This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915FE77/7B909554FBAA11E989AD8140C4F9AE02/ZT-tpTip40Eufv3Y-2OfIn9aPuI.mft File: ZT-tpTip40Eufv3Y-2OfIn9aPuI.mft (raw, json) Hash identifier: hVe620Udgf5kbEZUH+xn03WqBcXtBBX/xUj474BYQX4= Subject key identifier: 79:9F:7A:05:36:DA:7C:3C:98:A6:CC:81:71:40:B1:D0:EC:16:45:D6 Authority key identifier: 65:3F:AD:A5:38:A9:E3:41:2E:7E:FD:D8:FB:63:9F:22:7F:5A:3E:E2 Certificate issuer: /CN=A915FE77/serialNumber=653FADA538A9E3412E7EFDD8FB639F227F5A3EE2 Certificate serial: 0CDE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZT-tpTip40Eufv3Y-2OfIn9aPuI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FE77/7B909554FBAA11E989AD8140C4F9AE02/ZT-tpTip40Eufv3Y-2OfIn9aPuI.mft Manifest number: 0CD9 Signing time: Sat 20 Dec 2025 17:47:55 +0000 Manifest this update: Sat 20 Dec 2025 17:47:55 +0000 Manifest next update: Sat 27 Dec 2025 17:47:55 +0000 Files and hashes: 1: ZT-tpTip40Eufv3Y-2OfIn9aPuI.crl (hash: N/TcOV5B4I1iuGTSayZrEde7ceOwiwHMb2zeXZWLFIs=) 2: 357D722C67D911EEA787145FC4F9AE02.roa (hash: 7I2IqOR2xiPyGuWyUJiiPfmupUfqm37Gh46DwQEOptk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FE77/7B909554FBAA11E989AD8140C4F9AE02/ZT-tpTip40Eufv3Y-2OfIn9aPuI.crl rsync://rpki.apnic.net/member_repository/A915FE77/7B909554FBAA11E989AD8140C4F9AE02/ZT-tpTip40Eufv3Y-2OfIn9aPuI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZT-tpTip40Eufv3Y-2OfIn9aPuI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 17:47:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3294 (0xcde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FE77, serialNumber=653FADA538A9E3412E7EFDD8FB639F227F5A3EE2 Validity Not Before: Dec 20 17:47:55 2025 GMT Not After : Dec 27 17:47:55 2025 GMT Subject: CN=6946e14b-969b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:7d:7f:2e:0c:f2:12:25:0f:d6:33:d9:19:fc: e5:7f:59:97:87:16:6e:d9:a5:cb:ec:3a:f7:46:7f: fe:26:ed:33:e9:9d:dd:54:24:58:28:b1:81:0d:0e: 7e:dd:59:18:1d:f6:fe:cf:97:ad:02:04:af:2e:79: 5e:10:32:a9:8b:0f:c2:ee:72:7b:a7:7b:7d:aa:6c: 60:f8:25:9a:02:12:d7:37:10:4d:40:fe:43:d0:c7: e1:ae:b9:3b:f5:50:85:17:c0:ca:7b:fc:a8:7b:43: 55:b5:a5:c4:af:e7:b1:1a:eb:95:96:20:86:56:ce: 26:0d:53:d7:d1:07:97:c1:e5:23:59:22:99:7a:4b: 81:01:31:79:1a:44:d1:ec:a2:e1:56:1a:8e:1f:44: 49:84:93:02:97:61:ec:ab:3a:e8:5d:2a:53:9d:e7: 3a:63:8e:ae:c2:63:7e:ba:7f:08:95:c4:a4:32:6b: 4b:e1:72:75:25:32:0d:77:ca:ab:43:6a:ae:3b:6b: 6c:d6:61:10:d4:72:a7:99:c2:b8:20:10:40:f7:35: 4a:b2:c9:0f:86:44:06:a8:64:6c:65:48:a1:75:bc: e6:f5:d9:c6:4e:b9:c9:54:60:88:a9:f0:81:f7:5a: e9:84:36:d4:9d:72:85:39:79:e7:cc:6b:1b:8c:55: 74:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:9F:7A:05:36:DA:7C:3C:98:A6:CC:81:71:40:B1:D0:EC:16:45:D6 X509v3 Authority Key Identifier: keyid:65:3F:AD:A5:38:A9:E3:41:2E:7E:FD:D8:FB:63:9F:22:7F:5A:3E:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FE77/7B909554FBAA11E989AD8140C4F9AE02/ZT-tpTip40Eufv3Y-2OfIn9aPuI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZT-tpTip40Eufv3Y-2OfIn9aPuI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FE77/7B909554FBAA11E989AD8140C4F9AE02/ZT-tpTip40Eufv3Y-2OfIn9aPuI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:58:bb:f7:51:66:34:36:65:58:8f:f8:9d:42:e0:7b:64:08: 8f:4f:d7:72:d8:0b:c4:86:69:a4:35:0d:ab:a7:7f:0d:f7:23: 71:1a:6c:8f:c1:49:c2:15:ce:c3:19:54:d1:58:12:55:2a:c5: a7:74:17:ee:bc:d5:9a:a0:75:cd:59:91:3d:c6:03:50:7f:bd: b6:2e:57:18:d8:57:7b:2a:e0:6e:01:a4:8f:fa:f2:4e:74:27: 1b:2f:d7:4e:45:d7:6a:31:6f:0d:91:b3:08:76:4f:56:35:09: 49:9f:23:b3:2d:f7:a3:5b:39:2e:d6:f7:34:02:a6:60:1c:3d: b8:9c:a1:58:9c:d8:ff:56:fe:b9:e6:15:3b:46:01:23:5a:aa: 1f:c8:21:77:37:15:42:f2:e1:f3:20:3b:9c:a3:2f:19:8b:6c: fe:cd:f8:42:55:8f:d6:66:d2:b5:8c:1b:d0:05:66:db:db:01: 31:46:cd:c8:88:fe:4a:ec:76:ac:34:c6:68:88:a9:e3:f7:ae: 98:81:99:bd:de:ea:5b:5e:46:78:0e:c5:1d:24:25:ed:e4:94: 39:29:d0:a6:f6:a1:53:14:5c:43:bf:06:b4:2c:61:a2:44:3a: 68:3b:1d:b3:40:f4:bd:dc:0d:e7:8d:04:35:93:17:26:35:71: 78:e0:02:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZFNzcxMTAvBgNVBAUTKDY1M0ZBREE1MzhBOUUzNDEyRTdFRkREOEZCNjM5RjIy N0Y1QTNFRTIwHhcNMjUxMjIwMTc0NzU1WhcNMjUxMjI3MTc0NzU1WjAYMRYwFAYD VQQDDA02OTQ2ZTE0Yi05NjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxn1/LgzyEiUP1jPZGfzlf1mXhxZu2aXL7Dr3Rn/+Ju0z6Z3dVCRYKLGBDQ5+ 3VkYHfb+z5etAgSvLnleEDKpiw/C7nJ7p3t9qmxg+CWaAhLXNxBNQP5D0Mfhrrk7 9VCFF8DKe/yoe0NVtaXEr+exGuuVliCGVs4mDVPX0QeXweUjWSKZekuBATF5GkTR 7KLhVhqOH0RJhJMCl2HsqzroXSpTnec6Y46uwmN+un8IlcSkMmtL4XJ1JTINd8qr Q2quO2ts1mEQ1HKnmcK4IBBA9zVKsskPhkQGqGRsZUihdbzm9dnGTrnJVGCIqfCB 91rphDbUnXKFOXnnzGsbjFV0DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHmfegU2 2nw8mKbMgXFAsdDsFkXWMB8GA1UdIwQYMBaAFGU/raU4qeNBLn792PtjnyJ/Wj7i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkU3Ny83QjkwOTU1NEZC QUExMUU5ODlBRDgxNDBDNEY5QUUwMi9aVC10cFRpcDQwRXVmdjNZLTJPZkluOWFQ dUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pULXRwVGlwNDBFdWZ2M1ktMk9mSW45YVB1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkU3Ny83QjkwOTU1NEZCQUExMUU5ODlBRDgxNDBDNEY5QUUwMi9aVC10cFRpcDQw RXVmdjNZLTJPZkluOWFQdUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5WLv3UWY0NmVYj/idQuB7ZAiPT9dy2AvEhmmkNQ2rp38N9yNxGmyP wUnCFc7DGVTRWBJVKsWndBfuvNWaoHXNWZE9xgNQf722LlcY2Fd7KuBuAaSP+vJO dCcbL9dORddqMW8NkbMIdk9WNQlJnyOzLfejWzku1vc0AqZgHD24nKFYnNj/Vv65 5hU7RgEjWqofyCF3NxVC8uHzIDucoy8Zi2z+zfhCVY/WZtK1jBvQBWbb2wExRs3I iP5K7HasNMZoiKnj966YgZm93upbXkZ4DsUdJCXt5JQ5KdCm9qFTFFxDvwa0LGGi RDpoOx2zQPS93A3njQQ1kxcmNXF44AIa -----END CERTIFICATE-----Generated at Sun Dec 21 09:45:56 2025 by rpki-client