This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/d31UDhYfpnH7JFijP_5L8z1qcBU.mft File: d31UDhYfpnH7JFijP_5L8z1qcBU.mft (raw, json) Hash identifier: U9KWNjWwxWlOtdSj/5XncSFX3wuI5o5HdveJSZvnec8= Subject key identifier: 5F:41:E6:0C:63:E0:A7:7E:D5:58:78:A4:4F:BA:FD:7F:50:AE:7C:59 Authority key identifier: 77:7D:54:0E:16:1F:A6:71:FB:24:58:A3:3F:FE:4B:F3:3D:6A:70:15 Certificate issuer: /CN=A913BA27/serialNumber=777D540E161FA671FB2458A33FFE4BF33D6A7015 Certificate serial: 61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d31UDhYfpnH7JFijP_5L8z1qcBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/d31UDhYfpnH7JFijP_5L8z1qcBU.mft Manifest number: 5F Signing time: Fri 05 Dec 2025 04:59:26 +0000 Manifest this update: Fri 05 Dec 2025 04:59:26 +0000 Manifest next update: Fri 12 Dec 2025 04:59:26 +0000 Files and hashes: 1: d31UDhYfpnH7JFijP_5L8z1qcBU.crl (hash: HaDAH4Fv20DjVeqO+qYhOhitZiTzdWQ2k9qm5+9oV0o=) 2: 71B7688645AB11F0949A471EC4F9AE02.roa (hash: OOybTQy1tXbxj/OFzkMaOGN0e7LlqdktJQlDDwMZpUE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/d31UDhYfpnH7JFijP_5L8z1qcBU.crl rsync://rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/d31UDhYfpnH7JFijP_5L8z1qcBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d31UDhYfpnH7JFijP_5L8z1qcBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:59:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BA27, serialNumber=777D540E161FA671FB2458A33FFE4BF33D6A7015 Validity Not Before: Dec 5 04:59:26 2025 GMT Not After : Dec 12 04:59:26 2025 GMT Subject: CN=693266ae-c82a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:d1:96:af:0b:22:53:6d:1c:5f:53:87:e3:01: 37:c4:cd:f2:c4:2c:60:cf:bb:bc:73:a5:f5:2d:1c: 2d:e7:7a:78:85:f9:4a:c2:1d:a8:01:e1:d9:05:31: 48:fd:7d:d9:1b:a7:8f:fa:06:49:8e:c0:f8:4b:21: 46:2b:fa:3e:c4:23:ce:26:4e:0f:b4:e1:8f:8c:74: 46:e4:f9:e6:94:30:5c:d9:6e:b1:a5:e9:e1:17:59: 3e:9f:d6:de:06:94:ba:5c:d3:fb:3e:d4:95:35:2d: 1c:be:26:85:b2:ba:9c:51:b5:9f:21:db:9a:57:d1: f1:1a:99:96:10:db:fb:d5:c6:bd:12:3b:c0:0e:d0: 6d:4c:40:61:8a:4b:03:6f:9f:46:87:72:f0:bd:4c: 85:01:02:7f:ba:8b:d4:75:e3:da:37:b3:27:4b:ce: 0a:de:99:5e:ed:d3:57:7b:19:53:e3:20:28:c6:4f: 61:3f:23:ad:b2:c1:2a:7b:01:f6:ec:af:3a:17:cb: f1:1f:6f:48:e3:40:00:f1:ad:22:3c:77:e2:bb:4d: 54:d0:97:77:88:1c:6e:32:c1:43:ba:b1:98:d3:03: b7:78:ef:ef:ff:09:00:3c:a2:f4:81:c1:b1:a6:9d: 83:c8:e3:61:26:51:7c:c2:b1:b4:23:7b:72:c6:b9: 04:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:41:E6:0C:63:E0:A7:7E:D5:58:78:A4:4F:BA:FD:7F:50:AE:7C:59 X509v3 Authority Key Identifier: keyid:77:7D:54:0E:16:1F:A6:71:FB:24:58:A3:3F:FE:4B:F3:3D:6A:70:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/d31UDhYfpnH7JFijP_5L8z1qcBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d31UDhYfpnH7JFijP_5L8z1qcBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/d31UDhYfpnH7JFijP_5L8z1qcBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:10:be:04:45:2e:94:2f:9e:92:2d:43:97:1a:52:05:81:42: 3d:b6:47:f8:dc:7d:4c:ff:c0:8c:bb:8d:d5:1d:df:bf:ae:34: 93:9c:5c:23:b9:0f:ca:89:bc:1a:9f:75:d1:05:07:ac:0c:af: e8:5f:1c:4e:61:36:33:3b:29:e5:b2:94:f5:64:57:89:2a:a6: 67:18:c5:93:bf:9d:c6:37:9a:d6:b8:1f:73:71:5a:4a:73:78: 2e:32:b0:36:e5:3f:81:d8:91:3f:51:8b:4c:10:c1:28:04:54: 5d:ef:5f:1c:6c:81:01:50:13:1b:8a:d6:4e:eb:7d:24:90:a3: 00:5c:ef:23:8f:e1:35:b1:42:15:04:c3:d1:ca:f5:cd:b0:4e: 2e:28:c6:68:f0:0a:0b:65:e3:b2:1c:6b:43:10:89:51:5d:b8: 67:ba:bb:4f:c9:83:35:d6:95:94:a2:52:43:5d:52:4b:8e:72: 48:4d:ee:f9:79:b5:65:0f:a6:82:79:cc:3e:0b:ea:23:54:51: ca:7a:5e:5b:8a:60:9a:d0:ba:5e:f9:d5:2b:da:87:de:b9:c4: 6e:30:7c:0b:4c:6e:91:f8:d9:73:6c:d1:42:da:46:49:8e:3a: 8c:77:aa:6c:49:83:67:08:5c:4a:7a:7d:4c:74:26:ba:ac:3a: d2:16:48:b6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QkEyNzExMC8GA1UEBRMoNzc3RDU0MEUxNjFGQTY3MUZCMjQ1OEEzM0ZGRTRCRjMz RDZBNzAxNTAeFw0yNTEyMDUwNDU5MjZaFw0yNTEyMTIwNDU5MjZaMBgxFjAUBgNV BAMTDTY5MzI2NmFlLWM4MmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCd0ZavCyJTbRxfU4fjATfEzfLELGDPu7xzpfUtHC3neniF+UrCHagB4dkFMUj9 fdkbp4/6BkmOwPhLIUYr+j7EI84mTg+04Y+MdEbk+eaUMFzZbrGl6eEXWT6f1t4G lLpc0/s+1JU1LRy+JoWyupxRtZ8h25pX0fEamZYQ2/vVxr0SO8AO0G1MQGGKSwNv n0aHcvC9TIUBAn+6i9R149o3sydLzgremV7t01d7GVPjICjGT2E/I62ywSp7Afbs rzoXy/Efb0jjQADxrSI8d+K7TVTQl3eIHG4ywUO6sZjTA7d47+//CQA8ovSBwbGm nYPI42EmUXzCsbQje3LGuQQ3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUX0HmDGPg p37VWHikT7r9f1CufFkwHwYDVR0jBBgwFoAUd31UDhYfpnH7JFijP/5L8z1qcBUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNCQTI3L0VBNEU2NjlDNDU4 QzExRjBCMkJFQjY0REM0RjlBRTAyL2QzMVVEaFlmcG5IN0pGaWpQXzVMOHoxcWNC VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZDMxVURoWWZwbkg3SkZpalBfNUw4ejFxY0JVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNC QTI3L0VBNEU2NjlDNDU4QzExRjBCMkJFQjY0REM0RjlBRTAyL2QzMVVEaFlmcG5I N0pGaWpQXzVMOHoxcWNCVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE8QvgRFLpQvnpItQ5caUgWBQj22R/jcfUz/wIy7jdUd37+uNJOcXCO5 D8qJvBqfddEFB6wMr+hfHE5hNjM7KeWylPVkV4kqpmcYxZO/ncY3mta4H3NxWkpz eC4ysDblP4HYkT9Ri0wQwSgEVF3vXxxsgQFQExuK1k7rfSSQowBc7yOP4TWxQhUE w9HK9c2wTi4oxmjwCgtl47Ica0MQiVFduGe6u0/JgzXWlZSiUkNdUkuOckhN7vl5 tWUPpoJ5zD4L6iNUUcp6XluKYJrQul751Svah965xG4wfAtMbpH42XNs0ULaRkmO Oox3qmxJg2cIXEp6fUx0JrqsOtIWSLY= -----END CERTIFICATE-----Generated at Sat Dec 6 22:08:41 2025 by rpki-client