This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft File: 444NefP9KSMew_PjAp05P0MnfLM.mft (raw, json) Hash identifier: KOZ0jXaLoQzZUCCXDMP5AiKvKgpXJ3LDY1SutEjbCcE= Subject key identifier: 18:E6:40:B8:18:DB:65:B8:26:74:A3:97:83:2D:3F:B0:1E:8D:39:83 Authority key identifier: E3:8E:0D:79:F3:FD:29:23:1E:C3:F3:E3:02:9D:39:3F:43:27:7C:B3 Certificate issuer: /CN=A9128298/serialNumber=E38E0D79F3FD29231EC3F3E3029D393F43277CB3 Certificate serial: 0646 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/444NefP9KSMew_PjAp05P0MnfLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft Manifest number: 0643 Signing time: Thu 04 Dec 2025 21:25:24 +0000 Manifest this update: Thu 04 Dec 2025 21:25:23 +0000 Manifest next update: Thu 11 Dec 2025 21:25:23 +0000 Files and hashes: 1: 444NefP9KSMew_PjAp05P0MnfLM.crl (hash: T62Odv4v06HmugUDC/a71OnJUJkv5dDrEiG22VRIY4o=) 2: 832F7D72B20E11EBB73B4E2FC4F9AE02.roa (hash: RWzQvPuAa0dvfgKQkKzubYejP/LcFU0xMaFFgk+jNhQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.crl rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/444NefP9KSMew_PjAp05P0MnfLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 21:25:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1606 (0x646) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128298, serialNumber=E38E0D79F3FD29231EC3F3E3029D393F43277CB3 Validity Not Before: Dec 4 21:25:23 2025 GMT Not After : Dec 11 21:25:23 2025 GMT Subject: CN=6931fc43-5508 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:06:f4:c9:82:83:95:0c:58:27:b2:55:d9:c4: f0:5f:dd:a9:50:5c:82:8a:5d:0f:cb:04:e4:8f:fb: 0f:e6:3f:ad:51:52:f4:0a:14:6c:6a:d2:fc:19:58: d9:60:25:2b:f0:78:20:bb:8d:0e:ae:37:de:cc:a5: 56:c7:51:0c:20:65:a0:fa:37:e2:c6:25:ff:b1:08: c5:34:c5:dd:9d:ef:81:d3:9e:c0:6f:0e:23:3e:11: c2:3b:a7:77:22:91:b9:d7:94:be:11:bd:8a:65:9d: d0:43:01:26:25:04:2b:a3:fe:5f:d1:98:21:40:31: 03:e3:ca:15:5a:ec:4c:3b:d9:32:a7:57:48:22:4c: f4:d5:35:37:16:28:7a:46:56:42:26:5a:06:26:63: fa:04:f7:fa:b0:39:15:eb:77:f5:61:a5:54:60:f9: 36:a2:df:a6:a8:1b:1e:f2:39:cc:30:d9:d5:44:10: 96:08:eb:52:fe:8a:3e:be:6f:c0:4f:c3:a0:2b:b0: 98:ec:01:3b:9c:c8:b1:05:42:8a:b0:45:b8:af:bf: 40:40:b9:25:9c:77:38:fa:cd:1c:19:06:af:5e:c0: d8:81:23:f1:fe:fd:e8:df:dc:ee:8f:a2:6d:b9:4a: b2:a5:58:f4:2c:1b:20:a6:29:e0:ad:8c:9a:de:e5: 4a:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:E6:40:B8:18:DB:65:B8:26:74:A3:97:83:2D:3F:B0:1E:8D:39:83 X509v3 Authority Key Identifier: keyid:E3:8E:0D:79:F3:FD:29:23:1E:C3:F3:E3:02:9D:39:3F:43:27:7C:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/444NefP9KSMew_PjAp05P0MnfLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:89:96:f7:ab:ac:36:98:c5:06:b7:e3:9d:01:66:78:96:9c: bd:fb:1f:77:6d:79:77:9d:1e:b1:82:74:34:60:59:ac:64:db: 86:45:02:71:82:9c:c3:f3:32:6c:c9:9b:8b:6d:d3:41:1f:3b: 9a:74:6c:4c:9b:3d:d7:cc:3c:bc:32:55:a8:b6:eb:4b:8f:8a: fd:c1:16:bf:6d:0a:bc:fe:0d:4d:89:13:4e:a1:fa:c9:49:0f: 3d:07:d9:61:a0:91:f0:8f:26:83:08:7d:fe:54:9e:09:89:5e: 0e:a0:40:10:fc:28:e9:d7:54:32:10:3c:26:dd:a3:7c:e5:00: 9f:be:d1:73:f1:72:f2:f2:39:fb:b8:fc:37:0b:cf:4f:58:91: 2f:d0:52:e2:3c:e2:94:db:48:dc:a9:e6:c8:6d:11:9e:de:38: 06:db:c7:f0:b9:1e:49:c3:ae:44:bc:47:da:c1:e4:cc:19:1c: ff:0e:3e:96:56:0e:14:4f:68:88:ec:89:d4:c6:1e:2d:af:a5: 14:c1:57:e8:07:e8:f5:6e:5b:24:1b:0b:d2:25:22:ae:52:6e: ff:8d:34:3d:70:63:92:ea:e0:9c:f2:c1:85:bc:b7:af:e2:1f: cb:92:a6:fb:0c:9f:32:28:60:c3:e3:61:26:83:3d:d1:61:6c: c0:fa:3d:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgyOTgxMTAvBgNVBAUTKEUzOEUwRDc5RjNGRDI5MjMxRUMzRjNFMzAyOUQzOTNG NDMyNzdDQjMwHhcNMjUxMjA0MjEyNTIzWhcNMjUxMjExMjEyNTIzWjAYMRYwFAYD VQQDEw02OTMxZmM0My01NTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvwb0yYKDlQxYJ7JV2cTwX92pUFyCil0PywTkj/sP5j+tUVL0ChRsatL8GVjZ YCUr8Hggu40OrjfezKVWx1EMIGWg+jfixiX/sQjFNMXdne+B057Abw4jPhHCO6d3 IpG515S+Eb2KZZ3QQwEmJQQro/5f0ZghQDED48oVWuxMO9kyp1dIIkz01TU3Fih6 RlZCJloGJmP6BPf6sDkV63f1YaVUYPk2ot+mqBse8jnMMNnVRBCWCOtS/oo+vm/A T8OgK7CY7AE7nMixBUKKsEW4r79AQLklnHc4+s0cGQavXsDYgSPx/v3o39zuj6Jt uUqypVj0LBsgpingrYya3uVKjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBjmQLgY 22W4JnSjl4MtP7AejTmDMB8GA1UdIwQYMBaAFOOODXnz/SkjHsPz4wKdOT9DJ3yz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODI5OC83MjI0NzY2QUIy MEMxMUVCQUM4ODZBMkNDNEY5QUUwMi80NDROZWZQOUtTTWV3X1BqQXAwNVAwTW5m TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ0NE5lZlA5S1NNZXdfUGpBcDA1UDBNbmZMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODI5OC83MjI0NzY2QUIyMEMxMUVCQUM4ODZBMkNDNEY5QUUwMi80NDROZWZQOUtT TWV3X1BqQXAwNVAwTW5mTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRiZb3q6w2mMUGt+OdAWZ4lpy9+x93bXl3nR6xgnQ0YFmsZNuGRQJx gpzD8zJsyZuLbdNBHzuadGxMmz3XzDy8MlWotutLj4r9wRa/bQq8/g1NiRNOofrJ SQ89B9lhoJHwjyaDCH3+VJ4JiV4OoEAQ/Cjp11QyEDwm3aN85QCfvtFz8XLy8jn7 uPw3C89PWJEv0FLiPOKU20jcqebIbRGe3jgG28fwuR5Jw65EvEfaweTMGRz/Dj6W Vg4UT2iI7InUxh4tr6UUwVfoB+j1blskGwvSJSKuUm7/jTQ9cGOS6uCc8sGFvLev 4h/Lkqb7DJ8yKGDD42Emgz3RYWzA+j3o -----END CERTIFICATE-----Generated at Sat Dec 6 19:12:56 2025 by rpki-client