This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80C2/FE48ABF406B211EFBCE0345CC4F9AE02/zuB8hxTxkngTnSOWBQQ-zGvb0yI.mft File: zuB8hxTxkngTnSOWBQQ-zGvb0yI.mft (raw, json) Hash identifier: T76LTtX+D46yZRB8Av/Hwfv0i07uOkvTJFsM2M7dyjg= Subject key identifier: 2A:2A:40:5A:FA:C6:AE:F3:95:0B:27:52:C3:FB:9F:B0:30:4B:8E:CE Authority key identifier: CE:E0:7C:87:14:F1:92:78:13:9D:23:96:05:04:3E:CC:6B:DB:D3:22 Certificate issuer: /CN=A91B80C2/serialNumber=CEE07C8714F19278139D239605043ECC6BDBD322 Certificate serial: 0156 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuB8hxTxkngTnSOWBQQ-zGvb0yI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80C2/FE48ABF406B211EFBCE0345CC4F9AE02/zuB8hxTxkngTnSOWBQQ-zGvb0yI.mft Manifest number: 0147 Signing time: Sun 21 Dec 2025 03:42:55 +0000 Manifest this update: Sun 21 Dec 2025 03:42:55 +0000 Manifest next update: Sun 28 Dec 2025 03:42:55 +0000 Files and hashes: 1: zuB8hxTxkngTnSOWBQQ-zGvb0yI.crl (hash: 1eAfqu3WbeweW+ZTbWEyuv4GokMpOoKogv/2MbmujTo=) 2: F6BB410AA34E11F0B508F67EC4F9AE02.roa (hash: 8K1O69m1bstFL8LZIqUFWVOg/nAR4GoraVpfB2EqwyY=) 3: 51030EF09B9C11F09447A92BC4F9AE02.roa (hash: S3cyIXZVoOkRNLShFeU9F6eot2kvd0U8U4Swy25JVmk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80C2/FE48ABF406B211EFBCE0345CC4F9AE02/zuB8hxTxkngTnSOWBQQ-zGvb0yI.crl rsync://rpki.apnic.net/member_repository/A91B80C2/FE48ABF406B211EFBCE0345CC4F9AE02/zuB8hxTxkngTnSOWBQQ-zGvb0yI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuB8hxTxkngTnSOWBQQ-zGvb0yI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 03:42:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80C2, serialNumber=CEE07C8714F19278139D239605043ECC6BDBD322 Validity Not Before: Dec 21 03:42:55 2025 GMT Not After : Dec 28 03:42:55 2025 GMT Subject: CN=69476cbf-bf42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:7c:c0:69:cc:04:0f:52:88:f2:b4:97:36:78: 17:b0:2b:7a:fc:27:66:2f:24:9b:8b:8f:e3:39:88: 64:d6:c8:a5:18:31:09:1f:d5:0e:71:ec:69:df:ad: 98:fc:86:65:bb:27:0d:3b:ef:c2:49:66:e7:c9:6f: 7b:a2:0e:15:df:87:b0:fe:a9:86:75:2f:e4:97:39: fe:01:b5:4b:bb:0e:e6:21:a2:4b:f1:8f:b2:6e:38: bb:8d:5b:df:d7:d1:2e:a6:9a:19:24:4a:ca:ab:13: 22:de:f8:f9:42:68:bc:0c:80:ab:05:77:75:05:96: da:77:13:df:bc:9c:a8:51:ec:b9:d7:9d:09:a2:3a: 60:e6:6b:32:6e:7f:0e:73:96:79:3e:4f:50:0e:db: 3f:28:1e:a5:04:88:65:76:93:8b:34:7f:a7:8f:40: a9:20:26:da:62:5e:f8:d1:85:14:9a:78:35:2a:50: 4e:6f:4f:ee:31:b7:9e:15:56:e4:9b:25:4d:c3:c6: db:02:86:ab:3d:2b:48:bc:22:93:7d:cd:91:ca:93: 43:62:5c:0b:ed:b5:67:11:66:db:c0:6f:c8:89:0e: db:d6:9e:f6:86:ef:e4:88:db:3d:30:35:0f:20:c5: 03:1b:00:2b:d8:7d:1d:3e:29:43:82:f9:eb:c1:40: 86:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:2A:40:5A:FA:C6:AE:F3:95:0B:27:52:C3:FB:9F:B0:30:4B:8E:CE X509v3 Authority Key Identifier: keyid:CE:E0:7C:87:14:F1:92:78:13:9D:23:96:05:04:3E:CC:6B:DB:D3:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80C2/FE48ABF406B211EFBCE0345CC4F9AE02/zuB8hxTxkngTnSOWBQQ-zGvb0yI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuB8hxTxkngTnSOWBQQ-zGvb0yI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80C2/FE48ABF406B211EFBCE0345CC4F9AE02/zuB8hxTxkngTnSOWBQQ-zGvb0yI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:c3:67:78:fb:68:0d:18:2e:94:b9:74:ab:fc:90:e4:b4:c2: 51:0c:69:b5:6c:55:00:3c:3c:e2:ff:23:16:e5:19:03:20:b2: 39:7e:de:04:b1:91:f2:d1:15:36:de:6b:cf:44:b9:c1:48:e8: 84:64:7e:23:ee:5f:56:54:a6:df:db:97:aa:b1:af:88:59:ed: 3c:fd:85:8d:97:5f:19:7e:40:96:4a:34:71:23:39:f4:5f:c9: 54:8c:a8:e9:d2:45:c4:c1:34:d8:6d:e6:04:af:91:60:8b:fb: 86:ee:ed:57:35:80:9f:cf:d8:78:4f:aa:c2:18:0a:da:b7:bf: e7:bc:41:72:57:62:22:8a:92:8c:4d:bc:78:57:a2:b6:49:ec: e3:63:a6:14:fe:db:0b:1d:fc:1e:e9:21:0f:13:1c:6a:25:88: d4:12:f4:ff:5f:cf:9e:72:61:09:ec:76:a7:c8:59:e3:ab:bc: a3:bd:60:82:a7:cd:4c:fc:c4:2e:3f:dc:c8:24:45:4a:31:05: 12:1d:50:df:0b:b7:45:c5:b5:6b:60:75:2e:ef:c2:f0:b2:87: 92:73:da:4f:39:b3:92:96:fb:e1:70:71:36:df:0b:12:c9:b7: 50:b6:1f:68:53:a6:73:92:fb:bf:ab:87:96:92:87:32:f8:94: 10:1e:fe:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQzIxMTAvBgNVBAUTKENFRTA3Qzg3MTRGMTkyNzgxMzlEMjM5NjA1MDQzRUND NkJEQkQzMjIwHhcNMjUxMjIxMDM0MjU1WhcNMjUxMjI4MDM0MjU1WjAYMRYwFAYD VQQDDA02OTQ3NmNiZi1iZjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3zAacwED1KI8rSXNngXsCt6/CdmLySbi4/jOYhk1silGDEJH9UOcexp362Y /IZluycNO+/CSWbnyW97og4V34ew/qmGdS/klzn+AbVLuw7mIaJL8Y+ybji7jVvf 19EuppoZJErKqxMi3vj5Qmi8DICrBXd1BZbadxPfvJyoUey5150Jojpg5msybn8O c5Z5Pk9QDts/KB6lBIhldpOLNH+nj0CpICbaYl740YUUmng1KlBOb0/uMbeeFVbk myVNw8bbAoarPStIvCKTfc2RypNDYlwL7bVnEWbbwG/IiQ7b1p72hu/kiNs9MDUP IMUDGwAr2H0dPilDgvnrwUCGNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCoqQFr6 xq7zlQsnUsP7n7AwS47OMB8GA1UdIwQYMBaAFM7gfIcU8ZJ4E50jlgUEPsxr29Mi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBDMi9GRTQ4QUJGNDA2 QjIxMUVGQkNFMDM0NUNDNEY5QUUwMi96dUI4aHhUeGtuZ1RuU09XQlFRLXpHdmIw eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1QjhoeFR4a25nVG5TT1dCUVEtekd2YjB5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBDMi9GRTQ4QUJGNDA2QjIxMUVGQkNFMDM0NUNDNEY5QUUwMi96dUI4aHhUeGtu Z1RuU09XQlFRLXpHdmIweUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXw2d4+2gNGC6UuXSr/JDktMJRDGm1bFUAPDzi/yMW5RkDILI5ft4E sZHy0RU23mvPRLnBSOiEZH4j7l9WVKbf25eqsa+IWe08/YWNl18ZfkCWSjRxIzn0 X8lUjKjp0kXEwTTYbeYEr5Fgi/uG7u1XNYCfz9h4T6rCGArat7/nvEFyV2IiipKM Tbx4V6K2SezjY6YU/tsLHfwe6SEPExxqJYjUEvT/X8+ecmEJ7HanyFnjq7yjvWCC p81M/MQuP9zIJEVKMQUSHVDfC7dFxbVrYHUu78LwsoeSc9pPObOSlvvhcHE23wsS ybdQth9oU6Zzkvu/q4eWkocy+JQQHv4P -----END CERTIFICATE-----Generated at Sun Dec 21 10:17:36 2025 by rpki-client