This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft File: ZwbZhOcxaBICGI0pntNfAFsBdYA.mft (raw, json) Hash identifier: ADvQMuItA4rrwZWX8ewBNoEGTKYTiiRpOfcrgQ4nY1I= Subject key identifier: 9F:D6:3A:10:62:E1:88:06:E4:8F:73:27:A4:0A:02:FC:17:D1:22:8F Authority key identifier: 67:06:D9:84:E7:31:68:12:02:18:8D:29:9E:D3:5F:00:5B:01:75:80 Certificate issuer: /CN=A917DCDA/serialNumber=6706D984E731681202188D299ED35F005B017580 Certificate serial: 34E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft Manifest number: 34E6 Signing time: Sat 06 Dec 2025 14:36:56 +0000 Manifest this update: Sat 06 Dec 2025 14:36:55 +0000 Manifest next update: Sat 13 Dec 2025 14:36:55 +0000 Files and hashes: 1: ZwbZhOcxaBICGI0pntNfAFsBdYA.crl (hash: APGPy8eTPfblwvVRWd1qkD3kq+sNDhl0GgmZFhzQAWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.crl rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:36:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13542 (0x34e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DCDA, serialNumber=6706D984E731681202188D299ED35F005B017580 Validity Not Before: Dec 6 14:36:55 2025 GMT Not After : Dec 13 14:36:55 2025 GMT Subject: CN=69343f87-2491 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:52:72:b5:7d:27:02:fc:7e:0e:87:49:eb:93: 72:93:4f:6c:39:e6:82:16:45:ef:45:c0:c5:76:df: 2f:2e:63:82:9f:2e:a0:05:f6:1f:61:34:4e:89:ed: d5:a6:fa:aa:cb:4c:96:9e:39:86:5b:57:3e:c4:85: 70:88:fd:b6:c6:25:cb:3b:77:8b:fb:a0:28:2d:78: b7:7b:16:cc:ab:57:fb:f8:ac:1c:9e:35:4c:64:bb: c0:31:fb:c5:64:4d:3b:8f:11:7a:80:31:85:78:e9: 23:a7:f9:12:a9:5d:69:fe:f4:fc:a5:3f:a5:30:c8: 6d:4d:06:bf:8f:a7:61:39:58:40:95:3e:16:fd:e2: fc:9a:f5:e7:c3:09:34:1a:2c:ac:91:46:e0:5f:67: 67:d8:a8:95:81:30:80:a3:1a:3e:fd:21:f5:26:c1: de:b2:99:9d:d4:79:34:6a:80:13:4c:9b:e0:fb:87: 03:da:0e:62:7c:b1:b2:3d:96:3f:95:90:36:d6:d4: 63:d6:d2:89:57:b3:c6:2a:68:04:3c:2e:36:e5:c7: 2e:3c:34:9a:87:ef:99:3f:51:ee:a5:e1:61:cb:e5: cb:2f:a1:11:e2:fa:5f:0e:50:c1:bb:cb:b4:fc:71: 9c:56:44:3a:aa:12:35:08:1b:ad:e5:a2:de:6e:ac: dc:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:D6:3A:10:62:E1:88:06:E4:8F:73:27:A4:0A:02:FC:17:D1:22:8F X509v3 Authority Key Identifier: keyid:67:06:D9:84:E7:31:68:12:02:18:8D:29:9E:D3:5F:00:5B:01:75:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:8b:fa:07:02:ee:12:b0:ad:0f:03:a0:01:2a:56:8b:b0:2f: 58:bb:f2:e2:fb:ca:f0:d4:fc:e5:51:12:6e:07:24:62:5e:39: ad:6a:ed:25:72:d6:48:18:5f:87:44:6f:e1:3a:81:65:63:dc: 55:fd:4b:3a:f1:26:77:f8:02:58:42:0a:8c:5c:2a:bf:fc:83: a4:70:58:17:54:a7:0e:e1:90:00:b5:dd:13:a4:47:12:02:b4: f0:af:9e:93:99:35:55:65:96:30:24:e6:6b:cb:cc:97:95:3c: 65:a9:cb:5a:7e:11:c1:aa:55:a9:52:4d:f7:9f:88:25:8a:8c: d9:83:3d:19:4f:27:0a:ef:29:a7:16:d3:e4:6d:72:b8:fb:18: be:05:89:99:66:71:93:f9:3e:66:97:91:83:f6:80:82:4a:3a: e3:01:b4:13:72:3d:1a:58:52:cb:34:8a:6b:70:a1:2e:c0:93: bd:29:7a:9a:2a:7c:8a:0f:8e:e1:97:b2:b1:50:1a:72:8e:9f: ea:93:8f:42:89:46:89:97:65:83:ad:e3:84:66:96:b3:50:06: f4:83:3c:c5:e7:db:b9:27:84:18:9f:dd:2c:80:3a:cb:3c:c5: 3c:cc:dc:62:45:e9:79:75:0c:6b:98:c1:d4:dc:4d:4b:d6:56: e5:e8:29:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RDREExMTAvBgNVBAUTKDY3MDZEOTg0RTczMTY4MTIwMjE4OEQyOTlFRDM1RjAw NUIwMTc1ODAwHhcNMjUxMjA2MTQzNjU1WhcNMjUxMjEzMTQzNjU1WjAYMRYwFAYD VQQDEw02OTM0M2Y4Ny0yNDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr1JytX0nAvx+DodJ65Nyk09sOeaCFkXvRcDFdt8vLmOCny6gBfYfYTROie3V pvqqy0yWnjmGW1c+xIVwiP22xiXLO3eL+6AoLXi3exbMq1f7+KwcnjVMZLvAMfvF ZE07jxF6gDGFeOkjp/kSqV1p/vT8pT+lMMhtTQa/j6dhOVhAlT4W/eL8mvXnwwk0 GiyskUbgX2dn2KiVgTCAoxo+/SH1JsHespmd1Hk0aoATTJvg+4cD2g5ifLGyPZY/ lZA21tRj1tKJV7PGKmgEPC425ccuPDSah++ZP1HupeFhy+XLL6ER4vpfDlDBu8u0 /HGcVkQ6qhI1CBut5aLebqzcTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ/WOhBi 4YgG5I9zJ6QKAvwX0SKPMB8GA1UdIwQYMBaAFGcG2YTnMWgSAhiNKZ7TXwBbAXWA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RENEQS8xOTJFNzFGNjFE OTAxMUUyQjI5NUFCRUYwOEIwMkNEMi9ad2JaaE9jeGFCSUNHSTBwbnROZkFGc0Jk WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p3YlpoT2N4YUJJQ0dJMHBudE5mQUZzQmRZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RENEQS8xOTJFNzFGNjFEOTAxMUUyQjI5NUFCRUYwOEIwMkNEMi9ad2JaaE9jeGFC SUNHSTBwbnROZkFGc0JkWUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQi/oHAu4SsK0PA6ABKlaLsC9Yu/Li+8rw1PzlURJuByRiXjmtau0l ctZIGF+HRG/hOoFlY9xV/Us68SZ3+AJYQgqMXCq//IOkcFgXVKcO4ZAAtd0TpEcS ArTwr56TmTVVZZYwJOZry8yXlTxlqctafhHBqlWpUk33n4gliozZgz0ZTycK7ymn FtPkbXK4+xi+BYmZZnGT+T5ml5GD9oCCSjrjAbQTcj0aWFLLNIprcKEuwJO9KXqa KnyKD47hl7KxUBpyjp/qk49CiUaJl2WDreOEZpazUAb0gzzF59u5J4QYn90sgDrL PMU8zNxiRel5dQxrmMHU3E1L1lbl6ClM -----END CERTIFICATE-----Generated at Sun Dec 7 06:37:23 2025 by rpki-client