This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft File: 44pe3hloyTdeUVUfrpiIigu1RJA.mft (raw, json) Hash identifier: 2bErrSRf02HtngiDmZxwM2pevlMM3yhASltChkNPDS8= Subject key identifier: 8B:F9:D0:4A:D9:DF:11:AD:9D:3F:5C:BB:1E:32:1C:49:8C:12:C6:2E Authority key identifier: E3:8A:5E:DE:19:68:C9:37:5E:51:55:1F:AE:98:88:8A:0B:B5:44:90 Certificate issuer: /CN=A91AAC4B/serialNumber=E38A5EDE1968C9375E51551FAE98888A0BB54490 Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft Manifest number: A9 Signing time: Fri 05 Dec 2025 04:09:48 +0000 Manifest this update: Fri 05 Dec 2025 04:09:47 +0000 Manifest next update: Fri 12 Dec 2025 04:09:47 +0000 Files and hashes: 1: 44pe3hloyTdeUVUfrpiIigu1RJA.crl (hash: lZFOJjk1SpZjq4Bu4Dx/hNnhZ4bU9oQd6Yx89sQgQ9I=) 2: B6A31094CD7E11EFBBAE2137C4F9AE02.roa (hash: f1IFYkIgMkQ3+JyMSl70ACqIsH3T9EI7K8/rW2krDH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.crl rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:09:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAC4B, serialNumber=E38A5EDE1968C9375E51551FAE98888A0BB54490 Validity Not Before: Dec 5 04:09:47 2025 GMT Not After : Dec 12 04:09:47 2025 GMT Subject: CN=69325b0c-7ba3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:dc:2a:51:aa:2e:56:e6:95:ea:96:14:f5:fc: c5:50:4e:d5:fb:d1:f4:d4:84:50:be:3e:84:c5:9d: 85:75:af:34:a2:88:73:31:f4:d9:80:77:19:80:8f: f2:2e:5a:5e:be:38:0f:e3:dc:b3:e0:38:74:4c:16: 90:79:0b:fa:8f:4c:9c:35:9e:67:b2:57:ac:f8:4a: bb:ba:25:63:49:4e:dd:63:98:ba:1d:82:22:d0:18: a2:25:e4:00:2d:93:37:0d:7d:f3:33:b1:3b:15:e0: 96:1d:e4:51:7a:5a:89:6d:bd:ec:16:c3:51:a7:3e: b0:b5:93:8e:79:ff:ad:5c:37:b1:2b:b4:9b:98:93: f7:e3:24:88:3c:ea:2b:de:45:51:97:b1:50:67:bc: e9:13:6e:56:63:e2:b6:f8:f5:c0:eb:26:b7:39:cc: 61:30:f8:ae:1e:c2:2b:bc:44:bc:19:fe:e9:e5:c7: 7d:9f:92:a4:5f:c2:c5:40:6d:9d:15:62:0c:b1:2c: 36:e2:8a:81:8a:c9:56:50:b0:d6:5d:f1:c8:81:1c: 81:57:ca:7c:39:4f:4d:57:72:90:1f:ee:7c:56:c5: cd:57:92:a6:be:a7:23:1a:c1:3d:3d:fe:e1:ec:71: 7c:61:88:f9:a1:7d:ef:64:73:86:96:70:fc:7a:a7: 48:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:F9:D0:4A:D9:DF:11:AD:9D:3F:5C:BB:1E:32:1C:49:8C:12:C6:2E X509v3 Authority Key Identifier: keyid:E3:8A:5E:DE:19:68:C9:37:5E:51:55:1F:AE:98:88:8A:0B:B5:44:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:26:6c:4b:f8:25:a8:7f:3c:36:57:5c:69:8f:c4:05:c6:f6: cc:8f:03:e7:4f:fb:5d:5a:d9:e9:c6:28:ea:39:bb:b7:46:e9: 2d:c0:9b:7e:1d:59:1d:49:12:71:aa:7e:d7:c0:de:30:b8:c4: ec:d7:04:58:63:fb:74:a0:95:e2:3d:97:73:33:db:76:a9:6b: 82:8a:21:a9:2e:28:7b:a3:86:2a:fe:db:e3:c2:ed:77:1d:e7: f5:62:a6:e2:cd:17:fa:ce:f7:c8:d3:c6:e9:f8:4d:cf:f1:c7: 4d:01:bc:f6:25:9c:64:b1:cb:8d:c1:fb:e3:5f:2b:40:3a:7a: 1f:18:0e:35:85:14:e7:5c:da:30:f1:bd:bc:4e:2e:a8:3c:36: 6d:0d:14:71:ee:6b:23:3e:dd:5e:37:a3:0a:cc:b9:90:a4:87: 47:bc:75:6f:4c:c6:e2:c6:5f:5b:de:bf:18:28:37:02:63:02: 00:f6:23:95:10:c0:bd:2e:bb:a7:bd:0d:1f:5e:65:0b:67:92: 06:bb:0a:df:a9:c3:d4:c3:8c:3a:bc:ea:4b:1d:70:85:ab:4f: 76:8e:92:97:ba:92:c1:5e:76:3c:bd:68:22:f2:41:e3:95:3b: 4f:eb:b9:9d:9e:35:d3:6e:34:8f:20:d6:e3:b9:9e:0e:93:57: 4c:87:24:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFDNEIxMTAvBgNVBAUTKEUzOEE1RURFMTk2OEM5Mzc1RTUxNTUxRkFFOTg4ODhB MEJCNTQ0OTAwHhcNMjUxMjA1MDQwOTQ3WhcNMjUxMjEyMDQwOTQ3WjAYMRYwFAYD VQQDEw02OTMyNWIwYy03YmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAztwqUaouVuaV6pYU9fzFUE7V+9H01IRQvj6ExZ2Fda80oohzMfTZgHcZgI/y LlpevjgP49yz4Dh0TBaQeQv6j0ycNZ5nsles+Eq7uiVjSU7dY5i6HYIi0BiiJeQA LZM3DX3zM7E7FeCWHeRRelqJbb3sFsNRpz6wtZOOef+tXDexK7SbmJP34ySIPOor 3kVRl7FQZ7zpE25WY+K2+PXA6ya3OcxhMPiuHsIrvES8Gf7p5cd9n5KkX8LFQG2d FWIMsSw24oqBislWULDWXfHIgRyBV8p8OU9NV3KQH+58VsXNV5KmvqcjGsE9Pf7h 7HF8YYj5oX3vZHOGlnD8eqdIPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIv50ErZ 3xGtnT9cux4yHEmMEsYuMB8GA1UdIwQYMBaAFOOKXt4ZaMk3XlFVH66YiIoLtUSQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUM0Qi9ERTNGODg5QUNE N0QxMUVGQUEwNzIzMEFDNEY5QUUwMi80NHBlM2hsb3lUZGVVVlVmcnBpSWlndTFS SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzQ0cGUzaGxveVRkZVVWVWZycGlJaWd1MVJKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUM0Qi9ERTNGODg5QUNEN0QxMUVGQUEwNzIzMEFDNEY5QUUwMi80NHBlM2hsb3lU ZGVVVlVmcnBpSWlndTFSSkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNJmxL+CWofzw2V1xpj8QFxvbMjwPnT/tdWtnpxijqObu3RuktwJt+ HVkdSRJxqn7XwN4wuMTs1wRYY/t0oJXiPZdzM9t2qWuCiiGpLih7o4Yq/tvjwu13 Hef1YqbizRf6zvfI08bp+E3P8cdNAbz2JZxkscuNwfvjXytAOnofGA41hRTnXNow 8b28Ti6oPDZtDRRx7msjPt1eN6MKzLmQpIdHvHVvTMbixl9b3r8YKDcCYwIA9iOV EMC9LrunvQ0fXmULZ5IGuwrfqcPUw4w6vOpLHXCFq092jpKXupLBXnY8vWgi8kHj lTtP67mdnjXTbjSPINbjuZ4Ok1dMhySm -----END CERTIFICATE-----Generated at Sat Dec 6 23:45:35 2025 by rpki-client