This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft File: ZUCRhgKOxUzUW1g0_77K9LePGcI.mft (raw, json) Hash identifier: W84KDScoknhSLFWuJxQUJcl2G5ZStudCoDuTt+wKxvY= Subject key identifier: 36:0A:9D:60:3C:F1:95:96:3F:1D:05:E6:DE:92:A2:A0:4B:78:E4:3D Authority key identifier: 65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 Certificate issuer: /CN=A917BBF1/serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Certificate serial: 0CC2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft Manifest number: 0CA3 Signing time: Sat 20 Dec 2025 18:04:34 +0000 Manifest this update: Sat 20 Dec 2025 18:04:33 +0000 Manifest next update: Sat 27 Dec 2025 18:04:33 +0000 Files and hashes: 1: ZUCRhgKOxUzUW1g0_77K9LePGcI.crl (hash: x+CMvZ9u0gGOgleGVj7elYW2fgvamuoGAMSED1ieDjU=) 2: 1B54858065B711EE93D6ED6DC4F9AE02.roa (hash: GsJaSUcatISwdkkhFSUQBWiCBZOPMZtERdw74sbshGA=) 3: 3EED102CC53011F0ADCB012EC4F9AE02.roa (hash: 6fE56WTUrkGoowNCAPAXKB4etjMvEgjd/DPqKL4LTvw=) 4: FF4F13D4448711ECA80CFC34C4F9AE02.roa (hash: D8Rskcy+MlcZVWynnet9FUcktOO82nExRIwJwtWFbsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:04:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3266 (0xcc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BBF1, serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Validity Not Before: Dec 20 18:04:33 2025 GMT Not After : Dec 27 18:04:33 2025 GMT Subject: CN=6946e532-7821 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b3:fc:d8:e0:69:0a:08:8c:de:24:1c:56:d7: f5:ca:c0:40:83:cf:da:13:a5:0e:e8:69:6b:4f:b6: 01:8e:43:57:8f:5b:96:0e:9f:4b:dd:c0:18:5e:75: e0:16:e8:7f:37:dd:2b:7a:d9:50:e4:fa:f6:f1:4a: c6:42:f6:7e:47:16:85:1c:48:fa:6e:f0:33:fd:66: a5:c8:26:38:7e:59:3a:fa:dc:22:4e:11:02:3b:de: d6:0b:5d:e2:43:41:59:3f:db:6e:c9:5d:25:c5:7e: 15:bd:fa:3b:ae:e9:5a:a1:ad:94:40:a1:14:33:17: a5:45:88:86:5f:64:35:52:95:27:5b:3b:e7:32:7e: cc:71:ae:01:97:70:a0:01:02:08:4c:a9:bf:c5:dd: da:6d:b2:c0:78:21:e7:cb:6e:a3:4e:e0:37:96:8b: 96:41:54:e8:ed:2a:2d:03:64:0b:91:f8:e9:b0:b6: d6:22:d2:3d:ee:b2:ff:aa:8e:aa:0b:e0:e8:34:a1: 98:58:82:e8:c0:b2:70:b3:fd:fa:2f:1a:1f:7f:e6: e8:bc:99:b0:33:3b:ec:2b:05:9b:03:a9:20:0f:b3: 73:41:20:63:28:20:9f:24:57:8a:20:16:d6:e5:b1: e2:7b:d8:f6:f7:4a:18:00:87:59:94:7a:14:8e:56: ce:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:0A:9D:60:3C:F1:95:96:3F:1D:05:E6:DE:92:A2:A0:4B:78:E4:3D X509v3 Authority Key Identifier: keyid:65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:bc:54:f4:47:ec:98:53:ba:74:26:d7:f1:10:d7:ea:42:9b: 79:69:d4:e4:c6:ec:81:a8:9c:ec:78:3b:83:6e:d5:70:ac:dd: e3:3c:a5:50:92:52:4d:ea:b7:8c:8b:de:cc:8a:35:03:37:89: a5:10:95:42:ee:7e:71:d2:ed:4f:15:33:91:86:67:ed:32:8e: 31:fd:40:3f:b1:53:5d:fc:17:1c:b4:e4:16:4d:aa:2c:92:19: c1:58:35:99:dc:a9:b4:da:90:83:e5:15:21:dc:88:6a:73:0e: 03:c6:61:88:65:76:10:6d:b8:c9:5e:3f:1c:cf:81:e8:ec:68: e0:80:d1:dd:d6:44:6e:3f:49:51:fd:1e:47:04:99:8c:56:70: af:61:42:5d:03:91:43:23:40:11:a3:5f:56:9b:53:c2:5b:82: a3:39:e4:e3:2b:dd:f7:3c:0b:b8:f0:cb:de:ba:c0:09:70:1d: d8:5f:a4:d0:6e:b5:09:78:90:88:3c:38:53:a1:e1:91:55:6d: 2c:71:e8:2b:94:82:21:9d:d0:11:85:74:90:f9:b7:7d:ca:28: fe:7c:dc:eb:b8:36:06:3c:97:5d:47:4c:c5:ec:0f:9e:31:ec: 7c:33:b8:8e:86:eb:9c:4e:55:ea:35:05:f6:89:f5:0c:07:7b: d9:96:17:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCRjExMTAvBgNVBAUTKDY1NDA5MTg2MDI4RUM1NENENDVCNTgzNEZGQkVDQUY0 Qjc4RjE5QzIwHhcNMjUxMjIwMTgwNDMzWhcNMjUxMjI3MTgwNDMzWjAYMRYwFAYD VQQDDA02OTQ2ZTUzMi03ODIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp7P82OBpCgiM3iQcVtf1ysBAg8/aE6UO6GlrT7YBjkNXj1uWDp9L3cAYXnXg Fuh/N90retlQ5Pr28UrGQvZ+RxaFHEj6bvAz/WalyCY4flk6+twiThECO97WC13i Q0FZP9tuyV0lxX4Vvfo7rulaoa2UQKEUMxelRYiGX2Q1UpUnWzvnMn7Mca4Bl3Cg AQIITKm/xd3abbLAeCHny26jTuA3louWQVTo7SotA2QLkfjpsLbWItI97rL/qo6q C+DoNKGYWILowLJws/36Lxoff+bovJmwMzvsKwWbA6kgD7NzQSBjKCCfJFeKIBbW 5bHie9j290oYAIdZlHoUjlbOnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDYKnWA8 8ZWWPx0F5t6SoqBLeOQ9MB8GA1UdIwQYMBaAFGVAkYYCjsVM1FtYNP++yvS3jxnC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkJGMS8yNDVEQzVDQTBB RjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hVelVXMWcwXzc3SzlMZVBH Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pVQ1JoZ0tPeFV6VVcxZzBfNzdLOUxlUEdjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkJGMS8yNDVEQzVDQTBBRjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hV elVXMWcwXzc3SzlMZVBHY0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFvFT0R+yYU7p0JtfxENfqQpt5adTkxuyBqJzseDuDbtVwrN3jPKVQ klJN6reMi97MijUDN4mlEJVC7n5x0u1PFTORhmftMo4x/UA/sVNd/BcctOQWTaos khnBWDWZ3Km02pCD5RUh3Ihqcw4DxmGIZXYQbbjJXj8cz4Ho7GjggNHd1kRuP0lR /R5HBJmMVnCvYUJdA5FDI0ARo19Wm1PCW4KjOeTjK933PAu48MveusAJcB3YX6TQ brUJeJCIPDhToeGRVW0scegrlIIhndARhXSQ+bd9yij+fNzruDYGPJddR0zF7A+e Mex8M7iOhuucTlXqNQX2ifUMB3vZlhf+ -----END CERTIFICATE-----Generated at Sun Dec 21 04:44:51 2025 by rpki-client