4F13D4448711ECA80CFC34C4F9AE02.roa (hash: D8Rskcy+MlcZVWynnet9FUcktOO82nExRIwJwtWFbsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 17:43:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3261 (0xcbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BBF1, serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Validity Not Before: Dec 10 17:43:59 2025 GMT Not After : Dec 17 17:43:59 2025 GMT Subject: CN=6939b15f-356c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:30:1d:82:77:e0:5d:a8:3e:b9:02:2f:62:49: 1c:68:3a:98:d5:f2:e2:73:d3:d9:90:11:d2:a9:57: 59:e8:da:5d:4c:98:da:f0:89:e0:d7:a4:5c:cf:15: 90:13:7a:c8:25:84:a1:e7:e9:f8:78:a2:f4:4b:d8: 52:48:99:72:55:73:1f:2f:5c:eb:05:1f:75:8d:e0: 93:08:2e:94:1d:5d:ae:ef:17:f8:95:d0:d1:30:58: 44:9f:ae:4e:15:b4:bc:2c:ab:72:97:59:49:a2:4c: 79:98:51:95:37:e9:88:ef:f2:5f:0b:d3:0f:80:b5: 7d:1c:4a:25:39:4b:ca:ac:27:20:b7:88:16:c1:17: 94:f7:86:22:07:06:f0:e2:b8:cf:8d:32:42:3a:10: 55:b9:9a:32:b0:57:9c:7b:30:7e:ca:81:a3:75:23: 03:62:41:7e:e4:73:a5:15:97:14:06:17:5c:ce:94: 9c:19:ee:4c:ca:4a:7c:ef:d9:ef:0b:96:19:53:d6: b5:cb:16:2e:44:d0:4c:ef:ea:00:5b:3a:a0:91:85: c4:4d:86:a8:52:61:cb:50:aa:97:43:b4:36:cf:bf: 4c:f7:1a:f9:ad:cf:9b:94:e2:46:7a:0e:2a:87:17: f4:a6:ef:8f:dc:61:81:60:6d:62:38:b0:1a:dd:f0: 44:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:0C:2E:C6:8F:5E:98:B7:1B:95:F6:A9:7E:21:5E:05:30:4A:80:3C X509v3 Authority Key Identifier: keyid:65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:b3:a2:dc:58:c0:04:94:6c:85:8d:d2:cd:fa:99:67:2b:37: 0c:2d:3a:71:9a:44:a0:43:af:f2:d0:b7:60:ca:2a:03:40:a0: 98:36:33:ae:c7:fe:f9:cf:d7:1b:19:12:70:81:d5:6b:8f:47: 61:1d:c4:b3:6b:2f:42:7a:00:5f:46:27:56:d0:72:4d:bb:eb: 09:80:41:85:c7:f3:3c:4d:2f:c6:ba:06:d9:5a:e1:3f:84:a0: 4b:d7:ee:b0:6e:de:c5:cf:72:aa:16:b8:a0:f5:ea:6a:02:08: cd:4b:42:86:c6:89:0f:a3:e6:db:02:d9:b9:17:c7:f8:d6:76: 0a:72:91:6b:cb:b2:e6:b2:24:cc:35:48:7a:e8:47:ed:55:13: d8:a6:f5:01:78:f1:7b:b4:3c:22:6c:16:91:6d:04:57:54:46: 12:d1:e9:75:78:12:b5:ce:85:f3:2a:7d:3e:71:7d:f9:ef:00: 56:7c:fa:ef:e2:e4:a9:f5:00:25:0c:68:c2:d0:b9:fc:17:4c: 0f:88:bd:1a:d9:6b:39:ad:82:40:b0:ff:78:eb:94:97:df:f1: a2:7f:01:ec:4b:95:19:ba:32:ce:9f:36:b0:de:a2:48:31:60: f8:89:9e:cf:20:b5:43:b2:26:2b:93:28:8d:ed:33:84:c7:fa: 09:de:94:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCRjExMTAvBgNVBAUTKDY1NDA5MTg2MDI4RUM1NENENDVCNTgzNEZGQkVDQUY0 Qjc4RjE5QzIwHhcNMjUxMjEwMTc0MzU5WhcNMjUxMjE3MTc0MzU5WjAYMRYwFAYD VQQDEw02OTM5YjE1Zi0zNTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvzAdgnfgXag+uQIvYkkcaDqY1fLic9PZkBHSqVdZ6NpdTJja8Ing16RczxWQ E3rIJYSh5+n4eKL0S9hSSJlyVXMfL1zrBR91jeCTCC6UHV2u7xf4ldDRMFhEn65O FbS8LKtyl1lJokx5mFGVN+mI7/JfC9MPgLV9HEolOUvKrCcgt4gWwReU94YiBwbw 4rjPjTJCOhBVuZoysFecezB+yoGjdSMDYkF+5HOlFZcUBhdczpScGe5Mykp879nv C5YZU9a1yxYuRNBM7+oAWzqgkYXETYaoUmHLUKqXQ7Q2z79M9xr5rc+blOJGeg4q hxf0pu+P3GGBYG1iOLAa3fBEZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIAMLsaP Xpi3G5X2qX4hXgUwSoA8MB8GA1UdIwQYMBaAFGVAkYYCjsVM1FtYNP++yvS3jxnC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkJGMS8yNDVEQzVDQTBB RjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hVelVXMWcwXzc3SzlMZVBH Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pVQ1JoZ0tPeFV6VVcxZzBfNzdLOUxlUEdjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkJGMS8yNDVEQzVDQTBBRjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hV elVXMWcwXzc3SzlMZVBHY0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCs6LcWMAElGyFjdLN+plnKzcMLTpxmkSgQ6/y0LdgyioDQKCYNjOu x/75z9cbGRJwgdVrj0dhHcSzay9CegBfRidW0HJNu+sJgEGFx/M8TS/GugbZWuE/ hKBL1+6wbt7Fz3KqFrig9epqAgjNS0KGxokPo+bbAtm5F8f41nYKcpFry7LmsiTM NUh66EftVRPYpvUBePF7tDwibBaRbQRXVEYS0el1eBK1zoXzKn0+cX357wBWfPrv 4uSp9QAlDGjC0Ln8F0wPiL0a2Ws5rYJAsP9465SX3/GifwHsS5UZujLOnzaw3qJI MWD4iZ7PILVDsiYrkyiN7TOEx/oJ3pQh -----END CERTIFICATE-----Generated at Fri Dec 12 00:16:56 2025 by rpki-client