This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft File: ZwbZhOcxaBICGI0pntNfAFsBdYA.mft (raw, json) Hash identifier: BlIoaKV989w3M6hcOd20mpMDS6ofkK+bNVc4Ja+pDWQ= Subject key identifier: D5:5E:83:40:A5:C4:DE:13:BD:6E:2D:73:76:21:79:E5:EA:23:7F:83 Authority key identifier: 67:06:D9:84:E7:31:68:12:02:18:8D:29:9E:D3:5F:00:5B:01:75:80 Certificate issuer: /CN=A917DCDA/serialNumber=6706D984E731681202188D299ED35F005B017580 Certificate serial: 34EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft Manifest number: 34EC Signing time: Thu 18 Dec 2025 14:39:20 +0000 Manifest this update: Thu 18 Dec 2025 14:39:20 +0000 Manifest next update: Thu 25 Dec 2025 14:39:20 +0000 Files and hashes: 1: ZwbZhOcxaBICGI0pntNfAFsBdYA.crl (hash: 3apMLX2x0oAc2moNU6siHbGZqcrgEdYKASEhXOzvBKM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.crl rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 14:39:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13548 (0x34ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DCDA, serialNumber=6706D984E731681202188D299ED35F005B017580 Validity Not Before: Dec 18 14:39:20 2025 GMT Not After : Dec 25 14:39:20 2025 GMT Subject: CN=69441218-406a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:2a:d6:99:b8:a7:3b:ed:13:69:f1:00:0a:1e: ac:14:bb:a6:3e:e7:e8:72:9d:c8:50:38:0d:64:52: ab:8e:7e:66:7c:46:3f:e0:7e:9e:0d:d4:34:4e:a0: 1d:4b:ea:1e:1f:6b:24:ad:d0:55:9e:06:b6:7e:e9: d5:70:04:19:cc:6e:a4:69:57:14:f0:9a:45:b7:8e: 56:b3:87:46:c2:f8:5d:fd:b7:da:c5:8e:02:58:4c: 37:a0:ef:36:57:f2:c2:68:bf:60:1e:1d:7e:f6:4a: 4b:58:1d:9d:a7:45:ab:a8:4c:65:6b:02:32:e3:23: 45:47:2c:04:c1:32:e8:a6:2c:e8:ed:53:b4:17:ae: ea:b8:1c:4e:a3:02:e6:fb:d4:46:aa:6b:b5:8a:5e: 74:dd:ed:94:9a:6c:6c:10:9b:88:b9:53:4b:f1:19: 65:8a:5e:06:71:68:c6:c1:c6:aa:48:df:0a:cf:be: 0d:4d:b1:35:c5:73:e3:63:d4:6c:a6:45:79:8c:6b: 02:32:a8:4e:18:6e:68:19:34:0d:8c:55:20:d4:13: c3:15:c2:31:f1:fd:01:d0:bf:4b:e0:f2:a3:e9:9b: ea:e4:55:dc:b8:51:03:35:bc:08:20:de:de:55:53: fa:3e:4f:d4:05:78:bb:22:c9:45:4b:f1:5d:1a:5f: 46:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:5E:83:40:A5:C4:DE:13:BD:6E:2D:73:76:21:79:E5:EA:23:7F:83 X509v3 Authority Key Identifier: keyid:67:06:D9:84:E7:31:68:12:02:18:8D:29:9E:D3:5F:00:5B:01:75:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:04:db:1f:16:99:81:4e:a9:4a:fb:0c:6c:8e:b3:67:6e:7c: 18:99:f0:93:ea:c4:54:d6:a1:0b:86:61:fe:7b:8a:32:40:e8: 9b:98:86:f4:00:fe:83:03:e5:46:c9:3d:e0:0b:18:db:12:ee: 16:f2:be:c2:e0:9e:b7:23:23:9b:13:68:93:5d:ff:eb:f1:0d: 85:3b:b0:6d:8c:b2:1e:f9:f5:67:08:a5:3f:46:33:35:d2:55: eb:99:af:22:71:4b:35:a5:a3:ff:3a:42:e7:5b:bc:86:11:49: 60:83:5c:33:45:32:a2:6c:1b:04:18:2e:8e:f4:6e:8e:57:ea: 33:e3:95:97:90:3c:70:73:07:0a:df:fa:3b:b6:87:8c:d0:23: 29:76:0f:14:4a:1c:30:8b:a7:2b:6b:b7:c8:c3:dd:47:48:9b: f3:9f:3f:54:15:d2:03:c8:f6:4e:0a:18:f4:a9:8a:66:e1:1d: 93:a5:99:37:74:a9:6e:75:81:c9:bc:c1:82:e9:39:49:90:e8: 0b:0f:c7:90:56:3f:7d:85:5c:03:1c:a7:11:dc:e1:b5:a3:7a: b7:94:bf:44:09:99:4b:84:dc:af:b1:52:c2:50:83:85:14:c2: 54:e2:cd:95:bf:e9:7e:03:b7:e9:13:3c:58:93:7a:38:97:0f: 65:6f:ec:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RDREExMTAvBgNVBAUTKDY3MDZEOTg0RTczMTY4MTIwMjE4OEQyOTlFRDM1RjAw NUIwMTc1ODAwHhcNMjUxMjE4MTQzOTIwWhcNMjUxMjI1MTQzOTIwWjAYMRYwFAYD VQQDDA02OTQ0MTIxOC00MDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlSrWmbinO+0TafEACh6sFLumPufocp3IUDgNZFKrjn5mfEY/4H6eDdQ0TqAd S+oeH2skrdBVnga2funVcAQZzG6kaVcU8JpFt45Ws4dGwvhd/bfaxY4CWEw3oO82 V/LCaL9gHh1+9kpLWB2dp0WrqExlawIy4yNFRywEwTLopizo7VO0F67quBxOowLm +9RGqmu1il503e2UmmxsEJuIuVNL8Rllil4GcWjGwcaqSN8Kz74NTbE1xXPjY9Rs pkV5jGsCMqhOGG5oGTQNjFUg1BPDFcIx8f0B0L9L4PKj6Zvq5FXcuFEDNbwIIN7e VVP6Pk/UBXi7IslFS/FdGl9GuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNVeg0Cl xN4TvW4tc3YheeXqI3+DMB8GA1UdIwQYMBaAFGcG2YTnMWgSAhiNKZ7TXwBbAXWA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RENEQS8xOTJFNzFGNjFE OTAxMUUyQjI5NUFCRUYwOEIwMkNEMi9ad2JaaE9jeGFCSUNHSTBwbnROZkFGc0Jk WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p3YlpoT2N4YUJJQ0dJMHBudE5mQUZzQmRZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RENEQS8xOTJFNzFGNjFEOTAxMUUyQjI5NUFCRUYwOEIwMkNEMi9ad2JaaE9jeGFC SUNHSTBwbnROZkFGc0JkWUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqBNsfFpmBTqlK+wxsjrNnbnwYmfCT6sRU1qELhmH+e4oyQOibmIb0 AP6DA+VGyT3gCxjbEu4W8r7C4J63IyObE2iTXf/r8Q2FO7BtjLIe+fVnCKU/RjM1 0lXrma8icUs1paP/OkLnW7yGEUlgg1wzRTKibBsEGC6O9G6OV+oz45WXkDxwcwcK 3/o7toeM0CMpdg8UShwwi6cra7fIw91HSJvznz9UFdIDyPZOChj0qYpm4R2TpZk3 dKludYHJvMGC6TlJkOgLD8eQVj99hVwDHKcR3OG1o3q3lL9ECZlLhNyvsVLCUIOF FMJU4s2Vv+l+A7fpEzxYk3o4lw9lb+zm -----END CERTIFICATE-----Generated at Fri Dec 19 20:27:43 2025 by rpki-client