This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft File: 44pe3hloyTdeUVUfrpiIigu1RJA.mft (raw, json) Hash identifier: eX/qs5X2enMZrTEjA5GC7JUJb0yr38O2Jg6ZpXe7EUc= Subject key identifier: 5D:37:09:38:2B:93:AB:0A:2F:F5:DD:75:2F:D4:47:4B:DD:5A:06:D3 Authority key identifier: E3:8A:5E:DE:19:68:C9:37:5E:51:55:1F:AE:98:88:8A:0B:B5:44:90 Certificate issuer: /CN=A91AAC4B/serialNumber=E38A5EDE1968C9375E51551FAE98888A0BB54490 Certificate serial: A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft Manifest number: A8 Signing time: Wed 03 Dec 2025 04:30:29 +0000 Manifest this update: Wed 03 Dec 2025 04:30:29 +0000 Manifest next update: Wed 10 Dec 2025 04:30:29 +0000 Files and hashes: 1: 44pe3hloyTdeUVUfrpiIigu1RJA.crl (hash: BXfslLsuzUfVcfWZ84ocsPKY+Are37S0vjR3nyN9qyU=) 2: B6A31094CD7E11EFBBAE2137C4F9AE02.roa (hash: f1IFYkIgMkQ3+JyMSl70ACqIsH3T9EI7K8/rW2krDH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.crl rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 04:30:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAC4B, serialNumber=E38A5EDE1968C9375E51551FAE98888A0BB54490 Validity Not Before: Dec 3 04:30:29 2025 GMT Not After : Dec 10 04:30:29 2025 GMT Subject: CN=692fbce5-c89b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b6:bb:56:41:e5:7f:f9:a8:4c:9e:af:b4:e5: 33:90:25:12:14:cd:a6:09:73:0c:8b:57:a9:4c:ea: 63:0e:11:d5:6e:13:7d:e3:f3:42:2d:f0:72:1f:c3: e0:e5:c9:c0:a1:f4:36:d7:85:49:7c:89:56:bf:2e: 53:b6:3a:7f:e6:c1:83:6d:51:34:fe:85:f0:96:e7: 17:4c:e2:e9:fc:9d:b5:79:b9:81:0e:f4:05:72:98: a0:e7:f0:ce:99:5f:d2:fc:00:53:ae:4d:a9:51:b2: 04:5d:45:be:8f:03:53:37:48:d2:b0:6c:8b:87:fb: ba:bb:a3:65:6a:48:74:99:46:9b:5e:fe:07:39:46: 6f:91:28:6a:41:6b:08:d9:11:5b:5c:f3:32:86:07: a8:b1:37:77:46:10:62:bb:ce:27:ba:33:a3:a1:78: 72:1f:3c:59:18:44:36:59:70:6d:ae:25:19:ca:40: cf:1b:27:be:09:c4:cd:ee:c9:64:f5:99:a1:a3:e3: da:bc:10:2e:28:8b:ad:d4:03:49:06:55:57:72:a6: f4:02:d1:b2:44:0d:6b:83:f4:2f:cf:68:f5:be:33: 61:87:d6:89:5a:22:d2:7f:85:dc:ba:40:81:60:4a: 49:86:91:93:95:9b:b1:10:3a:87:50:b5:cd:db:52: 93:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:37:09:38:2B:93:AB:0A:2F:F5:DD:75:2F:D4:47:4B:DD:5A:06:D3 X509v3 Authority Key Identifier: keyid:E3:8A:5E:DE:19:68:C9:37:5E:51:55:1F:AE:98:88:8A:0B:B5:44:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:ac:af:51:75:2c:95:33:0e:e0:41:62:b3:9d:e8:a5:46:9b: e8:a3:e3:70:f7:a2:54:db:f7:d6:a3:2f:cf:7c:f5:05:01:c0: b8:95:c4:19:76:e0:57:4c:12:8e:24:54:84:17:48:6b:82:99: 8e:27:67:d8:39:16:af:d6:e6:e6:cf:85:4c:d8:3f:d6:41:7b: 30:bd:12:5a:7f:40:28:76:cc:a5:ae:37:7f:3e:e9:31:41:fd: 96:e6:fe:1d:ee:35:fe:6e:4c:6a:d1:60:d3:db:5d:4b:19:62: f2:d8:67:78:5e:13:97:c5:e3:17:10:07:0e:f5:46:a3:5a:80: 18:3f:a5:84:c6:0a:aa:8b:e0:a5:d6:9b:ee:ca:a9:0d:d7:fd: 9d:85:ca:18:36:61:a4:a2:cb:83:5b:c7:cf:1d:57:49:36:c8: 68:fd:6a:63:54:2c:f2:d4:2d:8c:6f:ce:7f:ea:ca:d9:55:65: 86:52:98:e4:9f:5c:92:2c:f2:f6:74:ba:9f:96:79:b1:e8:b1: e6:0a:40:87:ac:c8:59:2b:19:a9:c7:33:9c:7d:a4:4a:62:07: 12:1e:03:4f:63:40:19:a4:5c:13:ae:8a:32:11:d6:0e:fc:f9: f0:20:49:84:2a:91:6f:30:67:a6:20:e6:f3:82:49:00:1a:9a: 84:3c:d9:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFDNEIxMTAvBgNVBAUTKEUzOEE1RURFMTk2OEM5Mzc1RTUxNTUxRkFFOTg4ODhB MEJCNTQ0OTAwHhcNMjUxMjAzMDQzMDI5WhcNMjUxMjEwMDQzMDI5WjAYMRYwFAYD VQQDEw02OTJmYmNlNS1jODliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7a7VkHlf/moTJ6vtOUzkCUSFM2mCXMMi1epTOpjDhHVbhN94/NCLfByH8Pg 5cnAofQ214VJfIlWvy5Ttjp/5sGDbVE0/oXwlucXTOLp/J21ebmBDvQFcpig5/DO mV/S/ABTrk2pUbIEXUW+jwNTN0jSsGyLh/u6u6Nlakh0mUabXv4HOUZvkShqQWsI 2RFbXPMyhgeosTd3RhBiu84nujOjoXhyHzxZGEQ2WXBtriUZykDPGye+CcTN7slk 9Zmho+PavBAuKIut1ANJBlVXcqb0AtGyRA1rg/Qvz2j1vjNhh9aJWiLSf4XcukCB YEpJhpGTlZuxEDqHULXN21KTswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF03CTgr k6sKL/XddS/UR0vdWgbTMB8GA1UdIwQYMBaAFOOKXt4ZaMk3XlFVH66YiIoLtUSQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUM0Qi9ERTNGODg5QUNE N0QxMUVGQUEwNzIzMEFDNEY5QUUwMi80NHBlM2hsb3lUZGVVVlVmcnBpSWlndTFS SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzQ0cGUzaGxveVRkZVVWVWZycGlJaWd1MVJKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUM0Qi9ERTNGODg5QUNEN0QxMUVGQUEwNzIzMEFDNEY5QUUwMi80NHBlM2hsb3lU ZGVVVlVmcnBpSWlndTFSSkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVrK9RdSyVMw7gQWKzneilRpvoo+Nw96JU2/fWoy/PfPUFAcC4lcQZ duBXTBKOJFSEF0hrgpmOJ2fYORav1ubmz4VM2D/WQXswvRJaf0Aodsylrjd/Pukx Qf2W5v4d7jX+bkxq0WDT211LGWLy2Gd4XhOXxeMXEAcO9UajWoAYP6WExgqqi+Cl 1pvuyqkN1/2dhcoYNmGkosuDW8fPHVdJNsho/WpjVCzy1C2Mb85/6srZVWWGUpjk n1ySLPL2dLqflnmx6LHmCkCHrMhZKxmpxzOcfaRKYgcSHgNPY0AZpFwTrooyEdYO /PnwIEmEKpFvMGemIObzgkkAGpqEPNm/ -----END CERTIFICATE-----Generated at Wed Dec 3 16:22:47 2025 by rpki-client