This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft File: CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft (raw, json) Hash identifier: v4637tjrdo+tG8rO6S0a/slVSUwVMc0C34BsIN31JK0= Subject key identifier: 73:6C:29:AC:43:C6:8B:EB:AA:E6:19:5A:C1:F7:9F:70:7C:7D:68:5E Authority key identifier: 09:95:06:EC:98:7C:8B:19:40:58:53:B0:8C:71:8B:5B:BE:4A:C6:92 Certificate issuer: /CN=A9143B0A/serialNumber=099506EC987C8B19405853B08C718B5BBE4AC692 Certificate serial: F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft Manifest number: F2 Signing time: Fri 05 Dec 2025 03:20:22 +0000 Manifest this update: Fri 05 Dec 2025 03:20:21 +0000 Manifest next update: Fri 12 Dec 2025 03:20:21 +0000 Files and hashes: 1: CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl (hash: iEDOXIq3ZByWGnjiuvyGhZl5wEYwc1+JK5dgdajFuIg=) 2: 485B32A8607B11EFB27C6C5DC4F9AE02.roa (hash: ssSab392rUEklfenSvYRYq8TUWajk4XJZygnBh6m+8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:20:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143B0A, serialNumber=099506EC987C8B19405853B08C718B5BBE4AC692 Validity Not Before: Dec 5 03:20:21 2025 GMT Not After : Dec 12 03:20:21 2025 GMT Subject: CN=69324f75-3392 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:fd:5c:b7:e6:a5:26:20:2b:59:11:33:55:0c: e4:d6:8a:f7:83:d5:2c:6b:c0:3d:2c:db:fc:99:a7: 01:84:86:d5:c0:c0:15:22:ff:cf:65:a7:ee:a3:0a: e5:39:e5:81:c5:49:5c:2c:b4:f6:a1:c3:6e:28:53: 5d:8e:73:5d:f9:f6:60:c9:a5:fa:45:b9:d4:8a:a2: aa:4f:99:94:16:ef:37:d4:b2:a8:d0:e2:4f:37:21: 0a:6d:14:2a:7c:c5:95:c0:8f:d0:4f:ef:83:7a:90: 03:cc:1f:92:cc:a5:df:28:a1:ef:44:a3:d6:82:b0: d6:69:00:24:bb:f2:05:4f:33:df:3f:d5:de:ed:26: 97:e5:63:17:f4:32:28:48:4c:de:4c:6a:aa:41:54: 3c:63:ec:06:ba:f1:db:c5:a9:68:9e:07:36:6e:d4: e8:63:57:06:7b:11:2d:07:e9:4f:6c:28:66:5b:a1: 59:ea:b2:db:86:10:b6:3c:91:d6:82:55:e0:e7:9a: fd:32:96:9d:77:ca:25:e8:f1:3b:bb:1f:44:cf:08: 40:29:14:b4:91:2f:be:64:03:98:3b:8b:ae:d5:f2: c1:c2:40:8c:c1:21:15:64:e1:ea:c1:3f:af:87:88: db:0a:01:30:8b:b4:f6:56:be:6a:bd:b4:ec:d1:b1: fb:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:6C:29:AC:43:C6:8B:EB:AA:E6:19:5A:C1:F7:9F:70:7C:7D:68:5E X509v3 Authority Key Identifier: keyid:09:95:06:EC:98:7C:8B:19:40:58:53:B0:8C:71:8B:5B:BE:4A:C6:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:8a:52:c6:bc:5b:56:90:db:08:73:bb:86:b1:a4:ef:2e:07: 76:9a:1e:ad:b3:5d:35:0c:78:c2:49:f6:c0:e6:70:c9:1e:ec: 30:50:fb:16:a2:c4:14:95:89:6b:95:81:97:8d:0f:71:d1:af: 3a:e8:fa:d9:73:21:59:dd:8a:a7:6a:09:09:af:fb:dd:1d:0a: 11:75:b1:3a:db:8a:b4:d5:8d:7f:de:82:ac:8f:66:d8:b8:bb: 91:e2:b6:2d:51:a4:df:a4:33:ab:8e:f1:0e:a2:14:d9:b1:9b: f9:c4:5b:02:75:39:39:8c:d9:40:8e:38:f9:ad:4e:7e:d7:ee: 97:9d:75:2e:c3:76:4f:fb:6f:06:37:85:14:18:eb:29:ec:17: 59:b1:56:e4:26:07:f3:15:fc:a1:c6:0c:78:76:99:5e:76:f2: 99:f0:3e:9a:a9:0b:04:7f:96:2f:5d:04:29:31:2b:83:70:e7: cc:d4:e0:26:1c:b8:ec:ee:d1:a8:cc:39:ea:03:50:de:d7:2e: 7d:1a:5b:cd:d5:70:55:7b:77:18:ee:78:a8:e7:bf:67:93:90: 03:25:ba:d4:bc:84:05:02:64:3c:bc:a4:31:00:24:1d:ce:a7: 57:6f:ba:db:02:a0:b3:f4:e9:9a:07:f6:54:c9:97:5a:ea:be: 3a:c6:86:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNCMEExMTAvBgNVBAUTKDA5OTUwNkVDOTg3QzhCMTk0MDU4NTNCMDhDNzE4QjVC QkU0QUM2OTIwHhcNMjUxMjA1MDMyMDIxWhcNMjUxMjEyMDMyMDIxWjAYMRYwFAYD VQQDEw02OTMyNGY3NS0zMzkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1v1ct+alJiArWREzVQzk1or3g9Usa8A9LNv8macBhIbVwMAVIv/PZafuowrl OeWBxUlcLLT2ocNuKFNdjnNd+fZgyaX6RbnUiqKqT5mUFu831LKo0OJPNyEKbRQq fMWVwI/QT++DepADzB+SzKXfKKHvRKPWgrDWaQAku/IFTzPfP9Xe7SaX5WMX9DIo SEzeTGqqQVQ8Y+wGuvHbxalongc2btToY1cGexEtB+lPbChmW6FZ6rLbhhC2PJHW glXg55r9Mpadd8ol6PE7ux9EzwhAKRS0kS++ZAOYO4uu1fLBwkCMwSEVZOHqwT+v h4jbCgEwi7T2Vr5qvbTs0bH7gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHNsKaxD xovrquYZWsH3n3B8fWheMB8GA1UdIwQYMBaAFAmVBuyYfIsZQFhTsIxxi1u+SsaS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0IwQS9ENURCNkRGNjYw N0ExMUVGODY5QUE2NUNDNEY5QUUwMi9DWlVHN0poOGl4bEFXRk93akhHTFc3NUt4 cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaVUc3Smg4aXhsQVdGT3dqSEdMVzc1S3hwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0IwQS9ENURCNkRGNjYwN0ExMUVGODY5QUE2NUNDNEY5QUUwMi9DWlVHN0poOGl4 bEFXRk93akhHTFc3NUt4cEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVilLGvFtWkNsIc7uGsaTvLgd2mh6ts101DHjCSfbA5nDJHuwwUPsW osQUlYlrlYGXjQ9x0a866PrZcyFZ3YqnagkJr/vdHQoRdbE624q01Y1/3oKsj2bY uLuR4rYtUaTfpDOrjvEOohTZsZv5xFsCdTk5jNlAjjj5rU5+1+6XnXUuw3ZP+28G N4UUGOsp7BdZsVbkJgfzFfyhxgx4dpledvKZ8D6aqQsEf5YvXQQpMSuDcOfM1OAm HLjs7tGozDnqA1De1y59GlvN1XBVe3cY7nio579nk5ADJbrUvIQFAmQ8vKQxACQd zqdXb7rbAqCz9OmaB/ZUyZda6r46xob2 -----END CERTIFICATE-----Generated at Sat Dec 6 22:42:35 2025 by rpki-client