This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft File: ZUCRhgKOxUzUW1g0_77K9LePGcI.mft (raw, json) Hash identifier: XbsB1jmocPd3Qwn/b9iAJbaWuEXiE+QbyoE/DudEpx0= Subject key identifier: A3:BA:FD:98:10:2C:56:A6:ED:18:EC:82:A5:0E:CA:CA:06:2D:B7:0F Authority key identifier: 65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 Certificate issuer: /CN=A917BBF1/serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Certificate serial: 0CC3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft Manifest number: 0CA4 Signing time: Mon 22 Dec 2025 18:02:26 +0000 Manifest this update: Mon 22 Dec 2025 18:02:26 +0000 Manifest next update: Mon 29 Dec 2025 18:02:26 +0000 Files and hashes: 1: ZUCRhgKOxUzUW1g0_77K9LePGcI.crl (hash: 3kOrMMpoCMcTh0a5/lX3sV0+ppPqQ9bknpO6rVUdSTc=) 2: 1B54858065B711EE93D6ED6DC4F9AE02.roa (hash: GsJaSUcatISwdkkhFSUQBWiCBZOPMZtERdw74sbshGA=) 3: 3EED102CC53011F0ADCB012EC4F9AE02.roa (hash: 6fE56WTUrkGoowNCAPAXKB4etjMvEgjd/DPqKL4LTvw=) 4: FF4F13D4448711ECA80CFC34C4F9AE02.roa (hash: D8Rskcy+MlcZVWynnet9FUcktOO82nExRIwJwtWFbsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:02:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3267 (0xcc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BBF1, serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Validity Not Before: Dec 22 18:02:26 2025 GMT Not After : Dec 29 18:02:26 2025 GMT Subject: CN=694987b2-8b37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:6c:99:d0:de:0b:89:bd:f6:36:cf:fc:36:a2: 79:13:f2:90:b8:e1:63:0a:f1:01:e4:8d:e2:91:b7: 2c:06:44:ea:66:e5:34:32:65:90:4b:80:4c:5f:85: c5:9f:4f:c9:01:a3:39:36:c1:dd:1e:5e:44:60:2b: 29:21:72:4e:3f:36:f2:99:2d:67:27:76:bb:56:ec: 83:98:56:77:50:67:16:51:3a:68:ec:73:61:f5:66: 9c:bc:3f:11:79:4f:b3:b0:51:fe:5a:92:57:a4:90: 1d:45:b2:55:c1:62:3c:59:36:22:fc:eb:12:2b:44: 56:ca:9b:9c:12:0f:01:21:a6:0e:6f:2b:c5:5d:39: 49:21:8d:64:00:59:b7:92:c3:64:ff:76:a5:c1:bd: 2c:89:70:c9:ed:08:05:fe:3e:6f:c2:30:ac:2b:0d: 94:67:19:9d:2f:c9:db:9b:ff:f4:3a:a4:79:70:b9: 75:32:46:e0:f3:1e:6d:97:cc:97:51:f8:22:34:d6: 64:44:d4:d3:36:e8:55:4e:f6:26:ad:3e:f7:59:0c: ff:ae:75:79:b8:12:8c:29:57:11:a4:16:31:55:e9: ef:af:8b:0f:e7:e2:41:4c:1c:25:c1:a8:fe:35:cb: e3:4b:cc:3d:ae:53:28:86:3b:9d:34:fc:72:62:15: c8:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:BA:FD:98:10:2C:56:A6:ED:18:EC:82:A5:0E:CA:CA:06:2D:B7:0F X509v3 Authority Key Identifier: keyid:65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:10:2f:bf:a4:fb:d9:ce:04:15:ba:d5:65:0b:31:71:27:7b: 60:c2:23:ee:b1:da:33:56:35:00:21:0c:69:84:c6:e1:68:67: b0:73:aa:04:48:ae:4b:2c:37:c2:44:d0:60:e9:b2:9d:ca:fd: 32:ac:4c:8c:3c:25:df:60:92:01:b7:4b:25:d4:de:77:0c:9f: 72:2d:6f:a6:04:24:1d:37:d9:7a:c7:5d:e6:55:ec:c4:d3:89: 41:e1:79:d7:9b:94:78:2a:e7:f1:d1:63:a9:98:60:ba:5c:e9: d4:af:07:1a:a3:7e:b4:b7:d4:d6:f3:f3:1b:44:27:75:4d:ca: 0a:45:67:22:61:eb:9c:b2:2d:17:36:1e:be:e5:b0:85:8c:44: 89:2f:8b:8c:dd:01:0a:ad:17:32:53:6c:23:a9:d5:b8:e3:c1: 02:89:84:f8:b0:e8:00:1d:54:7c:cb:da:48:50:d5:83:6c:73: 21:a0:fc:f1:fa:f0:9b:c3:0b:a1:78:a0:2e:10:04:58:7e:2d: f7:bc:6a:c3:a2:3a:6f:c6:de:7b:07:f9:8f:00:1d:f1:a4:67: 9b:dd:45:bc:16:43:ab:94:f5:ee:3b:20:0a:3c:c3:88:b5:60: 4b:70:65:18:00:e4:76:54:78:c2:ee:31:61:be:19:71:05:ab: 7d:cf:f6:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCRjExMTAvBgNVBAUTKDY1NDA5MTg2MDI4RUM1NENENDVCNTgzNEZGQkVDQUY0 Qjc4RjE5QzIwHhcNMjUxMjIyMTgwMjI2WhcNMjUxMjI5MTgwMjI2WjAYMRYwFAYD VQQDDA02OTQ5ODdiMi04YjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9GyZ0N4Lib32Ns/8NqJ5E/KQuOFjCvEB5I3ikbcsBkTqZuU0MmWQS4BMX4XF n0/JAaM5NsHdHl5EYCspIXJOPzbymS1nJ3a7VuyDmFZ3UGcWUTpo7HNh9WacvD8R eU+zsFH+WpJXpJAdRbJVwWI8WTYi/OsSK0RWypucEg8BIaYObyvFXTlJIY1kAFm3 ksNk/3alwb0siXDJ7QgF/j5vwjCsKw2UZxmdL8nbm//0OqR5cLl1Mkbg8x5tl8yX UfgiNNZkRNTTNuhVTvYmrT73WQz/rnV5uBKMKVcRpBYxVenvr4sP5+JBTBwlwaj+ NcvjS8w9rlMohjudNPxyYhXIsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKO6/ZgQ LFam7RjsgqUOysoGLbcPMB8GA1UdIwQYMBaAFGVAkYYCjsVM1FtYNP++yvS3jxnC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkJGMS8yNDVEQzVDQTBB RjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hVelVXMWcwXzc3SzlMZVBH Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pVQ1JoZ0tPeFV6VVcxZzBfNzdLOUxlUEdjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkJGMS8yNDVEQzVDQTBBRjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hV elVXMWcwXzc3SzlMZVBHY0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwEC+/pPvZzgQVutVlCzFxJ3tgwiPusdozVjUAIQxphMbhaGewc6oE SK5LLDfCRNBg6bKdyv0yrEyMPCXfYJIBt0sl1N53DJ9yLW+mBCQdN9l6x13mVezE 04lB4XnXm5R4Kufx0WOpmGC6XOnUrwcao360t9TW8/MbRCd1TcoKRWciYeucsi0X Nh6+5bCFjESJL4uM3QEKrRcyU2wjqdW448ECiYT4sOgAHVR8y9pIUNWDbHMhoPzx +vCbwwuheKAuEARYfi33vGrDojpvxt57B/mPAB3xpGeb3UW8FkOrlPXuOyAKPMOI tWBLcGUYAOR2VHjC7jFhvhlxBat9z/bq -----END CERTIFICATE-----Generated at Mon Dec 22 22:16:15 2025 by rpki-client